Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:08:34, on 2/03/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16521)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\BlueStacks\HD-Agent.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Gilbert\Documents\Z Super\Downloads van Downloader\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON/2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org/nl/index.php?rvs=google
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org/nl/index.php?rvs=google
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentBar_NL Toolbar - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll
O1 - Hosts: 91.121.199.68 p-o-t-board.net www.p-o-t-board.net (http://www.p-o-t-board.net)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browwsse2saVee - {1BD10A13-F5F6-9C92-68A9-119DA158C2D8} - C:\ProgramData\Browwsse2saVee\513069f47b419.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\Browser Plugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Browwsse2saVee - {524493A9-740E-856F-DF94-55D80F43D17C} - C:\ProgramData\Browwsse2saVee\513069c0655a0.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.1.1.2\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.1.1.2\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: uTorrentBar_NL - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckP lugin.dll
O2 - BHO: smartdownloader Class - {F1AF26F8-1828-4279-ABCE-074EF3235BD7} - C:\Program Files (x86)\PutLockerDownloader\smarterdownloader.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: uTorrentBar_NL Toolbar - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.1.1.2\coIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
O4 - HKLM\..\Run: [MPlayerForWindows_UpdateReminder] "C:\Program Files (x86)\MPlayer for Windows\AutoUpdate.exe" /L=1033 /TASK
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [Gadwin PrintScreen] C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Download with &FileFactory Turbo - C:\Program Files (x86)\FileFactory Turbo\Plugins\IE\FileFactoryIE.html
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckP lugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromI E.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckP lugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromI E.exe
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\progra~3\browse~1\261095~1.52\{c16c1~1\browse~1 .dll c:\progra~2\browse~1\sprote~1.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V11 (AdobeActiveFileMonitor11.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\20.1.1.2\ccSvcHst.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc. exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 15622 bytes

Hoi,

wat is het probleem juist?

Het "balkje" van realplayer is plots verdwenen : ik downloade veel filmpjes van youtube en van andere sites ook. Nu vraagt hij om Flashplayer te installeren, gedaan doch niets helpt : vraagt steeds weer om flashplayer na drie installaties, kan niets van filmpjes meer downloaden. Norton meld alles ok en SUPERAntispyware ook. Kan iemand me helpen aub ? Browser is IE10 en Firefox. Hijackthis heeft alles opgeruimd : 2 uur zonder resultaat. Het balkje zegt :"realplayer download".

Probeer eens een systeemherstel op een datum van voor je dit probleem had!!

Gedaan : niets veranderd.

Opmerking: Vista of Windows 7 ? >> Alle tools steeds uitvoeren als admin.
Download AdwCleaner (http://general-changelog-team.fr/en/downloads/finish/20-outils-de-xplode/2-adwcleaner) by Xplode naar het bureaublad.

http://i341.photobucket.com/albums/o365/EvelineGirl/A3qkP9RCEAAOZhQ.jpg


Sluit alle openstaande vensters. Vista en Windows 7 gebruikers: Rechtsklik op AdwCleaner en selecteer als Administrator uitvoeren... Voor XP: Gewoon dubbelklikken op AdwCleaner. Klik vervolgens op Verwijderen. Klik bij AdwCleaner – Information op OK Klik bij AdwCleaner – Restart Required op OK


Dat tijdens de aktie de snelkoppelingen verdwijnen, is normaal.
Nadat de PC opnieuw is opgestart, opent een logfile.
Post aansluitend de inhoud van dit log in je volgende bericht.

# AdwCleanerv2.114 - Verslag gemaakt op 05/03/2013 om 10:02:18
# Geactualiseerd op 05/03/2013 door Xplode
# Besturingssysteem : Windows 7 Home Premium ServicePack 1 (64 bits)
# Gebruiker :Gilbert - GILBERT-PC
# Opstarten Modus: Normale modus
# Gelanceerdvanaf : C:\Users\Gilbert\Documents\Z Super\Downloads vanDownloader\adwcleaner.exe
# Optie[Verwijderen]


***** [Diensten]*****


***** [Files /Mappen] *****

File Verwijdert :C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\LocalStorage\hxxp_apps.conduit.com_0. localstorage
File Verwijdert :C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\LocalStorage\hxxp_apps.conduit.com_0. localstorage-journal
File Verwijdert :C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\LocalStorage\hxxp_search.conduit.com_ 0.localstorage
File Verwijdert :C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\LocalStorage\hxxp_search.conduit.com_ 0.localstorage-journal
Map Verwijdert :C:\Program Files (x86)\blekko
Map Verwijdert :C:\Program Files (x86)\Conduit
Map Verwijdert :C:\Program Files (x86)\PutLockerDownloader
Map Verwijdert :C:\Program Files (x86)\uTorrentBar_NL
Map Verwijdert :C:\ProgramData\Babylon
Map Verwijdert :C:\ProgramData\InstallMate
Map Verwijdert :C:\ProgramData\Tarma Installer
Map Verwijdert :C:\Users\Gilbert\AppData\Local\Conduit
Map Verwijdert :C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjofdnhdkbflacojpfpkchgafj ahijbb
Map Verwijdert :C:\Users\Gilbert\AppData\Local\PutLockerDownloade r
Map Verwijdert :C:\Users\Gilbert\AppData\Local\Temp\boost_interpr ocess
Map Verwijdert :C:\Users\Gilbert\AppData\LocalLow\Conduit
Map Verwijdert :C:\Users\Gilbert\AppData\LocalLow\Delta
Map Verwijdert :C:\Users\Gilbert\AppData\LocalLow\PriceGong
Map Verwijdert :C:\Users\Gilbert\AppData\LocalLow\uTorrentBar_NL
Map Verwijdert :C:\Users\Gilbert\AppData\Roaming\Babylon
Map Verwijdert :C:\Users\Gilbert\AppData\Roaming\OpenCandy

***** [Register] *****

Data Verwijdert : HKLM\..\Windows [AppInit_DLLs] =c:\progra~2\browse~1\sprote~1.dll
Data Verwijdert : HKLM\..\Windows [AppInit_DLLs] =c:\progra~3\browse~1\261095~1.52\{c16c1~1\browse~ 1.dll
SleutelVerwijdert : HKCU\Software\1ClickDownload
SleutelVerwijdert : HKCU\Software\AppDataLow\Software\Conduit
SleutelVerwijdert : HKCU\Software\AppDataLow\Software\ConduitSearchSco pes
SleutelVerwijdert : HKCU\Software\AppDataLow\Software\PriceGong
SleutelVerwijdert : HKCU\Software\AppDataLow\Software\SmartBar
SleutelVerwijdert : HKCU\Software\AppDataLow\Software\uTorrentBar_NL
SleutelVerwijdert : HKCU\Software\AppDataLow\SProtector
SleutelVerwijdert : HKCU\Software\AppDataLow\Toolbar
SleutelVerwijdert : HKCU\Software\Conduit
SleutelVerwijdert : HKCU\Software\DataMngr
SleutelVerwijdert :HKCU\Software\Google\Chrome\Extensions\cjofdnhdkb flacojpfpkchgafjahijbb
SleutelVerwijdert :HKCU\Software\Microsoft\Windows\CurrentVersion\Ex t\bProtectSettings
SleutelVerwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext \Settings\{87775FDB-6972-41F9-AE51-8326E38CB206}
SleutelVerwijdert :HKCU\Software\Microsoft\Windows\CurrentVersion\Ex t\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
SleutelVerwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext \Stats\{3E87EA0C-D5FA-4BD8-A9E1-C341F4B798F8}
SleutelVerwijdert :HKCU\Software\Microsoft\Windows\CurrentVersion\Ex t\Stats\{87775FDB-6972-41F9-AE51-8326E38CB206}
SleutelVerwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext \Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
SleutelVerwijdert : HKCU\Software\Softonic
SleutelVerwijdert : HKCU\Software\StartSearch
SleutelVerwijdert : HKCU\Software\5dedcd0e66db914
SleutelVerwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
SleutelVerwijdert : HKLM\Software\Babylon
SleutelVerwijdert : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
SleutelVerwijdert : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
SleutelVerwijdert : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
SleutelVerwijdert : HKLM\SOFTWARE\Classes\Prod.cap
SleutelVerwijdert : HKLM\SOFTWARE\Classes\PutLockerDownloader
SleutelVerwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT2865317
SleutelVerwijdert :HKLM\SOFTWARE\Classes\TypeLib\{162E06EC-4E38-4809-AE76-BF2400D34334}
SleutelVerwijdert :HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
SleutelVerwijdert : HKLM\Software\Conduit
Sleutel Verwijdert: HKLM\Software\DataMngr
SleutelVerwijdert : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI 32
SleutelVerwijdert : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMAN CS
SleutelVerwijdert : HKLM\SOFTWARE\Microsoft\Tracing\PutlockerDownloade r_RASAPI32
SleutelVerwijdert : HKLM\SOFTWARE\Microsoft\Tracing\PutlockerDownloade r_RASMANCS
SleutelVerwijdert :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ex t\PreApproved\{3E87EA0C-D5FA-4BD8-A9E1-C341F4B798F8}
SleutelVerwijdert : HKLM\Software\SP Global
SleutelVerwijdert : HKLM\Software\SProtector
SleutelVerwijdert : HKLM\Software\uTorrentBar_NL
SleutelVerwijdert :HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
SleutelVerwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3E87EA0C-D5FA-4BD8-A9E1-C341F4B798F8}
SleutelVerwijdert :HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
SleutelVerwijdert :HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{87775FDB-6972-41F9-AE51-8326E38CB206}
SleutelVerwijdert :HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{813A 22E0-3E2B-4188-9BDA-ECA9878B8D48}
SleutelVerwijdert :HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF 5F55-6F44-11D2-86F8-00104B265ED5}
SleutelVerwijdert : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions \cjofdnhdkbflacojpfpkchgafjahijbb
SleutelVerwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\LowRights\ElevationPolicy\{71DBDD97-009E-4D3E-B7EE-B04CB1FD2198}
SleutelVerwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\LowRights\ElevationPolicy\{CF843750-BF54-4451-93F9-DEA9B1AA49BE}
SleutelVerwijdert :HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Curre ntVersion\Explorer\BrowserHelper Objects\{87775FDB-6972-41F9-AE51-8326E38CB206}
Sleutel Verwijdert:HKLM\SOFTWARE\Wow6432Node\Microsoft\Win dows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
SleutelVerwijdert :HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Curre ntVersion\Uninstall\{C3F3165C-74D3-6FDB-3274-14FDA8698CFA}
Sleutel Verwijdert:HKLM\SOFTWARE\Wow6432Node\Microsoft\Win dows\CurrentVersion\Uninstall\uTorrentBar_NLToolba r
SleutelVerwijdert :HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
SleutelVerwijdert : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
SleutelVerwijdert : HKLM\SOFTWARE\Tarma Installer
Waarde Verwijdert: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser[{87775FDB-6972-41F9-AE51-8326E38CB206}]
Waarde Verwijdert: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks[{87775FDB-6972-41F9-AE51-8326E38CB206}]
Waarde Verwijdert: HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks[{87775FDB-6972-41F9-AE51-8326E38CB206}]
Waarde Verwijdert: HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar[{87775FDB-6972-41F9-AE51-8326E38CB206}]

***** [Browsers]*****

-\\ InternetExplorer v10.0.9200.16521

[OK] Het registerbevat geen enkele ongeoorloofde invoer.

-\\ Mozilla Firefox v19.0 (nl)

File : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\P rofiles\0g1e41es.default\prefs.js

Verwijdert :user_pref("aol_toolbar.default.homepage.check", false);
Verwijdert :user_pref("aol_toolbar.default.search.check", false);

Blijft voorlopig hetzelfde. Zou ik niet beter een abonnement nemen, misschien is dat de oorzaak van alles. Wat vond je van de uitslag : geen "rommel" op de pc ?

Zoals je ziet heeft AdwCleaner heel wat verwijdert die mede oorzaak kan/kon zijn. Ee aboonement zou zeker geen kwaad kunnen.

OK ik hou er alvast een "propere" pc aan over !!! Vriendelijk bedankt voor alle moeite Rosty.

Graag gedaan hoor!