Graag logje nalijken AUB-opgelost-

Spyware is software die in het geheim op je computer wordt geplaatst en die persoonlijke gegevens doorstuurt, reclame toont, enz. Stel hier vragen, leer hoe je ervan af kan komen en hoe het te voorkomen.

Rizze
Lid geworden op: 30 sep 2006, 18:41
Locatie: Leuven

12 jun 2013, 17:30

OP de computer van mijn zoon komt veel ongewenste reclame, daarom een logje voor nazicht.
Win 7 laptop medion

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 17:25:02, on 12/06/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)

FIREFOX: 21.0 (nl)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\Dwm.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSD.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Launch Manager\WButton.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\VOX\JamVOX\JVExec.exe
C:\Users\frank\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Users\frank\Downloads\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.aldi.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... SSPV=TB_C4
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [LMgrVolOSD] "C:\Program Files\Launch Manager\OSD.exe"
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = frank\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: JVExec.lnk = C:\Program Files\VOX\JamVOX\JVExec.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Download alles met Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download met Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Download selectie met Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video met Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 9962 bytes

dank bijvoorbaat.
Rizze
We willen allemaal graag oud worden, maar niemand is het graag!
948 Hewlett-Packard, Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz, 2594 MHz, AMD
Windows 10, NL, HDD:488 GB, C:\, NTFS, -151 MB RAM,
Firefox 88.0.1 (64 bits)
Omhoog

Rizze
Lid geworden op: 30 sep 2006, 18:41
Locatie: Leuven

12 jun 2013, 17:49

Windows was niet geupdate, dat heb ik ondertussen gedaan.
Rizze

Log na update
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 17:52:32, on 12/06/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)

FIREFOX: 21.0 (nl)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSD.exe
C:\Program Files\Launch Manager\WButton.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\VOX\JamVOX\JVExec.exe
C:\Users\frank\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Users\frank\Downloads\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.aldi.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... SSPV=TB_C4
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [LMgrVolOSD] "C:\Program Files\Launch Manager\OSD.exe"
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = frank\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: JVExec.lnk = C:\Program Files\VOX\JamVOX\JVExec.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Download alles met Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download met Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Download selectie met Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video met Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 9962 bytes
Laatst gewijzigd door Rizze op 12 jun 2013, 17:53, 1 keer totaal gewijzigd.
We willen allemaal graag oud worden, maar niemand is het graag!
948 Hewlett-Packard, Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz, 2594 MHz, AMD
Windows 10, NL, HDD:488 GB, C:\, NTFS, -151 MB RAM,
Firefox 88.0.1 (64 bits)
Omhoog

Rizze
Lid geworden op: 30 sep 2006, 18:41
Locatie: Leuven

12 jun 2013, 18:23

Virusscanner is MSE
Die Bing baar heb ik al via software gedéinstalleerd.


# AdwCleaner v2.303 - Verslag gemaakt op 12/06/2013 om 18:15:43
# Geactualiseerd op 08/06/2013 door Xplode
# Besturingssysteem : Windows 7 Home Premium Service Pack 1 (32 bits)
# Gebruiker : frank - PC1
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Users\frank\Downloads\adwcleaner.exe
# Optie [Zoeken]


***** [Diensten] *****


***** [Files / Mappen] *****

File Aanwezig : C:\END
File Aanwezig : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
File Aanwezig : C:\user.js
File Aanwezig : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\bProtector_extensions.rdf
File Aanwezig : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\searchplugins\Conduit.xml
File Aanwezig : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\searchplugins\mixidj.xml
Map Aanwezig : C:\Program Files\Conduit
Map Aanwezig : C:\ProgramData\Babylon
Map Aanwezig : C:\Users\frank\AppData\Local\Conduit
Map Aanwezig : C:\Users\frank\AppData\LocalLow\Conduit
Map Aanwezig : C:\Users\frank\AppData\LocalLow\PriceGong
Map Aanwezig : C:\Users\frank\AppData\Roaming\Babylon
Map Aanwezig : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\extensions\bbrs_002@blabbers.com
Map Aanwezig : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\extensions\ffxtlbr@babylon.com
Map Aanwezig : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\Smartbar

***** [Register] *****

Sleutel Aanwezig : HKCU\Software\522d9deb639be49
Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\PriceGong
Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\SmartBar
Sleutel Aanwezig : HKCU\Software\Blabbers
Sleutel Aanwezig : HKCU\Software\BrowserCompanion
Sleutel Aanwezig : HKCU\Software\Conduit
Sleutel Aanwezig : HKCU\Software\DataMngr
Sleutel Aanwezig : HKCU\Software\Headlight
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Sleutel Aanwezig : HKCU\Software\Softonic
Sleutel Aanwezig : HKLM\Software\Babylon
Sleutel Aanwezig : HKLM\Software\BabylonToolbar
Sleutel Aanwezig : HKLM\Software\BrowserCompanion
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Prod.cap
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Toolbar.CT2704262
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Toolbar.CT3282722
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Sleutel Aanwezig : HKLM\Software\Conduit
Sleutel Aanwezig : HKLM\Software\DataMngr
Sleutel Aanwezig : HKLM\SOFTWARE\Google\Chrome\Extensions\clbfjfbnelcflpgpklppgplejolacbej
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Sleutel Aanwezig : HKU\S-1-5-21-3246859801-1080566741-2466502175-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Sleutel Aanwezig : HKU\S-1-5-21-3246859801-1080566741-2466502175-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}

***** [Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&CUI=UN36210869652947521&UM=2&ctid=CT3282722&SSPV=TB_C4

-\\ Mozilla Firefox v21.0 (nl)

File : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\prefs.js

Aanwezig : user_pref("CT3282722.1000082.isPlayDisplay", "true");
Aanwezig : user_pref("CT3282722.1000082.state", "{\"state\":\"stopped\",\"text\":\"Classic R...\",\"description[...]
Aanwezig : user_pref("CT3282722.129258407936635717.isToggled_item0_12", "true");
Aanwezig : user_pref("CT3282722.3282722a130039643157408893000000paramsGK0.enc", "eyJ1cGRhdGVSZXFUaW1lIjoxMzY1Nz[...]
Aanwezig : user_pref("CT3282722.CT3282722ads1.enc", "JTdCJTIyYWRzJTIyJTNBJTVCJTdCJTIyYWlkJTIyJTNBJTIyNzkyNjklMj[...]
Aanwezig : user_pref("CT3282722.CT3282722current_term.enc", "");
Aanwezig : user_pref("CT3282722.CT3282722sdate.enc", "MTI=");
Aanwezig : user_pref("CT3282722.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Aanwezig : user_pref("CT3282722.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Aanwezig : user_pref("CT3282722.FF19Solved", "true");
Aanwezig : user_pref("CT3282722.FirstTime", "true");
Aanwezig : user_pref("CT3282722.FirstTimeFF3", "true");
Aanwezig : user_pref("CT3282722.PG_ENABLE", "dHJ1ZQ==");
Aanwezig : user_pref("CT3282722.PrintItGreenStatus.enc", "dHJ1ZQ==");
Aanwezig : user_pref("CT3282722.RSS_Pub_Config.enc", "eyJzZXR0aW5ncyI6eyJpY29uIjoiaHR0cDovL3N0b3JhZ2UuY29uZHVpd[...]
Aanwezig : user_pref("CT3282722.RSSapp3282722a130039643157408893000000embeddedVersion.enc", "Mi40LjA=");
Aanwezig : user_pref("CT3282722.RSSapp3282722a130039643157408893000000lastReportTime.enc", "MTM2NTc5MDU4MjcyNyA[...]
Aanwezig : user_pref("CT3282722.RSSapp3282722a130039643157408893000000newFeeds.enc", "bmV3RmVlZHM=");
Aanwezig : user_pref("CT3282722.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT328[...]
Aanwezig : user_pref("CT3282722.UserID", "UN23196932432917493");
Aanwezig : user_pref("CT3282722.addressBarTakeOverEnabledInHidden", "true");
Aanwezig : user_pref("CT3282722.autoDisableScopes", -1);
Aanwezig : user_pref("CT3282722.browser.search.defaultthis.engineName", "true");
Aanwezig : user_pref("CT3282722.defaultSearch", "true");
Aanwezig : user_pref("CT3282722.embeddedsData", "[{\"appId\":\"130039643153976796\",\"apiPermissions\":{\"cross[...]
Aanwezig : user_pref("CT3282722.enableAlerts", "true");
Aanwezig : user_pref("CT3282722.enableFix404ByUser", "FALSE");
Aanwezig : user_pref("CT3282722.enableSearchFromAddressBar", "true");
Aanwezig : user_pref("CT3282722.firstTimeDialogOpened", "true");
Aanwezig : user_pref("CT3282722.fixPageNotFoundError", "true");
Aanwezig : user_pref("CT3282722.fixPageNotFoundErrorByUser", "true");
Aanwezig : user_pref("CT3282722.fixPageNotFoundErrorInHidden", "true");
Aanwezig : user_pref("CT3282722.fixUrls", true);
Aanwezig : user_pref("CT3282722.hxxp___cdn_printitgreen_com.APP_WIN_FEATURES.enc", "cmVzaXphYmxlPW5vLGhzY3JvbGw[...]
Aanwezig : user_pref("CT3282722.installDate", "9/4/2013 18:58:32");
Aanwezig : user_pref("CT3282722.installId", "condui~1.exe");
Aanwezig : user_pref("CT3282722.installType", "conduitnsisintegration");
Aanwezig : user_pref("CT3282722.installUsage", "2013-04-09T19:59:47.123082+03:00");
Aanwezig : user_pref("CT3282722.installUsageEarly", "2013-04-09T19:59:03.1066119+03:00");
Aanwezig : user_pref("CT3282722.installerVersion", "1.3.7.3");
Aanwezig : user_pref("CT3282722.isCheckedStartAsHidden", true);
Aanwezig : user_pref("CT3282722.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Aanwezig : user_pref("CT3282722.isFirstTimeToolbarLoading", "false");
Aanwezig : user_pref("CT3282722.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Aanwezig : user_pref("CT3282722.keyword", "true");
Aanwezig : user_pref("CT3282722.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Aanwezig : user_pref("CT3282722.lastVersion", "10.15.310.2");
Aanwezig : user_pref("CT3282722.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
Aanwezig : user_pref("CT3282722.migrateAppsAndComponents", true);
Aanwezig : user_pref("CT3282722.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"\",\"[...]
Aanwezig : user_pref("CT3282722.openThankYouPage", "false");
Aanwezig : user_pref("CT3282722.openUninstallPage", "true");
Aanwezig : user_pref("CT3282722.price-gong.isManagedApp", "true");
Aanwezig : user_pref("CT3282722.revertSettingsEnabled", "FALSE");
Aanwezig : user_pref("CT3282722.search.searchAppId", "130039643153976796");
Aanwezig : user_pref("CT3282722.search.searchCount", "0");
Aanwezig : user_pref("CT3282722.searchFromAddressBarEnabledByUser", "true");
Aanwezig : user_pref("CT3282722.searchInNewTabEnabledByUser", "true");
Aanwezig : user_pref("CT3282722.searchInNewTabEnabledInHidden", "true");
Aanwezig : user_pref("CT3282722.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Aanwezig : user_pref("CT3282722.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Aanwezig : user_pref("CT3282722.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Aanwezig : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Aanwezig : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Aanwezig : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Aanwezig : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Aanwezig : user_pref("CT3282722.serviceLayer_services_app.twitter.user-cnet_lastUpdate", "1365782259715");
Aanwezig : user_pref("CT3282722.serviceLayer_services_app.twitter.user-cnnbrk_lastUpdate", "1365782259788");
Aanwezig : user_pref("CT3282722.serviceLayer_services_app.twitter.user-computeractive_lastUpdate", "13657822596[...]
Aanwezig : user_pref("CT3282722.serviceLayer_services_app.twitter.user-dailymirror_lastUpdate", "1365782259734"[...]
Aanwezig : user_pref("CT3282722.serviceLayer_services_app.twitter.user-google_lastUpdate", "1365782259664");
Aanwezig : user_pref("CT3282722.serviceLayer_services_app.twitter.user-techcrunch_lastUpdate", "1365782259768")[...]
Aanwezig : user_pref("CT3282722.serviceLayer_services_app.twitter.user-time_lastUpdate", "1365782260119");
Aanwezig : user_pref("CT3282722.serviceLayer_services_app.twitter.user-wired_lastUpdate", "1365782260101");
Aanwezig : user_pref("CT3282722.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1365526747004");
Aanwezig : user_pref("CT3282722.serviceLayer_services_appsMetadata_lastUpdate", "1365713217578");
Aanwezig : user_pref("CT3282722.serviceLayer_services_getTwitterExtraInfo_lastUpdate", "1365782263331");
Aanwezig : user_pref("CT3282722.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1365526746636");
Aanwezig : user_pref("CT3282722.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1365526745[...]
Aanwezig : user_pref("CT3282722.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1365526789628")[...]
Aanwezig : user_pref("CT3282722.serviceLayer_services_location_lastUpdate", "1365713218105");
Aanwezig : user_pref("CT3282722.serviceLayer_services_login_10.15.310.2_lastUpdate", "1365782255778");
Aanwezig : user_pref("CT3282722.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1365526746701");
Aanwezig : user_pref("CT3282722.serviceLayer_services_searchAPI_lastUpdate", "1365713218171");
Aanwezig : user_pref("CT3282722.serviceLayer_services_serviceMap_lastUpdate", "1365713217346");
Aanwezig : user_pref("CT3282722.serviceLayer_services_toolbarContextMenu_lastUpdate", "1365526746573");
Aanwezig : user_pref("CT3282722.serviceLayer_services_toolbarSettings_lastUpdate", "1365782256133");
Aanwezig : user_pref("CT3282722.serviceLayer_services_translation_lastUpdate", "1365713217519");
Aanwezig : user_pref("CT3282722.settingsINI", true);
Aanwezig : user_pref("CT3282722.shouldFirstTimeDialog", "true");
Aanwezig : user_pref("CT3282722.showToolbarPermission", "false");
Aanwezig : user_pref("CT3282722.smartbar.CTID", "CT3282722");
Aanwezig : user_pref("CT3282722.smartbar.Uninstall", "0");
Aanwezig : user_pref("CT3282722.smartbar.homepage", true);
Aanwezig : user_pref("CT3282722.smartbar.toolbarName", "FreeOnlineRadioPlayerRecorder V1 ");
Aanwezig : user_pref("CT3282722.startPage", "true");
Aanwezig : user_pref("CT3282722.toolbarBornServerTime", "9-4-2013");
Aanwezig : user_pref("CT3282722.toolbarCurrentServerTime", "12-4-2013");
Aanwezig : user_pref("CT3282722.toolbarDisabled", "true");
Aanwezig : user_pref("CT3282722.toolbarLoginClientTime", "Tue Apr 09 2013 18:59:49 GMT+0200");
Aanwezig : user_pref("CT3282722.url_history0001.enc", "aHR0cDovL3d3dy4yZGVoYW5kcy5iZS9rZXVrZW4vZWV0a2FtZXIta2V1[...]
Aanwezig : user_pref("CT3282722_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Aanwezig : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3282722&CUI=UN23196932[...]
Aanwezig : user_pref("Smartbar.ConduitSearchEngineList", "");
Aanwezig : user_pref("Smartbar.ConduitSearchUrlList", "");
Aanwezig : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://www.bing.com/search?FORM=UP22DF&PC=UP22&d[...]
Aanwezig : user_pref("Smartbar.keywordURLSelectedCTID", "CT3282722");
Aanwezig : user_pref("avg.install.userHPSettings", "hxxp://mixidj.delta-search.com/?affID=121124&babsrc=HP_ss&m[...]
Aanwezig : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Aanwezig : user_pref("browser.search.defaultthis.engineName", "FreeOnlineRadioPlayerRecorder V1 Customized Web [...]
Aanwezig : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&CUI[...]
Aanwezig : user_pref("extensions.BabylonToolbar.admin", false);
Aanwezig : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Aanwezig : user_pref("extensions.BabylonToolbar.babExt", "");
Aanwezig : user_pref("extensions.BabylonToolbar.babTrack", "affID=101241");
Aanwezig : user_pref("extensions.BabylonToolbar.bbDpng", 8);
Aanwezig : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Aanwezig : user_pref("extensions.BabylonToolbar.dfltSrch", true);
Aanwezig : user_pref("extensions.BabylonToolbar.hmpg", true);
Aanwezig : user_pref("extensions.BabylonToolbar.id", "947725b800000000000074f06d0b35ee");
Aanwezig : user_pref("extensions.BabylonToolbar.instlDay", "15383");
Aanwezig : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Aanwezig : user_pref("extensions.BabylonToolbar.lastDP", 8);
Aanwezig : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1721:31:15");
Aanwezig : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "3.6");
Aanwezig : user_pref("extensions.BabylonToolbar.newTab", false);
Aanwezig : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://mixidj.delta-search.com/?affID=121124&babsr[...]
Aanwezig : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Aanwezig : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Aanwezig : user_pref("extensions.BabylonToolbar.propectorlck", 82998021);
Aanwezig : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Aanwezig : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Aanwezig : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Aanwezig : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Aanwezig : user_pref("extensions.BabylonToolbar.smplGrp", "none");
Aanwezig : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Aanwezig : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Aanwezig : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Aanwezig : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1721:31:15");
Aanwezig : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Aanwezig : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Aanwezig : user_pref("extensions.BabylonToolbar_i.babExt", "");
Aanwezig : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=101241");
Aanwezig : user_pref("extensions.BabylonToolbar_i.hardId", "947725b800000000000074f06d0b35ee");
Aanwezig : user_pref("extensions.BabylonToolbar_i.id", "947725b800000000000074f06d0b35ee");
Aanwezig : user_pref("extensions.BabylonToolbar_i.instlDay", "15383");
Aanwezig : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Aanwezig : user_pref("extensions.BabylonToolbar_i.newTab", false);
Aanwezig : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Aanwezig : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Aanwezig : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Aanwezig : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Aanwezig : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Aanwezig : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Aanwezig : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1721:31:15");
Aanwezig : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Aanwezig : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&SearchSource=2&CU[...]
Aanwezig : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3282722&octid=CT3282722[...]
Aanwezig : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Aanwezig : user_pref("smartbar.machineId", "CS+8O/VCQG26QG+TOJ5DX9YYWIJJ8J+2I4XCRA//XKUJJW+IT731ABDWOPWIUCFCSW8[...]
Aanwezig : user_pref("smartbar.originalHomepage", "hxxp://mixidj.delta-search.com/?affID=121124&babsrc=HP_ss&mn[...]
Aanwezig : user_pref("smartbar.originalSearchAddressUrl", "hxxp://www.bing.com/search?FORM=UP22DF&PC=UP22&dt=03[...]
Aanwezig : user_pref("smartbar.originalSearchEngine", "Mixi.DJ Search");

*************************

AdwCleaner[R1].txt - [19409 octets] - [12/06/2013 18:15:43]

########## EOF - C:\AdwCleaner[R1].txt - [19470 octets] ##########


Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 18:19:35, on 12/06/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)

FIREFOX: 21.0 (nl)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSD.exe
C:\Program Files\Launch Manager\WButton.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\VOX\JamVOX\JVExec.exe
C:\Users\frank\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Users\frank\Downloads\adwcleaner.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\system32\prevhost.exe
C:\Program Files\Windows Media Player\wmprph.exe
C:\Users\frank\Downloads\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.aldi.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... SSPV=TB_C4
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [LMgrVolOSD] "C:\Program Files\Launch Manager\OSD.exe"
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = frank\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: JVExec.lnk = C:\Program Files\VOX\JamVOX\JVExec.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Download alles met Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download met Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Download selectie met Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video met Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 9819 bytes
We willen allemaal graag oud worden, maar niemand is het graag!
948 Hewlett-Packard, Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz, 2594 MHz, AMD
Windows 10, NL, HDD:488 GB, C:\, NTFS, -151 MB RAM,
Firefox 88.0.1 (64 bits)
Omhoog

Rizze
Lid geworden op: 30 sep 2006, 18:41
Locatie: Leuven

12 jun 2013, 19:18

# AdwCleaner v2.303 - Verslag gemaakt op 12/06/2013 om 19:12:14
# Geactualiseerd op 08/06/2013 door Xplode
# Besturingssysteem : Windows 7 Home Premium Service Pack 1 (32 bits)
# Gebruiker : frank - PC1
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Users\frank\Downloads\adwcleaner.exe
# Optie [Verwijderen]


***** [Diensten] *****


***** [Files / Mappen] *****

File Verwijderd : C:\END
File Verwijderd : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
File Verwijderd : C:\user.js
File Verwijderd : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\bProtector_extensions.rdf
File Verwijderd : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\searchplugins\Conduit.xml
File Verwijderd : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\searchplugins\mixidj.xml
Map Verwijderd : C:\Program Files\Conduit
Map Verwijderd : C:\ProgramData\Babylon
Map Verwijderd : C:\Users\frank\AppData\Local\Conduit
Map Verwijderd : C:\Users\frank\AppData\LocalLow\Conduit
Map Verwijderd : C:\Users\frank\AppData\LocalLow\PriceGong
Map Verwijderd : C:\Users\frank\AppData\Roaming\Babylon
Map Verwijderd : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\extensions\bbrs_002@blabbers.com
Map Verwijderd : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\Smartbar

***** [Register] *****

Sleutel Verwijderd : HKCU\Software\522d9deb639be49
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\PriceGong
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\SmartBar
Sleutel Verwijderd : HKCU\Software\Blabbers
Sleutel Verwijderd : HKCU\Software\BrowserCompanion
Sleutel Verwijderd : HKCU\Software\Conduit
Sleutel Verwijderd : HKCU\Software\DataMngr
Sleutel Verwijderd : HKCU\Software\Headlight
Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Sleutel Verwijderd : HKCU\Software\Softonic
Sleutel Verwijderd : HKLM\Software\Babylon
Sleutel Verwijderd : HKLM\Software\BabylonToolbar
Sleutel Verwijderd : HKLM\Software\BrowserCompanion
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Prod.cap
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT2704262
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT3282722
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Sleutel Verwijderd : HKLM\Software\Conduit
Sleutel Verwijderd : HKLM\Software\DataMngr
Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\clbfjfbnelcflpgpklppgplejolacbej
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS

***** [Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

Vervangen : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&CUI=UN36210869652947521&UM=2&ctid=CT3282722&SSPV=TB_C4 --> hxxp://www.google.com

-\\ Mozilla Firefox v21.0 (nl)

File : C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\prefs.js

C:\Users\frank\AppData\Roaming\Mozilla\Firefox\Profiles\id6znm9k.default\user.js ... Verwijderd !

Verwijderd : user_pref("CT3282722.1000082.isPlayDisplay", "true");
Verwijderd : user_pref("CT3282722.1000082.state", "{\"state\":\"stopped\",\"text\":\"Classic R...\",\"description[...]
Verwijderd : user_pref("CT3282722.129258407936635717.isToggled_item0_12", "true");
Verwijderd : user_pref("CT3282722.3282722a130039643157408893000000paramsGK0.enc", "eyJ1cGRhdGVSZXFUaW1lIjoxMzY1Nz[...]
Verwijderd : user_pref("CT3282722.CT3282722ads1.enc", "JTdCJTIyYWRzJTIyJTNBJTVCJTdCJTIyYWlkJTIyJTNBJTIyNzkyNjklMj[...]
Verwijderd : user_pref("CT3282722.CT3282722current_term.enc", "");
Verwijderd : user_pref("CT3282722.CT3282722sdate.enc", "MTI=");
Verwijderd : user_pref("CT3282722.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Verwijderd : user_pref("CT3282722.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Verwijderd : user_pref("CT3282722.FF19Solved", "true");
Verwijderd : user_pref("CT3282722.FirstTime", "true");
Verwijderd : user_pref("CT3282722.FirstTimeFF3", "true");
Verwijderd : user_pref("CT3282722.PG_ENABLE", "dHJ1ZQ==");
Verwijderd : user_pref("CT3282722.PrintItGreenStatus.enc", "dHJ1ZQ==");
Verwijderd : user_pref("CT3282722.RSS_Pub_Config.enc", "eyJzZXR0aW5ncyI6eyJpY29uIjoiaHR0cDovL3N0b3JhZ2UuY29uZHVpd[...]
Verwijderd : user_pref("CT3282722.RSSapp3282722a130039643157408893000000embeddedVersion.enc", "Mi40LjA=");
Verwijderd : user_pref("CT3282722.RSSapp3282722a130039643157408893000000lastReportTime.enc", "MTM2NTc5MDU4MjcyNyA[...]
Verwijderd : user_pref("CT3282722.RSSapp3282722a130039643157408893000000newFeeds.enc", "bmV3RmVlZHM=");
Verwijderd : user_pref("CT3282722.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT328[...]
Verwijderd : user_pref("CT3282722.UserID", "UN23196932432917493");
Verwijderd : user_pref("CT3282722.addressBarTakeOverEnabledInHidden", "true");
Verwijderd : user_pref("CT3282722.autoDisableScopes", -1);
Verwijderd : user_pref("CT3282722.browser.search.defaultthis.engineName", "true");
Verwijderd : user_pref("CT3282722.defaultSearch", "true");
Verwijderd : user_pref("CT3282722.embeddedsData", "[{\"appId\":\"130039643153976796\",\"apiPermissions\":{\"cross[...]
Verwijderd : user_pref("CT3282722.enableAlerts", "true");
Verwijderd : user_pref("CT3282722.enableFix404ByUser", "FALSE");
Verwijderd : user_pref("CT3282722.enableSearchFromAddressBar", "true");
Verwijderd : user_pref("CT3282722.firstTimeDialogOpened", "true");
Verwijderd : user_pref("CT3282722.fixPageNotFoundError", "true");
Verwijderd : user_pref("CT3282722.fixPageNotFoundErrorByUser", "true");
Verwijderd : user_pref("CT3282722.fixPageNotFoundErrorInHidden", "true");
Verwijderd : user_pref("CT3282722.fixUrls", true);
Verwijderd : user_pref("CT3282722.hxxp___cdn_printitgreen_com.APP_WIN_FEATURES.enc", "cmVzaXphYmxlPW5vLGhzY3JvbGw[...]
Verwijderd : user_pref("CT3282722.installDate", "9/4/2013 18:58:32");
Verwijderd : user_pref("CT3282722.installId", "condui~1.exe");
Verwijderd : user_pref("CT3282722.installType", "conduitnsisintegration");
Verwijderd : user_pref("CT3282722.installUsage", "2013-04-09T19:59:47.123082+03:00");
Verwijderd : user_pref("CT3282722.installUsageEarly", "2013-04-09T19:59:03.1066119+03:00");
Verwijderd : user_pref("CT3282722.installerVersion", "1.3.7.3");
Verwijderd : user_pref("CT3282722.isCheckedStartAsHidden", true);
Verwijderd : user_pref("CT3282722.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Verwijderd : user_pref("CT3282722.isFirstTimeToolbarLoading", "false");
Verwijderd : user_pref("CT3282722.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Verwijderd : user_pref("CT3282722.keyword", "true");
Verwijderd : user_pref("CT3282722.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Verwijderd : user_pref("CT3282722.lastVersion", "10.15.310.2");
Verwijderd : user_pref("CT3282722.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
Verwijderd : user_pref("CT3282722.migrateAppsAndComponents", true);
Verwijderd : user_pref("CT3282722.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"\",\"[...]
Verwijderd : user_pref("CT3282722.openThankYouPage", "false");
Verwijderd : user_pref("CT3282722.openUninstallPage", "true");
Verwijderd : user_pref("CT3282722.price-gong.isManagedApp", "true");
Verwijderd : user_pref("CT3282722.revertSettingsEnabled", "FALSE");
Verwijderd : user_pref("CT3282722.search.searchAppId", "130039643153976796");
Verwijderd : user_pref("CT3282722.search.searchCount", "0");
Verwijderd : user_pref("CT3282722.searchFromAddressBarEnabledByUser", "true");
Verwijderd : user_pref("CT3282722.searchInNewTabEnabledByUser", "true");
Verwijderd : user_pref("CT3282722.searchInNewTabEnabledInHidden", "true");
Verwijderd : user_pref("CT3282722.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Verwijderd : user_pref("CT3282722.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Verwijderd : user_pref("CT3282722.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Verwijderd : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Verwijderd : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Verwijderd : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Verwijderd : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Verwijderd : user_pref("CT3282722.serviceLayer_services_app.twitter.user-cnet_lastUpdate", "1365782259715");
Verwijderd : user_pref("CT3282722.serviceLayer_services_app.twitter.user-cnnbrk_lastUpdate", "1365782259788");
Verwijderd : user_pref("CT3282722.serviceLayer_services_app.twitter.user-computeractive_lastUpdate", "13657822596[...]
Verwijderd : user_pref("CT3282722.serviceLayer_services_app.twitter.user-dailymirror_lastUpdate", "1365782259734"[...]
Verwijderd : user_pref("CT3282722.serviceLayer_services_app.twitter.user-google_lastUpdate", "1365782259664");
Verwijderd : user_pref("CT3282722.serviceLayer_services_app.twitter.user-techcrunch_lastUpdate", "1365782259768")[...]
Verwijderd : user_pref("CT3282722.serviceLayer_services_app.twitter.user-time_lastUpdate", "1365782260119");
Verwijderd : user_pref("CT3282722.serviceLayer_services_app.twitter.user-wired_lastUpdate", "1365782260101");
Verwijderd : user_pref("CT3282722.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1365526747004");
Verwijderd : user_pref("CT3282722.serviceLayer_services_appsMetadata_lastUpdate", "1365713217578");
Verwijderd : user_pref("CT3282722.serviceLayer_services_getTwitterExtraInfo_lastUpdate", "1365782263331");
Verwijderd : user_pref("CT3282722.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1365526746636");
Verwijderd : user_pref("CT3282722.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1365526745[...]
Verwijderd : user_pref("CT3282722.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1365526789628")[...]
Verwijderd : user_pref("CT3282722.serviceLayer_services_location_lastUpdate", "1365713218105");
Verwijderd : user_pref("CT3282722.serviceLayer_services_login_10.15.310.2_lastUpdate", "1365782255778");
Verwijderd : user_pref("CT3282722.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1365526746701");
Verwijderd : user_pref("CT3282722.serviceLayer_services_searchAPI_lastUpdate", "1365713218171");
Verwijderd : user_pref("CT3282722.serviceLayer_services_serviceMap_lastUpdate", "1365713217346");
Verwijderd : user_pref("CT3282722.serviceLayer_services_toolbarContextMenu_lastUpdate", "1365526746573");
Verwijderd : user_pref("CT3282722.serviceLayer_services_toolbarSettings_lastUpdate", "1365782256133");
Verwijderd : user_pref("CT3282722.serviceLayer_services_translation_lastUpdate", "1365713217519");
Verwijderd : user_pref("CT3282722.settingsINI", true);
Verwijderd : user_pref("CT3282722.shouldFirstTimeDialog", "true");
Verwijderd : user_pref("CT3282722.showToolbarPermission", "false");
Verwijderd : user_pref("CT3282722.smartbar.CTID", "CT3282722");
Verwijderd : user_pref("CT3282722.smartbar.Uninstall", "0");
Verwijderd : user_pref("CT3282722.smartbar.homepage", true);
Verwijderd : user_pref("CT3282722.smartbar.toolbarName", "FreeOnlineRadioPlayerRecorder V1 ");
Verwijderd : user_pref("CT3282722.startPage", "true");
Verwijderd : user_pref("CT3282722.toolbarBornServerTime", "9-4-2013");
Verwijderd : user_pref("CT3282722.toolbarCurrentServerTime", "12-4-2013");
Verwijderd : user_pref("CT3282722.toolbarDisabled", "true");
Verwijderd : user_pref("CT3282722.toolbarLoginClientTime", "Tue Apr 09 2013 18:59:49 GMT+0200");
Verwijderd : user_pref("CT3282722.url_history0001.enc", "aHR0cDovL3d3dy4yZGVoYW5kcy5iZS9rZXVrZW4vZWV0a2FtZXIta2V1[...]
Verwijderd : user_pref("CT3282722_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Verwijderd : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3282722&CUI=UN23196932[...]
Verwijderd : user_pref("Smartbar.ConduitSearchEngineList", "");
Verwijderd : user_pref("Smartbar.ConduitSearchUrlList", "");
Verwijderd : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://www.bing.com/search?FORM=UP22DF&PC=UP22&d[...]
Verwijderd : user_pref("Smartbar.keywordURLSelectedCTID", "CT3282722");
Verwijderd : user_pref("avg.install.userHPSettings", "hxxp://mixidj.delta-search.com/?affID=121124&babsrc=HP_ss&m[...]
Verwijderd : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Verwijderd : user_pref("browser.search.defaultthis.engineName", "FreeOnlineRadioPlayerRecorder V1 Customized Web [...]
Verwijderd : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&CUI[...]
Verwijderd : user_pref("extensions.BabylonToolbar.admin", false);
Verwijderd : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Verwijderd : user_pref("extensions.BabylonToolbar.babExt", "");
Verwijderd : user_pref("extensions.BabylonToolbar.babTrack", "affID=101241");
Verwijderd : user_pref("extensions.BabylonToolbar.bbDpng", 8);
Verwijderd : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Verwijderd : user_pref("extensions.BabylonToolbar.dfltSrch", true);
Verwijderd : user_pref("extensions.BabylonToolbar.hmpg", true);
Verwijderd : user_pref("extensions.BabylonToolbar.id", "947725b800000000000074f06d0b35ee");
Verwijderd : user_pref("extensions.BabylonToolbar.instlDay", "15383");
Verwijderd : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Verwijderd : user_pref("extensions.BabylonToolbar.lastDP", 8);
Verwijderd : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1721:31:15");
Verwijderd : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "3.6");
Verwijderd : user_pref("extensions.BabylonToolbar.newTab", false);
Verwijderd : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://mixidj.delta-search.com/?affID=121124&babsr[...]
Verwijderd : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Verwijderd : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Verwijderd : user_pref("extensions.BabylonToolbar.propectorlck", 82998021);
Verwijderd : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Verwijderd : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Verwijderd : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Verwijderd : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Verwijderd : user_pref("extensions.BabylonToolbar.smplGrp", "none");
Verwijderd : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Verwijderd : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Verwijderd : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Verwijderd : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1721:31:15");
Verwijderd : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Verwijderd : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Verwijderd : user_pref("extensions.BabylonToolbar_i.babExt", "");
Verwijderd : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=101241");
Verwijderd : user_pref("extensions.BabylonToolbar_i.hardId", "947725b800000000000074f06d0b35ee");
Verwijderd : user_pref("extensions.BabylonToolbar_i.id", "947725b800000000000074f06d0b35ee");
Verwijderd : user_pref("extensions.BabylonToolbar_i.instlDay", "15383");
Verwijderd : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Verwijderd : user_pref("extensions.BabylonToolbar_i.newTab", false);
Verwijderd : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Verwijderd : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Verwijderd : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Verwijderd : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Verwijderd : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Verwijderd : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Verwijderd : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1721:31:15");
Verwijderd : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Verwijderd : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&SearchSource=2&CU[...]
Verwijderd : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3282722&octid=CT3282722[...]
Verwijderd : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Verwijderd : user_pref("smartbar.machineId", "CS+8O/VCQG26QG+TOJ5DX9YYWIJJ8J+2I4XCRA//XKUJJW+IT731ABDWOPWIUCFCSW8[...]
Verwijderd : user_pref("smartbar.originalHomepage", "hxxp://mixidj.delta-search.com/?affID=121124&babsrc=HP_ss&mn[...]
Verwijderd : user_pref("smartbar.originalSearchAddressUrl", "hxxp://www.bing.com/search?FORM=UP22DF&PC=UP22&dt=03[...]
Verwijderd : user_pref("smartbar.originalSearchEngine", "Mixi.DJ Search");

*************************

AdwCleaner[R1].txt - [19540 octets] - [12/06/2013 18:15:43]
AdwCleaner[S1].txt - [19620 octets] - [12/06/2013 19:12:15]

########## EOF - C:\AdwCleaner[S1].txt - [19681 octets] ##########
We willen allemaal graag oud worden, maar niemand is het graag!
948 Hewlett-Packard, Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz, 2594 MHz, AMD
Windows 10, NL, HDD:488 GB, C:\, NTFS, -151 MB RAM,
Firefox 88.0.1 (64 bits)
Omhoog

Rizze
Lid geworden op: 30 sep 2006, 18:41
Locatie: Leuven

12 jun 2013, 23:26

Bij het downloaden van ADW had ik niet de keuze van uitvoeren daarom heb ik het eerst opgeslagen en daarna terug verwijderd.
Hier het nieuwe logje
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:24:15, on 12/06/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)

FIREFOX: 21.0 (nl)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSD.exe
C:\Program Files\Launch Manager\WButton.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\VOX\JamVOX\JVExec.exe
C:\Users\frank\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\frank\Downloads\HijackThis.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.aldi.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [LMgrVolOSD] "C:\Program Files\Launch Manager\OSD.exe"
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = frank\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: JVExec.lnk = C:\Program Files\VOX\JamVOX\JVExec.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Download alles met Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download met Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Download selectie met Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video met Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 9522 bytes
We willen allemaal graag oud worden, maar niemand is het graag!
948 Hewlett-Packard, Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz, 2594 MHz, AMD
Windows 10, NL, HDD:488 GB, C:\, NTFS, -151 MB RAM,
Firefox 88.0.1 (64 bits)
Omhoog

Rizze
Lid geworden op: 30 sep 2006, 18:41
Locatie: Leuven

14 jun 2013, 20:24

Mag/kan ik deze 4 lijnen fixen?

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing)
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)

grtz

Rizze
We willen allemaal graag oud worden, maar niemand is het graag!
948 Hewlett-Packard, Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz, 2594 MHz, AMD
Windows 10, NL, HDD:488 GB, C:\, NTFS, -151 MB RAM,
Firefox 88.0.1 (64 bits)
Omhoog

Rizze
Lid geworden op: 30 sep 2006, 18:41
Locatie: Leuven

15 jun 2013, 17:03

Ziezo, de lijnen fefixt en Raeder geupdatet.

Hartelijk bedank voor de geboden hulp iceman.
Nu is mijn zoon zijn laptop verlost van alle flikkerende schermen.

groeten

Rizze
We willen allemaal graag oud worden, maar niemand is het graag!
948 Hewlett-Packard, Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz, 2594 MHz, AMD
Windows 10, NL, HDD:488 GB, C:\, NTFS, -151 MB RAM,
Firefox 88.0.1 (64 bits)
Omhoog

pcekspeer
Lid geworden op: 06 aug 2010, 12:44
Locatie: 3530 houthalen limburg

16 jun 2013, 23:26

Rizze

Hier kan je zoon eens testen of Java flash de laatste versie gebruikt :
http://www.java.com/nl/download/testjava.jsp
:wink:
PC Win7 Prem SP1/64bit/RAM4GB/HD1000GB/IE11//FFox
63.0.3 64bit /Chrome64bit//MSE+Win firewall/WLMail/Gmail/thunderbird/OpenOffice4.1.5/BSA+Micr.SafetyScan+MSRT.-Web Of Trust (WOT)-Spywarebl 5.5--Superantispyw/MBAM/AdwCleaner/JRT/Win10/Ixquick/
Omhoog

Rizze
Lid geworden op: 30 sep 2006, 18:41
Locatie: Leuven

17 jun 2013, 09:38

Bedankt pcekspeer, is ondertussen gedaan.

Afbeelding

Rizze
We willen allemaal graag oud worden, maar niemand is het graag!
948 Hewlett-Packard, Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz, 2594 MHz, AMD
Windows 10, NL, HDD:488 GB, C:\, NTFS, -151 MB RAM,
Firefox 88.0.1 (64 bits)
Omhoog

Terug naar “Computer - Spyware”