Gesloten
1
Hallo,

Sinds enkele dagen heeft mijn laptop last van Websearch.helpmefindyour.info. De startpagina werd ineens aangepast en sindsdien heb ik veel last van reclame op websites waar dat voorheen niet het geval was. Willekeurige woorden in een tekst veranderen in URL's waarachter dan weer reclame zit. Ik heb diverse malen Malwarebytes, HitmanPro en Spybot gedraaid zonder resultaat.

De meest recente RSIT, Hitman en MBAM logs zijn toegevoegd aan deze post.


Bij voorbaat dank!
Als gast kunt u geen bijlagen bekijken. Registreer via deze link een (gratis) account om bijlagen te kunnen bekijken.
2
Goedemiddag,

Download zoek.exe naar het bureaublad.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.

    Code: Selecteer alles

    firefoxlook;
    chromelook;
    filesrcm;
    autoclean;
    
  • Klik daarna op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.
Volg me op Twitter: @bartblaze
Mijn persoonlijke blog: Blaze's Security Blog

Bent u blij met de geboden hulp? klik hier voor een vrijblijvende donatie Afbeelding
3
Alstublieft.


Zoek.exe Version 4.0.0.2 Updated 06-May-2013
Tool run by Frank on di 07-05-2013 at 16:46:34,52.
Microsoft Windows 7 Ultimate 6.1.7600 x64
Running in: Normal Mode Internet Access Detected

==== Older Logs ======================

C:\zoek-results07-05-2013-1614.log 655 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Files \ Folders ======================

"C:\END" deleted
"C:\Users\Frank\AppData\Roaming\Deak\qibe.edh" deleted
"C:\Users\Frank\AppData\Roaming\Esaq\uxiw.iri" deleted
"C:\Users\Frank\AppData\Roaming\Evan\loiq.dog" deleted
"C:\Users\Frank\AppData\Roaming\Syxu\poyd.cat" deleted
"C:\Users\Frank\AppData\Roaming\Wiyl\omcao.gym" deleted
"C:\Users\Frank\AppData\Roaming\Ymaz\noanv.upe" deleted
"C:\Users\Frank\AppData\Roaming\Ymip\noxa.egl" deleted
"C:\Users\Frank\AppData\Roaming\Yxza\ikas.ovp" deleted
"C:\Users\Frank\AppData\Roaming\Ivisc\zuwe.cal" deleted
"C:\Users\Frank\AppData\Roaming\Suage\ewapo.haf" deleted
"C:\Users\Frank\AppData\Roaming\Kyitwi\laxe.xoq" deleted
"C:\Users\Frank\AppData\Roaming\Yvupib\ryesa.goa" deleted
"C:\Users\Frank\AppData\Roaming\Deak" deleted
"C:\Users\Frank\AppData\Roaming\Diox" deleted
"C:\Users\Frank\AppData\Roaming\Esaq" deleted
"C:\Users\Frank\AppData\Roaming\Evan" deleted
"C:\Users\Frank\AppData\Roaming\Syxu" deleted
"C:\Users\Frank\AppData\Roaming\Wiyl" deleted
"C:\Users\Frank\AppData\Roaming\Ycsu" deleted
"C:\Users\Frank\AppData\Roaming\Ymaz" deleted
"C:\Users\Frank\AppData\Roaming\Ymip" deleted
"C:\Users\Frank\AppData\Roaming\Yxza" deleted
"C:\Users\Frank\AppData\Roaming\Ivisc" deleted
"C:\Users\Frank\AppData\Roaming\Suage" deleted
"C:\Users\Frank\AppData\Roaming\Etcagu" deleted
"C:\Users\Frank\AppData\Roaming\Kyitwi" deleted
"C:\Users\Frank\AppData\Roaming\Yvupib" deleted
"C:\Programdata\Windows" deleted
"C:\ProgramData\BBrowse2saovve" deleted
"C:\ProgramData\Browse2seavei" deleted
"C:\Program Files (x86)\BrowseToSave" deleted
"C:\Temporary" deleted
"C:\ProgramData\InstallMate" deleted
"C:\Users\Frank\AppData\Local\adawarebp" deleted
"C:\Users\Frank\AppData\Local\PackageAware" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Frank\AppData\Local\Temp ====
2013-05-07 13:13:24 6C629BBE45ACB6F38CFA4116FCA670C8 45584512 ----a-w- C:\Users\Frank\AppData\Local\Temp\{3F470DC3-9B77-4ABD-9C86-5FBB514F47F6}_emergency.exe
====== C:\Windows\SysWOW64 =====
2013-05-07 13:15:03 9F08AD8FEC91FF69695D1410B67CE03B 3489320 ----a-w- C:\Windows\SysWOW64\m2network64helper.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2013-05-07 13:15:03 8C9230C59F0BE3A726031D6BB13509BF 278528 ----a-w- C:\Windows\Sysnative\WiFiMan.dll
2013-04-29 12:18:33 6F8EB83CC4767A7252A7594B092FA598 2332 ----a-w- C:\Windows\Sysnative\.crusader
====== C:\Windows\Sysnative\drivers =====
2013-05-07 14:45:32 DD9C88B116408B30F855A76E09DD2962 32152 ----a-w- C:\Windows\Sysnative\drivers\hitmanpro37.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-05-07 13:32:17 -------- d-----w- C:\Program Files\trend micro
2013-04-29 12:21:38 -------- d-----w- C:\Program Files\HitmanPro
======= C:\Program Files (x86) =====
2013-04-29 08:08:54 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
======= C: =====
====== C:\Users\Frank\AppData\Roaming ======
2013-05-07 13:14:26 -------- d-----w- C:\users\Frank\AppData\Local\TempKAUpdate[20130507151426]
2013-05-07 13:13:56 -------- d-----w- C:\users\Frank\AppData\Local\kpn
2013-04-23 15:10:08 -------- d-----w- C:\users\Frank\AppData\Roaming\SendSpace
====== C:\Users\Frank ======
2013-05-07 13:15:17 -------- dc-h--w- C:\ProgramData\{6EBCE946-F3F0-4347-9E0E-DAE25E6F34D3}
2013-05-07 09:35:56 -------- dc-h--w- C:\ProgramData\{8F7DE6E7-8387-49D7-8CB7-D75B3E844EE2}
2013-05-07 09:35:54 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KPN
2013-04-29 12:21:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2013-04-29 08:08:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2013-04-29 08:08:54 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2013-04-16 07:55:28 -------- d-----w- C:\ProgramData\TEMP

====== C: exe-files ==
2013-05-07 13:32:19 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Frank.exe
2013-05-07 13:31:56 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Frank\Downloads\RSITx64.exe
2013-05-07 13:15:17 00FDCD5375DA4C49EF2DC8CF01EFE82E 3911208 -c--a-w- C:\ProgramData\{6EBCE946-F3F0-4347-9E0E-DAE25E6F34D3}\KPN Assistent.exe
2013-05-07 13:15:12 E4BC542FF24623169822DD3CD66A0018 46528 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\DeviceInst.exe
2013-05-07 13:15:12 E4BC542FF24623169822DD3CD66A0018 46528 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\DeviceInst.exe
2013-05-07 13:15:12 A79CADEA6287A6EE6359F532432107DB 679904 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\DPInst.exe
2013-05-07 13:15:12 5899DF23A4ED3875EA6CA7AAF90283F6 505344 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG122n\DevInst.exe
2013-05-07 13:15:12 4B248EAE4B5D206D111B71B982EA8A2E 504832 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\DevInst.exe
2013-05-07 13:15:12 4B248EAE4B5D206D111B71B982EA8A2E 504832 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\DevInst.exe
2013-05-07 13:15:11 E4BC542FF24623169822DD3CD66A0018 46528 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\DeviceInst.exe
2013-05-07 13:15:11 4B248EAE4B5D206D111B71B982EA8A2E 504832 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\DevInst.exe
2013-05-07 13:15:10 E4BC542FF24623169822DD3CD66A0018 46528 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\DeviceInst.exe
2013-05-07 13:15:10 A79CADEA6287A6EE6359F532432107DB 679904 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\DPInst.exe
2013-05-07 13:15:10 5899DF23A4ED3875EA6CA7AAF90283F6 505344 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\TG122n\DevInst.exe
2013-05-07 13:15:10 4B248EAE4B5D206D111B71B982EA8A2E 504832 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\DevInst.exe
2013-05-07 13:15:10 43276FCED673D6E582473B8F3F6A7278 385110 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\PRISMSVR.exe
2013-05-07 13:15:09 E4BC542FF24623169822DD3CD66A0018 46528 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\DeviceInst.exe
2013-05-07 13:15:09 4B248EAE4B5D206D111B71B982EA8A2E 504832 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\DevInst.exe
2013-05-07 13:15:08 6E28823F4E56F3D492DD4B6A0A3751E1 52736 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\installInf.exe
2013-05-07 13:15:08 189C45918CFF2ED9A45AFBE5A955906D 377856 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\PRISMSVR.exe
2013-05-07 13:15:07 E4BC542FF24623169822DD3CD66A0018 46528 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\DeviceInst.exe
2013-05-07 13:15:07 4B248EAE4B5D206D111B71B982EA8A2E 504832 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\DevInst.exe
2013-05-07 13:15:07 43276FCED673D6E582473B8F3F6A7278 385110 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\PRISMSVR.exe
2013-05-07 13:15:06 6E28823F4E56F3D492DD4B6A0A3751E1 52736 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\installInf.exe
2013-05-07 13:15:06 189C45918CFF2ED9A45AFBE5A955906D 377856 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\PRISMSVR.exe
2013-05-07 13:15:04 B5ABE5200877D949D088E14DAA157923 14168064 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\KPN_IA.exe
2013-05-07 13:15:04 8BEF32D0262F6613197A7512B885C7D6 9530888 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\KPN_WNA.exe
2013-05-07 13:15:03 B572A46F4354F8D900C2266B2E33EC30 42496 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KKA.exe
2013-05-07 13:15:03 A683F5402A990BC853A73DF4A82E7AB1 14160352 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN_Assistent.exe
2013-05-07 13:15:03 4BC2D3E6CB78DAA445152F38FCEA7DCB 2482024 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\M2Updater.exe
2013-05-07 13:13:24 6C629BBE45ACB6F38CFA4116FCA670C8 45584512 ----a-w- C:\Users\Frank\AppData\Local\Temp\{3F470DC3-9B77-4ABD-9C86-5FBB514F47F6}_emergency.exe
2013-05-07 11:59:01 88C48DAAB78EEE9F856C8BFF2141F09B 530464 ----a-w- C:\Program Files (x86)\Google\Update\Install\{67349261-8BFD-4191-AE29-0ADBE5BCF4C5}\GoogleToolbarInstaller_updater_signed.exe
2013-05-07 09:35:56 CBB9CA1952031B179736829015E83BA9 2776368 -c--a-w- C:\ProgramData\{8F7DE6E7-8387-49D7-8CB7-D75B3E844EE2}\KPN_Installer.exe
2013-05-04 14:15:31 C26BB2535C1B20DEAFAEB12634BF4DC9 781592 ----a-w- C:\Users\Frank\AppData\Local\Google\Update\1.3.21.145\GoogleUpdateSetup.exe
2013-05-04 14:15:31 8F11F0321ED84B1533FC1384AC71AC8D 59784 ----atw- C:\Users\Frank\AppData\Local\Google\Update\1.3.21.145\GoogleUpdateBroker.exe
2013-05-04 14:15:31 00F714CA28A01FACB709486D6DA306A8 59784 ----atw- C:\Users\Frank\AppData\Local\Google\Update\1.3.21.145\GoogleUpdateOnDemand.exe
2013-05-04 14:15:25 76B35CB0F3A4E69D6DFF27F542B9F856 216968 ----atw- C:\Users\Frank\AppData\Local\Google\Update\1.3.21.145\GoogleCrashHandler.exe
2013-05-04 14:15:25 4E252E85E5DC31BD645E809222AFAF27 287624 ----atw- C:\Users\Frank\AppData\Local\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
2013-05-04 14:15:23 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Frank\AppData\Local\Google\Update\1.3.21.145\GoogleUpdate.exe
2013-05-04 14:15:20 C26BB2535C1B20DEAFAEB12634BF4DC9 781592 ----a-w- C:\Users\Frank\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.145\GoogleUpdateSetup.exe
=== C: other files ==
2013-05-07 14:45:32 DD9C88B116408B30F855A76E09DD2962 32152 ----a-w- C:\Windows\System32\drivers\hitmanpro37.sys
2013-05-07 13:15:12 B3F36B4B3F192EA87DDC119F3A0B3E45 694888 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG122n\rtl8192su.sys
2013-05-07 13:15:12 9E4A4416CEBC0E026C927B60EA96F2F0 271360 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\SiS163u.sys
2013-05-07 13:15:12 73C18A2C69DFAB351FF0D6C0E69474B6 870400 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\athrusb.sys
2013-05-07 13:15:12 4BC451A93DB4915569C97FDAB020E6E7 1037312 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\athrxusb.sys
2013-05-07 13:15:12 2F0F7462678D928DD8E46F487D80E031 446976 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\rtl8187B.sys
2013-05-07 13:15:12 2F0F7462678D928DD8E46F487D80E031 446976 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\rtl8187B.sys
2013-05-07 13:15:12 206CE7DF21B29332B66E8D0DFCAD643F 30 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\Uninstall.bat
2013-05-07 13:15:10 B3F36B4B3F192EA87DDC119F3A0B3E45 694888 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\TG122n\rtl8192su.sys
2013-05-07 13:15:10 9E4A4416CEBC0E026C927B60EA96F2F0 271360 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\SiS163u.sys
2013-05-07 13:15:10 73C18A2C69DFAB351FF0D6C0E69474B6 870400 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\athrusb.sys
2013-05-07 13:15:10 4BC451A93DB4915569C97FDAB020E6E7 1037312 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\athrxusb.sys
2013-05-07 13:15:10 206CE7DF21B29332B66E8D0DFCAD643F 30 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\Uninstall.bat
2013-05-07 13:15:09 7A5341D3D77D54FFA4E743FC6EE91ACA 364001 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\PRISMA02.sys
2013-05-07 13:15:09 3B3B9321E764D415F2D05AD50417FC68 357472 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WINXP\PRISMA02.sys
2013-05-07 13:15:08 0E849BCC9C717770EF0A5D7F1EC35EAD 460544 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\PRISMA02.sys
2013-05-07 13:15:07 7A5341D3D77D54FFA4E743FC6EE91ACA 364001 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\PRISMA02.sys
2013-05-07 13:15:07 3B3B9321E764D415F2D05AD50417FC68 357472 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WINXP\PRISMA02.sys
2013-05-07 13:15:06 0E849BCC9C717770EF0A5D7F1EC35EAD 460544 ----a-w- C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\PRISMA02.sys
2013-05-07 11:46:08 73319D538EBA482A16DF53863978F523 584202 ----a-w- C:\ProgramData\Spybot - Search & Destroy\Recovery\BarowwsoeSave11.zip
2013-05-07 11:43:05 5BA34F308CFA1A5DB865265617A00C70 584201 ----a-w- C:\ProgramData\Spybot - Search & Destroy\Recovery\BarowwsoeSave10.zip
2013-05-04 18:34:56 76CDB2BAD9582D23C1F6F4D868218D6C 22 ----a-w- C:\Users\Frank\Downloads\7bc72a92860cbc923c5e2cffce338bf87da123e1.zip
2013-05-01 06:19:43 235C9F8EC956CCA0C42372D0489FE5EA 584201 ----a-w- C:\ProgramData\Spybot - Search & Destroy\Recovery\BarowwsoeSave9.zip

==== Chrome Look ======================

BBrowse2saovve - Frank - Default\Extensions\delbomggcfmddjogafcncefllbomhidc

==== Chrome Fix ======================

C:\Users\Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\delbomggcfmddjogafcncefllbomhidc deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2147601909-2630594215-43932498-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_USERS\S-1-5-21-2147601909-2630594215-43932498-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2147601909-2630594215-43932498-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Frank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\users\Frank\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\users\Frank\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

After Reboot

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Frank\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Frank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
5
Voor zover ik nu kan zien heb ik geen ongewenste URL's en reclame meer, waarvoor dank. Wat ik wel nog heb is dat als ik een foutieve URL ingeef in de browser (zojuist even bewust gedaan) dan ga ik via Websearch.helpmefindyour.info naar http://tuvaro.com/" onclick="window.open(this.href);return false;. Dit in plaats van de "standaard" Chrome pagina die me vertelt dat de URL niet klopt.
6
Mooi, voer nog een laatste keer Zoek uit:

Download zoek.exe naar het bureaublad.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.

    Code: Selecteer alles

    shortcutfix;
    autoclean;
    
  • Klik daarna op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.
Volg me op Twitter: @bartblaze
Mijn persoonlijke blog: Blaze's Security Blog

Bent u blij met de geboden hulp? klik hier voor een vrijblijvende donatie Afbeelding
7
Probleem lijkt nu opgelost. Hartelijk dank in elk geval!


Zoek.exe Version 4.0.0.2 Updated 06-May-2013
Tool run by Frank on di 07-05-2013 at 21:36:58,75.
Microsoft Windows 7 Ultimate 6.1.7600 x64
Running in: Normal Mode Internet Access Detected

==== Older Logs ======================

C:\zoek-results07-05-2013-1614.log 655 bytes
C:\zoek-results07-05-2013-1705.log 19193 bytes
C:\zoek-results07-05-2013-2131.log 6227 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"

==== shortcuts on Users Desktops ======================

C:\Users\Frank\Desktop\Championship Manager 01-02.lnk - C:\Program Files (x86)\Championship Manager 01-02\cm0102.exe
C:\Users\Frank\Desktop\Google Chrome.lnk - C:\Users\Frank\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Frank\Desktop\KPN Assistant.lnk - C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN_Assistent.exe
C:\Users\Frank\Desktop\Spybot - Search & Destroy.lnk - C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\HitmanPro.lnk - C:\Program Files (x86)\HitmanPro\HitmanPro.exe
C:\Users\Public\Desktop\KPN Installatie Assistent.lnk - C:\Program Files (x86)\KPN\KPN Installatie Assistent\KPN_IA.exe
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\Frank\AppData\Local\Google\Chrome\Application\chrome.exe

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro\HitmanPro.lnk - C:\Program Files (x86)\HitmanPro\HitmanPro.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro\Verwijder HitmanPro 3.7.lnk - C:\Program Files (x86)\HitmanPro\HitmanPro.exe /uninstall
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KPN\KPN Assistent\KPN Assistant.lnk - C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN_Assistent.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KPN\KPN Assistent\KPN Assistent verwijderen.lnk - C:\ProgramData\{6EBCE946-F3F0-4347-9E0E-DAE25E6F34D3}\KPN Assistent.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KPN\KPN Installatie Assistent\KPN Installatie Assistent verwijderen.lnk - C:\ProgramData\{8F7DE6E7-8387-49D7-8CB7-D75B3E844EE2}\KPN_Installer.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KPN\KPN Installatie Assistent\KPN Installatie Assistent.lnk - C:\Program Files (x86)\KPN\KPN Installatie Assistent\KPN_IA.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Spybot - Search & Destroy.lnk - C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Tutorial.lnk - C:\Program Files (x86)\Spybot - Search & Destroy\Help\English.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Uninstall Spybot-S&D.lnk - C:\Program Files (x86)\Spybot - Search & Destroy\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Update Spybot-S&D.lnk - C:\Program Files (x86)\Spybot - Search & Destroy\SDUpdate.exe

==== shortcuts in Quick Launch ======================

C:\Users\Frank\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk - C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Frank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\users\Frank\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\users\Frank\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

After Reboot

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Frank\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Frank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
8
Perfect, je computer ziet er schoon uit!

Voer eventueel nog onderstaande stappen uit:

Download "Delfix by Xplode" Afbeelding
Start de tool middels dubbelklik.
Zet nu vinkjes voor de volgende items:
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore
  • Reset system settings
Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Fijne dag nog :) !
Volg me op Twitter: @bartblaze
Mijn persoonlijke blog: Blaze's Security Blog

Bent u blij met de geboden hulp? klik hier voor een vrijblijvende donatie Afbeelding
Gesloten

Terug naar “Hulp bij malware problemen, adware, ongewenste software en een trage computer”