Hoi,
Stap 1:
Sluit alle openstaande programma's.
De-installeer via
Configuratiescherm - Programma's en onderdelen:
- iLivid
Java(TM) 6 Update 17
Java 7 Update 21
Mirar
WinZip Malware Protector
Herstart de computer.
Stap 2:
Sluit alle openstaande programma's.
Windows XP: Dubbelklik op
OTL.com om het programma te starten.
Windows Vista,7,8 en 8.1: Rechtsklik op
OTL.com en klik op
Als administrator uitvoeren.
Kopieer de volgende code en plak deze in het veld
Custom Scans/Fixes:
Code: Selecteer alles
:OTL
IE - HKLM\..\SearchScopes\{FBF7EF09-E71E-4660-ACEC-32F6F6CD26D5}: "URL" = http://www.mirarsearch.com/?q={searchTerms}&a=SEARCH
IE - HKU\S-1-5-21-2115858618-3954081567-1861713309-1000\..\SearchScopes\{FBF7EF09-E71E-4660-ACEC-32F6F6CD26D5}: "URL" = http://www.mirarsearch.com/?q={searchTerms}&a=SEARCH
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.0
[2012-11-16 20:58:27 | 000,002,536 | ---- | M] () -- C:\Users\hamer\AppData\Roaming\mozilla\firefox\profiles\ccff8b8c.default\searchplugins\browsemngr.xml
[2012-11-16 21:03:16 | 000,002,687 | ---- | M] () -- C:\Users\hamer\AppData\Roaming\mozilla\firefox\profiles\ccff8b8c.default\searchplugins\Search_Results.xml
CHR - default_search_provider: AVG Secure Search (Enabled)
CHR - default_search_provider: search_url = http://mysearch.avg.com/search?cid={C56F1E1C-A94F-4993-996B-9F7054FE4CE8}&mid=afbd57e5ed1b8b46a8529f0b1c94bf49-90d543748a56a759fd518c039cea1fb2f53366c6&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-04-13 15:17:40&v=18.0.5.292&pid=safeguard&sg=&sap=dsp&q={searchTerms}
CHR - homepage: http://mysearch.avg.com?cid={C56F1E1C-A94F-4993-996B-9F7054FE4CE8}&mid=afbd57e5ed1b8b46a8529f0b1c94bf49-90d543748a56a759fd518c039cea1fb2f53366c6&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-04-13 15:17:40&v=18.0.5.292&pid=safeguard&sg=&sap=hp
O3 - HKLM\..\Toolbar: (no name) - {4F62E8CE-3D6B-4FB0-BA6B-DB72E8236606} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 10.21.2)
O20 - AppInit_DLLs: (c:\progra~2\browse~1\23796~1.11\{16cdf~1\browse~1.dll) - File not found
O20 - AppInit_DLLs: (c:\progra~1\bandoo\bndhook.dll) - File not found
[2014-05-15 17:53:09 | 000,000,000 | ---D | C] -- C:\Users\hamer\AppData\Roaming\Nico Mak Computing
[2014-05-15 17:53:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Malware Protector
[2014-05-15 17:53:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Nico Mak Computing
[2014-05-15 17:53:01 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip Malware Protector
[2014-05-15 17:53:05 | 000,000,990 | ---- | M] () -- C:\Users\Public\Desktop\WinZip Malware Protector.lnk
[2014-05-11 18:50:03 | 000,000,474 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for hamer.job
[2014-05-15 17:53:05 | 000,000,990 | ---- | C] () -- C:\Users\Public\Desktop\WinZip Malware Protector.lnk
[2014-05-15 17:53:01 | 000,016,384 | ---- | C] () -- C:\Windows\System32\wsusnative32.exe
[2014-04-13 15:16:57 | 000,003,750 | ---- | C] () -- C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
[2014-05-15 17:53:09 | 000,000,000 | ---D | M] -- C:\Users\hamer\AppData\Roaming\Nico Mak Computing
[2013-10-19 16:12:40 | 000,000,000 | ---D | M] -- C:\Users\hamer\AppData\Roaming\SeeSimilar02
[2012-11-18 18:53:07 | 000,000,000 | ---D | M] -- C:\Users\hamer\AppData\Roaming\Systweak
[2014-04-12 13:36:39 | 000,000,000 | ---D | M] -- C:\Users\hamer\AppData\Roaming\TuneUp Software
@Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:4CF61E54
@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:4D066AD2
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:73933431
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:798A3728
@Alternate Data Stream - 107 bytes -> C:\ProgramData\Temp:F3176E45
@Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:DAFD38AE
@Alternate Data Stream - 101 bytes -> C:\ProgramData\Temp:753F86A9
:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1E06105D-2B45-422B-9BFB-833A7B562360}"=-
:Files
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[emptyflash]
[emptyjava]
[reboot]
Klik op
Run Fix.
Wacht tot OTL klaar is met fixen en herstart de computer als daarom gevraagd wordt.
Bewaar de log die verschijnt.
Post het logbestand als
bijlage in je volgend bericht.