# AdwCleaner v6.045 - Logbestand aangemaakt 29/03/2017 op 12:28:50 # Bijgewerkt op 28/03/2017 door Malwarebytes # Database : 2017-03-28.2 [Lokaal] # Besturingssysteem : Windows 7 Professional Service Pack 1 (X64) # Gebruikersnaam : Johannes - JOHANNES-HP # Gestart vanuit : C:\Users\Johannes\Desktop\adwcleaner_6.045.exe # Mode: Scannen # Ondersteuning : https://www.malwarebytes.com/support ***** [ Services ] ***** Geen kwaadaardige services gevonden. ***** [ Mappen ] ***** Map gevonden: C:\Users\Johannes\AppData\Local\Babylon Map gevonden: C:\Users\Johannes\AppData\Local\Ilivid Player Map gevonden: C:\Users\Johannes\AppData\Local\PackageAware Map gevonden: C:\Users\Johannes\AppData\Local\slimware utilities inc Map gevonden: C:\Users\Johannes\AppData\Local\SlimWare Utilities Inc Map gevonden: C:\Users\Johannes\AppData\LocalLow\Mp3Tube Toolbar Map gevonden: C:\Users\Johannes\AppData\Roaming\Babylon Map gevonden: C:\Users\Johannes\AppData\Roaming\ParetoLogic Map gevonden: C:\Users\Johannes\AppData\Roaming\YourFileDownloader Map gevonden: C:\Users\Johannes\AppData\Roaming\lavasoft\web companion Map gevonden: C:\Users\Johannes\AppData\Roaming\PARETOLOGIC Map gevonden: C:\ProgramData\Babylon Map gevonden: C:\ProgramData\ParetoLogic Map gevonden: C:\ProgramData\Premium Map gevonden: C:\ProgramData\PARETOLOGIC Map gevonden: C:\ProgramData\Application Data\Babylon Map gevonden: C:\ProgramData\Application Data\ParetoLogic Map gevonden: C:\ProgramData\Application Data\Premium Map gevonden: C:\ProgramData\Application Data\PARETOLOGIC Map gevonden: C:\Users\Public\Documents\Downloaded Installers Map gevonden: C:\Program Files (x86)\1ClickDownload Map gevonden: C:\Program Files (x86)\Conduit Map gevonden: C:\Program Files (x86)\ParetoLogic Map gevonden: C:\Program Files (x86)\lavasoft\web companion Map gevonden: C:\Program Files (x86)\PARETOLOGIC Map gevonden: C:\windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService Map gevonden: C:\windows\SysWOW64\config\systemprofile\AppData\LocalLow\Application Updater Map gevonden: C:\windows\SysWOW64\config\systemprofile\AppData\LocalLow\AVG Secure Search ***** [ Bestanden ] ***** Bestand gevonden: C:\Users\Johannes\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Youtube Downloader.lnk Bestand gevonden: C:\windows\SysNative\LavasoftTcpService64.dll Bestand gevonden: C:\windows\SysNative\LavasoftTcpServiceOff.ini Bestand gevonden: C:\Users\Public\Desktop\Free Youtube Downloader.lnk Bestand gevonden: C:\windows\SysWOW64\lavasofttcpservice.dll Bestand gevonden: C:\windows\SysWOW64\LavasoftTcpServiceOff.ini ***** [ DLL ] ***** Geen kwaadaardige DLLs gevonden. ***** [ WMI ] ***** Geen kwaadaardige sleutels gevonden. ***** [ Snelkoppelingen ] ***** Geen geïnfecteerde snelkoppeling gevonden. ***** [ Geplande Taken ] ***** Geen kwaadaardige taak gevonden. ***** [ Register ] ***** Sleutel gevonden: HKLM\SOFTWARE\Classes\Applications\iLividSetupV1.exe Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\LavasoftTcpService Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\WCAssistantService Sleutel gevonden: HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1 Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1 Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1 Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1 Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1 Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1 Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1 Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController Sleutel gevonden: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1 Sleutel gevonden: HKLM\SOFTWARE\Classes\Prod.cap Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1 Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1 Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1 Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1 Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1 Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1 Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1 Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1 Sleutel gevonden: [x64] HKLM\SOFTWARE\Classes\Prod.cap Sleutel gevonden: HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Sleutel gevonden: HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Sleutel gevonden: HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Sleutel gevonden: HKLM\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890} Sleutel gevonden: HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105} Sleutel gevonden: HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057} Sleutel gevonden: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} Sleutel gevonden: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel gevonden: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} Sleutel gevonden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} Sleutel gevonden: HKU\.DEFAULT\Software\AVG Secure Search Sleutel gevonden: HKU\.DEFAULT\Software\ImInstaller Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\Ask&Record Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\Conduit Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\IGearSettings Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\ilivid Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\ImInstaller Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\Optimizer Pro Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\ParetoLogic Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\PRODUCTSETUP Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\SlimWare Utilities Inc Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\Softonic Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\YourFileDownloader Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\AppDataLow\Software\Conduit Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\AppDataLow\Software\Mp3Tube Sleutel gevonden: HKU\S-1-5-21-3801731368-1551394443-768565391-1001\Software\AppDataLow\Software\Toolbar Sleutel gevonden: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\AVG Secure Search Sleutel gevonden: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\BabylonToolbar Sleutel gevonden: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\Complitly Sleutel gevonden: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\SweetIM Sleutel gevonden: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\WNLT Sleutel gevonden: HKU\S-1-5-18\Software\AVG Secure Search Sleutel gevonden: HKU\S-1-5-18\Software\ImInstaller Sleutel gevonden: HKCU\Software\Ask&Record Sleutel gevonden: HKCU\Software\Conduit Sleutel gevonden: HKCU\Software\IGearSettings Sleutel gevonden: HKCU\Software\ilivid Sleutel gevonden: HKCU\Software\ImInstaller Sleutel gevonden: HKCU\Software\Optimizer Pro Sleutel gevonden: HKCU\Software\ParetoLogic Sleutel gevonden: HKCU\Software\PRODUCTSETUP Sleutel gevonden: HKCU\Software\SlimWare Utilities Inc Sleutel gevonden: HKCU\Software\Softonic Sleutel gevonden: HKCU\Software\YourFileDownloader Sleutel gevonden: HKCU\Software\AppDataLow\Software\Conduit Sleutel gevonden: HKCU\Software\AppDataLow\Software\Mp3Tube Sleutel gevonden: HKCU\Software\AppDataLow\Software\Toolbar Sleutel gevonden: HKLM\SOFTWARE\Babylon Sleutel gevonden: HKLM\SOFTWARE\Conduit Sleutel gevonden: HKLM\SOFTWARE\ParetoLogic Sleutel gevonden: HKLM\SOFTWARE\SlimWare Utilities Inc Sleutel gevonden: HKLM\SOFTWARE\YourFileDownloader Sleutel gevonden: HKLM\SOFTWARE\Lavasoft\Web Companion Sleutel gevonden: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\AVG Secure Search Sleutel gevonden: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\BabylonToolbar Sleutel gevonden: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\Complitly Sleutel gevonden: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\SweetIM Sleutel gevonden: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3801731368-1551394443-768565391-1001\Software\WNLT Sleutel gevonden: [x64] HKCU\Software\Ask&Record Sleutel gevonden: [x64] HKCU\Software\Conduit Sleutel gevonden: [x64] HKCU\Software\IGearSettings Sleutel gevonden: [x64] HKCU\Software\ilivid Sleutel gevonden: [x64] HKCU\Software\ImInstaller Sleutel gevonden: [x64] HKCU\Software\Optimizer Pro Sleutel gevonden: [x64] HKCU\Software\ParetoLogic Sleutel gevonden: [x64] HKCU\Software\PRODUCTSETUP Sleutel gevonden: [x64] HKCU\Software\SlimWare Utilities Inc Sleutel gevonden: [x64] HKCU\Software\Softonic Sleutel gevonden: [x64] HKCU\Software\YourFileDownloader Sleutel gevonden: [x64] HKCU\Software\AppDataLow\Software\Conduit Sleutel gevonden: [x64] HKCU\Software\AppDataLow\Software\Mp3Tube Sleutel gevonden: [x64] HKCU\Software\AppDataLow\Software\Toolbar Sleutel gevonden: [x64] HKLM\SOFTWARE\Tarma Installer Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9 Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24 Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607 Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21 Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF Sleutel gevonden: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\Web Companion Sleutel gevonden: HKLM\SOFTWARE\Classes\AppID\escort.DLL Sleutel gevonden: HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe Sleutel gevonden: HKLM\SOFTWARE\Classes\AppID\LavasoftTcpService.exe ***** [ Internetbrowsers ] ***** Firefox pref gevonden: [C:\Users\Johannes\AppData\Roaming\Mozilla\Firefox\Profiles\2kotsqv4.default-1483113590716\prefs.js] - "browser.search.hiddenOneOffs" - "Bing,AVG Secure Search,DuckDuckGo" Chromium pref gevonden: [C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Web data] - r Chromium pref gevonden: [C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Web data] - search.conduit.com Chromium pref gevonden: [C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Web data] - isearch.avg.com Chromium pref gevonden: [C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Web data] - mywebsearch ************************* C:\AdwCleaner\AdwCleaner[S0].txt - [15017 bytes] - [29/03/2017 12:28:50] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15091 bytes] ##########