Ga naar inhoud

Mail Delivery System <mailer-daemon@telenet-ops.be>


jpp

Aanbevolen berichten

dit moet het zijn dan

Zoek.exe Version 4.0.0.5 Updated 24-November-2013

Tool run by jean on ma 25/11/2013 at 18:18:02,22.

Microsoft Windows 7 Home Premium 6.1.7600 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\jean\Downloads\zoek\zoek.exe [Quick Scan] [Auto Clean]

==== Older Logs ======================

C:\zoek-results2013-11-25-043955.log 30003 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\jean\AppData\Local\Temp ====

====== Java Cache =====

====== C:\Windows\system32 =====

====== C:\Windows\system32\drivers =====

2013-11-24 16:06:07 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-11-24 12:48:23 -------- d-----w- C:\Program Files\trend micro

2013-11-23 09:26:03 -------- d-----w- C:\Program Files\Common Files\Common Toolkit Suite

2013-11-23 09:26:00 -------- d-----w- C:\Program Files\Fighters

2013-11-19 04:19:13 -------- d-----w- C:\Program Files\WinZip System Utilities Suite

======= C: =====

2013-11-25 04:35:52 20C35E9E32BBFC786FBBC4ABEE33EF88 72 ----a-w- C:\files.txt

====== C:\Users\jean\AppData\Roaming ======

2013-11-25 04:36:49 -------- d-----w- C:\Users\jean\AppData\Local\Temp

2013-11-24 07:30:16 -------- d-----w- C:\Users\jean\AppData\Roaming\LiveKit

2013-11-23 09:26:53 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\Fighters

2013-11-23 09:25:52 -------- d-----w- C:\Users\jean\AppData\Roaming\Fighters

2013-11-19 04:21:49 -------- d-----w- C:\Users\jean\AppData\Roaming\WinZip

2013-10-28 08:21:17 -------- d-----w- C:\Users\jean\AppData\Locallow\Google

====== C:\Users\jean ======

2013-11-24 17:52:17 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT (2).exe

2013-11-24 16:04:52 A66B365579D8CEBD7F1D4D6B6F7F9373 10284816 ----a-w- C:\Users\jean\Downloads\mbam-setup.exe

2013-11-24 14:00:32 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT (1).exe

2013-11-24 12:48:08 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT.exe

2013-11-24 12:40:56 AFAFA655CC59872129A32CDE4F60F2DE 1091882 ----a-w- C:\Users\jean\Downloads\adwcleaner.exe

2013-11-23 09:26:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters

2013-11-23 09:24:44 -------- d-----w- C:\ProgramData\Fighters

2013-11-23 09:24:07 5DC3BBE0739307CE33AB692857425973 2589368 ----a-w- C:\Users\jean\Downloads\spamfighter_web.exe

2013-11-21 16:35:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast

2013-11-19 04:19:13 -------- d-----w- C:\ProgramData\WinZip

2013-11-06 16:18:59 C6BAC56AB11845466A690DED2BCFCA62 1516908 ----a-w- C:\Users\laura\sport type.pptx

2013-10-28 08:21:07 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth

====== C: exe-files ==

2013-11-25 17:06:27 3EABBCC26228958E68635EC4955DAF6A 470560 ----a-w- C:\Users\jean\AppData\Roaming\Fighters\Tray\AutoInstall\DM.exe

2013-11-24 17:52:17 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT (2).exe

2013-11-24 16:04:52 A66B365579D8CEBD7F1D4D6B6F7F9373 10284816 ----a-w- C:\Users\jean\Downloads\mbam-setup.exe

2013-11-24 14:00:32 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT (1).exe

2013-11-24 12:48:24 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\jean.exe

2013-11-24 12:48:08 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT.exe

2013-11-24 12:40:56 AFAFA655CC59872129A32CDE4F60F2DE 1091882 ----a-w- C:\Users\jean\Downloads\adwcleaner.exe

2013-11-23 09:27:12 3EABBCC26228958E68635EC4955DAF6A 470560 ----a-w- C:\Users\jean\AppData\Roaming\Fighters\Tray\Updates\TKTRAY-DM\DM.exe

2013-11-23 09:24:07 5DC3BBE0739307CE33AB692857425973 2589368 ----a-w- C:\Users\jean\Downloads\spamfighter_web.exe

2013-11-21 04:42:48 E714A26715478EAC94DEB4514BF68EA2 35300192 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\31.0.1650.57\31.0.1650.57_chrome_installer.exe

2013-11-21 04:38:08 1A7C91AC6F14EBB22688704A13DC8D17 12598112 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.57\31.0.1650.57_30.0.1599.101_chrome_updater.exe

=== C: other files ==

2013-11-25 04:38:20 4A48A5714078375D9E6BE2CE00A71856 120 ---ha-w- C:\Program Files\Common Files\X10\Common\x10prod.sys

2013-11-24 16:06:07 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Run]

"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"

"AdobeBridge"="C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe -stealth"

"HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -deviceID CN3541FKXJ05WK:NW -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1"

"Web Calendar Pad"="C:\Program Files\CalendarPad\calendarpad.exe"

"AppsHat"="C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe"

"Apps Hat"="C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s"

"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3 "

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup"

"HotkeyApp"="C:\Program Files\Launch Manager\HotkeyApp.exe"

"LMgrVolOSD"="C:\Program Files\Launch Manager\OSD.exe"

"LMgrOSD"="C:\Program Files\Launch Manager\OSDCtrl.exe"

"Wbutton"="C:\Program Files\Launch Manager\Wbutton.exe"

"CLMLServer"="C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"

"AdobeCS4ServiceManager"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe -launchedbylogin"

"Adobe Acrobat Speed Launcher"="C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"

"Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"

"Adobe_ID0ENQBO"="C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"

"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"

"HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"

"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

"CommonToolkitTray"="C:\Program Files\Fighters\Tray\FightersTray.exe"

"sfagent"="C:\Program Files\Fighters\SPAMfighter\sfagent.exe"

"20131121"="C:\Program Files\AVAST Software\Avast\setup\emupdate\4a4f1d3c-a092-451f-b306-34df377ee904.exe /check"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"

"AdobeBridge"="C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe -stealth"

"HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -deviceID CN3541FKXJ05WK:NW -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1"

"Web Calendar Pad"="C:\Program Files\CalendarPad\calendarpad.exe"

"AppsHat"="C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe"

"Apps Hat"="C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe"

==== Startup Folders ======================

2013-09-06 08:13:08 1960 ----a-w- C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk

2013-03-26 03:42:44 2897 ----a-w- C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LaunchU3.exe.lnk

2013-05-24 14:36:30 1270 ----a-w- C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [25/03/2013 20:58]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\HPCustParticipation HP Deskjet 3050A J611 series" ["C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe"]

"C:\Windows\system32\tasks\{70FA4422-87C6-49E0-A655-CA389B45EDCC}" [F:\setup.exe]

"C:\Windows\system32\tasks\{E5C227F7-DDAE-4A7B-AA1B-439EAE01B205}" [F:\setup.exe]

"C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"{27182e60-b5f3-411c-b545-b44205977502}"="C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension" [25/03/2013 20:11]

==== Firefox Extensions ======================

==== Firefox Plugins ======================

Profilepath: C:\Users\jean\AppData\Roaming\Mozilla\Firefox\Profiles\pj6ot8gl.default

86FD0445C7A92516FC0BA201C79B8E9E - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.4

9FDABAD05A9623988750CCC10223BDB0 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.4

5E1D0432C765884434A7CCD4DBDC80AA - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.4

3B293C235A80E7A5369E6AA28FEA50B1 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.4

A80BCBED52F7DD5FDBF346A985A4E4D5 - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.4

270EE43CC00609B9937AAF94E1E970D4 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector

A5C14075B571AF1C9592595BE724D9D2 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll - Silverlight Plug-In

1C8124B6A03A620EB0CBCA615666D2AE - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live® Photo Gallery

842529B293535A02D1AEBEABD7B3EA79 - C:\Program Files\Adobe\Reader 9.0\Reader\browser\nppdf32.dll - Adobe Acrobat

77B645B655759F574B2555276FA111D9 - C:\Windows\system32\Macromed\Flash\NPSWF32.dll - Shockwave Flash

2AA3703D87E1327A2290C9D416D89A28 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrlui.dll - Microsoft® Silverlight

==== Chrome Look ======================

Google Docs - jean - Default\Extensions\aohghmighlieiainnegkcijnfilokake

MapsGalaxy - jean - Default\Extensions\aookeammngkehohpfmmhjadndplimiim

Google Drive - jean - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - jean - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - jean - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - jean - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Docs PDFPowerPoint Viewer by Google - jean - Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn

Gmail - jean - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

Google Docs - laura - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - laura - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - laura - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - laura - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - laura - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - laura - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

Google Docs - tinne - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - tinne - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - tinne - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - tinne - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - tinne - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - tinne - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.hln.be/"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.hln.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{1929F5CF-F367-44B3-9C7B-ED343D18427E} Bing Url="http://www.bing.com/search?q={searchTerms}&form=MEDTDF&pc=MAMD&src=IE-SearchBox"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\jean\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\laura\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\laura\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\tinne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\tinne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\jean\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\laura\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\tinne\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\jean\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\jean\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on ma 25/11/2013 at 18:33:20,35 ======================

Link naar reactie
Delen op andere sites

Aub !

Zoek.exe Version 4.0.0.5 Updated 24-November-2013

Tool run by jean on vr 29/11/2013 at 7:30:43,57.

Microsoft Windows 7 Home Premium 6.1.7600 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\jean\Downloads\zoek\zoek.exe [script inserted]

==== Older Logs ======================

C:\zoek-results2013-11-25-043955.log 30003 bytes

C:\zoek-results2013-11-25-173320.log 17913 bytes

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"AppsHat"=-

"Apps Hat"=-

==== Chrome Look ======================

Google Docs - jean - Default\Extensions\aohghmighlieiainnegkcijnfilokake

MapsGalaxy - jean - Default\Extensions\aookeammngkehohpfmmhjadndplimiim

Google Drive - jean - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - jean - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - jean - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - jean - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Docs PDFPowerPoint Viewer by Google - jean - Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn

Gmail - jean - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

Google Docs - laura - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - laura - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - laura - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - laura - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - laura - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - laura - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

Google Docs - tinne - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - tinne - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - tinne - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - tinne - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - tinne - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - tinne - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\aookeammngkehohpfmmhjadndplimiim deleted successfully

C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aookeammngkehohpfmmhjadndplimiim_0.localstorage deleted successfully

==== EOF on vr 29/11/2013 at 7:32:37,83 ======================

Link naar reactie
Delen op andere sites

Prima :top:

Download 52147fb3b2536-AdwCleaner_99_3_16x16x32.pngAdwCleaner by Xplode naar het bureaublad.

AdwCleaner uitvoeren

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik vervolgens op de knop Scan.
  • Wanneer de scan gereed is Klikt u vervolgens op de knop Clean.
  • Als dit gereed is wordt er gevraagd om de computer opnieuw op te starten, klik hier op OK.
  • Nadat de computer opnieuw is opgestart wordt het logbestand automatisch geopend.
  • Plaats dit logbestand in het volgende bericht.

Download 51a46ae42d560-malwarebytes_anti_malware.pngMalwareBytes' Anti-Malware (website) en sla het op je bureaublad op.

Zorg dat er na de installatie een vinkje is geplaatst bij:

  • Update MalwareBytes' Anti-Malware
  • Start MalwareBytes' Anti-Malware
  • Je krijgt hier ook de keuze om de evaluatie versie van MBAM te gebruiken, indien je dit niet wilt vink dit dan uit.

Klik daarna op "Voltooien".

Indien een update gevonden wordt, zal die gedownload en geïnstalleerd worden.

  • Zodra het programma gestart is, ga dan naar het tabblad "Instellingen".
  • Vink hier aan: "Sluit Internet Explorer tijdens verwijdering van malware".
  • Ga dan naar "Scanner Instellingen". Onderaan bij "PUP" kies je voor "Weergeven in scan resultaten - selecteren voor verwijdering".
  • Ga daarna naar het tabblad "Scanner", kies hier voor "Snelle Scan".
  • Druk vervolgens op "Scannen" om de scan te starten.
  • Het scannen kan een tijdje duren, dus wees geduldig.
  • Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.
  • Zorg ervoor dat daar alles aangevinkt is, daarna klik op: "Verwijder geselecteerde".
  • Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.
  • Herstart de computer indien nodig en post hierna de log in het volgende bericht.

Link naar reactie
Delen op andere sites

# AdwCleaner v3.014 - Report created 04/12/2013 at 05:40:49

# Updated 01/12/2013 by Xplode

# Operating System : Windows 7 Home Premium (32 bits)

# Username : jean - JEAN-PC

# Running from : C:\Users\jean\Downloads\adwcleaner (1).exe

# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Users\jean\AppData\Local\torch

Folder Deleted : C:\Users\jean\AppData\Local\UtilityChest_49

Folder Deleted : C:\Users\jean\AppData\Local\webplayer

Folder Deleted : C:\Users\jean\AppData\LocalLow\UtilityChest_49

Folder Deleted : C:\Users\tinne\AppData\Local\UtilityChest_49

Folder Deleted : C:\Users\tinne\AppData\LocalLow\UtilityChest_49

Folder Deleted : C:\Users\laura\AppData\LocalLow\UtilityChest_49

***** [ Shortcuts ] *****

***** [ Registry ] *****

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45460C59-2A4E-403C-A11D-1F29F85D6C31}

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45460C59-2A4E-403C-A11D-1F29F85D6C31}

Key Deleted : HKCU\Software\Classes\Applications\lollipop.exe

Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL

Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe

Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.DynamicBarButton

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.DynamicBarButton.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.FeedManager

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.FeedManager.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.HTMLMenu

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.HTMLMenu.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.HTMLPanel

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.HTMLPanel.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.MultipleButton

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.MultipleButton.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.PseudoTransparentPlugin

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.PseudoTransparentPlugin.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.Radio

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.Radio.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.RadioSettings

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.RadioSettings.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ScriptButton

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ScriptButton.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ThirdPartyInstaller

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ThirdPartyInstaller.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ToolbarProtector

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ToolbarProtector.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.UrlAlertButton

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.UrlAlertButton.1

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.XMLSessionPlugin

Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.XMLSessionPlugin.1

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs

Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]

Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]

Key Deleted : HKCU\Software\d2db8cb56abd41

Key Deleted : HKLM\SOFTWARE\d2db8cb56abd41

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_google-sketchup_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_google-sketchup_RASMANCS

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{23699B0B-C14D-4054-A545-FC0927BB0879}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25151605-D156-49DD-A659-20E69C1EE15F}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2BB3E614-F616-42DD-A99A-69C1FC268741}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35274ADF-B8DE-4909-80D1-A26269216903}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3F2F1B3C-EDA7-46EC-A1CA-12A67CD00A82}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5BBF357E-EA8C-48BF-83CA-DE279FB83BBA}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{698E7AA1-A28E-4064-A9AB-822171AF4EF4}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6AAFD84D-5F7F-42E5-9FB4-157925C3ED2F}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83CE5D73-E3DE-4DC5-82C2-3B65DFD0A849}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{878A5A0A-DC0A-4C37-BBE2-18C30E50F449}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8C428C4B-C9E2-4B74-B791-88C3FEE48F36}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{929825DF-A1B4-40C9-8F3C-6DA06BADC150}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F19923D-2A4C-45EF-A026-AE7DEE5D022C}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A72B8EA8-5B63-4C90-9FE8-D9C76C99DE32}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C86BFADB-406F-47C7-A8D8-FAA37B39089F}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D92EDE9A-70A4-469F-AF8F-38C3F278B0A1}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F67A3AA8-88EE-4A3A-863A-B13A19F8696C}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F8E1BDAB-F48F-46F9-8693-4EECB83D1AD7}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0E1FE4D8-70CE-417E-8FF4-C2B17FF3DD07}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{103E3C9A-E8AE-4B19-A339-01FE9439763E}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{24486CE9-7BC2-4516-B743-39FFDD4F861B}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{326C4F48-FE3B-4E54-9118-9B6C3B6C9B1E}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{39D884BB-2881-4F3A-B9B9-2D3AF4C2C191}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{59E5BDB9-126F-4575-901E-D32132A19B94}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5CF866F0-10A3-4ED4-9BE3-668F2F148E2F}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{618B2F0C-A1AF-4D1D-9354-CF0C42AF5BCB}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8EFEE482-37BC-4F3D-83E6-CB5BBE077E43}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEFDBFA7-0F18-4216-8F90-6B6F71D6AB83}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F12BA68C-976E-4567-BA3B-629DFCEBC5FE}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F66F6A81-E727-4774-B461-8A5CB7F7DE07}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{268CA04C-106C-4636-B707-95E8CD5859E0}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25151605-D156-49DD-A659-20E69C1EE15F}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{698E7AA1-A28E-4064-A9AB-822171AF4EF4}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8C428C4B-C9E2-4B74-B791-88C3FEE48F36}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9F19923D-2A4C-45EF-A026-AE7DEE5D022C}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F67A3AA8-88EE-4A3A-863A-B13A19F8696C}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0E1FE4D8-70CE-417E-8FF4-C2B17FF3DD07}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13B8FF9D-DEB0-4070-B846-D049218307B3}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E877590-30B7-400E-A835-B942489EB7BC}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{878A5A0A-DC0A-4C37-BBE2-18C30E50F449}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{992177A5-DF3C-4EC2-B779-6A5F94704CCC}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DFBAF9B2-2093-4D16-9D1F-348AE68408E4}

Key Deleted : HKCU\Software\APN DTX

Key Deleted : HKCU\Software\BabSolution

Key Deleted : HKCU\Software\ilivid

Key Deleted : HKCU\Software\lollipop

Key Deleted : HKCU\Software\Softonic

Key Deleted : HKCU\Software\Somoto

Key Deleted : HKCU\Software\torch

Key Deleted : HKCU\Software\UtilityChest_49

Key Deleted : HKCU\Software\Webplayer

Key Deleted : HKCU\Software\AppDataLow\Software\UtilityChest_49

Key Deleted : HKLM\Software\DataMngr

Key Deleted : HKLM\Software\iLividSRTB

Key Deleted : HKLM\Software\systweak

Key Deleted : HKLM\Software\torch

Key Deleted : HKLM\Software\UtilityChest_49

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Results Toolbar

Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16385

-\\ Mozilla Firefox v

[ File : C:\Users\jean\AppData\Roaming\Mozilla\Firefox\Profiles\pj6ot8gl.default\prefs.js ]

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\preferences ]

[ File : C:\Users\tinne\AppData\Local\Google\Chrome\User Data\Default\preferences ]

[ File : C:\Users\laura\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [9565 octets] - [04/12/2013 05:21:15]

AdwCleaner[R1].txt - [9625 octets] - [04/12/2013 05:28:04]

AdwCleaner[s0].txt - [9740 octets] - [04/12/2013 05:40:49]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [9800 octets] ##########

Link naar reactie
Delen op andere sites

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.