Pc vernieuwen

kape · 12 augustus 2014

Er is toch nog werk aan de winkel ;-)

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Dubbelklik op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  {93a3111f-4f74-4ed8-895e-d9708497629e};c
 C:\Program Files\VideoDownloadConverter_4z;fs
 {c547c6c2-561b-4169-a2a5-20ba771ca93b};c
 {ae07101b-46d4-4a98-af68-0333ea26e113};c
 VideoDownloadConverter Search Scope Monitor;fs
 C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job;f
 C:\Program Files\RCP;fs
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}];r
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r
 "VideoDownloadConverter Search Scope Monitor"=-;r
 C:\Documents and Settings\Gerda\Application Data\VideoDownloadConverter_4z;f
C:\Program Files\Giant Savings Extension;fs
C:\Program Files\DealPly;fs
C:\Program Files\cosstminn;fs
C:\Program Files\ComPlus Applications;fs
C:\Program Files\MyPC Backup;fs
 C:\Documents and Settings\Gerda\Application Data\webssearches;fs
C:\Documents and Settings\Gerda\Application Data\Babylon;fs
C:\Documents and Settings\Gerda\Application Data\BabSolution;fs
C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect;fs
C:\Documents and Settings\All Users\Application Data\Ask,fs
 C:\Program Files\FLVM Player;fs
C:\Program Files\Zebar;fs
 C:\Documents and Settings\Gerda\Application Data\Protect;fs
C:\Documents and Settings\Gerda\Application Data\{1EDE0D83-B129-4ABC-923B-725D5B0C0DAC};fs
 C:\zoek_backup;fs
C:\0f0b43306f7d6932ea0a7992c9fdf0f5;fs
C:\6ac175bc091376da9a251c;fs
 emptyfolderscheck;delete 
startupall; 
filesrcm;

Klik op de knop "More options" en vink nu de onderstaande opties aan.
Do a Deep Scan
Auto Clean
De optie "Scan All Users" staat standaard aangevinkt.
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

bernard · 12 augustus 2014

Zoek.exe v5.0.0.0 Updated 11-August-2014

Tool run by Gerda on di 12-08-2014 at 20:58:51,81.

Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Documents and Settings\Gerda\Mijn documenten\zoek.exe [scan all users] [script inserted] [Checkboxes used]

===== Runcheck 21:04:12,98 =====

--- Create Environment Variables 21:04:14,75

--- Checking Input 21:04:22,87

--- AU AppData Check 21:04:29,28

--- Remove From Windows Installer 21:04:31,29

--- Empty Folders Check 21:06:02,34

--- StartMenuInternet Check 21:06:03,00

--- IE Startpage Check 21:06:26,09

--- Program Files DB Check 21:07:31,57

--- C:\Documents and Settings\Default User\Application Data DB Check 21:08:28,18

--- C:\Documents and Settings\Gerda\Application Data DB Check 21:08:28,18

--- C:\Documents and Settings\LocalService\Application Data DB Check 21:08:28,18

--- C:\Documents and Settings\NetworkService\Application Data DB Check 21:08:28,18

--- C:\WINDOWS\system32\config\systemprofile\Application Data DB Check 21:08:28,18

--- C:\Documents and Settings\Gerda DB Check 21:10:14,37

--- C:\DOCUME~1\ALLUSE~1\APPLIC~1 DB Check 21:10:34,87

--- C:\Documents and Settings\Default User\Local Settings\Application Data DB Check 21:10:36,07

--- C:\Documents and Settings\Gerda\Local Settings\Application Data DB Check 21:10:36,07

--- C:\Documents and Settings\LocalService\Local Settings\Application Data DB Check 21:10:36,07

--- C:\Documents and Settings\NetworkService\Local Settings\Application Data DB Check 21:10:36,07

--- C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data DB Check 21:10:36,07

--- C:\Documents and Settings\All Users\Menu Start\Programma's DB Check 21:11:46,90

--- C:\Documents and Settings\Gerda\Menu Start\Programma's DB Check 21:11:57,03

--- Tasks DB Check 21:12:03,04

--- Tasks2 DB Check 21:12:06,92

--- Documents DB Check 21:12:34,26

--- Documents2 DB Check 21:12:38,57

--- C:\Documents and Settings\All Users\Bureaublad DB Check 21:12:40,60

--- C:\Documents and Settings\Gerda\Bureaublad DB Check 21:12:44,68

--- Services DB Check 21:12:55,26

--- FF prefs.js DB Check 21:13:27,31

--- Del by CLSID 21:13:29,21

--- Delete Services 21:14:27,29

--- Registry Fix 21:14:45,12

--- Delete files\folders 21:14:45,14

--- Create Backups 21:14:45,31

--- Recently Created 21:15:24,87

--- StartUp Information 21:17:41,78

--- Firefox Extensions 21:17:55,03

--- Chrome Look 21:17:55,51

--- IEdefaults 21:18:05,56

--- Del by CLSID 21:18:13,51

--- Shortcut Fix 21:18:26,06

--- Del from Uninstall List 21:19:02,90

--- msconfig check 21:20:29,68

--- Deleting Registry Keys 21:20:30,00

--- Empty IE Cache 21:20:30,10

--- Empty FF Cache 21:20:34,76

--- Empty CHR Cache 21:20:35,73

--- Empty Flash Cache 21:20:35,98

--- Empty Java Cache 21:20:38,50

--- C:\zoek_backups Content 21:20:42,31

Ik weet niet of het klaar was , want het streepje stond nog te knipperen .

Maar dat duurde zolang , dat ik dacht het zal wel goed zijn

- - - Updated - - -

Zoek.exe v5.0.0.0 Updated 11-August-2014

Tool run by Gerda on di 12-08-2014 at 20:58:51,81.

Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Documents and Settings\Gerda\Mijn documenten\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-08-08-134842.log 27170 bytes

C:\zoek-results2014-08-09-091355.log 38616 bytes

C:\zoek-results2014-08-09-170307.log 22387 bytes

C:\zoek-results2014-08-10-083804.log 14133 bytes

==== Empty Folders Check ======================

C:\Program Files\DealPly deleted successfully

C:\Program Files\Giant Savings Extension deleted successfully

C:\Documents and Settings\Gerda\Application Data\Babylon deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c547c6c2-561b-4169-a2a5-20ba771ca93b} deleted successfully

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c547c6c2-561b-4169-a2a5-20ba771ca93b} deleted successfully

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5} deleted successfully

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Internet Explorer\SearchScopes\{31F65C9D-8777-4D7A-8752-2F33DF02EAAF} deleted successfully

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{c547c6c2-561b-4169-a2a5-20ba771ca93b} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1705022645-2691431146-1015858574-1007\Software\Microsoft\Internet Explorer\URLSearchHooks\{93a3111f-4f74-4ed8-895e-d9708497629e} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\40030ae4 deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\40030ae4 deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"VideoDownloadConverter Search Scope Monitor"=-

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]

@="C:\\Program Files\\Internet Explorer\\iexplore.exe"

==== Deleting Files \ Folders ======================

C:\Program Files\RCP not found

C:\Program Files\Giant Savings Extension not found

C:\Program Files\DealPly not found

C:\Documents and Settings\Gerda\Application Data\Babylon not found

C:\Program Files\VideoDownloadConverter_4z deleted

C:\Program Files\cosstminn deleted

C:\Program Files\ComPlus Applications deleted

C:\Program Files\MyPC Backup deleted

C:\Documents and Settings\Gerda\Application Data\webssearches deleted

C:\Documents and Settings\Gerda\Application Data\BabSolution deleted

C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect deleted

C:\Program Files\FLVM Player deleted

C:\Program Files\Zebar deleted

C:\Documents and Settings\Gerda\Application Data\Protect deleted

C:\Documents and Settings\Gerda\Application Data\{1EDE0D83-B129-4ABC-923B-725D5B0C0DAC} deleted

C:\zoek_backup deleted

C:\Documents and Settings\Gerda\Application Data\VideoDownloadConverter_4z deleted

C:\SUPPORT deleted

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ask deleted

C:\Documents and Settings\Gerda\Local Settings\Application Data\IAC deleted

C:\Documents and Settings\Gerda\Local Settings\Application Data\Local_Weather_LLC deleted

C:\Documents and Settings\Gerda\Menu Start\Programma's\Weather Alerts deleted

C:\WINDOWS\wininit.ini deleted

C:\WINDOWS\tasks\bench-S-1-5-21-1705022645-2691431146-1015858574-1007.job deleted

C:\WINDOWS\tasks\bench-sys.job deleted

C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job deleted

C:\Documents and Settings\Gerda\Bureaublad\Continue Live Installation.lnk deleted

"C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\WeatherAlerts.exe" deleted

"C:\0f0b43306f7d6932ea0a7992c9fdf0f5" deleted

"C:\6ac175bc091376da9a251c" deleted

"C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts" not deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====

2014-08-04 20:05:53 6F78A5B98BCA1C83D9E44E3065BA54C4 1355 ----a-w- C:\WINDOWS\imsins.BAK

====== C:\DOCUME~1\Gerda\LOCALS~1\Temp ====

2014-08-10 16:54:51 7D93D7F8C92865D03E13ABE08446C2F9 289602 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\n474\VOPackage.exe

2014-08-10 16:54:47 2C04981648312BC64D68A3A2712A2E15 4161699 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\n474\systemspeedup_2207-962eb220.exe

2014-08-10 16:54:45 B0CAD5FC8087CCDEF628D6323B32EFAD 1691200 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\ins42.tmp.exe

2014-08-10 16:54:44 700D55B298D5961DAECBC30BA5D1EB73 6058560 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\n474\OptimizerPro.exe

2014-08-10 16:54:44 6CE292A19EA203D91662F1AACB939F82 121064 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\n474\SafetySearch_2907-83875e00.exe

2014-08-10 16:54:42 F06A14773E45B2C4BCD315EAB00814C7 4302584 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\n474\RegClean_2207-6f297ecf.exe

2014-08-10 16:54:35 2701B76FD4D3163E20B75A613198AC84 5077425 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\n474\FLVMPlayerSetup-c45490cb.exe

2014-08-10 16:54:13 13B0085A03720E67FB8C73DB3F14609E 421056 ----atw- C:\Documents and Settings\Gerda\Local Settings\Temp\n474\s474.exe

2014-08-10 07:18:56 BAED4410C7683FD4D048B0AB7616D761 171937 ------w- C:\Documents and Settings\Gerda\Local Settings\Temp\is45637729\140064_stp\Generic_vo.exe

2014-08-06 15:48:25 42EC539D183CB43BCFF89E72585902D5 384485 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\Quarantine.exe

2014-08-06 08:07:30 02C162FD7706E887624DFCC410979355 156061 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\nsw70.exe

2014-08-06 08:07:30 02C162FD7706E887624DFCC410979355 156061 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\nsw33.exe

2014-08-06 08:07:30 02C162FD7706E887624DFCC410979355 156061 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temp\nsr37.exe

====== Java Cache =====

2014-08-11 22:10:00 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Application Data\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-5abb528f

====== C:\WINDOWS\system32 =====

2014-08-08 13:18:46 6818CC5AEB477497480269CE627DDF17 145408 ----a-w- C:\WINDOWS\System32\javacpl.cpl

2014-08-08 13:18:46 07EF2978A5BC36720378F95566697FD8 272808 ----a-w- C:\WINDOWS\System32\javaws.exe

2014-08-08 13:18:34 49E203776C2ACB289385168A9058EE9E 96680 ----a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll

2014-08-08 13:18:34 3BDEB17FE6390BFF1BF3A2D964DE8E48 175528 ----a-w- C:\WINDOWS\System32\javaw.exe

2014-08-08 13:18:34 11FD45A41DF45298686ED39062AABE2A 175528 ----a-w- C:\WINDOWS\System32\java.exe

2014-08-06 17:18:28 180E1D44727EB72CB11EC5953C5E4C52 117760 ------w- C:\WINDOWS\System32\prntvpt.dll

2014-08-06 17:18:27 89B23B4BE691942072E0E3F7EDEB33B6 1676288 ------w- C:\WINDOWS\System32\xpssvcs.dll

2014-08-06 17:18:27 81C4B0077427391D582FBB1B6B9578CB 575488 ------w- C:\WINDOWS\System32\xpsshhdr.dll

2014-08-04 17:43:00 DDC2FD95F1B3A55CDDD0D91F0D7B3122 13312 ------w- C:\WINDOWS\System32\xp_eos.exe

====== C:\WINDOWS\system32\drivers =====

2014-08-04 20:04:23 708DB5076348BAE2FCA8A773EBEF76A6 55224 ----a-w- C:\WINDOWS\System32\drivers\{9f93bd66-d3d2-427d-b37f-743603e2388d}Gt.sys

====== C:\WINDOWS\Tasks ======

2014-08-07 14:09:43 7EC88B8F8F8CEBF26404E22D2FDD2197 366 ---ha-w- C:\WINDOWS\Tasks\MpIdleTask.job

2014-08-05 17:05:52 BB2E112E8953985AA28EE88FC3CAD7AE 222 ----a-w- C:\WINDOWS\Tasks\Microsoft Windows XP - aanmelding voor kennisgeving over einde van service.job

2014-08-05 17:05:48 3B7F9D918D68E7933EFD4D5B149575F0 216 ----a-w- C:\WINDOWS\Tasks\Microsoft Windows XP - maandelijkse kennisgeving over einde van service.job

2014-08-04 20:38:04 F510302C830B49A6B33AB9E5D1DD7EE1 386 ---ha-w- C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job

====== C:\WINDOWS\Temp ======

======= C:\Program Files =====

2014-08-06 17:20:09 -------- d-----w- C:\Program Files\Reference Assemblies

2014-08-04 20:47:47 -------- d-----w- C:\Program Files\Common Files\DESIGNER

======= C: =====

====== C:\Documents and Settings\Gerda\Application Data ======

2014-08-11 14:32:51 -------- d-----w- C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts

2014-08-11 14:32:37 -------- d-----w- C:\Documents and Settings\Gerda\Menu Start\Programma's\FLVM Player

2014-08-08 13:28:14 -------- d-----w- C:\Documents and Settings\Gerda\Local Settings\Application Data\Sun

2014-08-07 17:34:54 5FFBB9F997E5955E76AAF90329C58344 69232 ----a-w- C:\Documents and Settings\LocalService\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

====== C:\Documents and Settings\Gerda ======

2014-08-04 19:45:24 -------- d--h--r- C:\Documents and Settings\Gerda\Onlangs geopend

2014-08-04 18:55:03 -------- d-----w- C:\Documents and Settings\Gerda\AppData

====== C: exe-files ==

2014-08-12 11:32:52 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temporary Internet Files\Content.IE5\G87U6WV0\RSIT[1].exe

2014-08-10 19:56:10 9D46D72131D0E36A79D4819F08EA0E0B 1366203 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temporary Internet Files\Content.IE5\G87U6WV0\AdwCleaner[1].exe

2014-08-10 18:27:56 81C1D94FFD2C170A86C4C0C7B183E9EF 6837632 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temporary Internet Files\Content.IE5\G87U6WV0\SPSetup[2].exe

2014-08-10 18:27:54 A90FAA6449A4BECA4466564510991BB1 177352 ----a-w- C:\Documents and Settings\Gerda\Local Settings\Temporary Internet Files\Content.IE5\G87U6WV0\spstub[2].exe