# AdwCleaner v5.201 - Logbestand aangemaakt 02/07/2016 op 13:38:29 # Laatste update 30/06/2016 door ToolsLib # Database : 2016-07-01.1 [Server] # Besturingssysteem : Windows 10 Home (X64) # Gebruikersnaam : wendy_000 - WENDITA # Gestart vanuit : C:\Users\wendy_000\Downloads\adwcleaner_5.201.exe # Optie : Scannen # Ondersteuning : https://toolslib.net/forum ***** [ Services ] ***** ***** [ Mappen ] ***** Map gevonden : C:\Users\wendy_000\AppData\Local\MalwareProtectionLive Map gevonden : C:\Users\wendy_000\AppData\Local\SweetLabs App Platform Map gevonden : C:\Users\wendy_000\AppData\Roaming\yoursearching Map gevonden : C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nibemhgacghipbplejpapmlnlkdaggbj Map gevonden : C:\Program Files\Booking.com ***** [ Bestanden ] ***** Bestand gevonden : C:\Users\Public\Desktop\Booking.com.lnk Bestand gevonden : C:\Users\wendy_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk Bestand gevonden : C:\Users\wendy_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malware Protection Live.lnk Bestand gevonden : C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage Bestand gevonden : C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage-journal Bestand gevonden : C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nibemhgacghipbplejpapmlnlkdaggbj_0.localstorage Bestand gevonden : C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_mysearch.avg.com_0.localstorage Bestand gevonden : C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_mysearch.avg.com_0.localstorage-journal Bestand gevonden : C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_homepage-web.com_0.localstorage Bestand gevonden : C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_homepage-web.com_0.localstorage-journal ***** [ DLL ] ***** ***** [ WMI ] ***** ***** [ Snelkoppelingen ] ***** ***** [ Geplande taken ] ***** Taak gevonden : LaunchSignup Taak gevonden : SweetLabs App Platform Taak gevonden : ACC ***** [ Register ] ***** Sleutel gevonden : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki Sleutel gevonden : HKCU\Software\Classes\Directory\shell\pokki Sleutel gevonden : HKCU\Software\Classes\Drive\shell\pokki Sleutel gevonden : HKCU\Software\Classes\lnkfile\shell\pokki Sleutel gevonden : HKCU\Software\Classes\pokki Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\Classes\pokki Sleutel gevonden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} Sleutel gevonden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} Sleutel gevonden : HKCU\Software\darwendlm Sleutel gevonden : HKCU\Software\ICSW1.17 Sleutel gevonden : HKCU\Software\PRODUCTSETUP Sleutel gevonden : HKCU\Software\SweetLabs App Platform Sleutel gevonden : HKCU\Software\GreenTree Applications\YTD Sleutel gevonden : HKLM\SOFTWARE\istartsurfSoftware Sleutel gevonden : HKLM\SOFTWARE\K9Tools Sleutel gevonden : HKLM\SOFTWARE\WdsManPro Sleutel gevonden : HKLM\SOFTWARE\yoursearchingSoftware Sleutel gevonden : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP Sleutel gevonden : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu Sleutel gevonden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7} Sleutel gevonden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareProtectionLive Sleutel gevonden : [x64] HKLM\SOFTWARE\AVG Secure Search Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1001\Software\Pokki Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\darwendlm Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\ICSW1.17 Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\PRODUCTSETUP Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\SweetLabs App Platform Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\GreenTree Applications\YTD Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu Gegevens gevonden : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page Redirect Cache] - hxxp://homepage-web.com/?s=acer&m=start Gegevens gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\Microsoft\Internet Explorer\Main [Start Page Redirect Cache] - hxxp://homepage-web.com/?s=acer&m=start Sleutel gevonden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{148234A7-A9F6-11E4-8263-F8A963E38AAB} Sleutel gevonden : HKU\S-1-5-21-2738978234-4125683323-18102037-1002\Software\Microsoft\Internet Explorer\SearchScopes\{148234A7-A9F6-11E4-8263-F8A963E38AAB} Sleutel gevonden : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com Waarde gevonden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [MalwareProtectionLive] Waarde gevonden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [vProt] Sleutel gevonden : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdsManPro ***** [ Internetbrowsers ] ***** [C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] gevonden : hxxp://homepage-web.com/?s=acer&m=start [C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] gevonden : nibemhgacghipbplejpapmlnlkdaggbj ************************* C:\AdwCleaner\AdwCleaner[S1].txt - [6288 bytes] - [02/07/2016 13:38:29] ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [6361 bytes] ##########