# AdwCleaner v6.030 - Logbestand aangemaakt 17/11/2016 op 23:04:46 # *Updated on 19/10/2016 by Malwarebytes # Gebruik lokale database : 2016-11-16.1 [*Server] # Besturingssysteem : Windows 7 Professional Service Pack 1 (X64) # Gebruikersnaam : User - USER-PC # Gestart vanuit : C:\Users\User\Downloads\adwcleaner_6.030.exe # Verwijderen # Ondersteuning : hxxps://www.malwarebytes.com/support ***** [ *Services ] ***** ***** [ Mappen ] ***** [-] hersteldC:\Users\User\AppData\Roaming\Softlink [-] hersteldC:\Program Files\Common Files\AVG Secure Search [-] hersteldC:\Program Files (x86)\avg web tuneup [-] hersteldC:\Program Files (x86)\Common Files\AVG Secure Search [-] hersteldC:\Users\User\AppData\Local\app ***** [ Bestanden ] ***** ***** [ DLL ] ***** ***** [ WMI ] ***** ***** [ Snelkoppelingen ] ***** ***** [ Geplande taken ] ***** ***** [ Register ] ***** [-] hersteldHKLM\SOFTWARE\Classes\UCHTML [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.CRX [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTM [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTML [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.MHT [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTM [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTML [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.WEBP [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHT [-] hersteldHKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHTML [-] hersteldHKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\GoogleChromeUpService [#] *Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\GoogleChromeUpService [-] hersteldHKLM\SOFTWARE\Classes\KuaiZip.kz [-] hersteldHKLM\SOFTWARE\Classes\KuaiZip.zip [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.ape [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.bin [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.ccd [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.cue [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.flac [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.iso [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.isz [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.mdf [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.mds [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.nrg [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.vcd [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount.wv [-] hersteldHKLM\SOFTWARE\Classes\KuaiZipMount_FileAsso.Origin [-] hersteldHKLM\SOFTWARE\Classes\KuaiZip_FileAsso.Origin [-] hersteldHKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd [-] hersteldHKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1 [-] hersteldHKLM\SOFTWARE\Classes\ScriptHelper.NativeApi [-] hersteldHKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1 [-] hersteldHKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi [-] hersteldHKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZip.kz [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZip.zip [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.ape [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.bin [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.ccd [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.cue [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.flac [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.iso [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.isz [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.mdf [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.mds [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.nrg [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.vcd [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.wv [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount_FileAsso.Origin [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZip_FileAsso.Origin [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1 [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1 [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi [#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 [-] hersteldHKLM\SOFTWARE\Classes\AppID\{9CC34070-3A38-4C7A-89CB-EF8177EF07A1} [-] hersteldHKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} [-] hersteldHKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} [-] hersteldHKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615} [-] hersteldHKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} [-] hersteldHKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} [-] hersteldHKLM\SOFTWARE\Classes\TypeLib\{86C4C3BA-4EA4-4CF8-98B9-6B07B477B835} [-] hersteldHKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} [-] hersteldHKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} [-] hersteldHKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} [-] hersteldHKU\.DEFAULT\Software\UCBrowser [-] hersteldHKU\S-1-5-21-3041928109-549638978-2443649083-1000\Software\Installer [-] hersteldHKU\S-1-5-21-3041928109-549638978-2443649083-1000\Software\MICROSOFT\OTUT [-] hersteldHKU\S-1-5-21-3041928109-549638978-2443649083-1000\Software\AutoTime [-] hersteldHKU\S-1-5-21-3041928109-549638978-2443649083-1000\Software\KuaiZip [-] hersteldHKU\S-1-5-21-3041928109-549638978-2443649083-1000\Software\SNDA [-] hersteldHKU\S-1-5-21-3041928109-549638978-2443649083-1000\Software\KuaiZipSFX [-] hersteldHKU\S-1-5-21-3041928109-549638978-2443649083-1000\Software\Maoha [#] *Key deleted on reboot: HKU\S-1-5-18\Software\UCBrowser [#] *Key deleted on reboot: HKCU\Software\Installer [#] *Key deleted on reboot: HKCU\Software\MICROSOFT\OTUT [#] *Key deleted on reboot: HKCU\Software\AutoTime [#] *Key deleted on reboot: HKCU\Software\KuaiZip [#] *Key deleted on reboot: HKCU\Software\SNDA [#] *Key deleted on reboot: HKCU\Software\KuaiZipSFX [#] *Key deleted on reboot: HKCU\Software\Maoha [-] hersteldHKLM\SOFTWARE\AVG Tuneup [-] hersteldHKLM\SOFTWARE\Maoha [-] hersteldHKLM\SOFTWARE\Microleaves [#] *Key deleted on reboot: [x64] HKCU\Software\Installer [#] *Key deleted on reboot: [x64] HKCU\Software\MICROSOFT\OTUT [#] *Key deleted on reboot: [x64] HKCU\Software\AutoTime [#] *Key deleted on reboot: [x64] HKCU\Software\KuaiZip [#] *Key deleted on reboot: [x64] HKCU\Software\SNDA [#] *Key deleted on reboot: [x64] HKCU\Software\KuaiZipSFX [#] *Key deleted on reboot: [x64] HKCU\Software\Maoha [-] hersteldHKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default] [-] hersteldHKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] [-] hersteldHKU\S-1-5-21-3041928109-549638978-2443649083-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} [#] *Key deleted on reboot: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} [#] *Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} [-] hersteldHKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh [-] hersteldHKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin [-] hersteldHKLM\SOFTWARE\Clients\StartMenuInternet\UCBrowser [-] hersteldHKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\UCBrowser.exe [-] hersteldHKLM\SOFTWARE\RegisteredApplications [UCBrowser] [-] hersteldHKLM\SOFTWARE\Microsoft\MediaPlayer\ShimInclusionList\UCBrowser.exe [-] hersteldHKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost [kuaizipupdatesvc] [-] hersteldHKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\KuaiZipShlExt [-] hersteldHKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\KuaiZipShlExt [-] hersteldHKLM\SOFTWARE\Classes\AppID\QZipShell.DLL ***** [ Internetbrowser scannen ... ] ***** ************************* :: "Tracing" sleutels verwijderd :: Winsock instellingen gereset ************************* C:\AdwCleaner\AdwCleaner[C0].txt - [8498 bytes] - [17/11/2016 23:04:46] C:\AdwCleaner\AdwCleaner[S0].txt - [9435 bytes] - [17/11/2016 07:09:29] C:\AdwCleaner\AdwCleaner[S1].txt - [9328 bytes] - [17/11/2016 10:11:51] C:\AdwCleaner\AdwCleaner[S2].txt - [8226 bytes] - [17/11/2016 23:04:08] ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [8790 bytes] ##########