Ga naar inhoud

woorden worden onderstreept en geeft hinderlijke reclame


Ebonny

Aanbevolen berichten

  • Reacties 31
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Dit stond in het mapje zoek results op de C-schijf

Zoek.exe Version 4.0.0.4 Updated 11-September-2013

Tool run by Acer on do 12-09-2013 at 9:26:05,66.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Acer\Downloads\zoek\zoek.exe [script inserted]

==== System Restore Info ======================

12-9-2013 9:28:58 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{37483b40-c254-4a72-bda4-22ee90182c1e} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{37483b40-c254-4a72-bda4-22ee90182c1e} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4f12-8568-69135F087DB0} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4f12-8568-69135F087DB0} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9fdfb66c-713b-4201-83a6-5b78ae227b41} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Internet Explorer\SearchScopes\{18D85E67-B985-4959-9FAE-3FD6C5F1A4AD} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C4A15F01-8F01-4219-A265-5DBEB3A5D209} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{37483b40-c254-4a72-bda4-22ee90182c1e} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37483b40-c254-4a72-bda4-22ee90182c1e} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{9fdfb66c-713b-4201-83a6-5b78ae227b41} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9fdfb66c-713b-4201-83a6-5b78ae227b41} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{37483b40-c254-4a72-bda4-22ee90182c1e} deleted successfully

HKEY_LOCAL_MACHINE\software\Wow6432Node\microsoft\internet explorer\urlsearchhooks\{37483b40-c254-4a72-bda4-22ee90182c1e} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{37483b40-c254-4a72-bda4-22ee90182c1e} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{9fdfb66c-713b-4201-83a6-5b78ae227b41} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WsysSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\WsysSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WsysSvc deleted successfully

==== Deleting Files \ Folders ======================

"C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx" deleted

"C:\Users\Acer\Downloads\SoftonicDownloader_voor_acdsee-photo-manager.exe" deleted

"C:\user.js" deleted

"C:\END" deleted

"C:\Windows\Launcher.exe" deleted

"C:\Users\Acer\AppData\Roaming\AC1\{23874FC4-964C2838-CD4D1EEF-1A92734D}" deleted

"C:\Users\Acer\AppData\Local\DProtect\config.dat" not deleted

"C:\Users\Acer\AppData\Local\DProtect\DProtectSvc.exe" not deleted

"C:\Users\Acer\AppData\Local\DProtect\DPUninstall.exe" not deleted

"C:\Users\Acer\AppData\Local\DProtect\eBP.dll" not deleted

"C:\Users\Acer\AppData\Local\DProtect\eBPSD.dll" not deleted

"C:\Users\Acer\AppData\Local\DProtect\eDelayinfo.edb" not deleted

"C:\Users\Acer\AppData\Local\DProtect\eGdpSvc.exe" not deleted

"C:\Users\Acer\AppData\Roaming\AC1" deleted

"C:\Users\Acer\AppData\Roaming\Mozilla" deleted

"C:\Users\Acer\AppData\Roaming\Complitly" deleted

"C:\Program Files (x86)\NCH_EN" deleted

"C:\Program Files (x86)\NCH Software" deleted

"C:\Users\Acer\AppData\Roaming\HomeTab" deleted

"C:\Program Files (x86)\HomeTab" deleted

"C:\Program Files (x86)\Common Files\DVDVideoSoft" deleted

"C:\Program Files (x86)\Yontoo" deleted

"C:\Program Files (x86)\NCH_EN" deleted

"C:\SoloApp" deleted

"C:\Users\Acer\AppData\Roaming\SimplyTech" deleted

"C:\Program Files (x86)\SearchCore for Browsers" deleted

"C:\Program Files (x86)\NCH_EN" deleted

"C:\Program Files\Babylon" deleted

"C:\Program Files (x86)\Common Files\DVDVideoSoft\bin" deleted

"C:\Program Files (x86)\iMesh Applications" deleted

"C:\Program Files (x86)\HomeTab" deleted

"C:\Program Files (x86)\Yontoo" deleted

"C:\Program Files (x86)\Complitly" deleted

"C:\Program Files (x86)\Perion" deleted

"C:\Program Files (x86)\Conduit" deleted

"C:\SoloApp" deleted

"C:\Users\Acer\AppData\Roaming\Complitly" deleted

"C:\Users\Acer\AppData\Roaming\HomeTab" deleted

"C:\Users\Acer\AppData\Roaming\DVDVideoSoftIEHelpers" deleted

"C:\Users\Acer\AppData\Roaming\SimplyTech" deleted

"C:\Users\Acer\AppData\Roaming\OpenCandy" deleted

"C:\ProgramData\eSafe" deleted

"C:\ProgramData\boost_interprocess" deleted

"C:\ProgramData\iMesh" deleted

"C:\Users\Acer\AppData\Local\iMesh" deleted

"C:\Users\Acer\AppData\Local\DProtect" not deleted

"C:\Users\Acer\AppData\Local\PackageAware" deleted

"C:\Users\Acer\AppData\Local\Conduit" deleted

"C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda" deleted

"C:\windows\SysNative\Tasks\Browser Updater" deleted

"C:\Users\Acer\AppData\LocalLow\HomeTab" deleted

"C:\Users\Acer\AppData\LocalLow\mediabarim" deleted

"C:\Users\Acer\AppData\LocalLow\DataMngr" deleted

"C:\Users\Acer\AppData\LocalLow\SimplyTech" deleted

"C:\Users\Acer\AppData\LocalLow\searchqutoolbar" deleted

"C:\Users\Acer\AppData\LocalLow\Conduit" deleted

"C:\Users\Acer\AppData\LocalLow\NCH_EN" deleted

"C:\windows\SysNative\tasks\ProtectedSearch" deleted

"C:\Windows\Syswow64\WNLT" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Acer\AppData\Local\Temp ====

2013-09-10 19:38:10 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\Acer\AppData\Local\Temp\NOSEventMessages.dll

2013-09-10 19:38:10 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\Acer\AppData\Local\Temp\NEventMessages.dll

====== C:\Windows\SysWOW64 =====

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

====== C:\Windows\Sysnative\drivers =====

2013-08-15 06:55:04 4CE278FC9671BA81A138D70823FCAA09 39936 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys

2013-08-15 06:55:03 DB74544B75566C974815E79A62433F29 1910208 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-09-11 15:45:17 -------- d-----w- C:\Program Files\trend micro

======= C:\Program Files (x86) =====

======= C: =====

====== C:\Users\Acer\AppData\Roaming ======

2013-09-12 07:18:21 !HASH: COULD NOT OPEN FILE !!!!! 2048 --sha-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\lastalive1.dat

2013-09-12 07:18:21 !HASH: COULD NOT OPEN FILE !!!!! 2048 --sha-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\lastalive0.dat

2013-09-09 11:45:26 -------- d-----w- C:\Users\Acer\AppData\Local\DProtect

2013-08-15 16:13:51 9ED94095E1C5C23AB15A19C5CCD91A6C 8388608 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\~FontCache-S-1-5-21-2668737801-3381503766-2512015713-1000.dat

2013-08-15 16:08:32 33F6DF6CD2D21BECFB9D004E4BDFEEA4 582772 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\~FontCache-System.dat

====== C:\Users\Acer ======

2013-09-11 13:01:18 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Acer\Downloads\RSITx64.exe

2013-09-11 12:31:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\partypoker

2013-09-10 08:50:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2013-09-09 11:57:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite

2013-09-09 11:57:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphics Related Programs

2013-09-09 11:56:00 98A0E3DD0D9F8C03EE7B3D8EB024B78E 623168 ----a-w- C:\Users\Acer\Downloads\disketchpsetup.exe

====== C: exe-files ==

2013-09-11 15:45:17 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Acer.exe

2013-09-11 13:01:18 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Acer\Downloads\RSITx64.exe

2013-09-11 12:31:07 B9284A1FFA6AF5D43171F2BC3B0740B7 715264 ----a-w- C:\Programs\PartyGaming\SmartUpgrader\PGSmartUpgrade.exe

2013-09-11 12:31:07 952CAB49CF81203B07157F93675EA6B6 227328 ----a-w- C:\Programs\PartyGaming\SmartUpgrader\SIInvoker.exe

2013-09-10 08:48:17 277DF1C06782563C95661C30AA02CD49 77136 ----a-w- C:\ProgramData\Apple Computer\Installer Cache\iTunes 11.0.5.5\SetupAdmin.exe

2013-09-09 11:56:00 98A0E3DD0D9F8C03EE7B3D8EB024B78E 623168 ----a-w- C:\Users\Acer\Downloads\disketchpsetup.exe

2013-09-09 11:45:40 256F569179D786680CD216C0240A42D3 825920 ----a-w- C:\Users\Acer\AppData\Local\DProtect\eGdpSvc.exe

2013-09-09 11:45:26 E503794A2C5BAEE9AAC34267C3359D18 175168 ----a-w- C:\Users\Acer\AppData\Local\DProtect\DPUninstall.exe

2013-09-09 11:45:26 76C7617847CCE2E948701365BEB45CE2 342592 ----a-w- C:\Users\Acer\AppData\Local\DProtect\DProtectSvc.exe

2013-09-09 06:36:34 CB139AE37B93E21CD858D748B3DF0EEA 34509664 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.66\29.0.1547.66_chrome_installer.exe

2013-09-08 15:51:21 69078D1A8E8BADFCD2B2EA9B66AB1FD8 6950240 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.66\29.0.1547.66_28.0.1500.95_chrome_updater.exe

2013-09-06 21:27:02 4D70EA97DA15CAC05A4759285629A9FA 801792 ----a-w- C:\Programs\PartyGaming\PartyPoker\Uninstall\Setup.exe

2013-09-06 20:44:28 E92A9E50F2417CF23A43988D012B01D0 2272256 ----a-w- C:\Programs\PartyGaming\PartyGaming.exe

2013-09-05 14:04:06 8FE3018198ACD7BFCD5C062710F5A8B7 20864 ----a-w- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32Info.exe

2013-09-05 14:04:04 66CBA380C78A1D1649E9B6CC41763B02 1411448 ----a-w- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe

2013-09-05 14:04:04 0203027AEE70D083C40EF6324D210DE0 694152 ----a-w- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AdobeCollabSync.exe

2013-09-05 14:04:02 B6F39BA8B6D3526459FE9F1D7760D073 131464 ----a-w- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\plug_ins\pi_brokers\64BitMAPIBroker.exe

2013-09-05 14:04:02 AEB9DC4B28F873CA2BDC2174A1266ED8 45448 ----a-w- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroTextExtractor.exe

2013-09-05 14:04:02 457A5985CD9A5915BE8FDF45B330C368 264568 ----a-w- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroBroker.exe

=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"Google Update"="C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"NokiaSuite.exe"="C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe -h -k"

"Norton Online Backup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"

"SuiteTray"="C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"

"EgisUpdate"="C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe -d"

"EgisTecPMMUpdate"="C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"

"ArcadeDeluxeAgent"="C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"

"PlayMovie"="C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"

"hpqSRMon"="C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe"

"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"

"Reader Library Launcher"="C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"Google Update"="C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"NokiaSuite.exe"="C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"mwlDaemon"="C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe"

"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"PLFSetI"="C:\Windows\PLFSetI.exe"

"Acer ePower Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"

"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"

"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2011-12-22 15:54:54 2103 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10-03-2012 17:10]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10-03-2012 17:10]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000Core.job --a------ C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe [12-02-2013 11:21]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000UA.job --a------ C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe [12-02-2013 11:21]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

amhlacfinnaffmhfohbpecabbjfhkdji - C:\Users\Acer\AppData\Local\CRE\amhlacfinnaffmhfohbpecabbjfhkdji.crx[]

dlfienamagdnkekbbbocojppncdambda - C:\Program Files (x86)\Complitly\chrome\ComplitlyChrome.crx[]

gclijllifhfpomppedeljakfegbcpojn - C:\Users\Acer\AppData\Local\Temp\ccex.crx[]

ifohbjbgfchkkfhphahclmkpgejiplfo - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx[]

niapdbllcanepiiimjjndipklodoedlc - C:\Users\Acer\AppData\Local\Temp\YontooLayers.crx[]

npgpgjiajblpbldjkelafjjhfjcddlba - C:\Program Files (x86)\HomeTab\chrome\HomeTab.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

amhlacfinnaffmhfohbpecabbjfhkdji - C:\Users\Acer\AppData\Local\CRE\amhlacfinnaffmhfohbpecabbjfhkdji.crx[]

nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[]

AFAS Personal Bijwerk Assistent - Acer - Default\Extensions\cdcefkchgdibcdegcafkekacfdapplbo

==== Chrome Fix ======================

C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dlfienamagdnkekbbbocojppncdambda_0.localstorage deleted successfully

C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ifohbjbgfchkkfhphahclmkpgejiplfo_0.localstorage deleted successfully

C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="QVO6"

"Default_Page_URL"="QVO6"

"Search Page"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

"Default_Search_URL"="Certified-Toolbar Search="

"Use Search Asst"="yes"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main]

"Default_Search_URL"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

"Search Page"="Certified-Toolbar Search="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\Main]

"Default_Search_URL"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

"Search Page"="Certified-Toolbar Search="

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Search_URL"="Certified-Toolbar Search="

"Default_Page_URL"="QVO6"

"Start Page"="QVO6"

"Search Page"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]

"Default_Search_URL"="Certified-Toolbar Search="

"Default_Page_URL"="QVO6"

"Start Page"="QVO6"

"Search Page"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Search results"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Search results"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Search results"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Search results"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Search results"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Search results"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]

"Default"="{searchTerms} - (1)"

"(Default)"="%s - Search results"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]

"Default"="{searchTerms} - (1)"

"(Default)"="%s - Search results"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Search results"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

"Default"="{searchTerms} - (1)"

"(Default)"="%s - Search results"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="about:newtab"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="about:newtab"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

"Search Page"="Certified-Toolbar Search="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

"Search Page"="Certified-Toolbar Search="

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

"Search Page"="Certified-Toolbar Search="

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Certified-Toolbar Search="

"Search Bar"="Certified-Toolbar Search="

"Search Page"="Certified-Toolbar Search="

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Certified-Toolbar Search="

"SearchAssistant"="{searchTerms} - (1)"

"Search Bar"="Certified-Toolbar Search="

"Search Page"="Certified-Toolbar Search="

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] not found

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Search Page"="Bing"

"Search Bar"="Bing"

"Default_Search_URL"="Bing"

"Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

"Start Page"="Google"

"Use Search Asst"="no"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main]

"Default_Search_URL"="Bing"

"Search Bar"="Bing"

"Search Page"="Bing"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\Main]

"Default_Search_URL"="Bing"

"Search Bar"="Bing"

"Search Page"="Bing"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Search_URL"="Bing"

"Search Page"="Bing"

"Search Bar"="Bing"

"Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

"Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]

"Default_Search_URL"="Bing"

"Search Page"="Bing"

"Search Bar"="Bing"

"Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

"Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Bing"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Bing"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Bing"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Bing"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Bing"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Bing"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Bing"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Bing"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURI]

"(Default)"="%s - Bing"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Bing"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="res://ieframe.dll/tabswelcome.htm"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="res://ieframe.dll/tabswelcome.htm"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Bing"

"Search Bar"="Bing"

"Search Page"="Bing"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Bing"

"Search Bar"="Bing"

"Search Page"="Bing"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Bing"

"Search Bar"="Bing"

"Search Page"="Bing"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Bing"

"Search Bar"="Bing"

"Search Page"="Bing"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Bing"

"Search Bar"="Bing"

"Search Page"="Bing"

"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\amhlacfinnaffmhfohbpecabbjfhkdji deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\gclijllifhfpomppedeljakfegbcpojn deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\npgpgjiajblpbldjkelafjjhfjcddlba deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\amhlacfinnaffmhfohbpecabbjfhkdji deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Acer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Acer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Acer\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Acer\AppData\Local\DProtect\config.dat" not found

"C:\Users\Acer\AppData\Local\DProtect\DProtectSvc.exe" not found

"C:\Users\Acer\AppData\Local\DProtect\DPUninstall.exe" not found

"C:\Users\Acer\AppData\Local\DProtect\eBP.dll" not found

"C:\Users\Acer\AppData\Local\DProtect\eBPSD.dll" not found

"C:\Users\Acer\AppData\Local\DProtect\eDelayinfo.edb" not found

"C:\Users\Acer\AppData\Local\DProtect\eGdpSvc.exe" not found

"C:\Users\Acer\AppData\Local\DProtect" not found

==== EOF on do 12-09-2013 at 9:40:03,44 ======================

Link naar reactie
Delen op andere sites

1.

Download 5217db3eb6d8b-AdwCleaner3.pngAdwCleaner by Xplode naar je bureaublad.


  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik vervolgens op Scan.
  • Klik vervolgens op Clean als er items zijn gevonden.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[R1].txt.

Post aansluitend de inhoud van dit log in je volgende bericht.

2.

Download 51a46ae42d560-malwarebytes_anti_malware.pngMalwareBytes' Anti-Malware (website) en sla het op je bureaublad op.

Zorg dat er na de installatie een vinkje is geplaatst bij:


  • Update MalwareBytes' Anti-Malware
  • Start MalwareBytes' Anti-Malware
  • Je krijgt hier ook de keuze om de evaluatie versie van MBAM te gebruiken, indien je dit niet wilt vink dit dan uit.

Klik daarna op "Voltooien".

Indien een update gevonden wordt, zal die gedownload en geïnstalleerd worden.


  • Zodra het programma gestart is, ga dan naar het tabblad "Instellingen".
  • Vink hier aan: "Sluit Internet Explorer tijdens verwijdering van malware".
  • Ga daarna naar het tabblad "Scanner", kies hier voor "Snelle Scan".
  • Druk vervolgens op "Scannen" om de scan te starten.
  • Het scannen kan een tijdje duren, dus wees geduldig.
  • Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.
  • Zorg ervoor dat daar alles aangevinkt is, daarna klik op: "Verwijder geselecteerde".
  • Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.
  • Herstart de computer indien nodig en post hierna de log in het volgende bericht.

Link naar reactie
Delen op andere sites

Dit is 1

# AdwCleaner v3.003 - Report created 12/09/2013 at 19:31:13

# Updated 07/09/2013 by Xplode

# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

# Username : Acer - ACER-PC

# Running from : C:\Users\Acer\Downloads\adwcleaner.exe

# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE

Key Deleted : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll

Key Deleted : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE

Key Deleted : HKLM\SOFTWARE\Classes\AppID\HomeTab.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL

Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader

Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1

Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO

Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1

Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap

Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc

Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO

Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1

Key Deleted : HKLM\SOFTWARE\Classes\wtb.Band

Key Deleted : HKLM\SOFTWARE\Classes\wtb.Band.1

Key Deleted : HKLM\SOFTWARE\Classes\wtb.NotificationSource

Key Deleted : HKLM\SOFTWARE\Classes\wtb.NotificationSource.1

Key Deleted : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl

Key Deleted : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl.1

Key Deleted : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo

Key Deleted : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo.1

Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api

Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1

Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers

Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\HomeTab_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\HomeTab_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS

Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1269415

Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2801948

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3FC27B34-0C19-49DA-875E-1875DDD4A6B2}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{125B7A09-B405-46FB-95FB-96CF6B72992D}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A928E66C-F501-4E66-9953-855C712F93B2}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FCA8936E-403A-4487-A966-70F80F1D5A6A}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{125B7A09-B405-46FB-95FB-96CF6B72992D}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{125B7A09-B405-46FB-95FB-96CF6B72992D}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9D0DE224-C629-4285-8A62-5AA61D6906E8}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FFF486FA-90ED-4493-8214-A165F659F4EA}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}

Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}

Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}

Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command

Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command

Key Deleted : HKCU\Software\Complitly

Key Deleted : HKCU\Software\Conduit

Key Deleted : HKCU\Software\DataMngr_Toolbar

Key Deleted : HKCU\Software\HomeTab

Key Deleted : HKCU\Software\IM

Key Deleted : HKCU\Software\ImInstaller

Key Deleted : HKCU\Software\SearchCore for Browsers

Key Deleted : HKCU\Software\simplytech

Key Deleted : HKCU\Software\SmartBar

Key Deleted : HKCU\Software\NCH_EN

Key Deleted : HKCU\Software\AppDataLow\Toolbar

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit

Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes

Key Deleted : HKCU\Software\AppDataLow\Software\simplytech

Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar

Key Deleted : HKCU\Software\AppDataLow\Software\NCH_EN

Key Deleted : HKLM\Software\BabylonToolbar

Key Deleted : HKLM\Software\Conduit

Key Deleted : HKLM\Software\eSafeSecControl

Key Deleted : HKLM\Software\Funmoods

Key Deleted : HKLM\Software\qvo6Software

Key Deleted : HKLM\Software\SearchCore for Browsers

Key Deleted : HKLM\Software\SearchquMediabarTb

Key Deleted : HKLM\Software\SimplyGen

Key Deleted : HKLM\Software\NCH_EN

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchCore for Browsers

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WSysControl

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NCH_EN Toolbar

Key Deleted : [x64] HKLM\SOFTWARE\SearchCore for Browsers

Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer

Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page]

-\\ Google Chrome v29.0.1547.66

[ File : C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage

Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [13087 octets] - [12/09/2013 19:30:24]

AdwCleaner[s0].txt - [11671 octets] - [12/09/2013 19:31:13]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [11732 octets] ##########

Link naar reactie
Delen op andere sites

Hpi Jion,

Na het uitvoeren van de run-script vanmorgen werkt mijn printer die aangesloten zit op mijn router niet meer. Het is een HP 3200 serie.

Mijn laptop ziet hem ook niet meer op het netwerk. Heb al van alles geprobeerd. Is er tijdens de run iets verwijderd wat niet mocht?

groet

Link naar reactie
Delen op andere sites

Nummer 2

MalwarebytesAnti-Malware 1.75.0.1300

www.malwarebytes.org

Databaseversie:v2013.09.12.09

Windows 7Service Pack 1 x64 NTFS

InternetExplorer 10.0.9200.16660

Acer ::ACER-PC [administrator]

12-9-201321:31:36

mbam-log-2013-09-12(21-31-36).txt

Scan type:Snelle scan

Ingeschakeldescan opties: Geheugen | Opstartitems | Register | Bestanden en mappen |Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM

Uitgeschakeldescan opties: P2P

Objectengescand: 223170

Verstrekentijd: 5 minuut/minuten, 48 seconde(n)

Geheugenprocessen gedetecteerd: 0

(Geenkwaadaardige objecten gedetecteerd)

Geheugenmodulengedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 5

HKCR\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}(PUP.Optional.Datamngr.A) -> Succesvol in quarantaine geplaatst enverwijderd.

HKCR\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}(PUP.Optional.Datamngr.A) -> Succesvol in quarantaine geplaatst enverwijderd.

HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr.A)-> Succesvol in quarantaine geplaatst en verwijderd.

HKLM\SOFTWARE\BabylonToolbar (PUP.Optional.Babylon.A) ->Succesvol in quarantaine geplaatst en verwijderd.

HKLM\SOFTWARE\qvo6Software(PUP.Optional.qvo6.A) -> Succesvol in quarantaine geplaatst en verwijderd.

Registerwaarden gedetecteerd: 1

HKLM\SYSTEM\CurrentControlSet\Services\DPService|ImagePath(PUP.Optional.DProtect) -> Data:C:\Users\Acer\AppData\Local\DProtect\DProtectSvc.exe -> Succesvol inquarantaine geplaatst en verwijderd.

Registerdata gedetecteerd: 3

HKCU\SOFTWARE\Microsoft\InternetExplorer\Main|Default_Page_URL (Hijack.StartPage) -> Slecht:(QVO6 (Google) -> Succesvol in quarantaine geplaatst engerepareerd.

HKLM\SOFTWARE\Microsoft\InternetExplorer\Main|Default_Page_URL (Hijack.StartPage) -> Slecht:(QVO6 (Google) -> Succesvol in quarantaine geplaatst engerepareerd.

HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page(Hijack.StartPage) -> Slecht: (QVO6 (Google) -> Succesvol in quarantaine geplaatst engerepareerd.

Mappen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 1

C:\Users\Acer\Downloads\FreeYouTubeToMP3Converter (1).exe(PUP.Optional.OpenCandy) -> Succesvol in quarantaine geplaatst enverwijderd.(einde)

Link naar reactie
Delen op andere sites

Ik zie nergens een antivirusprogramma geïnstalleerd staan?

Indien je er nog geen hebt, raad ik je aan om zo snel mogelijk eentje te installeren, zo niet staat je systeem binnen de kortste keren terug vol met rotzooi.

HIER vind je een overzicht van de meest gebruikte gratis scanners met een woordje uitleg bij.

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.