Ga naar inhoud

ongewenste reclame

zicky

Door zicky
in Archief Internet & Netwerk

 Delen

Aanbevolen berichten

zicky Groentje

zicky

Geplaatst:
  • Auteur
Geplaatst:

inderdaad, stond een heel deel niet bij, sorry

Zoek.exe v5.0.0.0 Updated 25-January-2014

Tool run by Ricky on wo 29/01/2014 at 9:02:26,07.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Ricky\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

29/01/2014 9:04:42 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\iMesh Applications deleted successfully

C:\PROGRA~2\MSXML 4.0 deleted successfully

C:\Program Files\Google deleted successfully

C:\ProgramData\Babylon deleted successfully

C:\Users\Ricky\AppData\Roaming\PerformerSoft deleted successfully

C:\Users\Ricky\AppData\Roaming\TP deleted successfully

C:\Users\Ricky\AppData\Roaming\Uhvah deleted successfully

C:\Users\Ricky\AppData\Roaming\Windows Live Writer deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DefaultTabUpdate deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\DefaultTabUpdate deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater17.3.0 deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater17.3.0 deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF103732-4528-4322-AA8B-F7849AB7776B}]

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Speed Analysis 2 deleted

C:\Program Files (x86)\SeeSimilar02 deleted

C:\Program Files (x86)\7Go Games deleted

C:\ProgramData\Tarma Installer deleted

C:\Users\Ricky\AppData\Roaming\DefaultTab deleted

C:\PROGRA~2\COMMON~1\DVDVideoSoft\TB deleted

C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted

C:\PROGRA~2\DefaultTab deleted

C:\PROGRA~2\BittorrentBar_NL deleted

C:\PROGRA~2\GreenTree Applications deleted

C:\PROGRA~2\Conduit deleted

C:\Users\Ricky\AppData\Roaming\7go deleted

C:\Users\Ricky\AppData\Roaming\speedanalysis.ico deleted

C:\Users\Ricky\AppData\Roaming\SpeedAnalysis2 deleted

C:\Users\Ricky\AppData\Roaming\DVDVideoSoftIEHelpers deleted

C:\Users\Ricky\AppData\Roaming\Babylon deleted

C:\Users\Ricky\AppData\Roaming\File Scout deleted

C:\Users\Ricky\AppData\Roaming\SeeSimilar02 deleted

C:\Users\Ricky\AppData\Roaming\OpenCandy deleted

C:\ProgramData\Partner deleted

C:\ProgramData\IBUpdaterService deleted

C:\ProgramData\AVG Secure Search deleted

C:\ProgramData\YTD Video Downloader deleted

C:\Users\Ricky\AppData\Local\CRE deleted

C:\Users\Ricky\AppData\Local\AVG Secure Search deleted

C:\Users\Ricky\AppData\Local\Conduit deleted

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted

C:\Users\Ricky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com deleted

C:\Windows\SysNative\roboot64.exe deleted

C:\Users\Ricky\Downloads\avg_free_stb_all_2013_2677_cnet.exe deleted

C:\Users\Ricky\Downloads\FreeYouTubeToMP3Converter.exe deleted

C:\Users\Ricky\Downloads\SoftonicDownloader_voor_flv-player.exe deleted

C:\Users\Ricky\AppData\LocalLow\AVG Secure Search deleted

C:\Users\Ricky\AppData\LocalLow\IAC deleted

C:\Users\Ricky\AppData\LocalLow\BittorrentBar_NL deleted

C:\Users\Ricky\AppData\LocalLow\Conduit deleted

C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted

C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job deleted

C:\windows\SysNative\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv deleted

C:\windows\SysNative\tasks\DTReg deleted

C:\Windows\Syswow64\sho9137.tmp deleted

C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted

C:\Users\Ricky\Desktop\SpeedAnalysis.lnk deleted

C:\Users\Ricky\AppData\Roaming\Mozilla\Extensions\7go@7go.com deleted

C:\Users\Ricky\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com deleted

C:\Users\Ricky\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com deleted

"C:\Users\Ricky\AppData\Roaming\Achit\aqqaz.acu" deleted

"C:\Users\Ricky\AppData\Roaming\Omceic\doew.tmp" deleted

"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted

"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted

"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\17.3.0\SiteSafety.dll" deleted

"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\17.3.0\log4cplusU.dll" deleted

"C:\Users\Ricky\AppData\Roaming\Achit" deleted

"C:\Users\Ricky\AppData\Roaming\Omceic" deleted

"C:\PROGRA~2\AVG Secure Search" deleted

"C:\PROGRA~2\AVG Secure Search" deleted

"C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted

"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller" deleted

"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted

"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\17.3.0" deleted

"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\17.3.0" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Ricky\AppData\Local\Temp ====

====== Java Cache =====

====== C:\Windows\SysWOW64 =====

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2014-01-16 08:20:33 F2BF71FCEAB8FB8A691408C478E2FF4C 3156480 ----a-w- C:\Windows\Sysnative\win32k.sys

====== C:\Windows\Sysnative\drivers =====

2014-01-16 08:20:34 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys

2014-01-16 08:20:34 DD253AFC3BC6CBA412342DE60C3647F3 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys

2014-01-16 08:20:34 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys

2014-01-16 08:20:34 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys

2014-01-16 08:20:34 765A92D428A8DB88B960DA5A8D6089DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys

2014-01-16 08:20:34 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys

2014-01-16 08:20:34 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys

2014-01-16 08:20:32 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys

====== C:\Windows\Tasks ======

2014-01-28 13:11:06 4BE02F39FFA2F4D585F39C1B8DF393A5 3128 ----a-w- C:\Windows\Sysnative\Tasks\{35080113-BB22-47E9-90EB-131BB88D85F2}

2014-01-28 08:32:21 DD68C1D24CCDC3A11EC99FF10DF971C5 3200 ----a-w- C:\Windows\Sysnative\Tasks\0

2014-01-28 08:32:21 D7A11A081F5FCBB5DC2611989F32BC6C 3296 ----a-w- C:\Windows\Sysnative\Tasks\4695

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-01-28 13:21:50 -------- d-----w- C:\Program Files\trend micro

======= C:\PROGRA~2 =====

2014-01-21 15:12:21 -------- d-----w- C:\PROGRA~2\Spotydl

======= C: =====

====== C:\Users\Ricky\AppData\Roaming ======

2014-01-21 15:12:25 -------- d-----w- C:\Users\Ricky\AppData\Roaming\Spotydl

2014-01-21 13:48:03 -------- d-----w- C:\Users\Ricky\AppData\Local\Spotify

2014-01-21 13:42:28 -------- d-----w- C:\Users\Ricky\AppData\Roaming\Spotify

====== C:\Users\Ricky ======

2014-01-28 13:21:33 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Ricky\Downloads\RSITx64.exe

2014-01-21 15:12:26 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl

2014-01-21 13:42:12 1CC1965A58472E2D8B6F5E640F895A89 127080 ----a-w- C:\Users\Ricky\Downloads\SpotifySetup.exe

====== C: exe-files ==

2014-01-28 13:24:01 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Ricky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DZR8RZ8X\RSITx64.exe

2014-01-28 13:21:50 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Ricky.exe

2014-01-28 13:21:33 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Ricky\Downloads\RSITx64.exe

2014-01-28 09:23:03 8A78C2569DDC58FA24D9BB9EC7820917 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2385261912-2066926694-2415297712-1000\$INXMN4D.exe

2014-01-28 09:22:17 4BB60AC1146126EF1B5F68E1FCD2BC5E 1283072 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2385261912-2066926694-2415297712-1000\$RNXMN4D.exe

=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"Dolby Advanced Audio v2"="C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe -autostart"

"USB3MON"="C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

"CLMLServer"="C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"

"vProt"="C:\Program Files (x86)\AVG Secure Search\vprot.exe"

"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"

"hpqSRMon"="C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe"

"AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 "

"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll,TrayApp"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]

"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

"hkey"="HKLM"

"item"="Adobe ARM"

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]

"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

"hkey"="HKLM"

"item"="APSDaemon"

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]

"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

"hkey"="HKLM"

"item"="iTunesHelper"

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

==== Startup Folders ======================

2013-07-22 20:23:02 2063 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

2013-07-10 18:07:40 1935 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [24/01/2014 14:50]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31/08/2012 20:13]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31/08/2012 20:13]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\0" [c:\program files\internet explorer\iexplore.exe]

"C:\Windows\SysNative\tasks\4695" [wscript.exe C:\Users\Ricky\AppData\Local\Temp\launchie.vbs //B]

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\YCMServiceAgent" [C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe]

"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"seesimilar02@SeeSimilar.com"="C:\Users\Ricky\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com" []

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"seesimilar02@SeeSimilar.com"="C:\Users\Ricky\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com" []

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

dgjkhjdcljddbedokogakmmdjgnbeanf - C:\Users\Ricky\AppData\Roaming\SpeedAnalysis2\SpeedAnalysis.crx[]

fegpgkakakkgjlnfdfoghgoohkbcejpm - C:\Users\Ricky\AppData\Roaming\SeeSimilar02\SeeSimilar.crx[]

gjajpkikblccgefaibcafkfbanllpefi - C:\Users\Ricky\AppData\Roaming\7go\7go.crx[]

kdidombaedgpfiiedeimiebkmbilgmlc - C:\Program Files (x86)\DefaultTab\DefaultTab.crx[]

lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02/10/2012 12:14]

ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\Ricky\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[]

ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\15.5.0.2\avg.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\Ricky\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[]

nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Users\Ricky\AppData\Roaming\DVDVideoSoft\DVDVideoSoftBrowserExtension.crx[16/11/2012 22:43]

Video-Saver - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\capekcnhbegaapfdadcjikcnnebplepa

Speed Analysis 2 - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf

SeeSimilar 2 - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\fegpgkakakkgjlnfdfoghgoohkbcejpm

7Go Games - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjajpkikblccgefaibcafkfbanllpefi

DefaultTab - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

Skype Click to Call - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

BittorrentBar_NL - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn

AVG Secure Search - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof

DVDVideoSoft Browser Extension - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp

Card number - Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

DefaultTab - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

==== Chrome Fix ======================

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dgjkhjdcljddbedokogakmmdjgnbeanf_0.localstorage deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\fegpgkakakkgjlnfdfoghgoohkbcejpm deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fegpgkakakkgjlnfdfoghgoohkbcejpm_0.localstorage deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fegpgkakakkgjlnfdfoghgoohkbcejpm deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjajpkikblccgefaibcafkfbanllpefi deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gjajpkikblccgefaibcafkfbanllpefi_0.localstorage deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kdidombaedgpfiiedeimiebkmbilgmlc_0.localstorage deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndgonipadfipmlmdfofnjnhhlgojnjdn_0.localstorage deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ndgonipadfipmlmdfofnjnhhlgojnjdn_0 deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndibdjnfmopecpmkdieinmbadjfpblof_0.localstorage deleted successfully

C:\Users\Ricky\AppData\Local\Google\Chrome\User Data\Default\Extensions\capekcnhbegaapfdadcjikcnnebplepa deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.hln.be/"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.hln.be/"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2D8D9ACC-F6D7-4362-8876-A275CA929591} deleted successfully

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2D8D9ACC-F6D7-4362-8876-A275CA929591} deleted successfully

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2D8D9ACC-F6D7-4362-8876-A275CA929591} deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2D8D9ACC-F6D7-4362-8876-A275CA929591} deleted successfully

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Mozilla\Firefox\Extensions\speedanalysis02@SpeedAnalysis.com deleted successfully

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Mozilla\Firefox\Extensions\7go@7go.com deleted successfully

HKEY_USERS\S-1-5-21-2385261912-2066926694-2415297712-1000\Software\Mozilla\Firefox\Extensions\seesimilar02@SeeSimilar.com deleted successfully

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\avg@toolbar deleted successfully

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\speedanalysis02@SpeedAnalysis.com deleted successfully

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\7go@7go.com deleted successfully

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\seesimilar02@SeeSimilar.com deleted successfully

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  C:\Windows\Sysnative\Tasks\0;fs
 C:\Windows\Sysnative\Tasks\4695;fs
 C:\Users\Ricky\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com;fs
 autoclean;

  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.