Ga naar inhoud

Aanbevolen berichten

Geplaatst:

Er zijn toch wel meer problemen op deze PC:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  {310D38FE-EB4C-467C-8781-B7C2AEB7847D};c
 {A7DF592F-6E2A-45C4-9A87-4BD217D714ED};c
 C:\Users\Brenda\AppData\Local\Rich Media Player;fs
 {B939CF93-F2CB-443d-956C-DC523D85C9DB};c
 {EE932B49-D5C0-4D19-A3DA-CE0849258DE6};c
 C:\Program Files (x86)\Common Files\DVDVideoSoft;fs
 {FEB703F7-E7B2-4AB0-9566-87658AC70095};c
 {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c};c
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FEB703F7-E7B2-4AB0-9566-87658AC70095}];r64
 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare];r64
 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DATAMNGR];r64
 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Softonic for Windows];r64
 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sweetpacks Communicator];r64
 C:\Users\Brenda\AppData\Local\Softonic;fs
 C:\Program Files (x86)\SweetIM;fs
 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Deep Scan

  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Geplaatst:

hopelijk heb ik het goed gedaan ,ben niet zeker maar hier is het rapport

Zoek.exe v5.0.0.0 Updated 31-07-2014

Tool run by Brenda on vr 01/08/2014 at 22:14:12,49.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Brenda\Contacts\Downloads\zoek.exe [scan all users] [script inserted]

===== Runcheck 22:15:17,42 =====

--- Create Environment Variables 22:15:20,26

--- Create System Restore Point 22:15:36,86

--- Checking Input 22:16:09,35

--- Empty Folders Check 22:18:08,47

--- Del by CLSID 22:18:09,15

--- Registry Fix x64 22:19:13,30

--- Delete files\folders 22:19:13,30

--- Create Backups 22:19:13,55

--- Recently Created 22:19:51,72

- - - Updated - - -

in kladblok kreeg ik mijn rapport, sorry, het vorige was blijkbaar niet het juiste

Zoek.exe v5.0.0.0 Updated 31-07-2014

Tool run by Brenda on vr 01/08/2014 at 22:14:12,49.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Brenda\Contacts\Downloads\zoek.exe [scan all users] [script inserted]

==== System Restore Info ======================

1/08/2014 22:16:05 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AVS4YOU deleted successfully

C:\PROGRA~2\CyberLink deleted successfully

C:\PROGRA~2\MSXML 4.0 deleted successfully

C:\PROGRA~2\SearchYa! deleted successfully

C:\PROGRA~2\WinAVI deleted successfully

C:\PROGRA~2\Zylom Games deleted successfully

C:\PROGRA~3\Babylon deleted successfully

C:\PROGRA~3\CorelDRAW Graphics Suite X6 deleted successfully

C:\PROGRA~3\Oracle deleted successfully

C:\PROGRA~3\Soulseek deleted successfully

C:\PROGRA~3\Symantec deleted successfully

C:\Users\Brenda\AppData\Roaming\LiveKit deleted successfully

C:\Users\Brenda\AppData\Roaming\Opera deleted successfully

C:\Users\Brenda\AppData\Roaming\TP deleted successfully

C:\Users\Brenda\AppData\Roaming\WinRAR deleted successfully

C:\Users\Brenda\AppData\Local\cache deleted successfully

C:\Users\Brenda\AppData\Local\Conduit deleted successfully

C:\Users\Brenda\AppData\Local\CrashDumps deleted successfully

C:\Users\Brenda\AppData\Local\genienext deleted successfully

C:\Users\Brenda\AppData\Local\PackageAware deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{310D38FE-EB4C-467C-8781-B7C2AEB7847D} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FEB703F7-E7B2-4AB0-9566-87658AC70095} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FEB703F7-E7B2-4AB0-9566-87658AC70095} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{310D38FE-EB4C-467C-8781-B7C2AEB7847D} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{310D38FE-EB4C-467C-8781-B7C2AEB7847D} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{FEB703F7-E7B2-4AB0-9566-87658AC70095} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FEB703F7-E7B2-4AB0-9566-87658AC70095} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FEB703F7-E7B2-4AB0-9566-87658AC70095}]

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DATAMNGR]

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Softonic for Windows]

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sweetpacks Communicator]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\Users\Brenda\AppData\Local\Softonic not found

C:\Program Files (x86)\SweetIM deleted

"C:\Users\Brenda\AppData\Local\Rich Media Player" deleted

"C:\Program Files (x86)\Common Files\DVDVideoSoft" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Brenda\AppData\Local\Temp ====

2014-08-01 17:23:31 D8BE96BC224FB9A6034A01156A527271 43008 ----a-w- C:\Users\Brenda\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp7ktxwz.dll

====== Java Cache =====

2014-07-11 14:40:54 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Brenda\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-63724196

====== C:\Windows\SysWOW64 =====

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

====== C:\Windows\Sysnative\drivers =====

2014-08-01 20:12:02 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys

2014-08-01 20:12:02 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys

2014-07-10 09:03:37 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys

====== C:\Windows\Tasks ======

2014-07-12 21:27:47 C17DB124EC4DD3C9C2A54629C64B68E2 3878 ----a-w- C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater

2014-07-12 21:27:47 2E62F9C257327D40F6C53C1BD3264F04 940 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-08-01 15:10:54 -------- d-----w- C:\Program Files\trend micro

2014-08-01 12:59:08 -------- d-----w- C:\Program Files\Microsoft Silverlight

======= C:\PROGRA~2 =====

2014-08-01 18:41:38 -------- d-----w- C:\PROGRA~2\Adobe

2014-08-01 12:59:08 -------- d-----w- C:\PROGRA~2\Microsoft Silverlight

2014-07-11 09:56:40 -------- d-----w- C:\PROGRA~2\COMMON~1\Java

======= C: =====

====== C:\Users\Brenda\AppData\Roaming ======

2014-08-01 18:42:59 -------- d-----w- C:\Users\Brenda\AppData\Local\Adobe

2014-07-29 15:13:59 -------- d-----w- C:\Users\Brenda\AppData\Roaming\InstallShield

====== C:\Users\Brenda ======

2014-07-11 09:53:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==

2014-08-01 18:42:23 5D61BE7DB55B026A5D61A3EED09D0EAD 39408 ----a-w- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

2014-08-01 18:42:23 5D4BC124FAAE6730AC002CDB67BF1A1C 194032 ----a-w- C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

2014-08-01 18:42:21 519899D2A8F8A213CD8730612CDA6134 309840 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

2014-08-01 18:42:21 2276C2E1172F2DEEEA861DE006630725 401488 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_64.exe

2014-08-01 18:42:20 519899D2A8F8A213CD8730612CDA6134 309840 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_EA96EE101901E006.exe

2014-08-01 18:42:20 4BEAF576CB43358C4DB9F45AC7C09CDB 194032 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe

2014-08-01 18:42:20 4B78E9AE06F7C310E30EE2FA5B7EBC3C 1721296 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\SearchWithGoogleUpdate_C993F490EED40C1B.exe

2014-08-01 18:42:20 2276C2E1172F2DEEEA861DE006630725 401488 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_96311C12332602B3.exe

2014-08-01 18:42:20 219DAFA5114770BCA0EB2C5FDC4076FD 1072720 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_6073BFEF27805F02.exe

2014-08-01 18:42:20 1F2AFAB903C0D48480561F3BBD4539C2 739640 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdateSetup_5CC4B0F53D73AD88.exe

2014-08-01 18:42:13 2040B57C08F7A97E4E44ACB324647CF2 6110688 ----atw- C:\Program Files (x86)\Google\Update\Install\{84DB9E54-AA54-4C62-89B5-34002CBFF4CD}\googletoolbarinstaller_full_signed.exe

2014-08-01 18:42:13 2040B57C08F7A97E4E44ACB324647CF2 6110688 ----atw- C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\0.0.0.0\googletoolbarinstaller_full_signed.exe

2014-08-01 17:21:29 C5D237A3DA4A914D19D825C73FDE4487 8848464 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.125\36.0.1985.125_35.0.1916.153_chrome_updater.exe

=== C: other files ==

2014-08-01 20:12:02 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys

2014-08-01 20:12:02 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"

"TkBellExe"="C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe -osboot"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="c:\\programdata\\wincert\\win32cert.dll c:\\program files (x86)\\movies c:\\progra~3\\browse~1\\23796~1.11\\{16cdf~1\\browse~1.dll c:\\progra~3\\browse~1\\23787~1.43\\{16cdf~1\\browse~1.dll"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe ARM"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="AdobeAAMUpdater-1.0"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="BCSSync"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CommonToolkitTray]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="CommonToolkitTray"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Fighters\\Tray\\FightersTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HotKeysCmds"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\hkcmd.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IgfxTray]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="IgfxTray"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\igfxtray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LManager]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LManager"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Launch Manager\\LManager.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LWBMOUSE]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LWBMOUSE"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Browser Mouse\\Browser Mouse\\1.0\\lwbwheel.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Persistence"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\igfxpers.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Power Management]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Power Management"

"hkey"="HKLM"

"command"="C:\\Program Files\\Packard Bell\\Packard Bell Power Management\\ePowerTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="RtHDVCpl"

"hkey"="HKLM"

"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Sidebar"

"hkey"="HKCU"

"command"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="SunJavaUpdateSched"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TkBellExe]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="TkBellExe"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Real\\RealPlayer\\update\\realsched.exe\" -osboot"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windows Mobile Device Center]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Windows Mobile Device Center"

"hkey"="HKLM"

"command"="%windir%\\WindowsMobile\\wmdc.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]

"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Microsoft Office.lnk"

"backup"="C:\\Windows\\pss\\Microsoft Office.lnk.CommonStartup"

"backupExtension"=".CommonStartup"

"command"="C:\\PROGRA~2\\MICROS~4\\Office10\\OSA.EXE -b -l"

"item"="Microsoft Office"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Brenda^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk]

"path"="C:\\Users\\Brenda\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OpenOffice.org 3.4.1.lnk"

"backup"="C:\\Windows\\pss\\OpenOffice.org 3.4.1.lnk.Startup"

"backupExtension"=".Startup"

"command"="C:\\PROGRA~2\\OPENOF~1.ORG\\program\\QUICKS~1.EXE "

"item"="OpenOffice.org 3.4.1"

==== Startup Folders ======================

2014-05-22 20:40:23 1063 ----a-w- C:\Users\Brenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [12/07/2014 23:34]

C:\Windows\tasks\DriverUpdate Startup.job --a------ C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe [15/01/2014 10:55]

C:\Windows\tasks\GlaryInitialize 3.job --a------ C:\Program Files (x86)\Glary Utilities 3\Initialize.exe [28/10/2013 10:36]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05/10/2013 20:41]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05/10/2013 20:41]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\0" [c:\program files (x86)\internet explorer\iexplore.exe]

"C:\Windows\SysNative\tasks\4769" [wscript.exe C:\Users\Brenda\AppData\Local\Temp\launchie.vbs //B]

"C:\Windows\SysNative\tasks\Adobe ARM" ["C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"]

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\Adobe Reader Speed Launcher" ["C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"]

"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Brenda-PC-Brenda" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\SysNative\tasks\DealPlyUpdate" ["C:\Program Files (x86)\DealPly\DealPlyUpdate.exe"]

"C:\Windows\SysNative\tasks\DriverUpdate Startup" [C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe]

"C:\Windows\SysNative\tasks\GlaryInitialize 3" [C:\Program Files (x86)\Glary Utilities 3\Initialize.exe]

"C:\Windows\SysNative\tasks\GoforFilesUpdate" [C:\Program Files (x86)\GoforFiles\GFFUpdater.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\NBAgent" [C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe]

"C:\Windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton AntiVirus\Engine\21.2.0.38\WSCStub.exe"]

"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1317670609-1908533779-1924947057-1001" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1317670609-1908533779-1924947057-1001" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{29BAA485-4E4C-4A94-8407-443CD4812E93}" [C:\Windows\system32\msfeedssync.exe]

"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

"C:\Windows\SysNative\tasks\Norton AntiVirus\Norton Error Analyzer" [C:\Program Files (x86)\Norton AntiVirus\Engine\21.2.0.38\SymErr.exe]

"C:\Windows\SysNative\tasks\Norton AntiVirus\Norton Error Processor" [C:\Program Files (x86)\Norton AntiVirus\Engine\21.2.0.38\SymErr.exe]

"C:\Windows\SysNative\tasks\Norton Identity Safe\Norton Error Analyzer" [C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.0.43\SymErr.exe]

"C:\Windows\SysNative\tasks\Norton Identity Safe\Norton Error Processor" [C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.0.43\SymErr.exe]

"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"{F04D2D30-776C-4d02-8627-8E4385ECA58D}"="C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.6.0.27\coFFPlgn" [11/05/2014 20:07]

==== Firefox Extensions ======================

ExtDir: C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions

- Speed Test Analysis - %ExtDir%\speedtestanalysis@SpeedAnalysis.com

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Brenda\AppData\Roaming\Mozilla\Firefox\Profiles\q98yifzs.default

F3B0E300AFC94E1A775A2D935A7D384F - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll - Shockwave for Director / Shockwave for Director

A64F2C388DC26BE3E469EDC3657B14F4 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks RealDownloader Chrome Background Extension Plug-In (32-bit)

C45F7E59F2A0A6D3C4E90117F4752414 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks RealDownloader PepperFlashVideoShim Plug-In (32-bit)

F7AEAD4303A056F2D1685B43024776CA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks RealDownloader HTML5VideoShim Plug-In (32-bit)

FA0A3008589567CB7196620B05C9F28D - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin

==== C:\zoek_backup content ======================

C:\zoek_backup (files=558 folders=99 228725274 bytes)

==== EOF on vr 01/08/2014 at 22:25:07,56 ======================

Geplaatst:

Dubbelklik op Zoek.exe om de tool te starten.


  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

 
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows];r64
 "AppInit_DLLs"=-;r64
 C:\Windows\SysNative\tasks\0;fs
 C:\Windows\SysNative\tasks\4769;fs
 C:\Windows\SysNative\tasks\DealPlyUpdate;fs
 C:\Program Files (x86)\DealPly;fs
 C:\Windows\SysNative\tasks\DriverUpdate Startup;fs
 C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions \speedtestanalysis@SpeedAnalysis.com;fs
 autoclean;

  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Geplaatst:

beste kape

asus had me aangeraden om hier toch nog op te reageren

ook al kan ik mijn bijlagen terug openen

er zijn toch nog andere problemen, zoals bij facebook, daar heb ik een andere melding voor gemaakt

daar ik sommige video's op de startpagina niet kan zien, en anderen via een bijlage dan wel

maar hierbij heb ik zoek.exe gedaan, maar ik kon enkel de quicq scan doen:

Zoek.exe v5.0.0.0 Updated 04-August-2014

Tool run by Brenda on di 05/08/2014 at 22:08:21,22.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Brenda\Contacts\Downloads\zoek.exe [scan all users] [Quick Scan]

==== Older Logs ======================

C:\zoek-results2014-08-01-202507.log 23718 bytes

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Brenda\AppData\Local\Temp ====

2014-08-05 14:48:05 D8BE96BC224FB9A6034A01156A527271 43008 ----a-w- C:\Users\Brenda\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp6m_nje.dll

2014-08-05 10:57:03 FB5621842FDABF9F8359775573498FBC 605064 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\npGoogleUpdate3.dll

2014-08-05 10:57:03 C95CDDF65F9F8C9433AFF8F0A811375A 189320 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\psmachine_64.dll

2014-08-05 10:57:03 84180917AAB55EE4392C54E0E0BD4022 166792 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\psmachine.dll

2014-08-05 10:57:03 715CCB3F5EDA626198CCADC7AB8CE9A2 189320 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\psuser_64.dll

2014-08-05 10:57:03 3D58798BD1D1F96381C0B47CA859739D 166792 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\psuser.dll

2014-08-05 10:57:02 DEC1A40D0210FAD3BB67028B97F155A4 26112 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateHelper.msi

2014-08-05 10:57:02 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateBroker.exe

2014-08-05 10:57:02 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleCrashHandler64.exe

2014-08-05 10:57:02 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateOnDemand.exe

2014-08-05 10:57:02 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateSetup.exe

2014-08-05 10:57:02 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateComRegisterShell64.exe

2014-08-05 10:57:02 77E585EDD4C7EB7AB2ACC36BC1DC32A5 1696648 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\goopdate.dll

2014-08-05 10:57:02 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdate.exe

2014-08-05 10:57:02 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleCrashHandler.exe

2014-08-05 10:40:04 FB5621842FDABF9F8359775573498FBC 605064 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\npGoogleUpdate3.dll

2014-08-05 10:40:04 C95CDDF65F9F8C9433AFF8F0A811375A 189320 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\psmachine_64.dll

2014-08-05 10:40:04 84180917AAB55EE4392C54E0E0BD4022 166792 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\psmachine.dll

2014-08-05 10:40:04 715CCB3F5EDA626198CCADC7AB8CE9A2 189320 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\psuser_64.dll

2014-08-05 10:40:04 3D58798BD1D1F96381C0B47CA859739D 166792 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\psuser.dll

2014-08-05 10:40:03 DEC1A40D0210FAD3BB67028B97F155A4 26112 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateHelper.msi

2014-08-05 10:40:03 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateBroker.exe

2014-08-05 10:40:03 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleCrashHandler64.exe

2014-08-05 10:40:03 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateOnDemand.exe

2014-08-05 10:40:03 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateSetup.exe

2014-08-05 10:40:03 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateComRegisterShell64.exe

2014-08-05 10:40:03 77E585EDD4C7EB7AB2ACC36BC1DC32A5 1696648 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\goopdate.dll

2014-08-05 10:40:03 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdate.exe

2014-08-05 10:40:03 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleCrashHandler.exe

====== Java Cache =====

2014-07-11 14:40:54 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Brenda\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-63724196

====== C:\Windows\SysWOW64 =====

2014-08-02 14:17:44 867148EBF47E7E7E7B21C07B4A981929 581600 ----a-w- C:\Windows\SysWOW64\wuapi.dll

2014-08-02 14:17:44 372218B80DEF827063049EBEE76B7501 92672 ----a-w- C:\Windows\SysWOW64\wudriver.dll

2014-08-02 14:17:44 255F0417EC31C71585824269522EC8E9 36320 ----a-w- C:\Windows\SysWOW64\wups.dll

2014-08-02 14:17:29 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\SysWOW64\wuapp.exe

2014-08-02 14:17:29 5AA2CAD923E9E647276A61387E83DDD0 179656 ----a-w- C:\Windows\SysWOW64\wuwebv.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2014-08-02 14:18:01 EAD9E413A6CEB9FD8E2AD9DC0716C061 58336 ----a-w- C:\Windows\Sysnative\wuauclt.exe

2014-08-02 14:18:01 E76F105AD039B9E4DA9ECE839298C4A2 44512 ----a-w- C:\Windows\Sysnative\wups2.dll

2014-08-02 14:18:01 6335F8B4B89F002A3801473C1A799237 2620928 ----a-w- C:\Windows\Sysnative\wucltux.dll

2014-08-02 14:18:01 61FF576450CCC80564B850BC3FB6713A 2477536 ----a-w- C:\Windows\Sysnative\wuaueng.dll

2014-08-02 14:17:44 7EC6617005F76714C7E16605E7A8AB06 38880 ----a-w- C:\Windows\Sysnative\wups.dll

2014-08-02 14:17:44 1180B5ADFB507258DA10F51B46681A33 97792 ----a-w- C:\Windows\Sysnative\wudriver.dll

2014-08-02 14:17:44 0DB2758CF1BAFE22E0970FDA0785B74C 700384 ----a-w- C:\Windows\Sysnative\wuapi.dll

2014-08-02 14:17:29 45D4BDEA136E72E75CF008D3C38D949A 198600 ----a-w- C:\Windows\Sysnative\wuwebv.dll

2014-08-02 14:17:29 29FE783F75362AD6D2D9C0555BA83BD2 36864 ----a-w- C:\Windows\Sysnative\wuapp.exe

====== C:\Windows\Sysnative\drivers =====

2014-08-02 07:34:21 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys

2014-08-01 20:12:02 5BDD44F2D43C4A9ABBD0675724676919 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys

2014-08-01 20:12:02 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys

2014-07-10 09:03:37 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys

====== C:\Windows\Tasks ======

2014-07-12 21:27:47 C17DB124EC4DD3C9C2A54629C64B68E2 3878 ----a-w- C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater

2014-07-12 21:27:47 2313E9D6960A04A92384513CBD06C981 940 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-08-01 15:10:54 -------- d-----w- C:\Program Files\trend micro

2014-08-01 12:59:08 -------- d-----w- C:\Program Files\Microsoft Silverlight

======= C:\PROGRA~2 =====

2014-08-01 18:41:38 -------- d-----w- C:\PROGRA~2\Adobe

2014-08-01 12:59:08 -------- d-----w- C:\PROGRA~2\Microsoft Silverlight

2014-07-11 09:56:40 -------- d-----w- C:\PROGRA~2\COMMON~1\Java

======= C: =====

====== C:\Users\Brenda\AppData\Roaming ======

2014-08-01 18:42:59 -------- d-----w- C:\Users\Brenda\AppData\Local\Adobe

2014-07-29 15:13:59 -------- d-----w- C:\Users\Brenda\AppData\Roaming\InstallShield

====== C:\Users\Brenda ======

2014-08-03 16:54:10 -------- d-----w- C:\ProgramData\Soulseek

2014-07-11 09:53:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==

2014-08-05 10:57:02 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateBroker.exe

2014-08-05 10:57:02 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleCrashHandler64.exe

2014-08-05 10:57:02 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateOnDemand.exe

2014-08-05 10:57:02 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateSetup.exe

2014-08-05 10:57:02 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdateComRegisterShell64.exe

2014-08-05 10:57:02 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleUpdate.exe

2014-08-05 10:57:02 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Users\Brenda\AppData\Local\Temp\{54CF6B2D-5299-4C6F-8256-4087BB61AAA3}\GoogleCrashHandler.exe

2014-08-05 10:40:03 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateBroker.exe

2014-08-05 10:40:03 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleCrashHandler64.exe

2014-08-05 10:40:03 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateOnDemand.exe

2014-08-05 10:40:03 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateSetup.exe

2014-08-05 10:40:03 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdateComRegisterShell64.exe

2014-08-05 10:40:03 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleUpdate.exe

2014-08-05 10:40:03 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Users\Brenda\AppData\Local\Temp\{A46466A2-ECFA-442E-B968-FB3DB73DCC40}\GoogleCrashHandler.exe

2014-08-05 09:57:33 5CA3B9DB1F03E19C4EAD46A7322D1D3F 39749712 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\36.0.1985.125\36.0.1985.125_chrome_installer.exe

2014-08-02 14:18:01 EAD9E413A6CEB9FD8E2AD9DC0716C061 58336 ----a-w- C:\Windows\System32\wuauclt.exe

2014-08-02 14:17:29 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\SysWOW64\wuapp.exe

2014-08-02 14:17:29 29FE783F75362AD6D2D9C0555BA83BD2 36864 ----a-w- C:\Windows\System32\wuapp.exe

2014-08-02 08:25:33 211F96EB417FF837A70F5130E63A1A45 400840 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_4D9709C1FA1422BA.exe

2014-08-02 08:25:29 E8B7FD67DA14A7BE57A5CB80E3139E60 309704 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_52E818EF81C83A9B.exe

2014-08-02 08:25:25 4C401FCC6D0C95E1A5D989E403E18F2F 1072072 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_8CA8B41417E66DEB.exe

2014-08-02 08:23:06 5CA3B9DB1F03E19C4EAD46A7322D1D3F 39749712 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.125\36.0.1985.125_chrome_installer.exe

2014-08-01 18:42:23 5D61BE7DB55B026A5D61A3EED09D0EAD 39408 ----a-w- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

2014-08-01 18:42:23 5D4BC124FAAE6730AC002CDB67BF1A1C 194032 ----a-w- C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

2014-08-01 18:42:21 E8B7FD67DA14A7BE57A5CB80E3139E60 309704 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

2014-08-01 18:42:21 211F96EB417FF837A70F5130E63A1A45 400840 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_64.exe

2014-08-01 18:42:20 4BEAF576CB43358C4DB9F45AC7C09CDB 194032 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe

2014-08-01 18:42:20 4B78E9AE06F7C310E30EE2FA5B7EBC3C 1721296 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\SearchWithGoogleUpdate_C993F490EED40C1B.exe

2014-08-01 18:42:20 1F2AFAB903C0D48480561F3BBD4539C2 739640 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdateSetup_5CC4B0F53D73AD88.exe

2014-08-01 18:42:13 2040B57C08F7A97E4E44ACB324647CF2 6110688 ----atw- C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\0.0.0.0\googletoolbarinstaller_full_signed.exe

2014-08-01 17:21:29 C5D237A3DA4A914D19D825C73FDE4487 8848464 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.125\36.0.1985.125_35.0.1916.153_chrome_updater.exe

=== C: other files ==

2014-08-02 07:34:21 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys

2014-08-01 20:12:02 5BDD44F2D43C4A9ABBD0675724676919 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys

2014-08-01 20:12:02 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"

"TkBellExe"="C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe -osboot"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="c:\\programdata\\wincert\\win32cert.dll c:\\program files (x86)\\movies c:\\progra~3\\browse~1\\23796~1.11\\{16cdf~1\\browse~1.dll c:\\progra~3\\browse~1\\23787~1.43\\{16cdf~1\\browse~1.dll"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe ARM"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="AdobeAAMUpdater-1.0"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="BCSSync"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CommonToolkitTray]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="CommonToolkitTray"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Fighters\\Tray\\FightersTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HotKeysCmds"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\hkcmd.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IgfxTray]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="IgfxTray"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\igfxtray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LManager]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LManager"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Launch Manager\\LManager.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LWBMOUSE]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LWBMOUSE"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Browser Mouse\\Browser Mouse\\1.0\\lwbwheel.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Persistence"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\igfxpers.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Power Management]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Power Management"

"hkey"="HKLM"

"command"="C:\\Program Files\\Packard Bell\\Packard Bell Power Management\\ePowerTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="RtHDVCpl"

"hkey"="HKLM"

"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Sidebar"

"hkey"="HKCU"

"command"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="SunJavaUpdateSched"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TkBellExe]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="TkBellExe"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Real\\RealPlayer\\update\\realsched.exe\" -osboot"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windows Mobile Device Center]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Windows Mobile Device Center"

"hkey"="HKLM"

"command"="%windir%\\WindowsMobile\\wmdc.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]

"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Microsoft Office.lnk"

"backup"="C:\\Windows\\pss\\Microsoft Office.lnk.CommonStartup"

"backupExtension"=".CommonStartup"

"command"="C:\\PROGRA~2\\MICROS~4\\Office10\\OSA.EXE -b -l"

"item"="Microsoft Office"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Brenda^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk]

"path"="C:\\Users\\Brenda\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OpenOffice.org 3.4.1.lnk"

"backup"="C:\\Windows\\pss\\OpenOffice.org 3.4.1.lnk.Startup"

"backupExtension"=".Startup"

"command"="C:\\PROGRA~2\\OPENOF~1.ORG\\program\\QUICKS~1.EXE "

"item"="OpenOffice.org 3.4.1"

==== Startup Folders ======================

2014-05-22 20:40:23 1063 ----a-w- C:\Users\Brenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [12/07/2014 23:34]

C:\Windows\tasks\DriverUpdate Startup.job --a------ C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe [15/01/2014 10:55]

C:\Windows\tasks\GlaryInitialize 3.job --a------ C:\Program Files (x86)\Glary Utilities 3\Initialize.exe [28/10/2013 10:36]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05/10/2013 20:41]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05/10/2013 20:41]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\0" [c:\program files (x86)\internet explorer\iexplore.exe]

"C:\Windows\SysNative\tasks\4769" [wscript.exe C:\Users\Brenda\AppData\Local\Temp\launchie.vbs //B]

"C:\Windows\SysNative\tasks\Adobe ARM" ["C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"]

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\Adobe Reader Speed Launcher" ["C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"]

"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Brenda-PC-Brenda" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\SysNative\tasks\DealPlyUpdate" ["C:\Program Files (x86)\DealPly\DealPlyUpdate.exe"]

"C:\Windows\SysNative\tasks\DriverUpdate Startup" [C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe]

"C:\Windows\SysNative\tasks\GlaryInitialize 3" [C:\Program Files (x86)\Glary Utilities 3\Initialize.exe]

"C:\Windows\SysNative\tasks\GoforFilesUpdate" [C:\Program Files (x86)\GoforFiles\GFFUpdater.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\NBAgent" [C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe]

"C:\Windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton AntiVirus\Engine\21.2.0.38\WSCStub.exe"]

"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1317670609-1908533779-1924947057-1001" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1317670609-1908533779-1924947057-1001" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{29BAA485-4E4C-4A94-8407-443CD4812E93}" [C:\Windows\system32\msfeedssync.exe]

"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

"C:\Windows\SysNative\tasks\Norton AntiVirus\Norton Error Analyzer" [C:\Program Files (x86)\Norton AntiVirus\Engine\21.2.0.38\SymErr.exe]

"C:\Windows\SysNative\tasks\Norton AntiVirus\Norton Error Processor" [C:\Program Files (x86)\Norton AntiVirus\Engine\21.2.0.38\SymErr.exe]

"C:\Windows\SysNative\tasks\Norton Identity Safe\Norton Error Analyzer" [C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.0.43\SymErr.exe]

"C:\Windows\SysNative\tasks\Norton Identity Safe\Norton Error Processor" [C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.0.43\SymErr.exe]

"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"{F04D2D30-776C-4d02-8627-8E4385ECA58D}"="C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.6.0.27\coFFPlgn" [11/05/2014 20:07]

==== Firefox Extensions ======================

ExtDir: C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions

- Speed Test Analysis - %ExtDir%\speedtestanalysis@SpeedAnalysis.com

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Brenda\AppData\Roaming\Mozilla\Firefox\Profiles\q98yifzs.default

F3B0E300AFC94E1A775A2D935A7D384F - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll - Shockwave for Director / Shockwave for Director

A64F2C388DC26BE3E469EDC3657B14F4 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks RealDownloader Chrome Background Extension Plug-In (32-bit)

C45F7E59F2A0A6D3C4E90117F4752414 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks RealDownloader PepperFlashVideoShim Plug-In (32-bit)

F7AEAD4303A056F2D1685B43024776CA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks RealDownloader HTML5VideoShim Plug-In (32-bit)

FA0A3008589567CB7196620B05C9F28D - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

doagiokpgboiomffjfhaiimafndmmpni - C:\Users\Brenda\AppData\Local\Rich Media Player\BrowserExtensions\Chrome\richmediadownloader.crx[]

fkcdbkhjcaljlfolhllfneigeepmjfim - C:\Users\Brenda\AppData\Local\Rich Media Player\BrowserExtensions\Chrome\playerextension.crx[]

idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[16/04/2013 03:11]

kiplfnciaokpcennlkldkdaeaaomamof - C:\Users\Brenda\AppData\Local\Torch\Plugins\TorchPlugin.crx[]

nppllibpnmahfaklnpggkibhkapjkeob - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.0.43\Exts\Chrome.crx[]

pgafcinpmmpklohkojmllohd****efph - C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[]

Google Wallet - Brenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== C:\zoek_backup content ======================

C:\zoek_backup (files=558 folders=99 228725274 bytes)

==== EOF on di 05/08/2014 at 22:15:14,82 ======================

gr engelbewaarster

Geplaatst:

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

 
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows];r64
 "AppInit_DLLs"=-;r64
 C:\Windows\SysNative\tasks\0;fs
 C:\Windows\SysNative\tasks\4769;fs
 C:\Windows\SysNative\tasks\DealPlyUpdate;fs
 C:\Program Files (x86)\DealPly;fs
 C:\Windows\SysNative\tasks\DriverUpdate Startup;fs
 C:\Program Files (x86)\DriverUpdate;fs
 C:\Windows\SysNative\tasks\GoforFilesUpdate;fs
 C:\Program Files (x86)\GoforFiles;fs
 C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com;fs
 CHRdefaults;
 Autoclean;

  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Geplaatst:

hierbij het resultaat uit de klad blog

gr engelbewaarster

Zoek.exe v5.0.0.0 Updated 04-August-2014

Tool run by Brenda on wo 06/08/2014 at 17:58:37,75.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Brenda\Contacts\Downloads\zoek.exe [scan all users] [script inserted]

==== Older Logs ======================

C:\zoek-results2014-08-01-202507.log 23718 bytes

C:\zoek-results2014-08-05-201514.log 27494 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"BrowserMngrDefaultScope"=-

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\GoforFiles not found

"C:\Windows\Installer\e4cb8b.msi" not found

C:\Windows\SysNative\tasks\0 deleted

C:\Windows\SysNative\tasks\4769 deleted

C:\Windows\SysNative\tasks\DealPlyUpdate deleted

C:\Program Files (x86)\DealPly deleted

C:\Windows\SysNative\tasks\DriverUpdate Startup deleted

C:\Windows\SysNative\tasks\GoforFilesUpdate deleted

C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com deleted

C:\Users\Brenda\daemonprocess.txt deleted

C:\Users\Brenda\.android deleted

C:\PROGRA~2\GUTF8C2.tmp deleted

C:\PROGRA~2\GUMF8C1.tmp deleted

C:\PROGRA~2\Mozilla Firefox\user.js deleted

C:\PROGRA~2\BearShare Applications\MediaBar deleted

C:\PROGRA~2\Wondershare deleted

C:\PROGRA~2\searchresultstb deleted

C:\PROGRA~2\Ask.com deleted

C:\PROGRA~2\Conduit deleted

C:\PROGRA~2\COMMON~1\Wondershare deleted

C:\user.js deleted

C:\Users\Brenda\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BearShare.lnk deleted

C:\Users\Brenda\AppData\Roaming\Wondershare deleted

C:\Users\Brenda\AppData\Roaming\GoforFiles deleted

C:\Users\Brenda\AppData\Roaming\DVDVideoSoftIEHelpers deleted

C:\Users\Brenda\AppData\Roaming\BabSolution deleted

C:\Users\Brenda\AppData\Roaming\Babylon deleted

C:\PROGRA~3\Ask deleted

C:\PROGRA~3\{0B944FF9-D61F-4D53-99D1-CBD889A971D0} deleted

C:\Users\Brenda\AppData\Local\APN deleted

C:\Users\Brenda\AppData\Local\SearchProtect deleted

C:\Users\Brenda\AppData\Local\IAC deleted

C:\Users\Brenda\AppData\Local\BearShare deleted

C:\Users\Brenda\AppData\Local\Wondershare deleted

C:\Users\Brenda\AppData\Local\Mobogenie deleted

C:\Users\Brenda\AppData\Local\SwvUpdater deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted

C:\Users\Brenda\Searches deleted

C:\Users\Brenda\Downloads\NIS_20-3-1-22_SYMTB_SOFTONIC_MRFTT_617_9000-KW.exe deleted

C:\Users\Brenda\Downloads\NIS_20-3-1-22_SYMTB_SOFTONIC_MRFTT_617_9000-KW[1].exe deleted

C:\Users\Brenda\AppData\LocalLow\searchresultstb deleted

C:\Users\Brenda\AppData\LocalLow\wincorebsband deleted

C:\Users\Brenda\AppData\LocalLow\mediabarbs deleted

C:\Users\Brenda\AppData\LocalLow\MyWebSearch deleted

C:\Users\Brenda\AppData\LocalLow\MapsGalaxy_39 deleted

C:\Users\Brenda\AppData\LocalLow\Conduit deleted

C:\Users\Brenda\AppData\LocalLow\FunWebProducts deleted

C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted

C:\Windows\wininit.ini deleted

C:\end deleted

C:\Windows\SysNative\config\systemprofile\Searches deleted

C:\Windows\Syswow64\SearchProtect deleted

C:\Windows\SysWow64\AI_RecycleBin deleted

C:\Windows\SysWow64\searchplugins deleted

C:\Windows\SysWow64\Extensions deleted

"C:\PROGRA~3\C450C45FD99587CC0000C45000158D80\C450C45FD99587CC0000C45000158D80" deleted

"C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe" deleted

"C:\PROGRA~3\C450C45FD99587CC0000C45000158D80" deleted

"C:\Program Files (x86)\DriverUpdate" deleted

"C:\PROGRA~3\Trymedia" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"{F04D2D30-776C-4d02-8627-8E4385ECA58D}"="C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.6.0.27\coFFPlgn" [11/05/2014 20:07]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Brenda\AppData\Roaming\Mozilla\Firefox\Profiles\q98yifzs.default

F3B0E300AFC94E1A775A2D935A7D384F - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll - Shockwave for Director / Shockwave for Director

A64F2C388DC26BE3E469EDC3657B14F4 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks RealDownloader Chrome Background Extension Plug-In (32-bit)

C45F7E59F2A0A6D3C4E90117F4752414 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks RealDownloader PepperFlashVideoShim Plug-In (32-bit)

F7AEAD4303A056F2D1685B43024776CA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks RealDownloader HTML5VideoShim Plug-In (32-bit)

FA0A3008589567CB7196620B05C9F28D - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

doagiokpgboiomffjfhaiimafndmmpni - C:\Users\Brenda\AppData\Local\Rich Media Player\BrowserExtensions\Chrome\richmediadownloader.crx[]

fkcdbkhjcaljlfolhllfneigeepmjfim - C:\Users\Brenda\AppData\Local\Rich Media Player\BrowserExtensions\Chrome\playerextension.crx[]

idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[16/04/2013 03:11]

kiplfnciaokpcennlkldkdaeaaomamof - C:\Users\Brenda\AppData\Local\Torch\Plugins\TorchPlugin.crx[]

nppllibpnmahfaklnpggkibhkapjkeob - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.0.43\Exts\Chrome.crx[]

pgafcinpmmpklohkojmllohd****efph - C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[]

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{012E1000-F331-11DB-8314-0800200C9A66} Google Url="{searchTerms - Google Search}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="https://www.google.com/search?q={searchTerms}"

{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} Unknown Url="Not_Found"

==== Reset Google Chrome ======================

C:\Users\Brenda\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\Brenda\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

HKEY_USERS\S-1-5-21-1317670609-1908533779-1924947057-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\254796BF4AC84B64891B61C529A2E23F deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\doagiokpgboiomffjfhaiimafndmmpni deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fkcdbkhjcaljlfolhllfneigeepmjfim deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\nppllibpnmahfaklnpggkibhkapjkeob deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohd****efph deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA} deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FB697452-8CA4-46B4-98B1-165C922A2EF3} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\254796BF4AC84B64891B61C529A2E23F deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CommonToolkitTray deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Brenda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Brenda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Brenda\AppData\Local\Mozilla\Firefox\Profiles\q98yifzs.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Brenda\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2960 folders=391 862208728 bytes)

==== Empty Temp Folders ======================

C:\Users\Brenda\AppData\Local\Temp will be emptied at reboot

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Brenda\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on wo 06/08/2014 at 18:30:26,45 ======================

Geplaatst:

Oeps ... nu komt er plots een berg rotzooi tevoorschijn die in je eerdere logs nog niet aanwezig was. Het goede nieuws is dat de massa hiervan inmiddels al verwijderd is op de PC. Maar toch moeten we nog een volgende stap zetten:

Download adwcleaner.pngAdwCleaner by Xplode naar het bureaublad.

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op Scan.
  • Klik vervolgens op Clean.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

  • Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.