Ga naar inhoud

waarschijnlijk veel malware en misschien ook virussen op pc

antonio
 Delen

Aanbevolen berichten

antonio Verkenner

antonio

Geplaatst:
Geplaatst:

Hallokes  ben nieuw hier op het het forum  en hier terecht gekomen   via google  de dochter hare laptop zit heel waarschijnlijk vol met malware en virussen  heb van alles geprobeerd maar zie door het bos de bomen niet meer heb momenteel chrome gedounwload en fire fo om dat eplorer het niet doet zonder gek te worden van vervelende pop ups als ook een bepaalde letter toets werkt niet zoals je wel merkt .

 

graag jullie hulp  bedankt alvast antonio 

 

Link naar reactie
Delen op andere sites
Asus Grootmeester

Asus

Geplaatst:
Geplaatst:

Hoi antonio,

welkom op PC-Helpforum.be. ;)

Kan je het onderstaande uitvoeren en het gevraagde logje hier in je topic posten ? ...
 

Download 51a5f5d096dae-icon_RSIT.png RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hoe je controleert of je met een 32- of 64-bitversie van Windows werkt kan je hier bekijken.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

 

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

De handleiding voor het gebruik van RSIT kan je HIER bekijken en we hebben ook nog een instructievideo.

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Je Java software is verouderd.

Oudere versies hebben lekken die malware de kans geeft om zich te installeren op je systeem.

Ga naar Java en download daar de correcte Java versie.

  • Klik op "Gratis Java-download".
  • Ga akkoord met de licentiebepalingen en klik op de button voor de gratis download.
  • Het bestand JavaSetup wordt aangeboden - kies hier voor "bestand opslaan".
  • Sluit alle programma's die eventueel open zijn - zeker je web browser!
  • Ga dan naar Start > Configuratiescherm > Software en verwijder alle oudere versies van Java uit de Softwarelijst.
  • Vink alles aan met Java Runtime Environment (JRE of J2SE of JAVA) in de naam.
  • Klik dan op Verwijderen of op de Wijzig/Verwijder knop.
  • Herhaal dit tot alle oudere versies verdwenen zijn.
  • Na het verwijderen van alle oudere versies, herstart je pc.
  • Klik vervolgens op JavaSetup om de nieuwste versie van Java te installeren.
  • Vink de installatie van de Ask toolbar uit en ga dan verder met de installatie.

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Hier zit zeker een bende rotzooi op de PC. Met volgende stap mag je beginnen:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
{00000000-6E41-4FD3-8538-502F5495E5FC};c
C:\Program Files\Ask.com;fs
{00cbb66b-1d3b-46d3-9577-323a336acb50};c
C:\Program Files\BrowserCompanion;fs
{0974BA1E-64EC-11DE-B2A5-E43756D89593};c
{28387537-e3f9-4ed7-860c-11e69af4a8a0};c
{872b5b88-9db5-4310-bdd0-ac189557e5f5};c
C:\Program Files\DVDVideoSoftTB;fs
{8984B388-A5BB-4DF7-B274-77B879E179DB};c
C:\Program Files\Mail.Ru;fs
{963B125B-8B21-49A2-A3A8-E37092276531};c
{D4027C7F-154A-4066-A1AD-4243D8127440};c
{0974BA1E-64EC-11DE-B2A5-E43756D89593};c
{28387537-e3f9-4ed7-860c-11e69af4a8a0};c
{09900DE8-1DCA-443F-9243-26FF581438AF};c
{872b5b88-9db5-4310-bdd0-ac189557e5f5};c
{D4027C7F-154A-4066-A1AD-4243D8127440};c
{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1};c
Guard.Mail.ru;s
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00cbb66b-1d3b-46d3-9577-323a336acb50}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}];r
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r
""=-,r
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater];r
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Browser companion helper];r
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Guard.Mail.ru.gui];r
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftonicAssistant];r
C:\Users\MELISSA\AppData\Local\SoftonicAssistant;fs
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r
"AppInit_DLLs"=-;r
C:\Program Files\ShoppingReport2;fs
C:\Users\MELISSA\AppData\Roaming\BrowserCompanion;fs
emptyfolderscheck;delete
startupall;
filesrcm;
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar reactie
Delen op andere sites
antonio Verkenner

antonio

Geplaatst:
  • Auteur
Geplaatst:
 

Zoek.exe v5.0.0.0 Updated 28-12-2014

Tool run by MELISSA on ma 29/12/2014 at 13:45:48,58.

Microsoft® Windows Vista™ Home Premium  6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\MELISSA\Downloads\zoek.exe    [scan all users] [script inserted] [Checkboxes used]

 

==== System Restore Info ======================

 

29/12/2014 13:49:36 Zoek.exe System Restore Point Created Succesfully.

 

==== Empty Folders Check ======================

 

C:\Program Files\11B38B9A24554EAA94C63FA1C3A2786D deleted successfully

C:\Program Files\BearShare Applications deleted successfully

C:\Program Files\Malwarebytes' Anti-Malware deleted successfully

C:\Program Files\MSXML 4.0 deleted successfully

C:\Program Files\Samsung deleted successfully

C:\Program Files\ShoppingReport2 deleted successfully

C:\Program Files\Common Files\eSellerate deleted successfully

C:\Program Files\Common Files\Symantec Shared deleted successfully

C:\PROGRA~2\AVAST Software deleted successfully

C:\PROGRA~2\QuestBrowse deleted successfully

C:\Users\MELISSA\AppData\Roaming\Advanced System Protector deleted successfully

C:\Users\MELISSA\AppData\Roaming\Samsung deleted successfully

C:\Users\MELISSA\AppData\Roaming\Systweak deleted successfully

C:\Users\MELISSA\AppData\Roaming\Windows Live Writer deleted successfully

C:\Users\MELISSA\AppData\Local\PackageAware deleted successfully

 

==== Deleting CLSID Registry Keys ======================

 

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00cbb66b-1d3b-46d3-9577-323a336acb50} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00cbb66b-1d3b-46d3-9577-323a336acb50} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0974BA1E-64EC-11DE-B2A5-E43756D89593} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{28387537-e3f9-4ed7-860c-11e69af4a8a0} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872b5b88-9db5-4310-bdd0-ac189557e5f5} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872b5b88-9db5-4310-bdd0-ac189557e5f5} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8984B388-A5BB-4DF7-B274-77B879E179DB} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8984B388-A5BB-4DF7-B274-77B879E179DB} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{963B125B-8B21-49A2-A3A8-E37092276531} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{09900DE8-1DCA-443F-9243-26FF581438AF} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1024F1BE-76DC-40d5-AB98-664A4185E5FA} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{00cbb66b-1d3b-46d3-9577-323a336acb50} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00cbb66b-1d3b-46d3-9577-323a336acb50} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{872b5b88-9db5-4310-bdd0-ac189557e5f5} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{8984B388-A5BB-4DF7-B274-77B879E179DB} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{963B125B-8B21-49A2-A3A8-E37092276531} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{09900DE8-1DCA-443F-9243-26FF581438AF} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1024F1BE-76DC-40d5-AB98-664A4185E5FA} deleted successfully

 

==== Deleting CLSID Registry Values ======================

 

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{872b5b88-9db5-4310-bdd0-ac189557e5f5} deleted successfully

HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0974BA1E-64EC-11DE-B2A5-E43756D89593} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{28387537-e3f9-4ed7-860c-11e69af4a8a0} deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{872b5b88-9db5-4310-bdd0-ac189557e5f5} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{872b5b88-9db5-4310-bdd0-ac189557e5f5} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{09900DE8-1DCA-443F-9243-26FF581438AF} deleted successfully

 

==== Deleting Services ======================

 

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Guard.Mail.ru deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Guard.Mail.ru deleted successfully

 

==== Registry Fix Code ======================

 

Windows Registry Editor Version 5.00

 

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00cbb66b-1d3b-46d3-9577-323a336acb50}] 

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}] 

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0}] 

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}] 

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}] 

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}] 

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] 

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater] 

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Browser companion helper] 

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Guard.Mail.ru.gui] 

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftonicAssistant] 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 

"AppInit_DLLs"=- 

 

==== Deleting Files \ Folders ======================

 

C:\Program Files\ShoppingReport2 not found

C:\Program Files\Ask.com deleted

C:\Program Files\BrowserCompanion deleted

C:\Program Files\DVDVideoSoftTB deleted

C:\Users\MELISSA\AppData\Local\SoftonicAssistant deleted

C:\Users\MELISSA\AppData\Roaming\BrowserCompanion deleted

C:\Users\MELISSA\appdata\locallow\DVDVideoSoftTB deleted

C:\PROGRA~2\DivX deleted

C:\Users\MELISSA\AppData\LocalLow\Conduit deleted

C:\Program Files\Conduit deleted

C:\Program Files\Common Files\DVDVideoSoft\TB deleted

C:\Program Files\Common Files\DVDVideoSoft\bin deleted

C:\Program Files\iMesh Applications deleted

C:\Program Files\Whilokii deleted

C:\Program Files\Common Files\Plasmoo deleted

C:\extensions deleted

C:\found.000 deleted

C:\found.001 deleted

C:\Users\MELISSA\AppData\Roaming\DVDVideoSoftIEHelpers deleted

C:\Users\MELISSA\AppData\Roaming\OpenCandy deleted

C:\PROGRA~2\Ask deleted

C:\Users\MELISSA\AppData\Local\funmoods-speeddial.crx deleted

C:\Users\MELISSA\AppData\Local\BearShare deleted

C:\Users\MELISSA\AppData\Local\iMesh deleted

C:\Users\MELISSA\Downloads\SoftonicDownloader_voor_ubuntu.exe deleted

C:\Users\MELISSA\AppData\LocalLow\ShoppingReport2 deleted

C:\Users\MELISSA\AppData\LocalLow\bbrs_002.tb deleted

C:\Users\MELISSA\AppData\LocalLow\imeshbandmltbpi deleted

C:\Users\MELISSA\AppData\LocalLow\mediabarim deleted

C:\Users\MELISSA\AppData\LocalLow\PriceGong deleted

C:\Users\MELISSA\AppData\LocalLow\FunWebProducts deleted

C:\END deleted

C:\Users\MELISSA\Documents\iMesh deleted

C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} deleted

"C:\Program Files\Mail.Ru\Guard\GuardMailRu.exe" deleted

"C:\Program Files\Mail.Ru" deleted

"C:\Program Files\Mail.Ru\Guard" deleted

 

==== Files Recently Created / Modified ======================

 

====== C:\Windows ====

====== C:\Users\MELISSA\AppData\Local\Temp ====

2014-12-25 14:07:11 62C258E6DA1DB85C26670D50B51E0980 245928 ----a-w- C:\Users\MELISSA\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\AskPartnerCobrandingTool.exe

2014-12-25 14:07:10 88E3225D42EB43D99A519080E039FEE4 42880 ----a-w- C:\Users\MELISSA\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\RunIE.exe

2014-12-25 14:07:09 2EA679EC1C6056BAA3CC912FB014B318 175104 ----a-w- C:\Users\MELISSA\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\instApp.exe

2014-12-25 13:51:57 4447723C9263C249C25E9EB93A759E52 1153144 ----a-w- C:\Users\MELISSA\AppData\Local\Temp\SoftonicAssistant_v0-1-6.exe

2014-12-18 20:59:07 6A6169BF73045E89609F45556D01F61E 112271096 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-3d92a6c3.exe

====== Java Cache =====

====== C:\Windows\system32 =====

2014-12-29 12:29:03 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Windows\System32\java.exe

2014-12-29 12:29:03 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Windows\System32\javaw.exe

2014-12-29 12:29:03 742BD1F196FEFC94A6379BA039D3CD00 96680 ----a-w- C:\Windows\System32\WindowsAccessBridge.dll

2014-12-22 19:17:53 51992CC4DF2DB150950C6CB505556B9A 146432 ----a-w- C:\Windows\System32\msaudite.dll

2014-12-22 19:17:46 15F315B53C69930BF907D9A0FFCB6206 619520 ----a-w- C:\Windows\System32\adtschema.dll

2014-12-22 19:17:37 DBD84E59D631569EC3E756EF144E8431 449536 ----a-w- C:\Windows\System32\termsrv.dll

2014-12-22 19:15:48 D7E28676D83AE6568CCF99BD01700734 2048 ----a-w- C:\Windows\System32\tzres.dll

2014-12-22 19:15:01 F074BF1F79D749FCB8C2B739651CD816 974848 ----a-w- C:\Windows\System32\WindowsCodecs.dll

2014-12-22 19:09:48 06A9049BA8B9F20D755CF03FD12E8AFD 2048 ----a-w- C:\Windows\System32\msxml3r.dll

2014-12-22 19:09:46 37A4DF3BCA563FB7537B881AE91BA9C4 1249280 ----a-w- C:\Windows\System32\msxml3.dll

2014-12-22 19:09:25 1DE1C07B256961012DCE0674EA488DE7 499200 ----a-w- C:\Windows\System32\kerberos.dll

2014-12-22 19:08:55 BC4C024BDC8B676CC58BCE1D5BA7BC04 67072 ----a-w- C:\Windows\System32\packager.dll

2014-12-18 22:28:28 FD7A26BF790751B527E632BD9346DDFD 729600 ----a-w- C:\Windows\System32\IMJP10K.DLL

2014-12-18 22:26:25 8E98A99187FF17FC1D48E6FAFFD870BE 316928 ----a-w- C:\Windows\System32\audiosrv.dll

2014-12-18 22:26:24 BE377621E2D2B483F8EF447079E55585 396800 ----a-w- C:\Windows\System32\AudioEng.dll

2014-12-18 22:26:24 A0344CD5E3F552340AB226E864E1710B 170496 ----a-w- C:\Windows\System32\EncDump.dll

2014-12-18 22:26:24 56B73070DB745E192307EB7AB6C55CD5 274432 ----a-w- C:\Windows\System32\AUDIOKSE.dll

2014-12-18 22:04:25 2908C2D90B78FDC24326B7854079E44E 564224 ----a-w- C:\Windows\System32\oleaut32.dll

2014-12-18 21:58:05 A2083D925A6677229CDE79E9F14A1FBC 278528 ----a-w- C:\Windows\System32\schannel.dll

2014-12-18 21:58:04 0C96812AAEDA38C89DC6C3F0AE7B6930 1259008 ----a-w- C:\Windows\System32\lsasrv.dll

2014-12-18 21:57:15 2833F623494FC1EFC0EAC4401CBBF2F2 2054656 ----a-w- C:\Windows\System32\win32k.sys

2014-12-18 21:10:11 D3FE7135827884946E5ED4E4DD96B472 10752 ----a-w- C:\Windows\System32\msfeedssync.exe

2014-12-18 21:10:10 70DD19C20344660B1D32057603A9820D 11776 ----a-w- C:\Windows\System32\mshta.exe

2014-12-18 21:10:10 5281C1E96FDE868A822260478694BA54 421376 ----a-w- C:\Windows\System32\vbscript.dll

2014-12-18 21:10:10 3F0A7F435BAB0ED4070BBCE73F1918F3 1139712 ----a-w- C:\Windows\System32\urlmon.dll

2014-12-18 21:10:10 117980ADC4A9E349571810D20B14BFB8 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll

2014-12-18 21:10:09 823B559B2EF3D86DB920EA16102858E1 353792 ----a-w- C:\Windows\System32\dxtmsft.dll

2014-12-18 21:10:09 5C3D2065153E4A4273DEDD87A8BC1805 65536 ----a-w- C:\Windows\System32\jsproxy.dll

2014-12-18 21:10:09 407FD4AAE5E119A441CCEAA4C3276DDF 717824 ----a-w- C:\Windows\System32\jscript.dll

2014-12-18 21:10:08 F18D4C903AE56BD9852D1D9E02CF1730 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl

2014-12-18 21:10:08 E633199D0EE2682618FA5B762D892F04 607744 ----a-w- C:\Windows\System32\msfeeds.dll

2014-12-18 21:10:07 D32B633111A9F99F8DCE36F1A6278FC7 231936 ----a-w- C:\Windows\System32\url.dll

2014-12-18 21:10:07 898479188B3DBCB7F2BAC888D6456636 1802752 ----a-w- C:\Windows\System32\iertutil.dll

2014-12-18 21:10:01 AA680F0065A505118BDD9181BCE7C83D 1129472 ----a-w- C:\Windows\System32\wininet.dll

2014-12-18 21:09:59 ED7DBB46D75BD5DE33E9E06C7CCDC4E8 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2014-12-18 21:09:58 C23F63949092BC7086BD23743A28C46B 176640 ----a-w- C:\Windows\System32\ieui.dll

2014-12-18 21:09:58 5310BF0FF12033B7F79F163805BE721A 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2014-12-18 21:09:58 4D6B5B1CE39F6A2477FDE3117D84BDAB 367104 ----a-w- C:\Windows\System32\html.iec

2014-12-18 21:09:57 5E251125799567959443D8F466DBEA28 223232 ----a-w- C:\Windows\System32\dxtrans.dll

2014-12-18 21:09:55 7247B8F630630FCF495B809962D52970 73216 ----a-w- C:\Windows\System32\mshtmled.dll

2014-12-18 21:09:53 4C0FA381EC7348F05432B2976924A031 1810944 ----a-w- C:\Windows\System32\jscript9.dll

2014-12-18 21:09:51 829532FD1584422EB7F4C49F767D1E4B 9740800 ----a-w- C:\Windows\System32\ieframe.dll

2014-12-18 21:09:47 91F488C0ED1D8B1FDC112F95A4965CC6 12369920 ----a-w- C:\Windows\System32\mshtml.dll

====== C:\Windows\system32\drivers =====

2014-11-29 19:05:09 4E404505B3F62ECFBDBCBBCF0A72DBC5 143360 ----a-w- C:\Windows\System32\drivers\fastfat.sys

====== C:\Windows\Tasks ======

2014-12-22 22:41:34 026796D43DEF960E4925BC92F120444E 3326 ----a-w- C:\Windows\system32\Tasks\SoftwareInformerService

2014-12-22 18:07:52 2EEF62E2EE62B4904536ECEF337E2F66 2960 ----a-w- C:\Windows\system32\Tasks\{D552686B-16C1-42C2-939D-94F708B54164}

2014-12-21 20:14:29 F638DF93CCBEE09432BE44635593EA80 3518 ----a-w- C:\Windows\system32\Tasks\SUPERAntiSpyware Scheduled Task 0826d4e4-dd36-4f16-acc3-f5cdb357d86d

2014-12-21 20:14:29 97BD0B033D71110ECDD35996ED1F9724 514 ----a-w- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 0826d4e4-dd36-4f16-acc3-f5cdb357d86d.job

2014-12-21 20:14:28 B7A4D94ADFA8F98C479DBFE8C5815DEE 514 ----a-w- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task b907a193-9ee2-48ed-aaf8-f79998825fbd.job

2014-12-21 20:14:28 85330079973C6A952B5097614A740131 3444 ----a-w- C:\Windows\system32\Tasks\SUPERAntiSpyware Scheduled Task b907a193-9ee2-48ed-aaf8-f79998825fbd

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-12-29 12:23:14 -------- d-----w- C:\Program Files\Common Files\Java

2014-12-25 16:25:06 -------- d-----w- C:\Program Files\Trend Micro

2014-12-25 14:00:09 -------- d-----w- C:\Program Files\VidPlaya

2014-12-23 12:54:13 -------- d-----w- C:\Program Files\Recuva

2014-12-22 22:56:04 -------- d-----w- C:\Program Files\Belarc

2014-12-22 22:41:27 -------- d-----w- C:\Program Files\Software Informer

2014-12-22 22:34:34 -------- d-----w- C:\Program Files\Mozilla Maintenance Service

2014-12-22 22:13:11 -------- d-----w- C:\Program Files\Speccy

2014-12-21 20:11:53 -------- d-----w- C:\Program Files\SUPERAntiSpyware

======= C: =====

2014-12-27 11:58:41 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\MSDOS.SYS

2014-12-27 11:58:41 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\IO.SYS

====== C:\Users\MELISSA\AppData\Roaming ======

2014-12-25 14:03:07 -------- d-----w- C:\Users\MELISSA\AppData\Roaming\vlc

2014-12-23 15:08:59 -------- d-----w- C:\Users\MELISSA\AppData\Local\CrashDumps

2014-12-23 12:37:21 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\CrashDumps

2014-12-23 01:08:17 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm

2014-12-22 22:41:29 -------- d-----w- C:\Users\MELISSA\AppData\Roaming\Software Informer

2014-12-22 22:34:46 -------- d-----w- C:\Users\MELISSA\AppData\Local\Mozilla

2014-12-22 22:14:00 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking

2014-12-22 18:02:55 -------- d-----w- C:\Users\MELISSA\AppData\Roaming\Leadertech

2014-12-21 20:14:21 -------- d-----w- C:\Users\MELISSA\AppData\Roaming\SUPERAntiSpyware.com

====== C:\Users\MELISSA ======

2014-12-29 12:18:19 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\MELISSA\Downloads\chromeinstall-8u25 (1).exe

2014-12-29 12:17:57 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\MELISSA\Downloads\chromeinstall-8u25.exe

2014-12-28 12:32:44 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\MELISSA\Downloads\RSIT.exe

2014-12-28 00:05:01 50BA5FE18BB940B2BF7358241BE0B73B 650840848 ----a-w- C:\Users\MELISSA\Downloads\rescue-system.exe

2014-12-25 13:00:33 75B4AC8B365B27BE9ACD98095783017F 2071896 ----a-w- C:\Users\MELISSA\Downloads\SP27213.exe

2014-12-23 12:54:20 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva

2014-12-23 12:52:53 3F9C12E62A0AE1D7A9DBB252195C4C54 4210920 ----a-w- C:\Users\MELISSA\Downloads\rcsetup151.exe

2014-12-22 22:55:04 1113807EB5BE1CC8EF620C24B7C962B3 3655960 ----a-w- C:\Users\MELISSA\Downloads\advisorinstaller.exe

2014-12-22 22:41:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Informer

2014-12-22 22:40:22 EC2B82281210F141BEB0D499E211C1CB 3441760 ----a-w- C:\Users\MELISSA\Downloads\siinst.exe

2014-12-22 22:34:36 -------- d-----w- C:\ProgramData\Mozilla

2014-12-22 22:30:10 3D345061DFD15F533C33D78829FBD31A 244280 ----a-w- C:\Users\MELISSA\Downloads\Firefox Setup Stub 34.0.5.exe

2014-12-22 22:13:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy

2014-12-22 22:11:48 A7DD64E7AB5605665CE68A00814343D7 5122624 ----a-w- C:\Users\MELISSA\Downloads\spsetup127 (2).exe

2014-12-22 22:10:55 A7DD64E7AB5605665CE68A00814343D7 5122624 ----a-w- C:\Users\MELISSA\Downloads\spsetup127 (1).exe

2014-12-22 22:10:34 A7DD64E7AB5605665CE68A00814343D7 5122624 ----a-w- C:\Users\MELISSA\Downloads\spsetup127.exe

2014-12-21 20:12:22 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware

2014-12-21 20:11:53 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com

 

====== C: exe-files ==

2014-12-29 12:21:59 AA3520FB0133A56BEE1DB34D74DBEF64 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe

2014-12-29 12:21:59 75D477E868CA51EC1B09D730570F322B 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe

2014-12-29 12:21:59 691D49FB44EDE9788288CABE4F7E0DAF 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe

2014-12-29 12:21:38 67F763B09F4BC8689E6FA9761E068D74 159656 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\unpack200.exe

2014-12-29 12:21:37 DC197DCE6325CBAC905DE0D0E3BA3E8E 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\rmid.exe

2014-12-29 12:21:37 75EE99C7F0038C746D82C76221ECA4EF 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\policytool.exe

2014-12-29 12:21:37 57E1F756FAA787623DFCD2C1B2AACC68 51112 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\ssvagent.exe

2014-12-29 12:21:37 33D2AF53E209DA3E2BA939EB89801DC0 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\rmiregistry.exe

2014-12-29 12:21:37 29E65AC6AFD8A0A9CAA361FF6F7B4886 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\servertool.exe

2014-12-29 12:21:37 28FC00F89631B0F6E1E9CA386FADD566 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\tnameserv.exe

2014-12-29 12:21:36 E3E6B18458FFB07CB24D7A0BA77C9FDF 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\pack200.exe

2014-12-29 12:21:36 A458E2535E46151690E53E2A03FAA711 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\keytool.exe

2014-12-29 12:21:36 9BFAEF308D50779F6B255CB7BA7DCA5A 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\kinit.exe

2014-12-29 12:21:36 7AB1F1B3FB6C3DACA34EA2F988CDF5AC 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\orbd.exe

2014-12-29 12:21:36 4109C4DB4BD48F5BF8115C7523A6B6F8 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\klist.exe

2014-12-29 12:21:36 26C7F32186B1F0364CD06EA69227A79D 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\ktab.exe

2014-12-29 12:21:35 4367C05B0CF5553E71B34F51003D0615 76200 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jp2launcher.exe

2014-12-29 12:21:34 B719E0F43166037DF46B5CFBE60A5118 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jjs.exe

2014-12-29 12:21:33 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javaw.exe

2014-12-29 12:21:33 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javaws.exe

2014-12-29 12:21:32 70E67429D2C011FD0419AF899A8D0D70 68520 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe

2014-12-29 12:21:31 BB8C890E3E6372F2720709262BD42BF4 30632 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jabswitch.exe

2014-12-29 12:21:31 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\java.exe

2014-12-29 12:21:31 74713E9C1B01B152DDD3A1A3519A3647 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\java-rmi.exe

2014-12-29 12:18:19 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\MELISSA\Downloads\chromeinstall-8u25 (1).exe

2014-12-29 12:17:57 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\MELISSA\Downloads\chromeinstall-8u25.exe

2014-12-28 12:34:05 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\Trend Micro\MELISSA.exe

2014-12-28 12:32:44 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\MELISSA\Downloads\RSIT.exe

2014-12-28 00:05:01 50BA5FE18BB940B2BF7358241BE0B73B 650840848 ----a-w- C:\Users\MELISSA\Downloads\rescue-system.exe

2014-12-25 14:07:11 62C258E6DA1DB85C26670D50B51E0980 245928 ----a-w- C:\Users\MELISSA\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\AskPartnerCobrandingTool.exe

2014-12-25 14:07:10 88E3225D42EB43D99A519080E039FEE4 42880 ----a-w- C:\Users\MELISSA\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\RunIE.exe

2014-12-25 14:07:09 2EA679EC1C6056BAA3CC912FB014B318 175104 ----a-w- C:\Users\MELISSA\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\instApp.exe

2014-12-25 13:51:57 4447723C9263C249C25E9EB93A759E52 1153144 ----a-w- C:\Users\MELISSA\AppData\Local\Temp\SoftonicAssistant_v0-1-6.exe

2014-12-25 13:00:33 75B4AC8B365B27BE9ACD98095783017F 2071896 ----a-w- C:\Users\MELISSA\Downloads\SP27213.exe

2014-12-23 12:52:53 3F9C12E62A0AE1D7A9DBB252195C4C54 4210920 ----a-w- C:\Users\MELISSA\Downloads\rcsetup151.exe

2014-12-22 22:56:05 9E8E6773E052E5B72109A3F76D290C62 126088 ----a-w- C:\Program Files\Belarc\BelarcAdvisor\BelarcAdvisor.exe

2014-12-22 22:56:05 2B85FE26CA828485BFF6A454B881A295 164864 ----a-w- C:\Program Files\Belarc\BelarcAdvisor\Uninstall.exe

2014-12-22 22:55:04 1113807EB5BE1CC8EF620C24B7C962B3 3655960 ----a-w- C:\Users\MELISSA\Downloads\advisorinstaller.exe

2014-12-22 22:41:28 AC1D88CBC3CFE93E2951A83C298A2E81 1072640 ----a-w- C:\Program Files\Software Informer\softinfo.exe

2014-12-22 22:41:27 4F369C5D2D107A65140E891E150C3559 1177752 ----a-w- C:\Program Files\Software Informer\unins000.exe

2014-12-22 22:40:22 EC2B82281210F141BEB0D499E211C1CB 3441760 ----a-w- C:\Users\MELISSA\Downloads\siinst.exe

2014-12-22 22:34:36 B015BE6E7E2E47EDF38186C3CCCD41CF 103588 ----a-w- C:\Program Files\Mozilla Maintenance Service\Uninstall.exe

2014-12-22 22:34:35 B4E9C7383A705628AD491CF0F87D901F 114800 ----a-w- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

2014-12-22 22:30:10 3D345061DFD15F533C33D78829FBD31A 244280 ----a-w- C:\Users\MELISSA\Downloads\Firefox Setup Stub 34.0.5.exe

2014-12-22 22:11:48 A7DD64E7AB5605665CE68A00814343D7 5122624 ----a-w- C:\Users\MELISSA\Downloads\spsetup127 (2).exe

2014-12-22 22:10:55 A7DD64E7AB5605665CE68A00814343D7 5122624 ----a-w- C:\Users\MELISSA\Downloads\spsetup127 (1).exe

2014-12-22 22:10:34 A7DD64E7AB5605665CE68A00814343D7 5122624 ----a-w- C:\Users\MELISSA\Downloads\spsetup127.exe

=== C: other files ==

2014-12-29 12:21:39 CE44A9D4918DCDC7CCCF5503BF4D7A3D 14130 ----a-w- C:\Program Files\Java\jre1.8.0_25\lib\deploy\ffjcext.zip

2014-12-27 11:58:41 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\MSDOS.SYS

2014-12-27 11:58:41 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\IO.SYS

2014-12-25 12:59:52 BC3549A9F34146305875B4BAA575862C 5738 ----a-w- C:\Users\MELISSA\Downloads\pe2usb101.zip

2014-12-25 12:58:51 696AB118FE1FC92AD2093B48D543B274 3386435 ----a-w- C:\Users\MELISSA\Downloads\pebuilder3110a (1).zip

2014-12-25 12:57:44 696AB118FE1FC92AD2093B48D543B274 3386435 ----a-w- C:\Users\MELISSA\Downloads\pebuilder3110a.zip

2014-12-22 22:40:12 9F91BC616413F13E8968359D72755E1A 1861058 ----a-w- C:\Users\MELISSA\Downloads\ipp150.zip

 

==== Startup Registry Enabled ======================

 

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

 

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

 

[HKEY_USERS\S-1-5-21-993967055-4163607442-967515367-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"

 

==== Startup Registry Disabled ======================

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe ARM"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe Reader Speed Launcher"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\Common Files\\Ahead\\Lib\\NMBgMonitor.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DatabaseChecker]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="DatabaseChecker"

"hkey"="HKCU"

"command"="F:\\porn.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ehTray.exe]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="ehTray.exe"

"hkey"="HKCU"

"command"="C:\\Windows\\ehome\\ehTray.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ExtraFilmManager]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="ExtraFilmManager"

"hkey"="HKLM"

"command"="\"C:\\Users\\MELISSA\\Desktop\\ExtraFilm Designer BE NL\\ExtraFilmManager.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Facebook Update"

"hkey"="HKCU"

"command"="\"C:\\Users\\MELISSA\\AppData\\Local\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Google Update"

"hkey"="HKCU"

"command"="\"C:\\Users\\MELISSA\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google+ Auto Backup]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Google+ Auto Backup"

"hkey"="HKCU"

"command"="\"C:\\Users\\MELISSA\\AppData\\Local\\Programs\\Google\\Google+ Auto Backup\\Google+ Auto Backup.exe\" /autostart"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="GrooveMonitor"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotkeyApp]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HotkeyApp"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Launch Manager\\HotkeyApp.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HotKeysCmds"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\hkcmd.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IAAnotif]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="IAAnotif"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Intel\\Intel Matrix Storage Manager\\Iaanotif.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IgfxTray]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="IgfxTray"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\igfxtray.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LaunchAp]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LaunchAp"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Launch Manager\\LaunchAp.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LMgrOSD]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LMgrOSD"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Launch Manager\\OSD.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSC]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="MSC"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Microsoft Security Client\\msseces.exe\" -hide -runkey"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NeroFilterCheck]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="NeroFilterCheck"

"hkey"="HKLM"

"command"="C:\\Program Files\\Common Files\\Ahead\\Lib\\NeroCheck.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Persistence"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\igfxpers.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Picasa Media Detector]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Picasa Media Detector"

"hkey"="HKCU"

"command"="C:\\Program Files\\Picasa2\\PicasaMediaDetector.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="RtHDVCpl"

"hkey"="HKLM"

"command"="RtHDVCpl.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SkyMonk]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="SkyMonk"

"hkey"="HKCU"

"command"="C:\\Program Files\\SkyMonk\\SkyMonk.exe -tray"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Skype"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Software Informer]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Software Informer"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\Software Informer\\softinfo.exe\" -autorun"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Spotify"

"hkey"="HKCU"

"command"="\"C:\\Users\\MELISSA\\AppData\\Roaming\\Spotify\\Spotify.exe\" /uri spotify:autostart"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Spotify Web Helper"

"hkey"="HKCU"

"command"="\"C:\\Users\\MELISSA\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="SunJavaUpdateSched"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SUPERAntiSpyware]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="SUPERAntiSpyware"

"hkey"="HKCU"

"command"="C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="SynTPEnh"

"hkey"="HKLM"

"command"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\toolbar_eula_launcher]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="toolbar_eula_launcher"

"hkey"="HKLM"

"command"="C:\\Program Files\\GoogleEULA\\EULALauncher.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UVS10 Preload]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="UVS10 Preload"

"hkey"="HKLM"

"command"="C:\\Program Files\\Ulead Systems\\Ulead VideoStudio SE DVD\\uvPL.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Wbutton]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Wbutton"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Launch Manager\\Wbutton.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WMPNSCFG]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="WMPNSCFG"

"hkey"="HKCU"

"command"="C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe"

 

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^MELISSA^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Schermopname en Snel starten.lnk]

"item"="OneNote 2007 Schermopname en Snel starten"

"path"="C:\\Users\\MELISSA\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OneNote 2007 Schermopname en Snel starten.lnk"

"backup"="C:\\Windows\\pss\\OneNote 2007 Schermopname en Snel starten.lnk.Startup"

"backupExtension"=".Startup"

"command"="C:\\PROGRA~1\\MICROS~3\\Office12\\ONENOTEM.EXE"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^MELISSA^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.1 .lnk]

"item"="OpenOffice.org 3.1 "

"path"="C:\\Users\\MELISSA\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OpenOffice.org 3.1 .lnk"

"backup"="C:\\Windows\\pss\\OpenOffice.org 3.1 .lnk.Startup"

"backupExtension"=".Startup"

"command"="C:\\PROGRA~1\\OPENOF~1.ORG\\program\\QUICKS~1.EXE"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^MELISSA^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^tcbhn.lnk]

"item"="tcbhn"

"path"="C:\\Users\\MELISSA\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\tcbhn.lnk"

"backup"="C:\\Windows\\pss\\tcbhn.lnk.Startup"

"backupExtension"=".Startup"

"command"="C:\\Users\\MELISSA\\AppData\\Roaming\\BROWSE~1\\tcbhn.exe"

 

 

==== Task Scheduler Jobs ======================

 

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [18/12/2014 21:13]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-993967055-4163607442-967515367-1000Core.job --a------ C:\Users\MELISSA\AppData\Local\Facebook\Update\FacebookUpdate.exe []

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-993967055-4163607442-967515367-1000UA.job --a------ C:\Users\MELISSA\AppData\Local\Facebook\Update\FacebookUpdate.exe []

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29/11/2014 19:47]

C:\Windows\tasks\GoogleUpdateTaskMachineCore1cecdce890c3a00.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29/11/2014 19:47]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29/11/2014 19:47]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-993967055-4163607442-967515367-1000Core.job --a------ C:\Users\MELISSA\AppData\Local\Google\Update\GoogleUpdate.exe [09/05/2014 13:13]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-993967055-4163607442-967515367-1000UA.job --a------ C:\Users\MELISSA\AppData\Local\Google\Update\GoogleUpdate.exe [09/05/2014 13:13]

C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 0826d4e4-dd36-4f16-acc3-f5cdb357d86d.job --a------ C:\Program Files\SUPERAntiSpyware\SASTask.exe [07/11/2013 21:08]

C:\Windows\tasks\SUPERAntiSpyware Scheduled Task b907a193-9ee2-48ed-aaf8-f79998825fbd.job --a------ C:\Program Files\SUPERAntiSpyware\SASTask.exe [07/11/2013 21:08]

 

==== Other Scheduled Tasks ======================

 

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-993967055-4163607442-967515367-1000Core" [C:\Users\MELISSA\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-993967055-4163607442-967515367-1000UA" [C:\Users\MELISSA\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-993967055-4163607442-967515367-1000Core" [C:\Users\MELISSA\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-993967055-4163607442-967515367-1000UA" [C:\Users\MELISSA\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\SoftwareInformerService" ["C:\Program Files\Software Informer\softinfo.exe"]

"C:\Windows\system32\tasks\SUPERAntiSpyware Scheduled Task 0826d4e4-dd36-4f16-acc3-f5cdb357d86d" [C:\Program Files\SUPERAntiSpyware\SASTask.exe]

"C:\Windows\system32\tasks\SUPERAntiSpyware Scheduled Task b907a193-9ee2-48ed-aaf8-f79998825fbd" [C:\Program Files\SUPERAntiSpyware\SASTask.exe]

 

==== Firefox Start and Search pages ======================

 

ProfilePath: C:\Users\MELISSA\AppData\Roaming\Mozilla\Firefox\Profiles\o2e5ydfb.default


user_pref("keyword.URL", "http://go.mail.ru/search?fr=fftb&q=");

 

==== Firefox Extensions Registry ======================

 

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" [09/05/2014 15:44]

 

==== Firefox Extensions ======================

 

AppDir: C:\Program Files\Mozilla Firefox

- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

 

==== Firefox Plugins ======================

 

Profilepath: C:\Users\MELISSA\AppData\Roaming\Mozilla\Firefox\Profiles\o2e5ydfb.default

D2377C9458EFEB094E38B8C874AA214C - C:\Users\MELISSA\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll - Google Update

D2377C9458EFEB094E38B8C874AA214C - C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll - Google Update

9419AA8A2799526EC32B473C2BB7A10D - C:\Program Files\Picasa2\npPicasa3.dll - Picasa

893BF7D2261C56C24F813405D9D018E0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In

C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery

49DA696E73BC2CB49C0E374C7885F7AD - C:\Program Files\Adobe\Reader 8.0\Reader\browser\nppdf32.dll - Adobe Acrobat

F73B2B26F2CA84E3E37813299FE06C28 - C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll - Panda ActiveScan 2.0

31DA97B4682187C6639BBE2215814FDA - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director

24E990B1E6D55428001843CF7217DD81 - C:\Program Files\Microsoft\Office Live\npOLW.dll - Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox

B16EC84E06F26B8B85800F3B07B8D757 - C:\Windows\system32\Macromed\Flash\NPSWF32.dll - Shockwave Flash

625D0A824F513CE1CABB8861E97F2142 - C:\Program Files\Picasa2\npPicasa2.dll - Picasa

AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation

8DA2ED6B04EA33F2EAE8BA883F903729 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight

 

 

==== Chromium Look ======================

 

Google Chrome Version: 39.0.2171.95 (Up to date, latest Stable version: 39.0.2171.95)

 

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

bbjciahceamgodcoidkjpchnokgfpphh - C:\Users\MELISSA\AppData\Local\funmoods.crx[]

bodddioamolcibagionmmobehnbhiakf - C:\Program Files\BrowserCompanion\blabbers-ch.crx[]

cjpglkicenollcignonpgiafdgfeehoj - C:\Users\MELISSA\AppData\Local\funmoods-speeddial.crx[]

clbfjfbnelcflpgpklppgplejolacbej - C:\Program Files\BrowserCompanion\blabbers-ch.crx[]

 

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

bbjciahceamgodcoidkjpchnokgfpphh - C:\Users\MELISSA\AppData\Local\funmoods.crx[]

cjpglkicenollcignonpgiafdgfeehoj - C:\Users\MELISSA\AppData\Local\funmoods-speeddial.crx[]

 

YouTube - MELISSA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Browser Companion Helper - MELISSA\AppData\Local\Google\Chrome\User Data\Default\Extensions\bodddioamolcibagionmmobehnbhiakf

Funmoods - MELISSA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj

Google Search - MELISSA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - MELISSA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - MELISSA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

 

==== Chromium Fix ======================

 

C:\Users\MELISSA\AppData\Local\Google\Chrome\User Data\Default\Extensions\bodddioamolcibagionmmobehnbhiakf deleted successfully

C:\Users\MELISSA\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bodddioamolcibagionmmobehnbhiakf_0.localstorage deleted successfully

C:\Users\MELISSA\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bodddioamolcibagionmmobehnbhiakf_0.localstorage-journal deleted successfully

C:\Users\MELISSA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj deleted successfully

 

==== Set IE to Default ======================

 

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.aldi.com/"

"Search Page"="http://www.google.com"

"Default_Page_URL"="http://www.aldi.com/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]


"Default_Page_URL"="http://www.aldi.com/"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"SearchAssistant"="http://www.google.com/ie"

"Default_Search_URL"="http://www.google.com/ie"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found

 

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]



"Start Page"="http://www.aldi.com/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]



[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]



[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

 

==== All HKCU SearchScopes ======================

 

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

 

==== Deleting Registry Keys ======================

 

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\bodddioamolcibagionmmobehnbhiakf deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\clbfjfbnelcflpgpklppgplejolacbej deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\BrowserCompanion deleted successfully

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{895722FE-25FE-4854-95AC-B0C42F9DBEDA} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 deleted successfully

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftonicAssistant deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DatabaseChecker deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update deleted successfully

 

==== Empty IE Cache ======================

 

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\MELISSA\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\MELISSA\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(133)\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\MELISSA\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

 

==== Empty FireFox Cache ======================

 

C:\Users\MELISSA\AppData\Local\Mozilla\Firefox\Profiles\o2e5ydfb.default\cache2 emptied successfully

 

==== Empty Chrome Cache ======================

 

C:\Users\MELISSA\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

 

==== Empty All Flash Cache ======================

 

Flash Cache Emptied Successfully

 

==== Empty All Java Cache ======================

 

Java Cache cleared successfully

 

==== C:\zoek_backup content ======================

 

C:\zoek_backup (files=1024 folders=195 153596008 bytes)

 

==== Empty Temp Folders ======================

 

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\MELISSA\AppData\Local\Temp will be emptied at reboot

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

 

==== After Reboot ======================

 

==== Empty Temp Folders ======================

 

C:\Windows\Temp successfully emptied

C:\Users\MELISSA\AppData\Local\Temp successfully emptied

 

==== Empty Recycle Bin ======================

 

C:\$RECYCLE.BIN successfully emptied

 

==== Deleting Files / Folders ======================

 

"C:\Users\MELISSA\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

 

==== EOF on ma 29/12/2014 at 14:20:03,61 ======================
Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Uitstekend werk geleverd, een massa rotzooi is inmiddels al van deze PC gehaald. Om nog wat extra op te ruimen, mag je nog het volgende uitvoeren:

 

Download adwcleaner.pngAdwCleaner by Xplode naar het bureaublad (verwijder eerst eventuele aanwezige oudere versies van deze tool op je PC, zodat je nu de meest recente database van AdwCleaner kan gebruiken).

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op Scan.
  • Klik vervolgens op Clean.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.
Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

  • Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar reactie
Delen op andere sites
antonio Verkenner

antonio

Geplaatst:
  • Auteur
Geplaatst:

hierbij het log bestandje AdwCleaner v4.106 - Rapport aangemaakt 01/01/2015 op 15:59:31

# Laatste Update 21/12/2014 door Xplode
# Database : 2014-12-30.1 [Live]
# Besturingssysteem : Windows Vista Home Premium Service Pack 2 (32 bits)
# Gebruikersnaam : MELISSA - PC_VAN_MELISSA
# Gestart vanuit : C:\Users\MELISSA\Downloads\adwcleaner_4.106 (1).exe
# Optie : Verwijderen
 
***** [ Services ] *****
 
 
***** [ Bestanden / Mappen ] *****
 
Map Verwijderd : C:\Program Files\Vidplaya
Map Verwijderd : C:\Users\MELISSA\AppData\LocalLow\Mail.Ru
 
***** [ Taken ] *****
 
 
***** [ Snelkoppelingen ] *****
 
 
***** [ Register ] *****
 
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Conduit.Engine
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\escort.escortIEPane
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\f
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\base64
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\chrome
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\prox
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.HbAx
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.HbAx.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.HbInfoBand
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.HbInfoBand.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButton
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButton.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButtonA
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButtonA.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.RprtCtrl
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ShoppingReport2.RprtCtrl.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\tdataprotocol.CTData
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\tdataprotocol.CTData.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\updatebho.TimerBHO
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\updatebho.TimerBHO.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\wit4ie.WitBHO
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\wit4ie.WitBHO.2
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT2865317
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{0C58B7D1-D415-492B-A149-E976156BD3B8}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{830B56CB-FD22-44AA-9887-7898F4F4158D}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{8830DDF0-3042-404D-A62C-384A85E34833}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{B035BA6B-57CD-4F72-B545-65BE465FCAF6}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{D44FD6F0-9746-484E-B5C4-C66688393872}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Sleutel Verwijderd : HKCU\Software\APN
Sleutel Verwijderd : HKCU\Software\Blabbers
Sleutel Verwijderd : HKCU\Software\BrowserCompanion
Sleutel Verwijderd : HKCU\Software\Imesh
Sleutel Verwijderd : HKCU\Software\Softonic
Sleutel Verwijderd : HKCU\Software\YahooPartnerToolbar
Sleutel Verwijderd : HKCU\Software\AppDataLow\Toolbar
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\AskToolbar
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\bearsharemediabartb
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\Conduit
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\DVDVideoSoftTB
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\Fun Web Products
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\FunWebProducts
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\mediabarim
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\PriceGong
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\ShoppingReport2
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\SmartBar
Sleutel Verwijderd : HKLM\SOFTWARE\APN
Sleutel Verwijderd : HKLM\SOFTWARE\AskToolbar
Sleutel Verwijderd : HKLM\SOFTWARE\BrowserCompanion
Sleutel Verwijderd : HKLM\SOFTWARE\Conduit
Sleutel Verwijderd : HKLM\SOFTWARE\DVDVideoSoftTB
Sleutel Verwijderd : HKLM\SOFTWARE\QuestBrowse
Sleutel Verwijderd : HKLM\SOFTWARE\ShoppingReport2
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BrowserCompanion
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\QuestBrowse
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ShoppingReport2
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{6EB5DB54-4B19-4AC9-9AE3-8514709FFCBA}_is1
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16599
 
 
-\\ Mozilla Firefox v34.0.5 (x86 nl)
 
 
-\\ Google Chrome v39.0.2171.95
 
[C:\Users\MELISSA\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Verwijderd [search Provider] : hxxp://start.funmoods.com/results.php?f=4&q={searchTerms}&a=fmtgl&chnl=fmtgl&cd=2XzuyEtN2Y1L1QzutDtDtCyC0DtAzzyEyE0C0EtDyBtD0B0FtN0D0Tzu0CtByEyEtN1L2XzutBtFtCtFtCtFtAtCtB&cr=215792703
 
*************************
 
AdwCleaner[R0].txt - [11942 octets] - [01/01/2015 15:51:11]
AdwCleaner[s0].txt - [12052 octets] - [01/01/2015 15:59:31]
 
########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [12113 octets] ##########
Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.