ik ben mijn pc aan het schoonmaken van malware en ben ook mijn virusscanner aan draaien blijkt dat mijn pc weer een virus heeft zegt avast
zojuist kreeg ik de update van malwarebytes maar hij wijgert de nieuwe malware systeem te updaten en wou ik hem opnieuw installeren en dat wijgert ie ook
heb windows 8.1
Search results from Spybot - Search & Destroy
22-7-2014 18:11:21
Scan took 00:20:48.
17 items found.
Win32.Agent.qvo: Settings (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-3020535285-3607754133-336177622-1001\Software\Microsoft\Internet Explorer\SearchScopes\DefaultScope
Conduit.SearchProtect: Application data folder (Directory, nothing done)
C:\Users\Jonne\AppData\Local\SearchProtect\SearchProtect\
Conduit.SearchProtect: Application data folder (Directory, nothing done)
C:\Users\Jonne\AppData\Local\SearchProtect\
Conduit.SearchProtect: Program directory (Directory, nothing done)
C:\Program Files (x86)\SearchProtect\UI\bin\
Directory.subfile=C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe_old
Directory.subfile.size=3042600
Directory.subfile.md5=F24755FE0D89C3F73CF8CD061CB709F1
Directory.subfile.filedate=1405512098
Directory.subfile.filedatetext=2014-07-16 14:01:38
Conduit.SearchProtect: Program directory (Directory, nothing done)
C:\Program Files (x86)\SearchProtect\UI\
Directory.subfile=C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe_old
Directory.subfile.size=3042600
Directory.subfile.md5=F24755FE0D89C3F73CF8CD061CB709F1
Directory.subfile.filedate=1405512098
Directory.subfile.filedatetext=2014-07-16 14:01:38
Conduit.SearchProtect: Program directory (Directory, nothing done)
C:\Program Files (x86)\SearchProtect\Main\bin\
Directory.subfile=C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe_old
Directory.subfile.size=2682152
Directory.subfile.md5=D5F5379F0B5286F8820406AE73D3A80B
Directory.subfile.filedate=1405512098
Directory.subfile.filedatetext=2014-07-16 14:01:38
Conduit.SearchProtect: Program directory (Directory, nothing done)
C:\Program Files (x86)\SearchProtect\Main\
Directory.subfile=C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe_old
Directory.subfile.size=2682152
Directory.subfile.md5=D5F5379F0B5286F8820406AE73D3A80B
Directory.subfile.filedate=1405512098
Directory.subfile.filedatetext=2014-07-16 14:01:38
Conduit.SearchProtect: Program directory (Directory, nothing done)
C:\Program Files (x86)\SearchProtect\SearchProtect\bin\
Directory.subfile=C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe_old
Directory.subfile.size=4811048
Directory.subfile.md5=205C8C75DBA583F7220D19C8C804B4F8
Directory.subfile.filedate=1405512098
Directory.subfile.filedatetext=2014-07-16 14:01:38
Conduit.SearchProtect: Program directory (Directory, nothing done)
C:\Program Files (x86)\SearchProtect\SearchProtect\
Directory.subfile=C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe_old
Directory.subfile.size=4811048
Directory.subfile.md5=205C8C75DBA583F7220D19C8C804B4F8
Directory.subfile.filedate=1405512098
Directory.subfile.filedatetext=2014-07-16 14:01:38
DoubleClick: Tracking cookie (Internet Explorer (User): Jonne) (Browser: Cookie, nothing done)
MS DirectInput: Last mapped application ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-3020535285-3607754133-336177622-1001\Software\Microsoft\DirectInput\MostRecentMapperApplication\ID
MS DirectInput: Last mapped application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-3020535285-3607754133-336177622-1001\Software\Microsoft\DirectInput\MostRecentMapperApplication\Name
MS Wordpad: Recent file list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-3020535285-3607754133-336177622-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Recent File List
Windows Explorer: Recent file global history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-3020535285-3607754133-336177622-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
Cookie: Browser: Cookie (12) (Browser: Cookie, nothing done)
Cache: Browser: Cache (64) (Browser: Cache, nothing done)
History: Browser: History (13) (Browser: History, nothing done)
— Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) —
2013-09-20 blindman.exe (2.2.18.151)
2013-09-20 explorer.exe (2.2.18.177)
2013-09-20 SDBootCD.exe (2.2.18.109)
2013-09-20 SDCleaner.exe (2.2.18.110)
2013-09-20 SDDelFile.exe (2.2.18.94)
2013-06-18 SDDisableProxy.exe
2013-09-20 SDFiles.exe (2.2.18.135)
2013-09-20 SDFileScanHelper.exe (2.2.16.1)
2013-10-15 SDFSSvc.exe (2.2.25.211)
2013-10-10 SDHookHelper.exe (2.3.30.2)
2013-10-10 SDHookInst32.exe (2.3.30.2)
2013-10-10 SDHookInst64.exe (2.3.30.2)
2013-09-20 SDImmunize.exe (2.2.18.130)
2013-05-16 SDLogReport.exe (2.1.18.107)
2013-10-14 SDOnAccess.exe (2.2.25.4)
2013-09-20 SDPESetup.exe (2.2.18.3)
2013-09-20 SDPEStart.exe (2.2.18.86)
2013-09-20 SDPhoneScan.exe (2.2.18.28)
2013-09-20 SDPRE.exe (2.2.18.22)
2013-09-20 SDPrepPos.exe (2.2.18.10)
2013-09-20 SDQuarantine.exe (2.2.18.103)
2013-09-20 SDRootAlyzer.exe (2.2.18.116)
2013-09-20 SDSBIEdit.exe (2.2.18.39)
2013-09-20 SDScan.exe (2.2.18.177)
2013-09-20 SDScript.exe (2.2.18.53)
2013-10-15 SDSettings.exe (2.2.25.138)
2013-09-20 SDShell.exe (2.2.18.2)
2013-09-20 SDShred.exe (2.2.18.107)
2013-09-20 SDSysRepair.exe (2.2.18.101)
2013-09-20 SDTools.exe (2.2.18.150)
2013-07-25 SDTray.exe (2.1.21.129)
2013-09-20 SDUpdate.exe (2.2.18.91)
2013-09-20 SDUpdSvc.exe (2.2.18.76)
2013-09-20 SDWelcome.exe (2.2.21.129)
2013-09-13 SDWSCSvc.exe (2.2.22.2)
2014-05-20 spybotsd2-install-bdcore-update.exe (2.3.39.0)
2013-06-19 spybotsd2-translation-frx.exe
2014-05-11 unins000.exe (51.1052.0.0)
1999-12-02 xcacls.exe
2012-08-23 borlndmm.dll (10.0.2288.42451)
2012-09-05 DelZip190.dll (1.9.0.107)
2012-09-10 libeay32.dll (1.0.0.4)
2012-09-10 libssl32.dll (1.0.0.4)
2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98)
2013-05-16 SDAV.dll
2013-05-16 SDECon32.dll (2.1.18.113)
2013-05-16 SDECon64.dll (2.1.18.113)
2013-04-05 SDEvents.dll (2.1.16.2)
2013-10-14 SDFileScanLibrary.dll (2.2.25.14)
2013-10-10 SDHook32.dll (2.3.30.2)
2013-10-10 SDHook64.dll (2.3.30.2)
2013-05-16 SDImmunizeLibrary.dll (2.1.18.2)
2013-05-16 SDLicense.dll (2.1.18.0)
2013-05-16 SDLists.dll (2.1.18.4)
2013-05-16 SDResources.dll (2.1.18.7)
2013-05-16 SDScanLibrary.dll (2.1.18.131)
2013-05-16 SDTasks.dll (2.1.18.15)
2013-05-16 SDWinLogon.dll (2.1.18.0)
2012-08-23 sqlite3.dll
2012-09-10 ssleay32.dll (1.0.0.4)
2013-05-16 Tools.dll (2.1.18.36)
2014-03-05 Includes\Adware-000.sbi (*)
2014-01-08 Includes\Adware-001.sbi (*)
2014-07-16 Includes\Adware-C.sbi (*)
2014-01-13 Includes\Adware.sbi (*)
2014-01-13 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2014-01-08 Includes\Dialer-000.sbi (*)
2014-01-08 Includes\Dialer-001.sbi (*)
2014-01-08 Includes\Dialer-C.sbi (*)
2014-01-13 Includes\Dialer.sbi (*)
2014-01-13 Includes\DialerC.sbi (*)
2014-01-09 Includes\Fraud-000.sbi (*)
2014-01-09 Includes\Fraud-001.sbi (*)
2014-03-31 Includes\Fraud-002.sbi (*)
2014-01-09 Includes\Fraud-003.sbi (*)
2012-11-14 Includes\HeavyDuty.sbi (*)
2014-01-08 Includes\Hijackers-000.sbi (*)
2014-01-08 Includes\Hijackers-001.sbi (*)
2014-01-08 Includes\Hijackers-C.sbi (*)
2014-01-13 Includes\Hijackers.sbi (*)
2014-01-13 Includes\HijackersC.sbi (*)
2014-01-08 Includes\iPhone-000.sbi (*)
2014-01-08 Includes\iPhone.sbi (*)
2014-01-08 Includes\Keyloggers-000.sbi (*)
2014-03-19 Includes\Keyloggers-C.sbi (*)
2014-01-13 Includes\Keyloggers.sbi (*)
2014-01-13 Includes\KeyloggersC.sbi (*)
2014-01-09 Includes\Malware-001.sbi (*)
2014-01-09 Includes\Malware-002.sbi (*)
2014-02-05 Includes\Malware-003.sbi (*)
2014-01-28 Includes\Malware-004.sbi (*)
2014-04-15 Includes\Malware-005.sbi (*)
2014-02-26 Includes\Malware-006.sbi (*)
2014-01-09 Includes\Malware-007.sbi (*)
2014-07-09 Includes\Malware-C.sbi (*)
2014-01-13 Includes\Malware.sbi (*)
2013-12-23 Includes\MalwareC.sbi (*)
2014-01-15 Includes\PUPS-000.sbi (*)
2014-01-15 Includes\PUPS-001.sbi (*)
2014-01-15 Includes\PUPS-002.sbi (*)
2014-07-16 Includes\PUPS-C.sbi (*)
2012-11-14 Includes\PUPS.sbi (*)
2014-01-07 Includes\PUPSC.sbi (*)
2014-01-08 Includes\Security-000.sbi (*)
2014-01-08 Includes\Security-C.sbi (*)
2014-01-21 Includes\Security.sbi (*)
2014-01-21 Includes\SecurityC.sbi (*)
2014-01-08 Includes\Spyware-000.sbi (*)
2014-01-08 Includes\Spyware-001.sbi (*)
2014-01-08 Includes\Spyware-C.sbi (*)
2014-01-21 Includes\Spyware.sbi (*)
2014-01-21 Includes\SpywareC.sbi (*)
2011-06-07 Includes\Tracks.sbi (*)
2012-11-19 Includes\Tracks.uti (*)
2014-01-15 Includes\Trojans-000.sbi (*)
2014-01-15 Includes\Trojans-001.sbi (*)
2014-01-15 Includes\Trojans-002.sbi (*)
2014-01-15 Includes\Trojans-003.sbi (*)
2014-01-15 Includes\Trojans-004.sbi (*)
2014-03-19 Includes\Trojans-005.sbi (*)
2014-07-09 Includes\Trojans-006.sbi (*)
2014-01-15 Includes\Trojans-007.sbi (*)
2014-07-09 Includes\Trojans-008.sbi (*)
2014-07-09 Includes\Trojans-009.sbi (*)
2014-07-16 Includes\Trojans-C.sbi (*)
2014-01-15 Includes\Trojans-OG-000.sbi (*)
2014-01-15 Includes\Trojans-TD-000.sbi (*)
2014-01-15 Includes\Trojans-VM-000.sbi (*)
2014-01-15 Includes\Trojans-VM-001.sbi (*)
2014-01-15 Includes\Trojans-VM-002.sbi (*)
2014-01-15 Includes\Trojans-VM-003.sbi (*)
2014-01-15 Includes\Trojans-VM-004.sbi (*)
2014-01-15 Includes\Trojans-VM-005.sbi (*)
2014-01-15 Includes\Trojans-VM-006.sbi (*)
2014-01-15 Includes\Trojans-VM-007.sbi (*)
2014-01-15 Includes\Trojans-VM-008.sbi (*)
2014-01-15 Includes\Trojans-VM-009.sbi (*)
2014-01-15 Includes\Trojans-VM-010.sbi (*)
2014-01-15 Includes\Trojans-VM-011.sbi (*)
2014-01-15 Includes\Trojans-VM-012.sbi (*)
2014-01-15 Includes\Trojans-VM-013.sbi (*)
2014-01-15 Includes\Trojans-VM-014.sbi (*)
2014-01-15 Includes\Trojans-VM-015.sbi (*)
2014-01-15 Includes\Trojans-VM-016.sbi (*)
2014-01-15 Includes\Trojans-VM-017.sbi (*)
2014-01-15 Includes\Trojans-VM-018.sbi (*)
2014-01-15 Includes\Trojans-VM-019.sbi (*)
2014-01-15 Includes\Trojans-VM-020.sbi (*)
2014-01-15 Includes\Trojans-VM-021.sbi (*)
2014-01-15 Includes\Trojans-VM-022.sbi (*)
2014-01-15 Includes\Trojans-VM-023.sbi (*)
2014-01-15 Includes\Trojans-VM-024.sbi (*)
2014-01-15 Includes\Trojans-ZB-000.sbi (*)
2014-01-15 Includes\Trojans-ZL-000.sbi (*)
2014-01-09 Includes\Trojans.sbi (*)
2014-01-16 Includes\TrojansC-01.sbi (*)
2014-01-16 Includes\TrojansC-02.sbi (*)
2014-01-16 Includes\TrojansC-03.sbi (*)
2014-01-16 Includes\TrojansC-04.sbi (*)
2014-01-16 Includes\TrojansC-05.sbi (*)
2014-01-09 Includes\TrojansC.sbi (*)
Hoi Bloempie,
Sorry voor de late reactie, maar het is vakantietijd en ik ben op dit moment alleen hier.
Download AdwCleaner by Xplode naar het bureaublad.
* Sluit alle openstaande vensters.
* Dubbelklik op AdwCleaner om hem te starten.
* Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren,
* Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
* Klik vervolgens op Scannen.
* Klik vervolgens op Verwijderen als er items zijn gevonden.
* Klik bij Herstarten Noodzakelijk op OK
Nadat de PC opnieuw is opgestart, opent meestal een logfile.
Anders is het hier terug te vinden: C:\AdwCleaner\AdwCleaner.txt
Post aansluitend de inhoud van dit log in je volgende bericht.
Probeer nu MBAM up te daten en een scan uitvoeren.
Lukt dit niet, dan maar even geen update, maar wel de scan uitvoeren.
Alles wat gevonden wordt, laten verwijderen.
Succes,
Huib;)
Plaats ook dit logje.
# AdwCleaner v3.216 - Rapport aangemaakt 22/07/2014 op 23:10:17
# Laatste Update 17/07/2014 door Xplode
# Besturingssysteem : Windows 8.1 (64 bits)
# Gebruikersnaam : Jonne - DESKTOP
# Gestart vanuit : C:\Users\Jonne\Downloads\adwcleaner_3.216 (1).exe
# Optie : Verwijderen
***** *****
***** *****
Map Verwijderd : C:\ProgramData\SuperbApp
Map Verwijderd : C:\ProgramData\Trymedia
Map Verwijderd : C:\ProgramData\save niet
Map Verwijderd : C:\Program Files (x86)\BearShare Applications
Map Verwijderd : C:\Program Files (x86)\globalUpdate
Map Verwijderd : C:\Program Files (x86)\Mobogenie
Map Verwijderd : C:\Program Files (x86)\SearchProtect
Map Verwijderd : C:\Program Files (x86)\SW-Booster
Map Verwijderd : C:\Program Files (x86)\WebSpades
Map Verwijderd : C:\Program Files (x86)\save niet
Map Verwijderd : C:\Users\Administrator\AppData\Local\Chromatic Browser
Map Verwijderd : C:\Users\Administrator\AppData\Local\torch
Map Verwijderd : C:\Users\Gast\AppData\Local\Chromatic Browser
Map Verwijderd : C:\Users\Gast\AppData\Local\torch
Map Verwijderd : C:\Users\girlz_000\AppData\Local\Chromatic Browser
Map Verwijderd : C:\Users\girlz_000\AppData\Local\torch
Map Verwijderd : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Map Verwijderd : C:\Users\HomeGroupUser$\AppData\Local\torch
Map Verwijderd : C:\Users\Jonne\AppData\Local\Chromatic Browser
Map Verwijderd : C:\Users\Jonne\AppData\Local\genienext
Map Verwijderd : C:\Users\Jonne\AppData\Local\globalUpdate
Map Verwijderd : C:\Users\Jonne\AppData\Local\Mobogenie
Map Verwijderd : C:\Users\Jonne\AppData\Local\torch
Map Verwijderd : C:\Users\Jonne\AppData\Roaming\EZDownloader
Map Verwijderd : C:\Users\Jonne\AppData\Roaming\goforfiles
Map Verwijderd : C:\Users\Jonne\AppData\Roaming\SkypEmoticons
Map Verwijderd : C:\Users\Jonne\AppData\Roaming\SupTab
Map Verwijderd : C:\Users\Jonne\AppData\Roaming\Systweak
Map Verwijderd : C:\Users\Jonne\Documents\Mobogenie
Map Verwijderd : C:\Users\slang_000\AppData\Local\Chromatic Browser
Map Verwijderd : C:\Users\slang_000\AppData\Local\torch
Map Verwijderd : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgfbjnfajlcjelmfobhmomdaobjggmo
Map Verwijderd : C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgfbjnfajlcjelmfobhmomdaobjggmo
Map Verwijderd : C:\Users\girlz_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgfbjnfajlcjelmfobhmomdaobjggmo
Map Verwijderd : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgfbjnfajlcjelmfobhmomdaobjggmo
Map Verwijderd : C:\Users\slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgfbjnfajlcjelmfobhmomdaobjggmo
Map Verwijderd : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\eagbcaekgidfkbfpajbpdleddmofkdio
Map Verwijderd : C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\eagbcaekgidfkbfpajbpdleddmofkdio
Map Verwijderd : C:\Users\girlz_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eagbcaekgidfkbfpajbpdleddmofkdio
Map Verwijderd : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\eagbcaekgidfkbfpajbpdleddmofkdio
Map Verwijderd : C:\Users\slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eagbcaekgidfkbfpajbpdleddmofkdio
Map Verwijderd : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmcnckhlkdcdbmndnlonhjgppmobaaik
Map Verwijderd : C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmcnckhlkdcdbmndnlonhjgppmobaaik
Map Verwijderd : C:\Users\girlz_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmcnckhlkdcdbmndnlonhjgppmobaaik
Map Verwijderd : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmcnckhlkdcdbmndnlonhjgppmobaaik
Map Verwijderd : C:\Users\slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmcnckhlkdcdbmndnlonhjgppmobaaik
Map Verwijderd : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Map Verwijderd : C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Map Verwijderd : C:\Users\girlz_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Map Verwijderd : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Map Verwijderd : C:\Users\slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Bestand Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk
Bestand Verwijderd : C:\WINDOWS\System32\roboot64.exe
Bestand Verwijderd : C:\Users\Jonne\daemonprocess.txt
Bestand Verwijderd : C:\Users\Jonne\AppData\Roaming\regsvr32.exe_log.txt
Bestand Verwijderd : C:\Users\Jonne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Bestand Verwijderd : C:\Users\Jonne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Bestand Verwijderd : C:\WINDOWS\System32\Tasks\GoforFilesUpdate
***** *****
Snelkoppeling Gedesinfecteerd : C:\Users\Jonne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Snelkoppeling Gedesinfecteerd : C:\Users\Jonne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
***** *****
Sleutel Verwijderd : HKCU\Software\Classes\iLivid.torrent
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\iLivid.torrent
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\net
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\net.5.14
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Sleutel Verwijderd : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{d0e87c27}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{e9f32388}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522332260}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566336660}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4E42-A125-57C0A11DBCDE}
Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522332260}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566336660}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511331160}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Sleutel Verwijderd : HKCU\Software\GoforFiles
Sleutel Verwijderd : HKCU\Software\ilivid
Sleutel Verwijderd : HKCU\Software\Imesh
Sleutel Verwijderd : HKCU\Software\installedbrowserextensions
Sleutel Verwijderd : HKCU\Software\RegisteredApplicationsEx
Sleutel Verwijderd : HKCU\Software\Softonic
Sleutel Verwijderd : HKCU\Software\systweak
Sleutel Verwijderd : HKCU\Software\Trymedia Systems
Sleutel Verwijderd : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Sleutel Verwijderd : HKLM\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Sleutel Verwijderd : HKLM\Software\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Sleutel Verwijderd : HKLM\Software\GoforFiles
Sleutel Verwijderd : HKLM\Software\installedbrowserextensions
Sleutel Verwijderd : HKLM\Software\SupTab
Sleutel Verwijderd : HKLM\Software\supWPM
Sleutel Verwijderd : HKLM\Software\SW-Booster
Sleutel Verwijderd : HKLM\Software\systweak
Sleutel Verwijderd : HKLM\Software\Trymedia Systems
Sleutel Verwijderd : HKLM\SOFTWARE\installedbrowserextensions
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Gegevens Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows - c:\progra~2\searchprotect\searchprotect\bin\spvc32loader.dll
Gegevens Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows - c:\progra~2\sw-boo~1\assist~1.dll
Gegevens Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows - c:\progra~2\gssupp~1\assist~1.dll
Gegevens Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll
Gegevens Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows - Supporter\Assistant_x64.dll
***** *****
-\\ Internet Explorer v11.0.9600.17126
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main
-\\ Google Chrome v36.0.1985.125
Verwijderd : hxxp://search.conduit.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=M23668B8E-BF98-4A6A-B657-7CDC4D61E154&SearchSource=55&CUI=&UM=5&UP=SP660E618B-0EE8-45B7-B8C7-3C40B1014856&SSPV=
Verwijderd : booedmolknjekdopkepjjeckmjkdpfgl
Verwijderd : flpcjncodpafbgdpnkljologafpionhb
Verwijderd : hhpohhfjfoeninmmflceagijghdjobfm
Verwijderd : dhdepfaagokllfmhfbcfmocaeigmoebo
Verwijderd : fbmimoidopbghbcmdmpkjaffffmcbmbg
Verwijderd : hphibigbodkkohoglgfkddblldpfohjl
Verwijderd : kdcnnmifdmlmjffdgeieikcokcogpbej
Verwijderd : kincjchfokkeneeofpeefomkikfkiedl
Verwijderd : kkkeikdkpjenmoiicggnnodbkebafgpc
Verwijderd : gmcnckhlkdcdbmndnlonhjgppmobaaik
Verwijderd : hhpohhfjfoeninmmflceagijghdjobfm
*************************
AdwCleaner.txt - -
AdwCleaner.txt - -
AdwCleaner.txt - -
AdwCleaner.txt - -
########## EOF - C:\AdwCleaner\AdwCleaner.txt - ##########
Hoi Bloempje,
ADW heeft al een flinke opruiming gemaakt.
We gaan ff verder kijken en ook even zien dat we de nog bestaande delen van MBAM verwijderen.
Doe nu het volgende:
Schakel eerst de Antivirussoftware uit voordat je zoek.exe download.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.
Download Zoek.exenaar het bureaublad.
Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Zoek.exe uitvoeren
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
* Dubbelklik vervolgens op Zoek.exe om de tool te starten.
* Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
* Kopieer nu onderstaande vet gedrukte code en plak die in het grote invulvenster:
* Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
firefoxlook;
torpigcheck;
emptyfolderscheck;delete
chromelook;
standardsearch;
filesrcm;
autoclean;
startupall;
* Klik nu op de knop “Run script”.
* Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
* Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
Post het geopende logje in het volgende bericht en vertel even hoe het nu gaat.
Succes,
Huib;)
Zoek.exe v5.0.0.0 Updated 22-07-2014
Tool run by Jonne on wo 23-07-2014 at 9:50:14,53.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jonne\Downloads\zoek (1).exe
==== Older Logs ======================
C:\zoek-results2014-07-22-224119.log 393 bytes
==== Files Recently Created / Modified ======================
====== C:\WINDOWS ====
2014-07-15 19:19:35 357CEBBCD99C8928A2D1A61A6CACC168 43152 —-a-w- C:\WINDOWS\avastSS.scr
====== C:\Users\Jonne\AppData\Local\Temp ====
2014-07-22 21:57:16 332B106DB50E9DD957D73008070634C1 680280 —-a-w- C:\Users\Jonne\AppData\Local\Temp\ICReinstall_ZipSetup.exe
2014-07-15 22:10:31 1C26A77F50BFCA590760BDAC24E84E03 4680704 -c–a-w- C:\Users\Jonne\AppData\Local\Temp\07160010-00000648-ur0dvzvvzb\crt90.msi
2014-07-15 22:10:29 B6874AF023443AD4BFF84DDD4A219AA7 659456 -c–a-w- C:\Users\Jonne\AppData\Local\Temp\07160010-00000648-x02wonxav7\crt110.msi
2014-07-15 22:10:28 9D00662905F6DD9961853FD6F5AA4D2B 684032 -c–a-w- C:\Users\Jonne\AppData\Local\Temp\07160010-00000648-85ectrhavp\crt110_amd64.msi
2014-07-11 21:12:11 8AA94A64117D7AFDA8C22176F138DD76 918952 —-a-w- C:\Users\Jonne\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2014-07-22 21:09:25 0DC5AF80D059DEC792B665ED598C6567 536576 —-a-w- C:\WINDOWS\SysWOW64\sqlite3.dll
2014-07-10 03:41:59 8A9CB0FE11800DBBDBA8FE4F54828892 779264 —-a-w- C:\WINDOWS\SysWOW64\osk.exe
2014-07-10 03:41:57 4F7DA26AC4BD319080B6FCB4F87936CE 225280 —-a-w- C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-10 03:41:55 DFA59840BB1220AFD261FDAE83543959 17276416 —-a-w- C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-10 03:41:48 98C7B1AFA0A99EE3BE99EAABEFB72CA0 4254720 —-a-w- C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-10 03:41:47 FC733FD7721200D5136F6F8112E97B00 11742208 —-a-w- C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-10 03:41:46 7C44C697BA6D0B698B91AC6516A731C3 1139200 —-a-w- C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-10 03:41:44 CCC198257901BEEA2FBF8EB1E7678356 1791488 —-a-w- C:\WINDOWS\SysWOW64\wininet.dll
2014-07-10 03:41:44 9385D7C5DF2566D01B1FB150F381D50B 367616 —-a-w- C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-10 03:41:44 573E522A27210701EB8A6C476D36FFF6 239616 —-a-w- C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-10 03:41:44 084FB28A790685F32A6D7D003777696D 2179072 —-a-w- C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-10 03:41:43 E739AEDCA67F214F96C2520BA293B12B 526336 —-a-w- C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-10 03:41:43 67EA1BB7F6428A10C64D5A732976F871 69632 —-a-w- C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-10 03:41:42 4B774E842F268D51DB942EF9637828B9 1964544 —-a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-10 03:41:42 175A663547805367C10746FC416D4605 704512 —-a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-10 03:41:37 9EE0C96C5D9840DF3517C9B7D19ED590 318976 —-a-w- C:\WINDOWS\SysWOW64\certcli.dll
2014-07-10 03:41:37 7DB59908D49605F2CD0CFB0CF9940E86 735232 —-a-w- C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-10 03:40:54 0A9EB3956BCB7E5CDE15AF987BD81543 488960 —-a-w- C:\WINDOWS\SysWOW64\qedit.dll
2014-07-10 03:40:51 819E423A2914A67CD23D53997F7B4E8D 756224 —-a-w- C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-10 03:40:49 CF7953FFEFED26AC657067CD2C259BCD 11792384 —-a-w- C:\WINDOWS\SysWOW64\twinui.dll
2014-07-10 03:40:48 9E9182A652F5287DA05B3893A2E19FEC 80896 —-a-w- C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-10 03:40:48 77B0DF38B67C00EFB5B131D279FC12ED 666624 —-a-w- C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-10 03:40:48 4B7FA0A3D7B9D316BC6B2A409701E47D 828928 —-a-w- C:\WINDOWS\SysWOW64\twinui.appcore.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2014-07-10 05:20:47 3D748E5558FD9A9F03182CB2330698DC 1018880 —-a-w- C:\WINDOWS\Sysnative\termsrv.dll
2014-07-10 03:42:00 83E3C080E9B0E0677DBCDF9D7F434166 4190720 —-a-w- C:\WINDOWS\Sysnative\win32k.sys
2014-07-10 03:41:59 15750011454B89F4950D7E7E4A947EC1 834048 —-a-w- C:\WINDOWS\Sysnative\osk.exe
2014-07-10 03:41:57 3310F7A257F0EAABDD41E10E1F3FCCFE 250880 —-a-w- C:\WINDOWS\Sysnative\iedkcs32.dll
2014-07-10 03:41:56 FEC19C351EF1B2C998A85D1BFD765675 23464448 —-a-w- C:\WINDOWS\Sysnative\mshtml.dll
2014-07-10 03:41:50 4EC7738394D2BC7BCB5F7A3657F57252 5721088 —-a-w- C:\WINDOWS\Sysnative\jscript9.dll
2014-07-10 03:41:49 366FA6D38406DC8BED62825C196144D1 13527040 —-a-w- C:\WINDOWS\Sysnative\ieframe.dll
2014-07-10 03:41:46 73C7D1FCF6F58F3BF077FB42B0214BC0 1393664 —-a-w- C:\WINDOWS\Sysnative\urlmon.dll
2014-07-10 03:41:45 A21C6231459F4CAC212676A9367A1A68 2768384 —-a-w- C:\WINDOWS\Sysnative\iertutil.dll
2014-07-10 03:41:45 415DF2B045167D6D85223CFFF00FCFC7 292864 —-a-w- C:\WINDOWS\Sysnative\dxtrans.dll
2014-07-10 03:41:45 2EE102DF0EDD8A1EDD3D1E9B99A91BEC 2266112 —-a-w- C:\WINDOWS\Sysnative\wininet.dll
2014-07-10 03:41:44 2E40D5E11BCC597352EE0314AF629A0F 452608 —-a-w- C:\WINDOWS\Sysnative\dxtmsft.dll
2014-07-10 03:41:44 1685AA234852657C4A6D253CCBBE84E0 2040832 —-a-w- C:\WINDOWS\Sysnative\inetcpl.cpl
2014-07-10 03:41:43 D8E6706AECD7AA50764E126CE3F36555 631808 —-a-w- C:\WINDOWS\Sysnative\msfeeds.dll
2014-07-10 03:41:43 1FD6C2F6AC489C271565730F6E9E1A05 85504 —-a-w- C:\WINDOWS\Sysnative\mshtmled.dll
2014-07-10 03:41:42 CA67F68CEC788C0C69AD47C5125DDD8E 608768 —-a-w- C:\WINDOWS\Sysnative\ie4uinit.exe
2014-07-10 03:41:42 BDD4A74421B023C81DA63168BD10C01B 846336 —-a-w- C:\WINDOWS\Sysnative\ieapfltr.dll
2014-07-10 03:41:38 C3028569F244470F3D54026884E16E06 1417216 —-a-w- C:\WINDOWS\Sysnative\lsasrv.dll
2014-07-10 03:41:37 423D68307E57654A000AA484B009DD16 735232 —-a-w- C:\WINDOWS\Sysnative\adtschema.dll
2014-07-10 03:41:37 3B78D6DC57654CDD96E073724A2228AE 436224 —-a-w- C:\WINDOWS\Sysnative\certcli.dll
2014-07-10 03:40:55 78FC2B2BA0E5E1C9249E3157D4EE9BC7 586240 —-a-w- C:\WINDOWS\Sysnative\qedit.dll
2014-07-10 03:40:53 C43573182D614B94272115C7B641D24A 688128 —-a-w- C:\WINDOWS\Sysnative\aepdu.dll
2014-07-10 03:40:52 591B2C8C5C6B944AF538F182B7AF00A6 385536 —-a-w- C:\WINDOWS\Sysnative\devinv.dll
2014-07-10 03:40:52 49ECDFF7027737C9F62D6D96AACCBFB0 527360 —-a-w- C:\WINDOWS\Sysnative\aeinv.dll
2014-07-10 03:40:51 C5FA4562E9ACB7323B3FB333E6C021CF 13287936 —-a-w- C:\WINDOWS\Sysnative\twinui.dll
2014-07-10 03:40:51 C2F515FC027867E5EAF12AC9815B3ABD 923136 —-a-w- C:\WINDOWS\Sysnative\WSShared.dll
2014-07-10 03:40:49 E66AC3CA92FC471BFE69F61549193A64 3463680 —-a-w- C:\WINDOWS\Sysnative\wuaueng.dll
2014-07-10 03:40:49 CCC6D7250D01DA7E5499B0722CF6CAE3 1054208 —-a-w- C:\WINDOWS\Sysnative\twinui.appcore.dll
2014-07-10 03:40:49 9FA466A42109F408AC6C2848E851C38A 555736 —-a-w- C:\WINDOWS\Sysnative\twinapi.appcore.dll
2014-07-10 03:40:49 4A12C727502A07C4B89B663B942DF289 54776 —-a-w- C:\WINDOWS\Sysnative\wuauclt.exe
2014-07-10 03:40:48 53BEF9A65EA686018B9EDF9665F5EBDE 827392 —-a-w- C:\WINDOWS\Sysnative\wuapi.dll
2014-07-10 03:40:48 2C28079658CCA1E8C3810E185CCC2234 93696 —-a-w- C:\WINDOWS\Sysnative\wudriver.dll
2014-07-10 03:34:24 FD3638782572A8281BCF12520F6579F4 79872 —-a-w- C:\WINDOWS\Sysnative\WSReset.exe
====== C:\WINDOWS\Sysnative\drivers =====
2014-07-10 03:41:39 374E27295F0A9DCAA8FC96370F9BEEA5 563200 —-a-w- C:\WINDOWS\Sysnative\drivers\afd.sys
2014-07-10 03:41:37 1CD3A907D64D08F49208DA00B69BF35E 565576 —-a-w- C:\WINDOWS\Sysnative\drivers\cng.sys
====== C:\WINDOWS\Tasks ======
2014-07-22 21:57:58 F7EC06BE0A0D615043237D860901D409 308 —-a-w- C:\WINDOWS\Tasks\Rocket Updater.job
2014-07-22 21:57:58 BA44EEC597425C969CD9F0B7097D2DF0 2642 —-a-w- C:\WINDOWS\Sysnative\Tasks\Rocket Updater
2014-07-22 21:57:12 CFE734FB6EF2B2804F1A0DDD035FAD8F 2642 —-a-w- C:\WINDOWS\Sysnative\Tasks\Digital Sites
2014-07-22 21:57:12 A2D8DA57811CC0E5623BA766438D3777 308 —-a-w- C:\WINDOWS\Tasks\Digital Sites.job
2014-07-22 21:50:07 BE2E15216C2AC110EF53CDE54B3E1E6D 3120 —-a-w- C:\WINDOWS\Sysnative\Tasks\{8774DEA0-B343-4B80-90DA-BDB4AA0D2FF6}
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2014-07-22 09:39:05 ——– d—–w- C:\PROGRA~2\TheTorntv V10
2014-07-17 19:18:09 ——– d—–w- C:\PROGRA~2\OpenOffice 4
2014-07-04 21:21:42 ——– d—–w- C:\PROGRA~2\COMMON~1\Java
======= C: =====
====== C:\Users\Jonne\AppData\Roaming ======
2014-07-22 21:57:58 ——– d—–w- C:\Users\Jonne\AppData\Roaming\RocketUpdater
2014-07-22 21:57:12 ——– d—–w- C:\Users\Jonne\AppData\Roaming\DigitalSites
2014-07-22 09:00:33 ——– d—–w- C:\Users\Jonne\AppData\Roaming\Spotnet
2014-07-21 12:52:54 ——– d—–w- C:\Users\Jonne\AppData\Roaming\Thunderbird
2014-07-21 12:52:54 ——– d—–w- C:\Users\Jonne\AppData\Local\Thunderbird
2014-07-17 19:19:35 ——– d—–w- C:\Users\Jonne\AppData\Roaming\OpenOffice
2014-07-16 09:16:22 ——– d—–w- C:\Users\Jonne\AppData\Roaming\SYSTEMAX Software Development
2014-07-15 22:10:42 ——– d—–w- C:\Users\Jonne\AppData\Local\Windows Live
2014-07-15 16:16:24 ——– d—–w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Programs
====== C:\Users\Jonne ======
2014-07-22 21:59:31 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Jonne\Desktop\mbam-setup-2-0-2-1012.exe
2014-07-22 21:56:52 332B106DB50E9DD957D73008070634C1 680280 —-a-w- C:\Users\Jonne\Downloads\ZipSetup.exe
2014-07-22 21:51:05 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Jonne\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-22 21:30:25 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Jonne\Desktop\mbam-setup-2-0-2-1012.exe
2014-07-22 21:07:55 B653DD91D5D6E519D3357A80A15A5DFB 1354223 —-a-w- C:\Users\Jonne\Downloads\adwcleaner_3.216 (1).exe
2014-07-22 21:02:06 B653DD91D5D6E519D3357A80A15A5DFB 1354223 —-a-w- C:\Users\Jonne\Downloads\adwcleaner_3.216.exe
2014-07-17 19:16:00 4A78777FD4A6C5B8512EA49B49B997D3 138977299 —-a-w- C:\Users\Jonne\Downloads\Apache_OpenOffice_4.1.0_Win_x86_install_nl.exe
2014-07-16 09:16:22 ——– d—–w- C:\ProgramData\SYSTEMAX Software Development
2014-07-16 09:15:50 1133542CCB7526CF0134E0986E62BB96 2339714 —-a-w- C:\Users\Jonne\Desktop\sai-1.1.0-ful-en.exe
2014-07-16 09:15:17 03B923B29C5055F051F7E48774F4A5BD 360296 —-a-w- C:\Users\Jonne\Downloads\SoftonicDownloader_voor_painttool-sai.exe
2014-07-16 09:13:33 C14FC68CD6B89313DA3266210BC73B1F 90396104 —-a-w- C:\Users\Jonne\Downloads\gimp-2.8.10-setup.exe
2014-07-15 22:05:19 63CFB80537F5D503F480AAF74309AC56 360304 —-a-w- C:\Users\Jonne\Downloads\SoftonicDownloader_voor_msn-messenger-8-5.exe
2014-07-15 17:14:38 ——– d—–w- C:\ProgramData\GameHouse
2014-07-12 22:12:58 ——– d—–r- C:\WINDOWS\SysNative\config\systemprofile\Searches
====== C: exe-files ==
2014-07-22 21:59:31 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Jonne\Desktop\mbam-setup-2-0-2-1012.exe
2014-07-22 21:57:16 332B106DB50E9DD957D73008070634C1 680280 —-a-w- C:\Users\Jonne\AppData\Local\Temp\ICReinstall_ZipSetup.exe
2014-07-22 21:56:52 332B106DB50E9DD957D73008070634C1 680280 —-a-w- C:\Users\Jonne\Downloads\ZipSetup.exe
2014-07-22 21:51:05 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Jonne\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-22 21:30:25 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Jonne\Desktop\mbam-setup-2-0-2-1012.exe
2014-07-22 21:17:34 3842C46F2FBC7522EF625F1833530804 145408 —-a-w- C:\Users\Jonne\AppData\LocalLow\Sun\Java\jre1.7.0_65\lzma.exe
2014-07-22 21:07:55 B653DD91D5D6E519D3357A80A15A5DFB 1354223 —-a-w- C:\Users\Jonne\Downloads\adwcleaner_3.216 (1).exe
2014-07-22 21:02:06 B653DD91D5D6E519D3357A80A15A5DFB 1354223 —-a-w- C:\Users\Jonne\Downloads\adwcleaner_3.216.exe
2014-07-21 10:38:26 CBBC0857D6E677362AADD3C54FFD6E50 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\rmid.exe
2014-07-21 10:38:26 A980296E1EC9921356F0D8AD06A6EF9C 182696 —-a-w- C:\Program Files (x86)\Java\jre7\bin\jqs.exe
2014-07-21 10:38:26 992B9F82FE3364B1DE57DD1FA09DC590 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\servertool.exe
2014-07-21 10:38:26 9538F45F86C30E9AB73E9159BA55FE2B 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\keytool.exe
2014-07-21 10:38:26 91B7F0DA8B6C52096CFD8B738F3D3D24 16808 —-a-w- C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe
2014-07-21 10:38:26 7EF928D407D281E66C248AC323995F6E 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\klist.exe
2014-07-21 10:38:26 74F08806423063B1ABD3B79958DA8B22 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\pack200.exe
2014-07-21 10:38:26 731F0F68BD4B24C96539E7041162F4B5 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\kinit.exe
2014-07-21 10:38:26 550D282FDE001860D09544DCE6F3B218 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\ktab.exe
2014-07-21 10:38:26 51CCA1D8C86EEDD01E962F54AD0A40A3 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe
2014-07-21 10:38:26 4A9C9EB33EC6779E2B8A1CDAB6B22E75 75688 —-a-w- C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
2014-07-21 10:38:26 24A247CB63FE3A5DEC8E1070F9D49ECE 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\policytool.exe
2014-07-21 10:38:26 131EE1B71F6F770AB6820FD383BC184E 50088 —-a-w- C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe
2014-07-21 10:38:26 09AD1CE65816D427E12A564A24F3FE11 16808 —-a-w- C:\Program Files (x86)\Java\jre7\bin\orbd.exe
2014-07-21 10:38:26 04390E59F4EA447B05B3B31DA4CB23FF 145832 —-a-w- C:\Program Files (x86)\Java\jre7\bin\unpack200.exe
2014-07-21 10:38:25 FFAECE8AEC1D9CCDCEC1C55C2CA450BA 175528 —-a-w- C:\Program Files (x86)\Java\jre7\bin\java.exe
2014-07-21 10:38:25 F67B94393ADB74B6616CFEECD1171EFE 68008 —-a-w- C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
2014-07-21 10:38:25 C626BC51E0149090DDBA9A98C5E27689 16296 —-a-w- C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe
2014-07-21 10:38:25 7F26D694BC7E78958BE38D1D9AAFC2B9 272808 —-a-w- C:\Program Files (x86)\Java\jre7\bin\javaws.exe
2014-07-21 10:38:25 6A81137F68B0A8815B9BE3BE11F29CCE 48040 —-a-w- C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe
2014-07-21 10:38:25 67BE34FBF29E783691C713517102E67E 175528 —-a-w- C:\Program Files (x86)\Java\jre7\bin\javaw.exe
2014-07-17 19:16:00 4A78777FD4A6C5B8512EA49B49B997D3 138977299 —-a-w- C:\Users\Jonne\Downloads\Apache_OpenOffice_4.1.0_Win_x86_install_nl.exe
2014-07-17 09:13:50 C5D237A3DA4A914D19D825C73FDE4487 8848464 —-a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.125\36.0.1985.125_35.0.1916.153_chrome_updater.exe
2014-07-16 09:16:08 2474E7ACCE97DBBD0518D0187D98539C 32768 —-a-w- C:\Users\Jonne\Downloads\PaintToolSAI\uninst.exe
2014-07-16 09:16:08 155192CE86F1B5417F651F59C7B06729 1642496 —-a-w- C:\Users\Jonne\Downloads\PaintToolSAI\sai.exe
2014-07-16 09:15:50 1133542CCB7526CF0134E0986E62BB96 2339714 —-a-w- C:\Users\Jonne\Desktop\sai-1.1.0-ful-en.exe
2014-07-16 09:15:17 03B923B29C5055F051F7E48774F4A5BD 360296 —-a-w- C:\Users\Jonne\Downloads\SoftonicDownloader_voor_painttool-sai.exe
2014-07-16 09:13:33 C14FC68CD6B89313DA3266210BC73B1F 90396104 —-a-w- C:\Users\Jonne\Downloads\gimp-2.8.10-setup.exe
=== C: other files ==
2014-07-22 09:39:16 2A4FDC12E96BE91D3051A61BE01B730B 335626 —-a-w- C:\Program Files (x86)\TheTorntv V10\8787956a-e240-4401-b669-ff9a703023ea.xpi
2014-07-22 09:39:09 8F36623D939EC1DC809BA3611515BDB6 295874 —-a-w- C:\Program Files (x86)\TheTorntv V10\8787956a-e240-4401-b669-ff9a703023ea.crx
2014-07-22 09:39:09 68C6409582771C4E1229C6C469E7DAF1 297077 —-a-w- C:\Program Files (x86)\TheTorntv V10\edf387c1-8bd4-41b8-ae3c-e325cdfe426c.crx
2014-07-22 09:39:07 8F36623D939EC1DC809BA3611515BDB6 295874 —-a-w- C:\Program Files (x86)\TheTorntv V10\fc54cf4d-6db4-408c-8057-8b888fe788b0.crx
2014-07-21 10:38:26 C17BF24D0FEB42E51B0C961030CB5F36 18650 —-a-w- C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip
==== Startup Registry Enabled ======================
“Skype”=“C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun”
“uTorrent”=“C:\Users\Jonne\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED”
“Akamai NetSession Interface”=“C:\Users\Jonne\AppData\Local\Akamai\netsession_win.exe”
“MsnMsgr”=“C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe /background”
“IAStorIcon”=“C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60”
“CLMLServer_For_P2G8”=“C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe”
“CLVirtualDrive”=“C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R”
“RemoteControl10”=“C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe”
“Adobe ARM”=“C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
“CanonQuickMenu”=“C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon”
“AvastUI.exe”=“C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui”
“SDTray”=“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe”
“Aeria Ignite”=“C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe silent”
“YourFile DownloaderInstaller Starter”=“C:\Users\Jonne\AppData\Local\Temp\install209895.exe -startup”
“SunJavaUpdateSched”=“C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
“Skype”=“C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun”
“uTorrent”=“C:\Users\Jonne\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED”
“Akamai NetSession Interface”=“C:\Users\Jonne\AppData\Local\Akamai\netsession_win.exe”
“MsnMsgr”=“C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe /background”
“AppInit_DLLs”=“ ”
==== Startup Registry Enabled x64 ======================
“RTHDVCPL”=“C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s”
“IgfxTray”=“C:\WINDOWS\system32\igfxtray.exe”
“HotKeysCmds”=“C:\WINDOWS\system32\hkcmd.exe”
“Persistence”=“C:\WINDOWS\system32\igfxpers.exe”
“MouseDriver”=“TiltWheelMouse.exe”
“AppInit_DLLs”=“ C:\\Program Files (x86)\\GS ”
==== Task Scheduler Jobs ======================
C:\WINDOWS\tasks\Adobe Flash Player Updater.job –a——– C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Digital Sites.job –a——– C:\Users\Jonne\AppData\Roaming\DIGITA1\UPDATE1\UPDATE1.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job –a——– C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job –a——– C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\WINDOWS\tasks\Rocket Updater.job –a——– C:\Users\Jonne\AppData\Roaming\ROCKET1\UPDATE1\UPDATE1.exe
==== Other Scheduled Tasks ======================
“C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater”
“C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC”
“C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask”
“C:\WINDOWS\SysNative\tasks\Digital Sites”
“C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore”
“C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA”
“C:\WINDOWS\SysNative\tasks\Rocket Updater”
“C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{4B5FBB71-C04A-4537-93EB-2CAAD96B9569}”
“C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{A018B7AA-3706-4D47-81C1-AB0B7F3C3EC6}”
“C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{A6E1DC40-5955-4546-AEFC-0BE7FF637105}”
“C:\WINDOWS\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates”
“C:\WINDOWS\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization”
“C:\WINDOWS\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system”
==== Firefox Extensions Registry ======================
“wrc@avast.com”=“C:\Program Files\AVAST Software\Avast\WebRep\FF”
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
ssavoe on - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Chrome Web Store Launcher - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej
ssavoe on - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
ssavoe on - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Chrome Web Store Launcher - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej
ssavoe on - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
ssavoe on - girlz_000\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Chrome Web Store Launcher - girlz_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej
ssavoe on - girlz_000\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
ssavoe on - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Chrome Web Store Launcher - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej
ssavoe on - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
ssavoe on - Jonne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Google Docs - Jonne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Jonne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Jonne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Jonne\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
avast Online Security - Jonne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - Jonne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Jonne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
ssavoe on - Jonne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
ssavoe on - slang_000\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
Google Docs - slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Chrome Web Store Launcher - slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej
Whilokii - slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lebeobjidmhjkjbkmmhinldikphnpjlc
Chrome In-App Payments service - slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - slang_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
ssavoe on - slang_000\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhpohhfjfoeninmmflceagijghdjobfm
==== C:\zoek_backup content ======================
C:\zoek_backup (files=0 folders=0 0 bytes)
==== EOF on wo 23-07-2014 at 9:55:27,34 ======================
Start Zoek.exe
Antivirussoftware uitschakelen
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.
Antivirus software uitschakelen
Antispy & malware software uitschakelen
Zoek.exe uitvoeren
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
Dubbelklik vervolgens op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
C:\WINDOWS\Tasks\Digital Sites.job;f
C:\Program Files (x86)\TheTorntv V10;fs
C:\Users\Jonne\AppData\Roaming\DigitalSites;fs
C:\WINDOWS\SysNative\config\systemprofile\Searches;fs
;r
“AppInit_DLLs”=-;r
;r64
“AppInit_DLLs”=-;r64
C:\Users\Jonne\AppData\Roaming\DIGITA1;fs
C:\WINDOWS\tasks\Rocket Updater.job;f
C:\Users\Jonne\AppData\Roaming\ROCKET1\UPDATE1;fs
hhpohhfjfoeninmmflceagijghdjobfm;chr
blpcfgokakmgnkcojhhkbfbldkacnbeo;chr
lebeobjidmhjkjbkmmhinldikphnpjlc;chr
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
Post het geopende logje in het volgende bericht.
Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.
Doorzoek het forum
Zoeken met Startpagina
Startpagina Thema's