Pagina 2 van 2 EersteEerste 12
Weergegeven resultaten: 11 t/m 19 van 19
  1. #11
    Up-to-date  
    Geregistreerd
    29 December 2005
    Berichten
    59
    Bedankjes
    15
    Bedankt
    2 keer in 2 posts
    Zelfde probleem als vorige keer -_-

    adwCleaner has stopped working vlak nadat hij de boel verwijdert en een preventiewaarschuwing geeft, dus vlak voor het de pc zou moeten herstarten. Dan nog maar eens gedaan, waar uiteindelijk dit (naar mijn mening nutteloos) logje voortkwam. Geen log te bespeuren van de scan waar hij stopte met werken

    # AdwCleaner v3.014 - Report created 01/12/2013 at 19:14:48
    # Updated 01/12/2013 by Xplode
    # Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
    # Username : Laurens - LAURENS-PC
    # Running from : C:\Users\Laurens\Desktop\adwcleaner.exe
    # Option : Clean

    ***** [ Services ] *****


    ***** [ Files / Folders ] *****


    ***** [ Shortcuts ] *****


    ***** [ Registry ] *****


    ***** [ Browsers ] *****

    -\\ Internet Explorer v10.0.9200.16736


    -\\ Mozilla Firefox v25.0.1 (en-US)

    [ File : C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\P rofiles\j1f801l7.default\prefs.js ]


    -\\ Google Chrome v

    [ File : C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\preferences ]


    *************************

    AdwCleaner[R0].txt - [3830 octets] - [27/11/2013 12:31:44]
    AdwCleaner[R1].txt - [1011 octets] - [27/11/2013 12:33:47]
    AdwCleaner[R2].txt - [1848 octets] - [01/12/2013 19:12:36]
    AdwCleaner[R3].txt - [1252 octets] - [01/12/2013 19:14:24]
    AdwCleaner[S0].txt - [3866 octets] - [27/11/2013 12:33:22]
    AdwCleaner[S1].txt - [1072 octets] - [27/11/2013 12:34:27]
    AdwCleaner[S2].txt - [1921 octets] - [01/12/2013 19:13:52]
    AdwCleaner[S3].txt - [1174 octets] - [01/12/2013 19:14:48]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1234 octets] ##########
    //laurens\\

  2. #12
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 May 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.212
    Bedankjes
    1.205
    Bedankt
    2.705 keer in 1.758 posts
    Download de 32 of 64 bit versie van HitmanPro via één van de onderstaande links naar het bureaublad.
    • 32 Bit - http://files.surfright.nl/HitmanPro36.exe
    • 64 Bit - http://dl.surfright.nl/HitmanPro36_x64.exe
    • Dubbelklik op "HitmanPro36.exe" en klik op "volgende"
    • Vink de optie "Ik accepteer de voorwaarden van de gebruikersovereenkomst aan" en klik op "Volgende"
    • Sluit nu het programma.
    • Open hitmanpro36 opnieuw
    • Onderin zie je nu naast 'nu kopen' ook de knop instellingen, klik daarop.
    • Daarna klik je op de knop 'licentie' hier kan je voor 30 dagen gebruik maken van de gratis licentie.
    • Klik op "Activeer gratis licentie". Nu komt de melding "Het product is succesvol geactiveerd."
    • Klik nu op annuleren om weer in het beginscherm te komen.
    • Klik op volgende. Selecteer de optie "Nee, ik wil deze computer slechts eenmalig controleren" en klik op "Volgende".
      De scan zal nu gestart worden, doe verder niets op de computer totdat de scan gereed is.
    • Als de scan klaar is klik je op "volgende"
    • Klik onderin het scherm op "Save log" of "Logbestand opslaan" en sla deze op bijvoorbeeld het bureaublad op.
      Post dit logje.

  3. #13
    Up-to-date  
    Geregistreerd
    29 December 2005
    Berichten
    59
    Bedankjes
    15
    Bedankt
    2 keer in 2 posts
    Code:
    HitmanPro 3.7.8.208
    www.hitmanpro.com
    
       Computer name . . . . : LAURENS-PC
       Windows . . . . . . . : 6.1.1.7601.X64/6
       User name . . . . . . : Laurens-PC\Laurens
       UAC . . . . . . . . . : Disabled
       License . . . . . . . : Free
    
       Scan date . . . . . . : 2013-12-02 11:48:21
       Scan mode . . . . . . : Normal
       Scan duration . . . . : 4m 19s
       Disk access mode  . . : Direct disk access (SRB)
       Cloud . . . . . . . . : Internet
       Reboot  . . . . . . . : No
    
       Threats . . . . . . . : 0
       Traces  . . . . . . . : 69
    
       Objects scanned . . . : 1.495.741
       Files scanned . . . . : 33.715
       Remnants scanned  . . : 330.628 files / 1.131.398 keys
    
    Suspicious files ____________________________________________________________
    
       C:\Users\Laurens\AppData\Local\PunkBuster\BLR\pb\pbcl.dll
          Size . . . . . . . : 949.190 bytes
          Age  . . . . . . . : 353.8 days (2012-12-13 16:30:31)
          Entropy  . . . . . : 7.6
          SHA-256  . . . . . : DAF43E93528BEEECC015FA98D6EE6D6FD6D19A049321E47A65665144E4511F41
          Fuzzy  . . . . . . : 29.0
             The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
             Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
             Authors name is missing in version info. This is not common to most programs.
             Version control is missing. This file is probably created by an individual. This is not typical for most programs.
             Program contains PE structure anomalies. This is not typical for most programs.
    
       C:\Users\Laurens\AppData\Local\PunkBuster\BLR\pb\PnkBstrK.sys
          Size . . . . . . . : 140.360 bytes
          Age  . . . . . . . : 353.8 days (2012-12-13 16:30:53)
          Entropy  . . . . . : 7.8
          SHA-256  . . . . . : 0F41B3843E2D2D1BB1ACF8B7CAA293309CC1CF8CF478B1AC86DD6BB214928DC4
          RSA Key Size . . . : 2048
          Authenticode . . . : Valid
          Fuzzy  . . . . . . : 22.0
             The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
             Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
             Authors name is missing in version info. This is not common to most programs.
             Version control is missing. This file is probably created by an individual. This is not typical for most programs.
             Program contains PE structure anomalies. This is not typical for most programs.
             The file is a device driver. Device drivers run as trusted (highly privileged) code.
             Program is code signed with a valid Authenticode certificate.
    
    
    Potential Unwanted Programs _________________________________________________
    
       HKU\S-1-5-21-115736761-1819018865-2380374774-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{4D2D3B0F-69BE-477A-90F5-FDDB05357975} (Claro)
    
    Cookies _____________________________________________________________________
    
       C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\alr6xin3.default\cookies.sqlite:atdmt.com
       C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\alr6xin3.default\cookies.sqlite:doubleclick.net
       C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\alr6xin3.default\cookies.sqlite:h.atdmt.com
       C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\alr6xin3.default\cookies.sqlite:xiti.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.mlnadvertising.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechus.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:questionmarket.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net
       C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\0Q0EJPYJ.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\1MTZEA0J.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\50HXIPY8.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\AS7JLWCZ.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\E04G5OXA.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\F1FHVQJP.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\KN9QHDSE.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\M2U9HXL3.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\NXKI1QHN.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\RG1OMCF7.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\T31YBJ71.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\WRKYY1R4.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\YCFEH8M7.txt
       C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Cookies\ZEFKLVMW.txt
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:2o7.net
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:ad.adnet.de
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:ad.auditude.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:ad.yieldmanager.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:atdmt.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:atlanticmedia.122.2o7.net
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:be.sitestat.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:casalemedia.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:doubleclick.net
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:eaeacom.112.2o7.net
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:fr.sitestat.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:h.atdmt.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:in.getclicky.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:invitemedia.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:livenation.122.2o7.net
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:mtvn.112.2o7.net
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:nl.sitestat.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:pcworldcommunication.122.2o7.net
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:serving-sys.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:stat.onestat.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:statcounter.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:static.getclicky.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:statse.webtrendslive.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:thesexyutopia.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:uk.sitestat.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:warnerbros.112.2o7.net
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:www.googleadservices.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:xiti.com
       C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\j1f801l7.default\cookies.sqlite:yadro.ru
    //laurens\\

  4. #14
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 May 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.212
    Bedankjes
    1.205
    Bedankt
    2.705 keer in 1.758 posts
    Laat me even raad vragen aan een collega!!

  5. #15
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 May 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.212
    Bedankjes
    1.205
    Bedankt
    2.705 keer in 1.758 posts
    Download Zoek.zip naar het bureaublad.

    1. Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
    2. Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.


    • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
    • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
    • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
    • Kopieer nu onderstaande code en plak die in het grote invulvenster:
    • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
      Code:
       
      torpigcheck;
      emptyclsid;
      emptyfolderscheck;delete 
      autoclean; 
      iedefaults; 
      filesrcm;
    • Klik nu op de knop "Run script".
    • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
    • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
    • Post het geopende logje in het volgende bericht als bijlage.

  6. #16
    Up-to-date  
    Geregistreerd
    29 December 2005
    Berichten
    59
    Bedankjes
    15
    Bedankt
    2 keer in 2 posts
    Bij deze

    Zoek.exe Version 4.0.0.5 Updated 30-November-2013
    Tool run by Laurens on di 03/12/2013 at 17:45:11,29.
    Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
    Running in: Normal Mode Internet Access Detected
    Launched: C:\Users\Laurens\Desktop\zoek.scr [Script inserted]

    ==== System Restore Info ======================

    3/12/2013 17:46:36 Zoek.exe System Restore Point Created Succesfully.

    ==== Torpig Check ======================

    HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandle rs\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll
    HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandle rs\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll


    ==== Empty Folders Check ======================

    C:\PROGRA~2\MSXML 4.0 deleted successfully
    C:\Program Files\Symantec deleted successfully
    C:\ProgramData\Ralink deleted successfully
    C:\Users\Guest\AppData\Local\VirtualStore deleted successfully

    ==== Deleting CLSID Registry Keys ======================

    HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully

    ==== Deleting CLSID Registry Values ======================


    ==== Deleting Services ======================


    ==== FireFox Fix ======================

    ProfilePath: C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Pro files\alr6xin3.default

    user.js not found
    ---- FireFox user.js and prefs.js backups ----

    prefs_20130312_1754_.backup

    ProfilePath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\P rofiles\j1f801l7.default

    user.js not found
    ---- Lines extensions._sFaQmZTJD removed from prefs.js ----
    user_pref("extensions._sFaQmZTJD.epoch", "1385928204");
    user_pref("extensions._sFaQmZTJD.url", "http://getsrv.info/sync2/?q=hfZ9ofqMA6aMCyVUojw4rTkMg708BNmGWj8cmihGheDUojw HrjwGqTw7rdsFqchIC7n0rjrFrjrErTaErH
    ---- Lines extensions.bWD7I3xTm9hn removed from prefs.js ----
    user_pref("extensions.bWD7I3xTm9hn.epoch", "1385928204");
    user_pref("extensions.bWD7I3xTm9hn.url", "http://getproxy5.info/sync2/?q=hfZ9ofDSBShEAen0rjUGqihTB6lKDzt4oktxtNtVh7n0rjr Frjs7rjgErTk5tMFHhd9FrHwFrHaGr
    ---- Lines extensions.sFe6M removed from prefs.js ----
    user_pref("extensions.sFe6M.epoch", "1385928204");
    user_pref("extensions.sFe6M.url", "http://getjpinet.info/sync2/?q=hfZ9ofV9CShEAen0rjUGqihTB6lKDzt4oktxtNtVh7n0rjr Frjs7rjgErTs7tMFHhd9FrHwFrHaGrdaHrjgM
    ---- FireFox user.js and prefs.js backups ----

    prefs_20130312_1754_.backup

    ==== Deleting Files \ Folders ======================

    C:\Users\Laurens\AppData\LocalLow\{306299B0-757D-AF25-40C8-77B4076C9DEE} deleted
    C:\Users\Laurens\AppData\LocalLow\{63CA9159-6F65-6E59-5DCA-AA04FDF9A7EB} deleted
    C:\Users\Laurens\AppData\LocalLow\{6546E590-955A-F3E4-5C95-6B75F24D8826} deleted
    C:\Users\Laurens\AppData\Local\Packages\windows_ie _ac_001\AC\{306299B0-757D-AF25-40C8-77B4076C9DEE} deleted
    C:\Users\Laurens\AppData\Local\Packages\windows_ie _ac_001\AC\{63CA9159-6F65-6E59-5DCA-AA04FDF9A7EB} deleted
    C:\Users\Laurens\AppData\Local\Packages\windows_ie _ac_001\AC\{6546E590-955A-F3E4-5C95-6B75F24D8826} deleted
    C:\PROGRA~2\Sk-Enhancer deleted
    C:\PROGRA~2\Lavasoft\AdAware SecureSearch Toolbar deleted
    C:\ProgramData\InstallMate deleted
    C:\ProgramData\YTD Video Downloader deleted
    C:\Users\Guest\AppData\Local\adawarebp deleted
    C:\Users\Laurens\AppData\Local\adawarebp deleted
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted
    C:\Users\Laurens\Downloads\adt-bundle-windows-x86_64.zip deleted
    C:\AI_RecycleBin deleted
    C:\Windows\SysWow64\AI_RecycleBin deleted
    C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Pro files\alr6xin3.default\adawaretb deleted
    C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted
    "C:\ProgramData\a177ab2d8942ecb6\{4820778D-AB0D-6D18-C316-52A6A0E1D507}" deleted
    "C:\ProgramData\a177ab2d8942ecb6\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}" deleted
    "C:\ProgramData\a177ab2d8942ecb6\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}.old" deleted
    "C:\ProgramData\a177ab2d8942ecb6\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}" deleted
    "C:\ProgramData\a177ab2d8942ecb6" deleted

    ==== Files Recently Created / Modified ======================

    ====== C:\Windows ====
    2013-12-01 14:07:20 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe
    2013-12-01 14:07:20 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe
    2013-12-01 14:07:20 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe
    2013-12-01 14:07:20 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe
    2013-12-01 14:07:20 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe
    2013-11-12 18:24:43 E366573E4AB73F3EBE169B62ABCF77FC 13898 ------w- C:\Windows\hpomdl19.dat
    2013-11-12 18:24:43 3129C86281D330BBB2875E8AEFA454D0 230200 ----a-w- C:\Windows\hpoins19.dat
    ====== C:\Users\Laurens\AppData\Local\Temp ====
    ====== Java Cache =====
    ====== C:\Windows\SysWOW64 =====
    2013-11-30 19:18:12 3E62CF18441A03A440B280182E4B6935 129872 ----a-w- C:\Windows\SysWOW64\MSSTDFMT.DLL
    ====== C:\Windows\SysWOW64\drivers =====
    ====== C:\Windows\Sysnative =====
    ====== C:\Windows\Sysnative\drivers =====
    2013-11-13 21:43:14 79059559E89D06E8B80CE2944BE20228 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
    2013-11-13 21:43:13 EBF28856F69CF094A902F884CF989706 458712 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
    2013-11-13 21:43:12 8F489706472F7E9A06BAAA198703FA64 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
    2013-11-13 21:43:12 868A2CAAB12EFC7A021682BCA0EEC54C 154560 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
    ====== C:\Windows\Tasks ======
    ====== C:\Windows\Temp ======
    ======= C:\Program Files =====
    2013-11-30 19:22:05 -------- d-----w- C:\Program Files\Lavasoft
    2013-11-30 19:21:04 -------- d-----w- C:\Program Files\Common Files\Lavasoft
    2013-11-26 16:15:14 -------- d-----w- C:\Program Files\UltraMon
    2013-11-12 18:25:02 -------- d-----w- C:\Program Files\HP
    ======= C:\PROGRA~2 =====
    2013-11-30 19:18:12 -------- d-----w- C:\PROGRA~2\SpywareBlaster
    2013-11-26 16:15:15 -------- d-----w- C:\PROGRA~2\COMMON~1\Realtime Soft
    2013-11-12 18:27:57 -------- d-----w- C:\PROGRA~2\COMMON~1\Hewlett-Packard
    2013-11-12 18:27:38 -------- d-----w- C:\PROGRA~2\COMMON~1\HP
    2013-11-12 18:25:19 -------- d-----w- C:\PROGRA~2\HP
    ======= C: =====
    ====== C:\Users\Laurens\AppData\Roaming ======
    2013-12-01 14:46:03 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\temp
    2013-12-01 14:46:03 -------- d-----w- C:\Users\Public\AppData\Local\temp
    2013-12-01 14:46:03 -------- d-----w- C:\Users\Guest\AppData\Local\temp
    2013-12-01 14:46:03 -------- d-----w- C:\Users\Default\AppData\Local\temp
    2013-12-01 14:46:03 -------- d-----w- C:\Users\Default User\AppData\Local\temp
    2013-11-30 19:31:48 -------- d-----w- C:\Users\Laurens\AppData\Roaming\Lavasoft
    2013-11-26 16:02:30 -------- d-----w- C:\Users\Laurens\AppData\Local\Packages
    2013-11-18 16:29:46 -------- d-----w- C:\Users\Laurens\AppData\Roaming\Microsoft\Windows \Start Menu\Programs\Surgeon Simulator 2013 Steam Edition 1.0
    2013-11-12 18:32:38 -------- d-----w- C:\Users\Laurens\AppData\Roaming\HP
    2013-11-12 18:32:37 -------- d-----w- C:\Users\Laurens\AppData\Local\HP
    ====== C:\Users\Laurens ======
    2013-12-02 10:19:22 -------- d-----w- C:\ProgramData\HitmanPro
    2013-12-01 22:42:23 76874123C258B0FE7A5E7E8F71555D52 10264904 ----a-w- C:\Users\Laurens\Desktop\HitmanPro36_x64.exe
    2013-12-01 18:12:10 5CE10688C6671AE9AFC20B09376E8AB2 1110034 ----a-w- C:\Users\Laurens\Desktop\adwcleaner.exe
    2013-12-01 14:46:03 -------- d-----w- C:\Users\Public\AppData
    2013-11-30 19:23:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad-Aware Antivirus
    2013-11-30 19:20:16 -------- d-----w- C:\ProgramData\Lavasoft
    2013-11-30 19:19:50 637D309919892054EA49D0B0066035BE 1723528 ----a-w- C:\Users\Laurens\Downloads\Adaware_Installer(1).ex e
    2013-11-30 19:18:15 -------- d---a-w- C:\ProgramData\TEMP
    2013-11-30 19:18:15 -------- d-----w- C:\ProgramData\Licenses
    2013-11-30 19:18:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
    2013-11-30 19:15:33 78130949095E6721B40B50E77C1F1BBC 4095448 ----a-w- C:\Users\Laurens\Downloads\spywareblastersetup50.e xe
    2013-11-30 11:56:20 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Laurens\Desktop\dds.com
    2013-11-30 02:47:06 60BF4AE8CC40B0E3E28613657ED2EED8 377856 ----a-w- C:\Users\Laurens\Desktop\k7wn15ei.exe
    2013-11-27 11:25:56 AFAFA655CC59872129A32CDE4F60F2DE 1091882 ----a-w- C:\Users\Laurens\Downloads\adwcleaner(1).exe
    2013-11-27 11:23:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
    2013-11-26 16:15:14 -------- d-----w- C:\ProgramData\Realtime Soft
    2013-11-12 18:32:49 -------- d-----w- C:\ProgramData\WEBREG
    2013-11-12 18:29:09 -------- d-----w- C:\ProgramData\HP Product Assistant
    2013-11-12 18:28:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
    2013-11-12 18:24:37 -------- d-----w- C:\ProgramData\HP

    ====== C: exe-files ==
    2013-12-01 22:42:23 76874123C258B0FE7A5E7E8F71555D52 10264904 ----a-w- C:\Users\Laurens\Desktop\HitmanPro36_x64.exe
    2013-12-01 18:12:10 5CE10688C6671AE9AFC20B09376E8AB2 1110034 ----a-w- C:\Users\Laurens\Desktop\adwcleaner.exe
    2013-12-01 14:07:20 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe
    2013-12-01 14:07:20 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe
    2013-12-01 14:07:20 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe
    2013-12-01 14:07:20 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe
    2013-12-01 14:07:20 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe
    2013-11-30 19:19:50 637D309919892054EA49D0B0066035BE 1723528 ----a-w- C:\Users\Laurens\Downloads\Adaware_Installer(1).ex e
    2013-11-30 19:18:12 BE2EE9C219B016AEC95F604FBFFEE171 2115192 ----a-w- C:\Program Files (x86)\SpywareBlaster\sbautoupdate.exe
    2013-11-30 19:18:12 AE13FB6BD8086465217F6A063EC3FCC3 715038 ----a-w- C:\Program Files (x86)\SpywareBlaster\unins000.exe
    2013-11-30 19:18:12 1BE8001D5C4EEE56A97980CD6987EB40 2557544 ----a-w- C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe
    2013-11-30 19:18:12 0EED9CD892F88435BFD1AE41EF6ED60D 119976 ----a-w- C:\Program Files (x86)\SpywareBlaster\sburlhelper.exe
    2013-11-30 19:15:33 78130949095E6721B40B50E77C1F1BBC 4095448 ----a-w- C:\Users\Laurens\Downloads\spywareblastersetup50.e xe
    2013-11-30 02:47:06 60BF4AE8CC40B0E3E28613657ED2EED8 377856 ----a-w- C:\Users\Laurens\Desktop\k7wn15ei.exe
    2013-11-28 23:09:20 97659B3A61240137AA8330A27A67E715 5953584 ----a-w- C:\Program Files (x86)\AVG\AVG2013\avgcrema.exe
    2013-11-27 11:25:56 AFAFA655CC59872129A32CDE4F60F2DE 1091882 ----a-w- C:\Users\Laurens\Downloads\adwcleaner(1).exe
    2013-11-27 11:20:21 A5E543E791DBA64B0531730F93DF1CE5 7659448 ----a-w- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
    === C: other files ==
    2013-11-30 11:56:20 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Laurens\Desktop\dds.com
    2013-11-27 11:23:53 22F0CE602C75E700D9F1A070D83A0643 1374645 ----a-w- C:\Program Files (x86)\AVG\AVG2013\banners\banners.zip

    ==== Folders in C:\ProgramData 0-6 Months Old ======================

    2013-08-05 01:05:55 -------- d-----w- C:\ProgramData\Downloaded Installations
    2013-08-05 01:18:33 -------- d-----w- C:\ProgramData\AVG2013
    2013-08-05 02:20:45 -------- d-----w- C:\ProgramData\Malwarebytes
    2013-08-13 17:39:35 -------- d-----w- C:\ProgramData\SystemRequirementsLab
    2013-09-10 14:12:37 -------- d-----w- C:\ProgramData\fltk.org
    2013-10-14 16:04:40 -------- d-----w- C:\ProgramData\BlueStacks
    2013-10-14 16:04:40 -------- d-----w- C:\ProgramData\BlueStacksSetup
    2013-11-12 18:24:37 -------- d-----w- C:\ProgramData\HP
    2013-11-12 18:29:09 -------- d-----w- C:\ProgramData\HP Product Assistant
    2013-11-12 18:32:49 -------- d-----w- C:\ProgramData\WEBREG
    2013-11-26 16:15:14 -------- d-----w- C:\ProgramData\Realtime Soft
    2013-11-30 19:18:15 -------- d-----w- C:\ProgramData\Licenses
    2013-11-30 19:18:15 -------- d---a-w- C:\ProgramData\TEMP
    2013-11-30 19:20:16 -------- d-----w- C:\ProgramData\Lavasoft
    2013-12-02 10:19:22 -------- d-----w- C:\ProgramData\HitmanPro

    ==== Firefox Extensions Registry ======================

    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Fi refox\Extensions]
    "smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [12/11/2013 19:30]
    [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensi ons]
    "smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [12/11/2013 19:30]

    ==== Firefox Extensions ======================

    ProfilePath: C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Pro files\alr6xin3.default
    - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

    ProfilePath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\P rofiles\j1f801l7.default
    - Youtube MP3 Podcaster - %ProfilePath%\extensions\youtubemp3podcaster@jerem y.d.gregorio.com
    - DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
    - YouTube High Definition - %ProfilePath%\extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi
    - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

    AppDir: C:\Program Files (x86)\Mozilla Firefox
    - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}
    - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

    ==== Firefox Plugins ======================

    Profilepath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\P rofiles\j1f801l7.default
    EE8D96E7899D12FC3AA5DB2034C0853C - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_90 0_152.dll - Shockwave Flash
    CFAF7B67C78D09D79688AEDCA3D090E2 - C:\Users\Laurens\AppData\Local\Google\Update\1.3.2 1.165\npGoogleUpdate3.dll - Google Update
    D493C8FC0D0FD015BB9765658D77346E - C:\Users\Laurens\AppData\LocalLow\Unity\WebPlayer\ loader\npUnity3D32.dll - Unity Player
    5BF37947AF594EAC3D6F8405405D2541 - C:\Windows\SysWOW64\npdeployJava1.dll - Java Deployment Toolkit 6.0.380.5
    0B31B0F8FA99CFD009C8FBEA9E20C9DE - C:\Users\Laurens\AppData\Local\Facebook\Video\Skyp e\npFacebookVideoCalling.dll - Facebook Video Calling Plugin
    4676A8E1EE37E71486717ECD1E61C17B - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director
    15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System


    ==== Chrome Look ======================

    HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensio ns
    mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\Exts\Chrome.crx[01/02/2013 23:18]
    oejkcgajlodefenbbjdnaiahmbnnoole - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx[]

    Norton Identity Protection - Laurens - Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcm k
    Lavasoft NewTab - Laurens - Default\Extensions\oejkcgajlodefenbbjdnaiahmbnnool e

    ==== Chrome Fix ======================

    C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejkcgajlodefenbbjdnaiahmb nnoole deleted successfully

    ==== Set IE to Default ======================

    Old Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\ Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
    No DefaultScope Set For HKCU

    New Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\ Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
    "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

    ==== All HKCU SearchScopes ======================

    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
    {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
    {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language }&ie={inputEncoding}&oe={outputEncoding}&startInde x={startIndex?}&startPage={startPage}"

    ==== Deleting Registry Keys ======================

    HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\ Windows\CurrentVersion\Uninstall\{8A0B8F21-399E-A102-246D-65AF34E1BE86} deleted successfully
    HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chr ome\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole deleted successfully
    HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\ Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} deleted successfully

    ==== Empty IE Cache ======================

    C:\Windows\system32\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Users\Guest\AppData\Local\Microsoft\Windows\Tem porary Internet Files\Content.IE5 emptied successfully
    C:\Users\Guest\AppData\Local\Microsoft\Windows\Tem porary Internet Files\Low\Content.IE5 emptied successfully
    C:\Users\Laurens\AppData\Local\Microsoft\Windows\T emporary Internet Files\Content.IE5 emptied successfully
    C:\Users\Laurens\AppData\Local\Microsoft\Windows\T emporary Internet Files\Low\Content.IE5 emptied successfully
    C:\Windows\SysNative\config\systemprofile\AppData\ Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Windows\sysWoW64\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Windows\serviceprofiles\networkservice\AppData\ Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Windows\serviceprofiles\Localservice\AppData\Lo cal\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Windows\sysWOW64\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    ==== Empty FireFox Cache ======================

    C:\Users\Guest\AppData\Local\Mozilla\Firefox\Profi les\alr6xin3.default\Cache emptied successfully
    C:\Users\Laurens\AppData\Local\Mozilla\Firefox\Pro files\j1f801l7.default\Cache emptied successfully

    ==== Empty Chrome Cache ======================

    C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

    ==== Empty All Flash Cache ======================

    Flash Cache Emptied Successfully

    ==== Empty All Java Cache ======================

    Java Cache cleared successfully

    ==== After Reboot ======================

    ==== Empty Temp Folders ======================

    C:\Windows\Temp successfully emptied
    C:\Users\Laurens\AppData\Local\Temp successfully emptied

    ==== Empty Recycle Bin ======================

    C:\$RECYCLE.BIN successfully emptied

    ==== EOF on di 03/12/2013 at 18:22:55,59 ======================
    //laurens\\

  7. #17
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 May 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.212
    Bedankjes
    1.205
    Bedankt
    2.705 keer in 1.758 posts
    Hoe werkt alles nu?

  8. De volgende gebruiker bedankt Rosty voor deze nuttige post:

    Laurens ( 4 December 2013)

  9. #18
    Up-to-date  
    Geregistreerd
    29 December 2005
    Berichten
    59
    Bedankjes
    15
    Bedankt
    2 keer in 2 posts
    Het lijkt erop dat alles terug in orde is. De verschrikkelijk irritante links zijn verdwenen, geen extra ads meer, snelheid lijkt ook weer vlotjes..

    Dikke merci man
    //laurens\\

  10. #19
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 May 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.212
    Bedankjes
    1.205
    Bedankt
    2.705 keer in 1.758 posts
    Graag gedaan hoor!

Discussie informatie

Users Browsing this Thread

Momenteel bekijken 1 gebruikers deze discussie. (0 leden en 1 gasten)

Soortgelijke discussies

  1. Veel last van ongewenste reclame
    Door Danny_506 in forum HijackThis
    Reacties: 8
    Laatste bericht: 18 July 2006, 19:21
  2. last van trojaan...
    Door PorkyFrost in forum HijackThis
    Reacties: 34
    Laatste bericht: 24 June 2006, 17:32
  3. last van tekst : audio track ... in een film
    Door Sille in forum Tips & Trucs
    Reacties: 0
    Laatste bericht: 1 May 2006, 13:17
  4. last van error safe !!
    Door gentle suzy in forum HijackThis
    Reacties: 5
    Laatste bericht: 24 January 2006, 22:53
  5. last van Trojanvirussen
    Door siegy in forum Malware
    Reacties: 5
    Laatste bericht: 17 January 2006, 13:56

Favorieten/bladwijzers

Favorieten/bladwijzers

Regels voor berichten

  • Je mag geen nieuwe discussies starten
  • Je mag niet reageren op berichten
  • Je mag geen bijlagen versturen
  • Je mag niet je berichten bewerken
  •