Forumoverzicht Malware en virusinfectie problemen Hulp bij malware en virusinfectie problemen (HijackThis / RSIT / DDS logs) Opgeloste problemen / logs

Gesloten onderwerpen. Stuur een privé bericht naar een Moderator of de Administrator om het topic weer te laten openen.

malware V9 verwijderen

Berichtdoor funshopper » di 24 sep, 2013 16:32:57

Ik heb V9 op mijn computer en heb nu onderstaand bestand in kladblok. Wat moet ik nu doen?

groeten
Mike

Zoek.exe Version 4.0.0.4 Updated 19-September-2013
Tool run by mike on di 24-09-2013 at 16:15:53,70.
Microsoft Windows 8 Pro 6.2.9200 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\mike\Desktop\zoek.scr [Script inserted]

==== System Restore Info ======================

24-9-2013 16:16:42 Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\mike\AppData\Local\Temp ====
2013-09-24 13:50:15 EE52A223CFB7A90C12AA476DB4A4002F 412752 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\dosearches_1709-44c5d488.exe
2013-09-24 13:50:15 D9C6B99907D39662617A56FCC153C6A5 1044088 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\DProtect.exe
2013-09-24 13:50:15 67CD4575597480529776360AC0F41A2A 461880 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\eXQ.exe
2013-09-24 13:50:15 458CCFA013E82CCFA949B882B7986426 175304 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\BrowseFox_1208-784bb9a0.exe
====== C:\WINDOWS\system32 =====
2013-09-13 10:09:11 D53991FBEBBBEC3F6CEA3BE38BA6285D 316648 ----a-w- C:\WINDOWS\System32\FNTCACHE.DAT
2013-09-11 14:06:50 34E2F63B923188EF08379BA7441BBA56 3831808 ----a-w- C:\WINDOWS\System32\sppsvc.exe
2013-09-11 14:06:48 9E172AED2556DF2048DD9020B302F09C 2156392 ----a-w- C:\WINDOWS\System32\WSService.dll
2013-09-11 14:06:48 7F4A8D54D802A81913BD44BFB1EA728C 199872 ----a-w- C:\WINDOWS\System32\NotificationUI.exe
2013-09-11 14:06:47 7069B004CC64092FC3CA9129C39CDB19 991232 ----a-w- C:\WINDOWS\System32\sppobjs.dll
2013-09-11 14:06:47 0E255B6A65B2CF8315C6DBCE75CBCAB7 2597376 ----a-w- C:\WINDOWS\System32\wuaueng.dll
2013-09-11 14:06:46 DA150FBA450DB268C3DD1D389DF261EB 562688 ----a-w- C:\WINDOWS\System32\WSShared.dll
2013-09-11 14:06:46 3BB3B6ECD7A7244089062FF077E3844A 81920 ----a-w- C:\WINDOWS\System32\WinSetupUI.dll
2013-09-11 14:06:45 D1632DF97A6CD8128817441C887226EF 1556480 ----a-w- C:\WINDOWS\System32\wucltux.dll
2013-09-11 14:06:45 B4C5FC67D38883F84BE232F521D80261 628736 ----a-w- C:\WINDOWS\System32\wuapi.dll
2013-09-11 14:06:45 AFC77B1BD4E14302C93F5E05D5B261DD 330752 ----a-w- C:\WINDOWS\System32\sppwinob.dll
2013-09-11 14:06:45 810B2358688A62CD67F0FBC699628D48 159232 ----a-w- C:\WINDOWS\System32\WSSync.dll
2013-09-11 14:06:45 68309D440373633C54CCD61FFAB4948C 143872 ----a-w- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll
2013-09-11 14:06:45 4A4A793059187D8C85797F0FB8D9E48C 91648 ----a-w- C:\WINDOWS\System32\sppc.dll
2013-09-11 14:06:44 EC598115895C5E2BFCC3EC6D1DD5E1E2 167424 ----a-w- C:\WINDOWS\System32\WSClient.dll
2013-09-11 14:06:44 E91631F97EDCAE893F2458D84A521CE3 52656 ----a-w- C:\WINDOWS\System32\wuauclt.exe
2013-09-11 14:06:44 B607284B548E9749B7DFE21F0B0EE376 20992 ----a-w- C:\WINDOWS\System32\wups.dll
2013-09-11 14:06:44 77068C9F061B714E14FC550978F90208 216064 ----a-w- C:\WINDOWS\System32\WUSettingsProvider.dll
2013-09-11 14:06:44 521C60E6ABE070E0554A5E1589700196 147968 ----a-w- C:\WINDOWS\System32\storewuauth.dll
2013-09-11 14:06:44 44596FBFDD963FA0F7F7F96EFA6E3008 84992 ----a-w- C:\WINDOWS\System32\wudriver.dll
2013-09-11 14:06:43 FAC41DA4259549C5468AFC1FA53CED3A 35328 ----a-w- C:\WINDOWS\System32\wuapp.exe
2013-09-11 14:06:43 C82C2AF93F819EE2A2A9C7AB0A531131 21504 ----a-w- C:\WINDOWS\System32\wups2.dll
2013-09-11 14:06:43 B7267F83DE710AF993A15380C1F33239 83968 ----a-w- C:\WINDOWS\System32\OEMLicense.dll
2013-09-11 14:06:43 77C93B12A1ACB58FD06DFEE17856B65B 126976 ----a-w- C:\WINDOWS\System32\wuwebv.dll
2013-09-11 14:06:43 62FB9CC2F6E0EF8015EA06ECFD746154 76800 ----a-w- C:\WINDOWS\System32\setupcln.dll
2013-09-11 14:05:58 0AC4D04D2D127CAE2BE09FBA48D19639 2273792 ----a-w- C:\WINDOWS\System32\msftedit.dll
2013-09-11 14:05:56 DF790AE26A476DAA05210BA571B45AAC 160256 ----a-w- C:\WINDOWS\System32\winmmbase.dll
2013-09-11 14:05:56 C0A5DB56C4BEE59C1AB5AA7A0F6CFBEF 834048 ----a-w- C:\WINDOWS\System32\localspl.dll
2013-09-11 14:05:56 A198163A111FA37D601DB55B12C5A699 1075200 ----a-w- C:\WINDOWS\System32\gdi32.dll
2013-09-11 14:05:56 4F2214EB1269A6B906E2402883E0A658 551424 ----a-w- C:\WINDOWS\System32\oleaut32.dll
2013-09-11 14:05:56 3631AE3089DE4FAA50D3BD62E370299E 385768 ----a-w- C:\WINDOWS\System32\WerFault.exe
2013-09-11 14:05:56 0E38A984BE8C1F4A095B4A4E8BA1EB23 125440 ----a-w- C:\WINDOWS\System32\winmm.dll
2013-09-11 14:05:55 A8DB6E7307C02DE79867A714C82AB4AE 330240 ----a-w- C:\WINDOWS\System32\wwanconn.dll
2013-09-11 14:05:55 9591603AB1933FABD38CD19A5697A676 226816 ----a-w- C:\WINDOWS\System32\wcmsvc.dll
2013-09-11 14:05:55 9220AC8E81AD444314A2FDD3B4845DCE 679936 ----a-w- C:\WINDOWS\System32\IKEEXT.DLL
2013-09-11 14:05:55 477B2727053EBB09082445AC53E59630 473600 ----a-w- C:\WINDOWS\System32\BFE.DLL
2013-09-11 14:05:55 34076BB22B3975BDA4D98E1A0F03F199 268800 ----a-w- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll
2013-09-11 14:05:54 9450B8D5C88ADD67EA982E071C48D681 372736 ----a-w- C:\WINDOWS\System32\wwansvc.dll
2013-09-11 14:05:54 5B95D4645A88B1BD6BF279506B431858 64000 ----a-w- C:\WINDOWS\System32\wcmcsp.dll
2013-09-11 14:05:53 A179B0FB8241BC7FEF62E0AA5F315F9B 702464 ----a-w- C:\WINDOWS\System32\nshwfp.dll
2013-09-11 14:05:53 499403FAB514EF7C468F1E9157F8F7BA 67072 ----a-w- C:\WINDOWS\System32\openfiles.exe
2013-09-11 14:05:53 435FB8E1867E22DE92784AE1D09E046A 317952 ----a-w- C:\WINDOWS\System32\Wwanadvui.dll
2013-09-11 14:05:53 1C51CD68DB8C774E4C69CD628CFC4C80 245248 ----a-w- C:\WINDOWS\System32\FWPUCLNT.DLL
2013-09-11 14:05:52 68451FE440B77BD6447E8AF1D21FD62B 245760 ----a-w- C:\WINDOWS\System32\LocationApi.dll
2013-09-11 14:05:52 2CE63B3A60C54BF7421B090429C286B0 387583 ----a-w- C:\WINDOWS\System32\ApnDatabase.xml
2013-09-11 14:05:52 1342E8DE249F4049536F38F8D473CE26 154112 ----a-w- C:\WINDOWS\System32\WinSCard.dll
2013-09-11 14:05:43 C9E36776EE76485B678B5159F61EB14F 3390464 ----a-w- C:\WINDOWS\System32\win32k.sys
2013-09-11 14:05:34 5FE24CECBD39A12E0BDDE3931FA5478B 14332928 ----a-w- C:\WINDOWS\System32\mshtml.dll
2013-09-11 14:05:32 76A981040FC0C9BA0C6EDC91BE99C3E4 2876928 ----a-w- C:\WINDOWS\System32\jscript9.dll
2013-09-11 14:05:30 B7D15FC840EB5A401A9A2D15A4BA1A94 1141248 ----a-w- C:\WINDOWS\System32\urlmon.dll
2013-09-11 14:05:30 A1BBF4D3F0F8164CF9A8B46B428100C6 13761024 ----a-w- C:\WINDOWS\System32\ieframe.dll
2013-09-11 14:05:29 F73CE26EFC7AE039A8534722395CE9A7 1767936 ----a-w- C:\WINDOWS\System32\wininet.dll
2013-09-11 14:05:29 BBE5889055B9EC1758AFE9728A551CC3 661504 ----a-w- C:\WINDOWS\System32\uxtheme.dll
2013-09-11 14:05:29 7AC3F683EE68A588A26BDBBA1CC296B2 2048000 ----a-w- C:\WINDOWS\System32\iertutil.dll
2013-09-11 14:05:28 F21025151AA06B25DC6FCE169560F4E4 493056 ----a-w- C:\WINDOWS\System32\msfeeds.dll
2013-09-11 14:05:28 B2F431895A7F787466EFEAB87C5F014F 33280 ----a-w- C:\WINDOWS\System32\iernonce.dll
2013-09-11 14:05:28 962556958E265A894BA433D0F722E0C0 42496 ----a-w- C:\WINDOWS\System32\ie4uinit.exe
2013-09-11 14:05:28 907EFFBAD00EF8FAF0347AF63F895FFE 109056 ----a-w- C:\WINDOWS\System32\iesysprep.dll
2013-09-11 14:05:28 210074573A7E60E425A8E4667B55FA7C 44032 ----a-w- C:\WINDOWS\System32\UXInit.dll
2013-09-11 14:05:28 1669544D9288099E7BE0CF73EF8B9F3E 690688 ----a-w- C:\WINDOWS\System32\jscript.dll
2013-09-11 14:05:27 F76B96D80327187F52B01E0082571F20 2706432 ----a-w- C:\WINDOWS\System32\mshtml.tlb
2013-09-11 14:05:27 E6BEEF5265329CBB3DDF95CE89F08580 39936 ----a-w- C:\WINDOWS\System32\jsproxy.dll
2013-09-11 14:05:27 69B892115CD4E738FB0F2834DDB9002A 61440 ----a-w- C:\WINDOWS\System32\iesetup.dll
====== C:\WINDOWS\system32\drivers =====
2013-09-11 14:06:44 EE5C5712BBA245CD0C394EF54410CBEB 51544 ----a-w- C:\WINDOWS\System32\drivers\dam.sys
2013-09-11 14:05:55 E34349E840CCF5D5D6F30B1637A19783 296280 ----a-w- C:\WINDOWS\System32\drivers\Classpnp.sys
2013-09-11 14:05:55 D3F29A0129F212840991516C1D4E93AB 105304 ----a-w- C:\WINDOWS\System32\drivers\dumpsd.sys
2013-09-11 14:05:55 6F685ED83090697ED608372722D32B9E 159576 ----a-w- C:\WINDOWS\System32\drivers\sdbus.sys
2013-09-11 14:05:54 9B276CD3C1D4B5694B5960C4D13CEEAA 38656 ----a-w- C:\WINDOWS\System32\drivers\wfplwfs.sys
2013-09-11 14:05:54 89D57B5741BAB84D7B846FEE23D576BE 277504 ----a-w- C:\WINDOWS\System32\drivers\HdAudio.sys
2013-09-11 14:05:54 6EE1CB13D89DFC95B6D7A90B38113F34 97024 ----a-w- C:\WINDOWS\System32\drivers\USBSTOR.SYS
2013-09-11 14:05:54 1F4CF4223F27C515A9F6F5FE4D268E67 97112 ----a-w- C:\WINDOWS\System32\drivers\msgpioclx.sys
2013-09-11 14:05:52 F7C3F24307957862CA4E0E11DDC88B2F 261120 ----a-w- C:\WINDOWS\System32\drivers\udfs.sys
2013-09-09 14:24:22 99A9F611A3DCC4220D2B922E766CFA16 211288 ----a-w- C:\WINDOWS\System32\drivers\WdFilter.sys
2013-09-09 14:24:22 09E3C1A434E27A55E21CB6F9341B8072 30144 ----a-w- C:\WINDOWS\System32\drivers\WdBoot.sys
2013-09-09 14:22:14 E96EF9696361BEB0687964430870FA29 1800024 ----a-w- C:\WINDOWS\System32\drivers\tcpip.sys
====== C:\WINDOWS\Tasks ======
2013-09-21 17:51:10 0B44F03B52893A8A893718176C81F983 3366 ----a-w- C:\WINDOWS\system32\Tasks\{C01C3E3D-F13D-4DCF-8E66-719375FB802B}
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2013-09-24 13:50:38 -------- d-----w- C:\Program Files\BrowseFox
2013-09-09 16:59:48 -------- d-----w- C:\Program Files\Common Files\Skype
2013-09-09 16:59:48 -------- d-----r- C:\Program Files\Skype
2013-09-04 14:34:41 -------- d-----w- C:\Program Files\MyPC Backup
2013-09-04 14:30:40 -------- d-----w- C:\Program Files\Advanced System Protector
2013-09-04 14:28:08 -------- d-----w- C:\Program Files\RegClean Pro
2013-09-04 13:52:31 -------- d-----w- C:\Program Files\DealPlyLive
2013-09-04 13:52:21 -------- d-----w- C:\Program Files\Common Files\337
2013-09-04 13:51:08 -------- d-----w- C:\Program Files\Desk 365
======= C: =====
====== C:\Users\mike\AppData\Roaming ======
2013-09-24 13:51:54 -------- d-----w- C:\Users\mike\AppData\Local\DProtect
2013-09-13 10:15:39 CD37922EA3EE556CCB9DB013AFEA4A30 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\~FontCache-S-1-5-21-839522115-117609710-1801674531-1004.dat
2013-09-13 10:15:39 2BD04F785796224344E336836D3F0BCC 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache-Obsolete-749.dat
2013-09-07 14:32:52 50DA3C2D9D69D48E33858ABB0C493A0E 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache-S-1-5-21-839522115-117609710-1801674531-500.dat
2013-09-07 13:51:13 -------- d-----w- C:\Users\mike\AppData\Local\ElevatedDiagnostics
2013-09-04 14:34:42 -------- d-----w- C:\Users\mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-09-04 14:28:11 -------- d-----w- C:\Users\mike\AppData\Roaming\Systweak
2013-09-04 14:26:00 -------- d-----w- C:\Users\mike\AppData\Roaming\BabSolution
2013-09-04 14:25:33 -------- d-----w- C:\Users\mike\AppData\Roaming\ExpressFiles
2013-09-04 14:08:51 9BFBA2D23E156A9BDA654BFC1E9B6484 3985 ----a-w- C:\Users\mike\AppData\Local\recently-used.xbel
2013-09-04 13:55:26 -------- d-----w- C:\Users\mike\AppData\Locallow\Delta
2013-09-04 13:52:31 -------- d-----w- C:\Users\mike\AppData\Local\DealPlyLive
2013-09-04 13:48:17 -------- d-----w- C:\Users\mike\AppData\Roaming\Babylon
====== C:\Users\mike ======
2013-09-13 13:32:13 09C5EB5C70448333560273DE1F6973DA 233272 ----a-w- C:\Users\mike\Downloads\OptimizePress 1.exe
2013-09-09 16:59:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2013-09-09 16:57:03 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2013-09-07 14:33:11 -------- d-----w- C:\Users\Administrator\.mm
2013-09-05 17:07:55 -------- d-----w- C:\Users\mike\.mm
2013-09-04 16:51:53 -------- d-----w- C:\ProgramData\MoneyMiljonair+
2013-09-04 16:51:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MoneyMiljonair+
2013-09-04 15:29:00 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp
2013-09-04 14:30:41 -------- d-----w- C:\ProgramData\Systweak
2013-09-04 13:53:19 -------- d-----w- C:\ProgramData\Registry Helper
2013-09-04 13:52:30 -------- d-----w- C:\ProgramData\DealPlyLive
2013-09-04 13:51:22 -------- d-----w- C:\ProgramData\eSafe
2013-09-04 13:48:18 -------- d-----w- C:\ProgramData\Babylon

====== C: exe-files ==
2013-09-24 13:51:54 E935159697C0D66FAC76CAA4FBF2C9D7 238656 ------w- C:\Users\mike\AppData\Local\DProtect\DPUninstall.exe
2013-09-24 13:50:23 9384347DC845318A73BDC2C1C090418F 779320 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1X1339AA\Setup[1].exe
2013-09-24 13:50:15 EE52A223CFB7A90C12AA476DB4A4002F 412752 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\dosearches_1709-44c5d488.exe
2013-09-24 13:50:15 D9C6B99907D39662617A56FCC153C6A5 1044088 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\DProtect.exe
2013-09-24 13:50:15 67CD4575597480529776360AC0F41A2A 461880 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\eXQ.exe
2013-09-24 13:50:15 458CCFA013E82CCFA949B882B7986426 175304 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\BrowseFox_1208-784bb9a0.exe
2013-09-24 13:49:41 797A5F5290AD34F640A7755CD38965B2 167736 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C8GB0SB6\OptimizePress 1.exe
=== C: other files ==
2013-09-24 13:50:17 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KGXMP3UQ\1.1.5.2[1].crx
2013-09-24 13:50:17 09227EBEBCFDB1876F96D8C74C1CA3CF 371915 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\newtab.crx
2013-09-20 13:14:03 541CC43370818A674E4031C0DCD9A7E2 497236 ----a-w- C:\Users\mike\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx
2013-09-20 13:14:03 541CC43370818A674E4031C0DCD9A7E2 497236 ----a-w- C:\Users\mike\AppData\Roaming\TorrentStream\.data\magicplayer_chrome\download\1.1.29\magicplayer.crx

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-839522115-117609710-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"="C:\Users\mike\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"Advanced SystemCare Ultimate"="C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCTray.exe /AutoStart"
"Google Update"="C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"uTorrent"="C:\Users\mike\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Utility Chest Search Scope Monitor"="C:\PROGRA~1\UTILIT~2\bar\1.bin\49srchmn.exe /m=2 /w /h"
"UtilityChest_49 Browser Plugin Loader"="C:\PROGRA~1\UTILIT~2\bar\1.bin\49brmon.exe"
"Nvtmru"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
"VideoDownloadConverter Search Scope Monitor"="C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe /m=2 /w /h"
"VideoDownloadConverter_4z Browser Plugin Loader"="C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbrmon.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"="C:\Users\mike\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"Advanced SystemCare Ultimate"="C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCTray.exe /AutoStart"
"Google Update"="C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"uTorrent"="C:\Users\mike\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"

==== Startup Folders ======================

2013-04-07 12:32:37 1010 ----a-w- C:\Users\mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2013-03-29 17:41:25 2056 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
2013-09-04 16:51:53 1737 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MoneyMiljonair+.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [11-09-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [14-06-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [14-06-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-117609710-1801674531-1004Core.job --a-------- C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe [20-04-2013 09:51]
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-117609710-1801674531-1004UA.job --a-------- C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe [20-04-2013 09:51]

==== Firefox Extensions ======================

ProfilePath: C:\Users\mike\AppData\Roaming\Mozilla\Firefox\Profiles\z5s6mhku.default
- VideoDownloadConverter - %ProfilePath%\extensions\4zffxtbr@VideoDownloadConverter_4z.com
- Delta Toolbar - %ProfilePath%\extensions\ffxtlbr@delta.com

==== Firefox Plugins ======================

Profilepath: C:\Users\mike\AppData\Roaming\Mozilla\Firefox\Profiles\z5s6mhku.default
61FAD252D4EC7190EAE43C9BB7F67610 - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll - Google Talk Plugin Video Accelerator
989E303DC064847A344BF4E1C9D8E49B - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer
406FEA1D002ED8B842E665CBE1314A5F - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin
B35F48734264664039DC1A996C2C1C6A - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll - NVIDIA 3D Vision
C4204315525052ABF9121CE58E6A88A4 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - NVIDIA 3D VISION
A7CC98A3D79AB00DFF19FE9597D8CAD1 - C:\Users\mike\AppData\Local\Citrix\Plugins\97\npappdetector.dll - Citrix Online Web Deployment Plugin 1.0.0.97
0D80C49D9A4A3E096296C67BD015F614 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Photo Gallery


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files\IObit\Advanced SystemCare Ultimate\BrowerProtect\ASC_GhromePluginFor6.crx[05-09-2012 18:55]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ochbjojkpcmlfeagbaahkofepalngihg - C:\Users\mike\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx[05-09-2013 17:44]

SEOquake - mike - Default\Extensions\akdgnmcogleenhbclghghlkkdndkjdjc
Google Docs - mike - Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - mike - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - mike - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - mike - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Advanced SystemCare Surfing Protection - mike - Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd
Gmail - mike - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== EOF on di 24-09-2013 at 16:20:03,75 ======================
funshopper
PC Web Plus - Member
PC Web Plus - Member
 
Berichten: 1
Geregistreerd: di 24 sep, 2013 16:24:23
Kennisniveau: (1) Beginner
OS: windows 8

Re: malware V9 verwijderen

Berichtdoor abbs » di 24 sep, 2013 17:40:34

Hallo,

Download Afbeelding MalwareBytes' Anti-Malware en sla het op je bureaublad op.

  • Dubbelklik op mbam-setup-x.xx.x.xxx.exe om de installatie van Malwarebytes Anti-Malware te starten.
  • Wanneer u een beveiligingswaarschuwing van Windows krijgt klikt u op de knop "uitvoeren".
  • Volg de verdere aanwijzingen, de volledige installatieprocedure kunt u nalezen op de volgende link - Malwarebytes Anti-Malware installeren.
  • Als de installatie gereed is staat de optie "Start de gratis probeerversie van Malwarebytes Anti-Malware PRO aangevinkt.
  • Wanneer u hier geen gebruik van wilt maken, vink deze optie dan uit.
  • Klik vervolgens op "Voltooien" om de installatie af te ronden.
  • Vervolgens wordt er automatisch een update uitgevoerd, als dit gereed is klikt u op de knop "OK".
  • Malwarebytes Anti-Malware wordt nu gestart, klik vervolgens op de knop "Scan".
  • Als de scan gereed is klik dan op de knop "bekijk resultaten".
  • Zorg ervoor dat alle items staan aangevinkt, als dit niet zo is klik dan met de rechtermuisknop op één van de items en kies "Selecteer alle objecten"
  • Klik vervolgens op de knop "Verwijder geselecteerde".
  • Wanneer de scan gereed is wordt er in kladblok een logbestand geopend, plaats deze als bijlage in het volgende bericht. (Het logbestand is tevens terug te vinden onder het tabblad logbestanden).
  • Bij de melding "DRINGEND! Je moet je computer opnieuw opstarten om alle actieve infecties volledig te verwijderen." klikt u op JA om de computer opnieuw op te starten.



Groeten abbs.
Groeten abbs
Afbeelding
Afbeelding Teacher of UNITE (Unified Network of Instructors and Trained Eliminators)
Bent u blij met de geboden hulp? klik hier voor een vrijblijvende donatie Afbeelding
Avatar gebruiker
abbs
Security Helper
Security Helper
 
Berichten: 5178
Geregistreerd: zo 04 nov, 2012 18:10:56
Woonplaats: Leidschendam
Kennisniveau: (3) Expert
OS: Windows 7 64-bit
AV: Emsisoft Anti-Malware
AM: Mbam (Premium)
FW: Online Armor


Keer terug naar Opgeloste problemen / logs

Wie is er online

Gebruikers op dit forum: Google [Bot] en 4 gasten