Forumoverzicht ‹ Beveiliging & Privacy ‹ Malware en virusinfectie problemen (HijackThis / DDS logs) ‹ Opgeloste problemen / logs
18 berichten
• Pagina 1 van 2 • 1, 2
blekko virus
door miss bv » zo 03 feb, 2013 19:47:20
hallo, ik zag dat mijn pc geinfecteerd was met het blekko virus en scande met Spyhunter 4. er kwamen nog meerdere gevaarlijke infecties aan het licht. ik wou de infesties verwijderen maar kan dat niet zonder registratie .
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door miss bv » zo 03 feb, 2013 20:04:27
Spyhunter detecteerde de volgende dingen.
Lop.com ( 2 infecties)
Babylon Search/Toolbar( 2 infecties)
Blekko (2 infecties)
Search.Conduit (13 infecties)
Softonic Search/Toolbar (1 infectie)
207 (4 infecties)
ad.yieldmanager.com (10 infecties)
adserver ( 9 infecties)
Adtech (1 infectie)
AdultAdWorld (7 infecties)
Akamai (2 infecties)
Atlas DMT ( 10 infecties )
Atwola ( 5 infecties)
DoubleClick ( 3 infecties)
FreeVieuwMovies (1 infectie)
Gator (1 infectie)
Media (34 infecties)
Servedby (3 infecties)
Serving-sys (11 infecties)
Sex (25 infecties )
Statcounter (2 infecties)
weborama (9 infecties )
WebSearch (12 infecties)
WebtrendsLive (1 infectie)
xiti.com (1 infectie)
Xnxx (17 infecties)
ZEDO.com (4 infecties)
Lop.com ( 2 infecties)
Babylon Search/Toolbar( 2 infecties)
Blekko (2 infecties)
Search.Conduit (13 infecties)
Softonic Search/Toolbar (1 infectie)
207 (4 infecties)
ad.yieldmanager.com (10 infecties)
adserver ( 9 infecties)
Adtech (1 infectie)
AdultAdWorld (7 infecties)
Akamai (2 infecties)
Atlas DMT ( 10 infecties )
Atwola ( 5 infecties)
DoubleClick ( 3 infecties)
FreeVieuwMovies (1 infectie)
Gator (1 infectie)
Media (34 infecties)
Servedby (3 infecties)
Serving-sys (11 infecties)
Sex (25 infecties )
Statcounter (2 infecties)
weborama (9 infecties )
WebSearch (12 infecties)
WebtrendsLive (1 infectie)
xiti.com (1 infectie)
Xnxx (17 infecties)
ZEDO.com (4 infecties)
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door smeenk » zo 03 feb, 2013 21:57:09
Hallo, we gaan de volgende tool inzetten. zoek.exe
Download zoek.exe naar het bureaublad.
Download zoek.exe naar het bureaublad.
- Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
(hier of hier) kan je lezen hoe je dat doet. - Dubbelklik op Zoek.exe om de tool te starten.
- Kopieer nu onderstaande code en plak die in het grote invulvenster:
- Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.
- Code: Selecteer alles
startupall;
filesrcm;
autoclean;
emptyclsid;
- Klik nu op de knop "Run script".
- Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
- Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
- Post nu de inhoud van het geopende logje in het volgende bericht.
-
smeenk - Security Helper
- Berichten: 2288
- Geregistreerd: vr 03 dec, 2010 19:00:18
- OS: MS Windows Vista
- AV: MS Security Essentials
- FW: Windows Firewall
Re: blekko virus
door miss bv » ma 04 feb, 2013 16:28:20
Zoek.exe Version 4.0.0.1 Updated 04-February-2013
Tool run by user on ma 04/02/2013 at 15:01:49,76.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2973256160-1956088855-3514817063-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CB40ECCB-0813-4BF1-AF94-50C53EF65C18} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} deleted successfully
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2013-01-25 17:15:51 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe
2013-01-25 17:15:51 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe
2013-01-25 17:15:50 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe
====== C:\Users\user\AppData\Local\Temp ====
2013-02-03 14:04:53 C151CBEE5D201A181693947B333CB820 44091984 ----a-w- C:\Users\user\AppData\Local\Temp\SHSetup.exe
2013-01-30 17:43:33 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\user\AppData\Local\Temp\NOSEventMessages.dll
====== C:\Windows\system32 =====
====== C:\Windows\system32\drivers =====
2013-01-26 15:22:06 629CABB0421668C9D3D402A3C3D77E14 21104 ----a-w- C:\Windows\System32\drivers\mbam.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-02-03 14:13:27 -------- d-----w- C:\Program Files\Enigma Software Group
2013-02-03 14:09:54 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard
2013-02-02 18:03:14 -------- d-----w- C:\Program Files\AVG
2013-02-02 17:29:52 -------- d-----w- C:\Program Files\VS Revo Group
======= C: =====
====== C:\Users\user\AppData\Roaming ======
2013-02-02 18:51:07 -------- d-----w- C:\users\user\AppData\Roaming\AVG2013
2013-02-02 18:20:06 -------- d-----w- C:\users\user\AppData\Roaming\TuneUp Software
2013-02-02 17:50:37 -------- d-----w- C:\users\user\AppData\Local\MFAData
2013-02-02 17:50:37 -------- d-----w- C:\users\user\AppData\Local\Avg2013
2013-02-02 17:31:53 -------- d-----w- C:\users\user\AppData\Locallow\blekko
2013-01-26 19:24:41 -------- d-----w- C:\users\user\AppData\Local\Temp
2013-01-25 18:24:07 -------- d-----w- C:\users\Public\AppData\Local\temp
2013-01-25 18:24:07 -------- d-----w- C:\users\Default\AppData\Local\temp
2013-01-25 18:24:07 -------- d-----w- C:\users\Default User\AppData\Local\temp
2013-01-25 08:44:56 -------- d-----w- C:\users\user\AppData\Roaming\SUPERAntiSpyware.com
2013-01-18 22:54:58 -------- d-----w- C:\users\user\AppData\Local\Unity
2013-01-18 22:54:55 -------- d-----w- C:\users\user\AppData\Locallow\Unity
====== C:\Users\user ======
2013-02-02 18:12:27 -------- d-----w- C:\ProgramData\AVG2013
2013-02-02 17:50:37 -------- d--h--w- C:\ProgramData\Common Files
2013-02-02 17:50:37 -------- d-----w- C:\ProgramData\MFAData
2013-01-30 14:27:49 -------- d-----w- C:\Users\user\Revo Uninstaller
2013-01-25 18:24:07 -------- d-----w- C:\Users\Public\AppData
====== C: exe-files ==
2013-02-04 13:53:34 C17EDE0F250F811A312F845A7B009A34 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2973256160-1956088855-3514817063-1000\$IT1O3O4.exe
2013-02-04 13:53:31 2C5635DFD5C240D975CA86557BFB124B 1250762 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2973256160-1956088855-3514817063-1000\$RT1O3O4.exe
2013-02-04 13:48:36 62078129CC6C448CD952A1BBC2535BC8 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2973256160-1956088855-3514817063-1000\$IMYLDF8.exe
2013-02-04 13:12:29 6B110E925294547A7D288F26DA19D199 179687 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla18.exe
2013-02-03 14:10:24 01F6F9FD8E8B0D076F13C44425C02D30 180872 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla22.exe
2013-02-03 14:04:53 C151CBEE5D201A181693947B333CB820 44091984 ----a-w- C:\Users\user\AppData\Local\Temp\SHSetup.exe
2013-02-03 14:04:15 EEA0B34B60632083F2A75352BAE365FB 726464 ----a-w- C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\71JYQAII\SpyHunter-Installer.exe
2013-02-02 18:09:48 BD522B16FE6A6219010ABC87185BDDDE 247416 ----a-w- C:\Program Files\AVG\AVG2013\avgndisx.exe
2013-02-02 17:49:24 39E7423DCC9896BF7D98A1DC4DDD0D42 4437456 ----a-w- C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\71JYQAII\avg_free_stb_all_2013_2897_cnet.exe
2013-02-02 17:30:05 C91D2962373AE6B473C61C1F4B3596BD 87544 ----a-w- C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
2013-02-02 17:22:35 9F5119B4D8EAB88EC8B7CB2804EA7AF5 635864 ----a-w- C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7FNL23U3\cbsidlm-tr1_10a-Revo_Uninstaller-ORG-10687648 (1).exe
2013-02-01 19:25:21 2DA92DAAE595B4AF7350E0ABF5214DEB 30836576 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\24.0.1312.57\24.0.1312.57_chrome_installer.exe
2013-02-01 17:30:28 75762DEC1DEF82B1447101A8A6801080 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2973256160-1956088855-3514817063-1000\$IDQ5O8B.exe
2013-02-01 15:22:05 EDDD2CFFF5AF4C40107CBB9D18E1A80A 1690464 ----a-w- C:\Users\user\AppData\Local\Torch\Update\2.0.0.2062\TorchUpdate.exe
2013-02-01 15:21:31 6DBA56346408C394CFAE82E6AD479E51 2347872 ----a-w- C:\Users\user\AppData\Local\Torch\Plugins\Torrent\2.0.0.2062\TorchTorrent.exe
2013-02-01 15:20:58 3A7C98D4F3BE5FDFE80D21D03F328F6E 1372512 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Installer\setup.exe
2013-02-01 15:20:21 E60194FE1C2EE0FD458516F7883B3558 1091936 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\nacl64.exe
2013-02-01 15:20:21 CA6A874352575492FF772B222AD5825A 76128 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\chrome_launcher.exe
2013-02-01 15:20:19 417659307CCC011FD158E9EDBC57C0FC 79200 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\chrome_frame_helper.exe
2013-02-01 13:59:44 51CA9A27C82F68874BBA3E2A87F6B400 670048 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\24.0.1312.57\24.0.1312.57_24.0.1312.56_chrome_updater.exe
2013-01-30 14:24:40 979E536F75C1512CA0A13E07835A40FD 2617648 ----a-w- C:\Users\user\Downloads\revosetup.exe
2013-01-30 14:23:28 9F5119B4D8EAB88EC8B7CB2804EA7AF5 635864 ----a-w- C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7FNL23U3\cbsidlm-tr1_10a-Revo_Uninstaller-ORG-10687648.exe
2013-01-29 16:11:26 D593122E1C4E39E42823669A1B5FFD6D 7281968 ----a-w- C:\Program Files\AVG\AVG2013\avgmfapx.exe
=== C: other files ==
2013-02-04 13:12:31 01F6F9FD8E8B0D076F13C44425C02D30 180872 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla22.dll
2013-02-04 13:12:30 8761181CBB2E028D6CAD018011BAD55F 175992 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla20.dll
2013-02-04 13:12:30 6B110E925294547A7D288F26DA19D199 179687 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla.dll
2013-02-04 13:12:30 1DC2021A8D1506391926C58D918DFF83 176035 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla19.dll
2013-02-04 13:12:28 1DC2021A8D1506391926C58D918DFF83 176035 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla2.dll
2013-02-04 13:12:26 6256CD1A5ADE17263EB0AA0758E576A4 176545 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla17.dll
2013-02-04 13:12:25 519DA1A8E90AD73172B8173728045734 66955 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCall.dll
2013-02-02 22:06:26 D7C22643726363F0DAC9A75DCDA8A337 45056 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Temp\scoped_dir_20501\CRX_INSTALL\background\ChromeUtilPlugin.dll
2013-02-02 22:06:26 646F6652BED29BE659B128376ECFFDE7 237568 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj\1.0_0\CTB.dll
2013-02-02 22:06:24 CB1ACAB21ECE7E7DEF7A60E080F63073 194048 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj\1.0_0\CrmAdpt.dll
2013-02-02 22:06:08 91EEDBAA29227F82631CB15BEB7CC8DE 400406 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Temp\scoped_dir_20501\ask_toolbar_6_0_0.crx
2013-02-02 18:21:35 AEA8FCD56A071ABD17B5F215C5207E17 323 ----a-w- C:\ProgramData\AVG2013\IDS\config\quarantinedList.zip
2013-02-02 17:25:59 C04E5DE374258CE32294A362B6A4CC02 541683 ----a-w- C:\Users\user\AppData\Local\Temp\mtcmn\sqlite3.dll
2013-02-01 16:51:06 E4D916BB41874B0779011F5C5EC7C2DE 276480 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\lecpjhggilhbceadobnggaagnpfpafhg\2.0.0.2062_0\TorchHelper.dll
2013-02-01 15:22:06 4AC8B31D594267AFB2C0E1DBB4739A09 587616 ----a-w- C:\Users\user\AppData\Local\Torch\Plugins\Video\2.0.0.2062\TorchVideoGrabber.dll
2013-02-01 15:22:02 C68CE8838356245373049B0D404C9BDB 544944 ----a-w- C:\Users\user\AppData\Local\Torch\Plugins\TorchPlugin.crx
2013-02-01 15:20:19 9ED53535CC46A73F1E862B31451EC29D 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\zh-CN.dll
2013-02-01 15:20:19 96D479A208C8F2314C7F7E144CA37870 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\vi.dll
2013-02-01 15:20:19 6B287D28DC112C98D961FA663DCD8C07 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\tr.dll
2013-02-01 15:20:19 5ADA4A914B9E24A24FFE5452A8EDE273 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\zh-TW.dll
2013-02-01 15:20:19 3BF78B85DA54C92B638AB8E45511163D 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\uk.dll
2013-02-01 15:20:18 D3299516FC8BA6EC803F955F3BACDB21 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\th.dll
2013-02-01 15:20:18 15C873D3A949258AA27E48CBF7A47321 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\te.dll
2013-02-01 15:20:17 BDA81608146DB772F88B65276AA40484 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sw.dll
2013-02-01 15:20:17 20C03779E0F0A8F01A607B4A1EB99960 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ta.dll
2013-02-01 15:20:16 BD39E11242F35213ABE3A290C19D78F9 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sl.dll
2013-02-01 15:20:16 B266D757B261EBCBBAA6024A87AB380E 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sv.dll
2013-02-01 15:20:16 79344F4A36CA8E9EB12E9BB569E40E3B 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sr.dll
2013-02-01 15:20:15 6DAD5E966C92947CDAAE669C1663B9F1 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ru.dll
2013-02-01 15:20:15 4FC62F0EB1E03F4A1CA76D420B0B5AE3 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sk.dll
2013-02-01 15:20:15 38FE45989957A7663A09F20AB99C326D 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ro.dll
2013-02-01 15:20:14 5BF93E6FC036C7D2809335DDD54CC5AE 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\pt-BR.dll
2013-02-01 15:20:14 4B0B6EE4CD75EEBE0C8A0573EB6CF8EE 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\pt-PT.dll
2013-02-01 15:20:13 C3D7B49AAB5DCD49C1F2E4D5931C7609 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\pl.dll
2013-02-01 15:20:13 0486E29BD65AC39B454C0A388AB3F86F 521568 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\ppgooglenaclpluginchrome.dll
2013-02-01 15:20:11 FF047D2E29B6502CDAB5D015F20FCF94 3772912 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\pdf.dll
2013-02-01 15:20:08 2C6BCB859CC98F09B465B86A9CF4C28F 2563424 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\npchrome_frame.dll
2013-02-01 15:20:07 FDD5504DF37192DD7AA4D6C0BB328DA3 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\mr.dll
2013-02-01 15:20:07 C2A67C247C36CECE1C1B31BD5D412010 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\nl.dll
2013-02-01 15:20:07 5DFCCEC81C2CE113A6169702BD5ADB59 6496 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ml.dll
2013-02-01 15:20:07 2623F7CFC145B5A2B053D20B342D3E54 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\nb.dll
2013-02-01 15:20:06 954C7A0183B24E63DDE0D515C5C98D05 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\lt.dll
2013-02-01 15:20:06 488D7F2B0D373CFA6AD82B0637837CE6 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\lv.dll
2013-02-01 15:20:05 7CC3FBC36DAC19C19E0B86DA5D90012B 622432 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\libglesv2.dll
2013-02-01 15:20:04 D53C20A062D135D5F7D5B42457DE6A83 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ko.dll
2013-02-01 15:20:04 9CA161C32E2C01C2327E787A46155DEE 111968 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\libegl.dll
2013-02-01 15:20:03 FF3CEAF4DC278F103A798B273E63C8AA 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\it.dll
2013-02-01 15:20:03 335D7B8787906B73BE2D8F7A6C0BE615 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\id.dll
2013-02-01 15:20:03 32888B7F5C55A1674A6438B63288937F 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ja.dll
2013-02-01 15:20:03 282669926CEB1636C562CEC0F54A6361 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\kn.dll
2013-02-01 15:19:59 ED30B4B6E3D6553216BC8149C6AC3D37 9952096 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\icudt.dll
2013-02-01 15:19:59 112778145AD91105EE96FB81AEFF0490 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\hu.dll
2013-02-01 15:19:58 D2FB1986E1858E950292BC65B0430432 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\hr.dll
2013-02-01 15:19:58 3E10749ECF8D3013CEF56595260BD402 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\hi.dll
2013-02-01 15:19:58 27E5BB858E47348DD9D8860E412CF5AE 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\gu.dll
2013-02-01 15:19:58 0414C6928F96E2C7DC65B72CA8886B8F 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\he.dll
2013-02-01 15:19:53 B920927378014ED867C820B737E8D9E8 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\fa.dll
2013-02-01 15:19:53 A27DF121AD94A201A6AFF7B47B6CFCC4 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\et.dll
2013-02-01 15:19:53 62E9932544D9C64C47851E80A0356F54 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\fr.dll
2013-02-01 15:19:53 2B672FD6BD34FD3E552EB47561E9C401 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\fi.dll
2013-02-01 15:19:53 21EA4F30A44D80F0E6AA2277C79518EA 8743584 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\gcswf32.dll
2013-02-01 15:19:53 113E1CBF8FF35CF9504C0BDD6ADA6951 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\fil.dll
2013-02-01 15:19:51 D1C7F673D8455AA5FE4499B8ECD048CA 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\es-419.dll
2013-02-01 15:19:51 872BC97167B3C6436C49710539406E68 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\en-US.dll
2013-02-01 15:19:51 70FB661FB27445651CCB04D62B881EA5 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\en-GB.dll
2013-02-01 15:19:51 6C7F13B72749363F096DE0A1628B38BD 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\el.dll
2013-02-01 15:19:51 318CE2E93A2323B62661919079C00FE3 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\es.dll
2013-02-01 15:19:50 FAD818E6C073B0763344D2969EB1F684 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\de.dll
2013-02-01 15:19:50 D3F7D07DB58379E6463A491849E90AB4 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\da.dll
2013-02-01 15:19:50 23956EEF42A0FA2BA8CC82F5CEA9AF8B 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\cs.dll
2013-02-01 15:19:49 A2AE2DD4145CEC6AE89F91826F77FE49 54112 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\chrome_frame_helper.dll
2013-02-01 15:19:36 6F028450CBABD563435E78B4E9B01CDC 44233056 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\chrome.dll
2013-02-01 15:19:32 F6DCC937F402A6404E0A536697C06DF7 120176 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\avutil-51.dll
2013-02-01 15:19:32 AEECFB657790F2C0E607F19EF5F6DD72 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ca.dll
2013-02-01 15:19:32 98820025B01493CDB40CF5A5905938C1 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\bg.dll
2013-02-01 15:19:32 322D4EA554AF25AD0499C4D557F49835 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\bn.dll
2013-02-01 15:19:31 A8049F47B3A4427E7FC48680839EB21C 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ar.dll
2013-02-01 15:19:31 6978E07BBA1012CB277774E25E981A1C 1096560 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\avcodec-53.dll
2013-02-01 15:19:31 2F74AEC3D4A45DACDA2C52627CB41D43 187760 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\avformat-53.dll
2013-02-01 15:19:30 C0ED7E1653879F669E8F5499FCBBE0AF 142148 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Extensions\torchhelper.crx
2013-02-01 15:19:30 4A1183443910C381F71409E269CD7112 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\am.dll
2013-02-01 15:19:27 91EEDBAA29227F82631CB15BEB7CC8DE 400406 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Extensions\ask_toolbar_6_0_0.crx
2013-01-30 17:43:33 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\user\AppData\Local\Temp\NOSEventMessages.dll
2013-01-28 15:43:34 1B2C9550246FEFA34A06E01D147D69D9 2907696 ----a-w- C:\Program Files\AVG\AVG2013\avgupdx.dll
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-2973256160-1956088855-3514817063-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"Facebook Update"="C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
"NokiaSuite.exe"="C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"MyWebFace_5a Browser Plugin Loader"="C:\PROGRA~1\MYWEBF~2\bar\1.bin\5abrmon.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"Facebook Update"="C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
"NokiaSuite.exe"="C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [08/01/2013 21:19]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2973256160-1956088855-3514817063-1000Core.job --a------ C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [12/07/2012 15:39]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2973256160-1956088855-3514817063-1000UA.job --a------ C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [12/07/2012 15:39]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [30/04/2011 00:09]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [30/04/2011 00:09]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://blekko.com/ws/?source=5f97ddbe&tbp=homepage&u=90487e0b0000000000000016cf6f008d/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{CB40ECCB-0813-4BF1-AF94-50C53EF65C18}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CB40ECCB-0813-4BF1-AF94-50C53EF65C18}] not found
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{80c554b9-c7f8-4a21-9471-06d606da78a2} Bing Url="http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE"
==== Empty IE Cache ======================
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\user\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\users\user\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
After Reboot
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\user\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
veel problemen gehad deze te doen , zoek.exe wou niet naar bureaublad
Tool run by user on ma 04/02/2013 at 15:01:49,76.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2973256160-1956088855-3514817063-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CB40ECCB-0813-4BF1-AF94-50C53EF65C18} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} deleted successfully
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2013-01-25 17:15:51 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe
2013-01-25 17:15:51 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe
2013-01-25 17:15:50 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe
====== C:\Users\user\AppData\Local\Temp ====
2013-02-03 14:04:53 C151CBEE5D201A181693947B333CB820 44091984 ----a-w- C:\Users\user\AppData\Local\Temp\SHSetup.exe
2013-01-30 17:43:33 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\user\AppData\Local\Temp\NOSEventMessages.dll
====== C:\Windows\system32 =====
====== C:\Windows\system32\drivers =====
2013-01-26 15:22:06 629CABB0421668C9D3D402A3C3D77E14 21104 ----a-w- C:\Windows\System32\drivers\mbam.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-02-03 14:13:27 -------- d-----w- C:\Program Files\Enigma Software Group
2013-02-03 14:09:54 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard
2013-02-02 18:03:14 -------- d-----w- C:\Program Files\AVG
2013-02-02 17:29:52 -------- d-----w- C:\Program Files\VS Revo Group
======= C: =====
====== C:\Users\user\AppData\Roaming ======
2013-02-02 18:51:07 -------- d-----w- C:\users\user\AppData\Roaming\AVG2013
2013-02-02 18:20:06 -------- d-----w- C:\users\user\AppData\Roaming\TuneUp Software
2013-02-02 17:50:37 -------- d-----w- C:\users\user\AppData\Local\MFAData
2013-02-02 17:50:37 -------- d-----w- C:\users\user\AppData\Local\Avg2013
2013-02-02 17:31:53 -------- d-----w- C:\users\user\AppData\Locallow\blekko
2013-01-26 19:24:41 -------- d-----w- C:\users\user\AppData\Local\Temp
2013-01-25 18:24:07 -------- d-----w- C:\users\Public\AppData\Local\temp
2013-01-25 18:24:07 -------- d-----w- C:\users\Default\AppData\Local\temp
2013-01-25 18:24:07 -------- d-----w- C:\users\Default User\AppData\Local\temp
2013-01-25 08:44:56 -------- d-----w- C:\users\user\AppData\Roaming\SUPERAntiSpyware.com
2013-01-18 22:54:58 -------- d-----w- C:\users\user\AppData\Local\Unity
2013-01-18 22:54:55 -------- d-----w- C:\users\user\AppData\Locallow\Unity
====== C:\Users\user ======
2013-02-02 18:12:27 -------- d-----w- C:\ProgramData\AVG2013
2013-02-02 17:50:37 -------- d--h--w- C:\ProgramData\Common Files
2013-02-02 17:50:37 -------- d-----w- C:\ProgramData\MFAData
2013-01-30 14:27:49 -------- d-----w- C:\Users\user\Revo Uninstaller
2013-01-25 18:24:07 -------- d-----w- C:\Users\Public\AppData
====== C: exe-files ==
2013-02-04 13:53:34 C17EDE0F250F811A312F845A7B009A34 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2973256160-1956088855-3514817063-1000\$IT1O3O4.exe
2013-02-04 13:53:31 2C5635DFD5C240D975CA86557BFB124B 1250762 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2973256160-1956088855-3514817063-1000\$RT1O3O4.exe
2013-02-04 13:48:36 62078129CC6C448CD952A1BBC2535BC8 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2973256160-1956088855-3514817063-1000\$IMYLDF8.exe
2013-02-04 13:12:29 6B110E925294547A7D288F26DA19D199 179687 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla18.exe
2013-02-03 14:10:24 01F6F9FD8E8B0D076F13C44425C02D30 180872 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla22.exe
2013-02-03 14:04:53 C151CBEE5D201A181693947B333CB820 44091984 ----a-w- C:\Users\user\AppData\Local\Temp\SHSetup.exe
2013-02-03 14:04:15 EEA0B34B60632083F2A75352BAE365FB 726464 ----a-w- C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\71JYQAII\SpyHunter-Installer.exe
2013-02-02 18:09:48 BD522B16FE6A6219010ABC87185BDDDE 247416 ----a-w- C:\Program Files\AVG\AVG2013\avgndisx.exe
2013-02-02 17:49:24 39E7423DCC9896BF7D98A1DC4DDD0D42 4437456 ----a-w- C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\71JYQAII\avg_free_stb_all_2013_2897_cnet.exe
2013-02-02 17:30:05 C91D2962373AE6B473C61C1F4B3596BD 87544 ----a-w- C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
2013-02-02 17:22:35 9F5119B4D8EAB88EC8B7CB2804EA7AF5 635864 ----a-w- C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7FNL23U3\cbsidlm-tr1_10a-Revo_Uninstaller-ORG-10687648 (1).exe
2013-02-01 19:25:21 2DA92DAAE595B4AF7350E0ABF5214DEB 30836576 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\24.0.1312.57\24.0.1312.57_chrome_installer.exe
2013-02-01 17:30:28 75762DEC1DEF82B1447101A8A6801080 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2973256160-1956088855-3514817063-1000\$IDQ5O8B.exe
2013-02-01 15:22:05 EDDD2CFFF5AF4C40107CBB9D18E1A80A 1690464 ----a-w- C:\Users\user\AppData\Local\Torch\Update\2.0.0.2062\TorchUpdate.exe
2013-02-01 15:21:31 6DBA56346408C394CFAE82E6AD479E51 2347872 ----a-w- C:\Users\user\AppData\Local\Torch\Plugins\Torrent\2.0.0.2062\TorchTorrent.exe
2013-02-01 15:20:58 3A7C98D4F3BE5FDFE80D21D03F328F6E 1372512 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Installer\setup.exe
2013-02-01 15:20:21 E60194FE1C2EE0FD458516F7883B3558 1091936 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\nacl64.exe
2013-02-01 15:20:21 CA6A874352575492FF772B222AD5825A 76128 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\chrome_launcher.exe
2013-02-01 15:20:19 417659307CCC011FD158E9EDBC57C0FC 79200 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\chrome_frame_helper.exe
2013-02-01 13:59:44 51CA9A27C82F68874BBA3E2A87F6B400 670048 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\24.0.1312.57\24.0.1312.57_24.0.1312.56_chrome_updater.exe
2013-01-30 14:24:40 979E536F75C1512CA0A13E07835A40FD 2617648 ----a-w- C:\Users\user\Downloads\revosetup.exe
2013-01-30 14:23:28 9F5119B4D8EAB88EC8B7CB2804EA7AF5 635864 ----a-w- C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7FNL23U3\cbsidlm-tr1_10a-Revo_Uninstaller-ORG-10687648.exe
2013-01-29 16:11:26 D593122E1C4E39E42823669A1B5FFD6D 7281968 ----a-w- C:\Program Files\AVG\AVG2013\avgmfapx.exe
=== C: other files ==
2013-02-04 13:12:31 01F6F9FD8E8B0D076F13C44425C02D30 180872 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla22.dll
2013-02-04 13:12:30 8761181CBB2E028D6CAD018011BAD55F 175992 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla20.dll
2013-02-04 13:12:30 6B110E925294547A7D288F26DA19D199 179687 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla.dll
2013-02-04 13:12:30 1DC2021A8D1506391926C58D918DFF83 176035 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla19.dll
2013-02-04 13:12:28 1DC2021A8D1506391926C58D918DFF83 176035 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla2.dll
2013-02-04 13:12:26 6256CD1A5ADE17263EB0AA0758E576A4 176545 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCalla17.dll
2013-02-04 13:12:25 519DA1A8E90AD73172B8173728045734 66955 ----a-w- C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP\WiseCustomCall.dll
2013-02-02 22:06:26 D7C22643726363F0DAC9A75DCDA8A337 45056 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Temp\scoped_dir_20501\CRX_INSTALL\background\ChromeUtilPlugin.dll
2013-02-02 22:06:26 646F6652BED29BE659B128376ECFFDE7 237568 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj\1.0_0\CTB.dll
2013-02-02 22:06:24 CB1ACAB21ECE7E7DEF7A60E080F63073 194048 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj\1.0_0\CrmAdpt.dll
2013-02-02 22:06:08 91EEDBAA29227F82631CB15BEB7CC8DE 400406 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Temp\scoped_dir_20501\ask_toolbar_6_0_0.crx
2013-02-02 18:21:35 AEA8FCD56A071ABD17B5F215C5207E17 323 ----a-w- C:\ProgramData\AVG2013\IDS\config\quarantinedList.zip
2013-02-02 17:25:59 C04E5DE374258CE32294A362B6A4CC02 541683 ----a-w- C:\Users\user\AppData\Local\Temp\mtcmn\sqlite3.dll
2013-02-01 16:51:06 E4D916BB41874B0779011F5C5EC7C2DE 276480 ----a-w- C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\lecpjhggilhbceadobnggaagnpfpafhg\2.0.0.2062_0\TorchHelper.dll
2013-02-01 15:22:06 4AC8B31D594267AFB2C0E1DBB4739A09 587616 ----a-w- C:\Users\user\AppData\Local\Torch\Plugins\Video\2.0.0.2062\TorchVideoGrabber.dll
2013-02-01 15:22:02 C68CE8838356245373049B0D404C9BDB 544944 ----a-w- C:\Users\user\AppData\Local\Torch\Plugins\TorchPlugin.crx
2013-02-01 15:20:19 9ED53535CC46A73F1E862B31451EC29D 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\zh-CN.dll
2013-02-01 15:20:19 96D479A208C8F2314C7F7E144CA37870 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\vi.dll
2013-02-01 15:20:19 6B287D28DC112C98D961FA663DCD8C07 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\tr.dll
2013-02-01 15:20:19 5ADA4A914B9E24A24FFE5452A8EDE273 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\zh-TW.dll
2013-02-01 15:20:19 3BF78B85DA54C92B638AB8E45511163D 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\uk.dll
2013-02-01 15:20:18 D3299516FC8BA6EC803F955F3BACDB21 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\th.dll
2013-02-01 15:20:18 15C873D3A949258AA27E48CBF7A47321 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\te.dll
2013-02-01 15:20:17 BDA81608146DB772F88B65276AA40484 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sw.dll
2013-02-01 15:20:17 20C03779E0F0A8F01A607B4A1EB99960 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ta.dll
2013-02-01 15:20:16 BD39E11242F35213ABE3A290C19D78F9 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sl.dll
2013-02-01 15:20:16 B266D757B261EBCBBAA6024A87AB380E 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sv.dll
2013-02-01 15:20:16 79344F4A36CA8E9EB12E9BB569E40E3B 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sr.dll
2013-02-01 15:20:15 6DAD5E966C92947CDAAE669C1663B9F1 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ru.dll
2013-02-01 15:20:15 4FC62F0EB1E03F4A1CA76D420B0B5AE3 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\sk.dll
2013-02-01 15:20:15 38FE45989957A7663A09F20AB99C326D 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ro.dll
2013-02-01 15:20:14 5BF93E6FC036C7D2809335DDD54CC5AE 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\pt-BR.dll
2013-02-01 15:20:14 4B0B6EE4CD75EEBE0C8A0573EB6CF8EE 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\pt-PT.dll
2013-02-01 15:20:13 C3D7B49AAB5DCD49C1F2E4D5931C7609 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\pl.dll
2013-02-01 15:20:13 0486E29BD65AC39B454C0A388AB3F86F 521568 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\ppgooglenaclpluginchrome.dll
2013-02-01 15:20:11 FF047D2E29B6502CDAB5D015F20FCF94 3772912 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\pdf.dll
2013-02-01 15:20:08 2C6BCB859CC98F09B465B86A9CF4C28F 2563424 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\npchrome_frame.dll
2013-02-01 15:20:07 FDD5504DF37192DD7AA4D6C0BB328DA3 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\mr.dll
2013-02-01 15:20:07 C2A67C247C36CECE1C1B31BD5D412010 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\nl.dll
2013-02-01 15:20:07 5DFCCEC81C2CE113A6169702BD5ADB59 6496 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ml.dll
2013-02-01 15:20:07 2623F7CFC145B5A2B053D20B342D3E54 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\nb.dll
2013-02-01 15:20:06 954C7A0183B24E63DDE0D515C5C98D05 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\lt.dll
2013-02-01 15:20:06 488D7F2B0D373CFA6AD82B0637837CE6 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\lv.dll
2013-02-01 15:20:05 7CC3FBC36DAC19C19E0B86DA5D90012B 622432 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\libglesv2.dll
2013-02-01 15:20:04 D53C20A062D135D5F7D5B42457DE6A83 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ko.dll
2013-02-01 15:20:04 9CA161C32E2C01C2327E787A46155DEE 111968 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\libegl.dll
2013-02-01 15:20:03 FF3CEAF4DC278F103A798B273E63C8AA 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\it.dll
2013-02-01 15:20:03 335D7B8787906B73BE2D8F7A6C0BE615 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\id.dll
2013-02-01 15:20:03 32888B7F5C55A1674A6438B63288937F 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ja.dll
2013-02-01 15:20:03 282669926CEB1636C562CEC0F54A6361 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\kn.dll
2013-02-01 15:19:59 ED30B4B6E3D6553216BC8149C6AC3D37 9952096 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\icudt.dll
2013-02-01 15:19:59 112778145AD91105EE96FB81AEFF0490 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\hu.dll
2013-02-01 15:19:58 D2FB1986E1858E950292BC65B0430432 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\hr.dll
2013-02-01 15:19:58 3E10749ECF8D3013CEF56595260BD402 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\hi.dll
2013-02-01 15:19:58 27E5BB858E47348DD9D8860E412CF5AE 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\gu.dll
2013-02-01 15:19:58 0414C6928F96E2C7DC65B72CA8886B8F 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\he.dll
2013-02-01 15:19:53 B920927378014ED867C820B737E8D9E8 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\fa.dll
2013-02-01 15:19:53 A27DF121AD94A201A6AFF7B47B6CFCC4 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\et.dll
2013-02-01 15:19:53 62E9932544D9C64C47851E80A0356F54 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\fr.dll
2013-02-01 15:19:53 2B672FD6BD34FD3E552EB47561E9C401 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\fi.dll
2013-02-01 15:19:53 21EA4F30A44D80F0E6AA2277C79518EA 8743584 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\gcswf32.dll
2013-02-01 15:19:53 113E1CBF8FF35CF9504C0BDD6ADA6951 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\fil.dll
2013-02-01 15:19:51 D1C7F673D8455AA5FE4499B8ECD048CA 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\es-419.dll
2013-02-01 15:19:51 872BC97167B3C6436C49710539406E68 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\en-US.dll
2013-02-01 15:19:51 70FB661FB27445651CCB04D62B881EA5 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\en-GB.dll
2013-02-01 15:19:51 6C7F13B72749363F096DE0A1628B38BD 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\el.dll
2013-02-01 15:19:51 318CE2E93A2323B62661919079C00FE3 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\es.dll
2013-02-01 15:19:50 FAD818E6C073B0763344D2969EB1F684 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\de.dll
2013-02-01 15:19:50 D3F7D07DB58379E6463A491849E90AB4 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\da.dll
2013-02-01 15:19:50 23956EEF42A0FA2BA8CC82F5CEA9AF8B 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\cs.dll
2013-02-01 15:19:49 A2AE2DD4145CEC6AE89F91826F77FE49 54112 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\chrome_frame_helper.dll
2013-02-01 15:19:36 6F028450CBABD563435E78B4E9B01CDC 44233056 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\chrome.dll
2013-02-01 15:19:32 F6DCC937F402A6404E0A536697C06DF7 120176 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\avutil-51.dll
2013-02-01 15:19:32 AEECFB657790F2C0E607F19EF5F6DD72 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ca.dll
2013-02-01 15:19:32 98820025B01493CDB40CF5A5905938C1 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\bg.dll
2013-02-01 15:19:32 322D4EA554AF25AD0499C4D557F49835 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\bn.dll
2013-02-01 15:19:31 A8049F47B3A4427E7FC48680839EB21C 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\ar.dll
2013-02-01 15:19:31 6978E07BBA1012CB277774E25E981A1C 1096560 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\avcodec-53.dll
2013-02-01 15:19:31 2F74AEC3D4A45DACDA2C52627CB41D43 187760 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\avformat-53.dll
2013-02-01 15:19:30 C0ED7E1653879F669E8F5499FCBBE0AF 142148 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Extensions\torchhelper.crx
2013-02-01 15:19:30 4A1183443910C381F71409E269CD7112 5984 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Locales\am.dll
2013-02-01 15:19:27 91EEDBAA29227F82631CB15BEB7CC8DE 400406 ----a-w- C:\Users\user\AppData\Local\Torch\Application\2.0.0.2062\Extensions\ask_toolbar_6_0_0.crx
2013-01-30 17:43:33 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\user\AppData\Local\Temp\NOSEventMessages.dll
2013-01-28 15:43:34 1B2C9550246FEFA34A06E01D147D69D9 2907696 ----a-w- C:\Program Files\AVG\AVG2013\avgupdx.dll
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-2973256160-1956088855-3514817063-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"Facebook Update"="C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
"NokiaSuite.exe"="C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"MyWebFace_5a Browser Plugin Loader"="C:\PROGRA~1\MYWEBF~2\bar\1.bin\5abrmon.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"Facebook Update"="C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
"NokiaSuite.exe"="C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [08/01/2013 21:19]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2973256160-1956088855-3514817063-1000Core.job --a------ C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [12/07/2012 15:39]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2973256160-1956088855-3514817063-1000UA.job --a------ C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [12/07/2012 15:39]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [30/04/2011 00:09]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [30/04/2011 00:09]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://blekko.com/ws/?source=5f97ddbe&tbp=homepage&u=90487e0b0000000000000016cf6f008d/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{CB40ECCB-0813-4BF1-AF94-50C53EF65C18}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CB40ECCB-0813-4BF1-AF94-50C53EF65C18}] not found
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{80c554b9-c7f8-4a21-9471-06d606da78a2} Bing Url="http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE"
==== Empty IE Cache ======================
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\user\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\users\user\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
After Reboot
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\user\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
veel problemen gehad deze te doen , zoek.exe wou niet naar bureaublad
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door smeenk » ma 04 feb, 2013 16:45:38
Vreemd dat je zoek.exe niet op het bureaublad zetten kon, kreeg je een bepaalde foutmelding?
- Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
(hier of hier) kan je lezen hoe je dat doet. - Dubbelklik op Zoek.exe om de tool te starten.
- Kopieer nu onderstaande code en plak die in het grote invulvenster:
- Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.
- Code: Selecteer alles
C:\users\user\AppData\Locallow\blekko;fs
chromelook;
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run];r
"MyWebFace_5a Browser Plugin Loader"=-;r
C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP;fs
C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj;fs
- Klik nu op de knop "Run script".
- Wacht nu geduldig af tot er een logje opent.
- Post nu de inhoud van het geopende logje in het volgende bericht.
-
smeenk - Security Helper
- Berichten: 2288
- Geregistreerd: vr 03 dec, 2010 19:00:18
- OS: MS Windows Vista
- AV: MS Security Essentials
- FW: Windows Firewall
Re: blekko virus
door miss bv » ma 04 feb, 2013 17:08:05
Zoek.exe Version 4.0.0.1 Updated 04-February-2013
Tool run by user on ma 04/02/2013 at 16:01:09,20.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyWebFace_5a Browser Plugin Loader"=-
==== Deleting Files \ Folders ======================
"C:\users\user\AppData\Locallow\blekko" deleted
"C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP" deleted
"C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj" deleted
Tool run by user on ma 04/02/2013 at 16:01:09,20.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyWebFace_5a Browser Plugin Loader"=-
==== Deleting Files \ Folders ======================
"C:\users\user\AppData\Locallow\blekko" deleted
"C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP" deleted
"C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj" deleted
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door smeenk » ma 04 feb, 2013 17:51:45
Download de 32 of 64 bit versie van HitmanPro naar het bureaublad.
Klik hier voor een uitgebreide handleiding van HitmanPro.
Klik hier voor een uitgebreide handleiding van HitmanPro.
- Houd de linker CTRL toets ingedrukt en dubbelklik op "HitmanPro36.exe" om de "Force Breach" te starten en klik op "volgende" als HitmanPro de processen heeft geblokkeerd.
- Vink de optie "Ik accepteer de voorwaarden van de gebruikersovereenkomst aan" en klik op "Volgende"
- Klik in het setup scherm nu nogmaals op "Volgende", nu zal automatisch de scan starten, doe verder niets op de computer totdat de scan gereed is.
- Als de scan klaar is klik je op "volgende"
- Activeer nu de gratis licentie, hiermee kunt u 30 dagen gratis HitmanPro gebruiken en de gevonden infecties verwijderen.
- Note: indien u reeds eerder gebruik hebt gemaakt van de 30 dagen trial-versie van HitmanPro is het niet meer mogelijk om gratis de gevonden infecties te verwijderen.
- Als het verwijderen gereed is klik je onderin het scherm op "Save log" of "Logbestand opslaan" en sla deze op bijvoorbeeld het bureaublad op.
Post dit logje. - Klik nu op de knop "Herstarten".
-
smeenk - Security Helper
- Berichten: 2288
- Geregistreerd: vr 03 dec, 2010 19:00:18
- OS: MS Windows Vista
- AV: MS Security Essentials
- FW: Windows Firewall
Re: blekko virus
door miss bv » ma 04 feb, 2013 18:26:03
Zoek.exe Version 4.0.0.1 Updated 04-February-2013
Tool run by user on ma 04/02/2013 at 16:01:09,20.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyWebFace_5a Browser Plugin Loader"=-
==== Deleting Files \ Folders ======================
"C:\users\user\AppData\Locallow\blekko" deleted
"C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP" deleted
"C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj" deleted
Zoek.exe Version 4.0.0.1 Updated 04-February-2013
Tool run by user on ma 04/02/2013 at 16:01:09,20.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyWebFace_5a Browser Plugin Loader"=-
==== Deleting Files \ Folders ======================
"C:\users\user\AppData\Locallow\blekko" deleted
"C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP" deleted
"C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj" deleted
Tool run by user on ma 04/02/2013 at 16:01:09,20.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyWebFace_5a Browser Plugin Loader"=-
==== Deleting Files \ Folders ======================
"C:\users\user\AppData\Locallow\blekko" deleted
"C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP" deleted
"C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj" deleted
Zoek.exe Version 4.0.0.1 Updated 04-February-2013
Tool run by user on ma 04/02/2013 at 16:01:09,20.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyWebFace_5a Browser Plugin Loader"=-
==== Deleting Files \ Folders ======================
"C:\users\user\AppData\Locallow\blekko" deleted
"C:\Windows\68B9BD86C5E84154BF3820A7ACC1FA7E.TMP" deleted
"C:\Users\user\AppData\Local\Torch\User Data\Default\Extensions\ofaekbahncacnjgelnfjcjoelcglkhkj" deleted
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door miss bv » ma 04 feb, 2013 18:31:40
- Code: Selecteer alles
HitmanPro 3.7.1.186
www.hitmanpro.com
Computer name . . . . : PC_VAN_USER
Windows . . . . . . . : 6.0.2.6002.X86/1
User name . . . . . . : PC_van_user\user
UAC . . . . . . . . . : Enabled
License . . . . . . . : Trial (Expired)
Scan date . . . . . . : 2013-02-04 17:15:17
Scan mode . . . . . . : Normal
Scan duration . . . . : 4m 57s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No
Threats . . . . . . . : 0
Traces . . . . . . . : 38
Objects scanned . . . : 1.559.356
Files scanned . . . . : 18.978
Remnants scanned . . : 374.460 files / 1.165.918 keys
Potential Unwanted Programs _________________________________________________
HKLM\SOFTWARE\Babylon\ (Babylon)
HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL\ (Blabbers)
HKLM\SOFTWARE\Classes\AppID\updatebho.DLL\ (Blabbers)
HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL\ (Blabbers)
HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}\ (Blabbers)
HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}\ (Blabbers)
HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}\ (Babylon)
HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}\ (Blabbers)
HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}\ (Funmoods)
HKLM\SOFTWARE\Classes\Prod.cap\ (Claro)
HKLM\SOFTWARE\Funmoods\ (Funmoods)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF\ (AskBar)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E\ (AskBar)
HKU\S-1-5-21-2973256160-1956088855-3514817063-1000\Software\Blabbers\ (Blabbers)
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door smeenk » ma 04 feb, 2013 18:56:51
het schoont al behoorlijk op 
Download AdwCleaner by Xplode naar je Bureaublad.
Je PC word opnieuw opgestart en er een opent logfile (C:\ AdwCleaner[xx].txt ) post de inhoud hier op het Forum.
Download AdwCleaner by Xplode naar je Bureaublad.
- Sluit alle openstaande vensters
- Rechtsklik op AdwCleaner en selecteer als Administrator uitvoeren...
- Klik vervolgens op Delete
- Klik bij AdwCleaner – Information op OK
- Klik bij AdwCleaner – Restart Required op OK
Je PC word opnieuw opgestart en er een opent logfile (C:\ AdwCleaner[xx].txt ) post de inhoud hier op het Forum.
-
smeenk - Security Helper
- Berichten: 2288
- Geregistreerd: vr 03 dec, 2010 19:00:18
- OS: MS Windows Vista
- AV: MS Security Essentials
- FW: Windows Firewall
Re: blekko virus
door miss bv » ma 04 feb, 2013 19:21:13
het gaat niet, hij zegt, wordt niet vaak gedownlowd en is mogelijk schadelijk voor uw computer
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door miss bv » ma 04 feb, 2013 19:51:29
ik klikte op , wat is een smartScreen-filter?
dit onderwerp niet gevonden , is niet beschikbaar in deze versie van windows
dit onderwerp niet gevonden , is niet beschikbaar in deze versie van windows
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door smeenk » ma 04 feb, 2013 20:57:04
Het smartscreen filter is eigenlijk bedoeld om je te beschermen, in de praktijk zorgt het voor onlogische meldingen en veel overlast 
Open Internet Explorer door te klikken op de knop Start.
Typ Internet Explorer in het vak Zoeken en klik vervolgens in de lijst met resultaten op Internet Explorer.
Klik op de knop Beveiliging, wijs SmartScreen-filter aan en klik op SmartScreen-filter uitschakelen of SmartScreen-filter inschakelen.
Klik in het dialoogvenster Microsoft SmartScreen-filter op OK.
Open Internet Explorer door te klikken op de knop Start.
Typ Internet Explorer in het vak Zoeken en klik vervolgens in de lijst met resultaten op Internet Explorer.
Klik op de knop Beveiliging, wijs SmartScreen-filter aan en klik op SmartScreen-filter uitschakelen of SmartScreen-filter inschakelen.
Klik in het dialoogvenster Microsoft SmartScreen-filter op OK.
-
smeenk - Security Helper
- Berichten: 2288
- Geregistreerd: vr 03 dec, 2010 19:00:18
- OS: MS Windows Vista
- AV: MS Security Essentials
- FW: Windows Firewall
Re: blekko virus
door miss bv » ma 04 feb, 2013 21:48:12
# AdwCleaner v2.110 - Verslag gemaakt op 04/02/2013 om 20:38:35
# Geactualiseerd op 03/02/2013 door Xplode
# Besturingssysteem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Gebruiker : user - PC_VAN_USER
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Users\user\Desktop\adwcleaner.exe
# Optie [Verwijderen]
***** [Diensten] *****
***** [Files / Mappen] *****
Map Verwijdert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
Verwijdert bij het opstarten : C:\Program Files\MyWebFace_5a
***** [Register] *****
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\Conduit
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\MyWebFace_5a
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\PriceGong
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\ShoppingReport2
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\SmartBar
Sleutel Verwijdert : HKCU\Software\Blabbers
Sleutel Verwijdert : HKCU\Software\BrowserCompanion
Sleutel Verwijdert : HKCU\Software\ilivid
Sleutel Verwijdert : HKCU\Software\InstallCore
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DealPly
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ShoppingReport2
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C522512A-9C2C-4DE5-9F63-976B560FEF14}
Sleutel Verwijdert : HKLM\Software\Babylon
Sleutel Verwijdert : HKLM\Software\BrowserCompanion
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{0A9D317B-2882-4BF7-A5AE-9F696D177328}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{0FD143A0-6594-407B-B064-8E2E56F67DAF}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{29920769-9B2C-4D1E-97FA-74E478E9B371}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{2AA056D7-B437-4F88-AC97-88750EDC42F1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{3AC2FE63-1635-4022-94F2-971789585872}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{41B7C739-4708-42A5-85CA-EEDE4C816578}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{46954B3B-41EC-48C6-94C9-E5257B70E1B2}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{54BBAEB3-DD44-4C9F-8145-7503CAC042F9}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{6372C122-1E82-494A-9D5A-DE31ED303036}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{75CDADBD-7A6C-4CED-9EA7-93ED462CCF71}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{7F8F6D0F-EB19-43CB-BD5A-FB5DA9814A51}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{87A787F4-0758-43D1-A750-48B715F185B3}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{8DBC9EFE-0351-4572-B62C-4EEB5EA10F0E}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{91244959-96FF-47D5-A989-ACE3CC7DB0B1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{D749CF46-ABB0-4A52-BAF6-34461B8DD8CE}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{EC6FAB8B-2417-4B2B-813B-E70BBBADF666}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{2263BE11-ACB7-49D9-8313-6B1D5CC42FAA}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{97FC5555-8BDC-40EA-8DE2-B1E46B9EA629}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.DynamicBarButton
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.DynamicBarButton.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.FeedManager
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.FeedManager.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.HTMLMenu
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.HTMLMenu.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.HTMLPanel
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.HTMLPanel.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.MultipleButton
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.MultipleButton.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.PseudoTransparentPlugin
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.PseudoTransparentPlugin.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.Radio
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.Radio.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.RadioSettings
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.RadioSettings.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.ScriptButton
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.ScriptButton.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.SettingsPlugin
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.SettingsPlugin.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.SkinLauncher
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.SkinLauncher.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.ThirdPartyInstaller
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.ThirdPartyInstaller.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.UrlAlertButton
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.UrlAlertButton.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.XMLSessionPlugin
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.XMLSessionPlugin.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Prod.cap
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT3018509
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{0B9410D4-ADCB-408F-BB37-E3020F64DA4A}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{0DCBCA67-3A6B-40F7-BD56-B99244B5DF81}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{427B96AE-0668-44BA-A694-7966194311E0}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{654C3FF4-265E-409B-92A6-537574DECF60}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{6915A0BA-FDE9-429F-A4B0-96E4302227AC}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{8011A14A-90D9-45DE-B3DD-6D657667397E}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{B1000508-EFB9-4EAD-BB09-CE6899719B97}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{CE2E3004-A9B4-4CCE-A818-16631D861260}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{D56886D9-719D-4A9C-98BF-98B4EB5AD805}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{FAC8C849-4BB4-4E6F-BDED-6DCBAF1A6713}
Sleutel Verwijdert : HKLM\Software\Conduit
Sleutel Verwijdert : HKLM\Software\DealPly
Sleutel Verwijdert : HKLM\Software\Funmoods
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2263BE11-ACB7-49D9-8313-6B1D5CC42FAA}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6372C122-1E82-494A-9D5A-DE31ED303036}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{768AF043-5C5B-408B-A3E0-671B60E3FCD3}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97FC5555-8BDC-40EA-8DE2-B1E46B9EA629}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F0999591-2EDB-4A3E-907E-337B1591F643}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{41B7C739-4708-42A5-85CA-EEDE4C816578}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{75CDADBD-7A6C-4CED-9EA7-93ED462CCF71}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{91244959-96FF-47D5-A989-ACE3CC7DB0B1}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C522512A-9C2C-4DE5-9F63-976B560FEF14}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D749CF46-ABB0-4A52-BAF6-34461B8DD8CE}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EC6FAB8B-2417-4B2B-813B-E70BBBADF666}
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Sleutel Verwijdert : HKLM\SOFTWARE\MozillaPlugins\@MyWebFace_5a.com/Plugin
Sleutel Verwijdert : HKLM\Software\MyWebFace_5a
Sleutel Verwijdert : HKLM\SOFTWARE\Software
Waarde Verwijdert : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [5affxtbr@MyWebFace_5a.com]
***** [Browsers] *****
-\\ Internet Explorer v9.0.8112.16457
[OK] Het register bevat geen enkele ongeoorloofde invoer.
-\\ Google Chrome v24.0.1312.57
*************************
AdwCleaner[R1].txt - [13669 octets] - [04/02/2013 20:22:43]
AdwCleaner[R2].txt - [13719 octets] - [04/02/2013 20:31:12]
AdwCleaner[S1].txt - [440 octets] - [04/02/2013 20:23:30]
AdwCleaner[S2].txt - [13857 octets] - [04/02/2013 20:38:35]
########## EOF - C:\AdwCleaner[S2].txt - [13918 octets] ##########
# Geactualiseerd op 03/02/2013 door Xplode
# Besturingssysteem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Gebruiker : user - PC_VAN_USER
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Users\user\Desktop\adwcleaner.exe
# Optie [Verwijderen]
***** [Diensten] *****
***** [Files / Mappen] *****
Map Verwijdert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
Verwijdert bij het opstarten : C:\Program Files\MyWebFace_5a
***** [Register] *****
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\Conduit
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\MyWebFace_5a
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\PriceGong
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\ShoppingReport2
Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\SmartBar
Sleutel Verwijdert : HKCU\Software\Blabbers
Sleutel Verwijdert : HKCU\Software\BrowserCompanion
Sleutel Verwijdert : HKCU\Software\ilivid
Sleutel Verwijdert : HKCU\Software\InstallCore
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DealPly
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ShoppingReport2
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C522512A-9C2C-4DE5-9F63-976B560FEF14}
Sleutel Verwijdert : HKLM\Software\Babylon
Sleutel Verwijdert : HKLM\Software\BrowserCompanion
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{0A9D317B-2882-4BF7-A5AE-9F696D177328}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{0FD143A0-6594-407B-B064-8E2E56F67DAF}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{29920769-9B2C-4D1E-97FA-74E478E9B371}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{2AA056D7-B437-4F88-AC97-88750EDC42F1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{3AC2FE63-1635-4022-94F2-971789585872}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{41B7C739-4708-42A5-85CA-EEDE4C816578}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{46954B3B-41EC-48C6-94C9-E5257B70E1B2}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{54BBAEB3-DD44-4C9F-8145-7503CAC042F9}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{6372C122-1E82-494A-9D5A-DE31ED303036}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{75CDADBD-7A6C-4CED-9EA7-93ED462CCF71}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{7F8F6D0F-EB19-43CB-BD5A-FB5DA9814A51}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{87A787F4-0758-43D1-A750-48B715F185B3}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{8DBC9EFE-0351-4572-B62C-4EEB5EA10F0E}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{91244959-96FF-47D5-A989-ACE3CC7DB0B1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{D749CF46-ABB0-4A52-BAF6-34461B8DD8CE}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{EC6FAB8B-2417-4B2B-813B-E70BBBADF666}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{2263BE11-ACB7-49D9-8313-6B1D5CC42FAA}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{97FC5555-8BDC-40EA-8DE2-B1E46B9EA629}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.DynamicBarButton
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.DynamicBarButton.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.FeedManager
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.FeedManager.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.HTMLMenu
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.HTMLMenu.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.HTMLPanel
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.HTMLPanel.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.MultipleButton
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.MultipleButton.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.PseudoTransparentPlugin
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.PseudoTransparentPlugin.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.Radio
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.Radio.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.RadioSettings
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.RadioSettings.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.ScriptButton
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.ScriptButton.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.SettingsPlugin
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.SettingsPlugin.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.SkinLauncher
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.SkinLauncher.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.ThirdPartyInstaller
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.ThirdPartyInstaller.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.UrlAlertButton
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.UrlAlertButton.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.XMLSessionPlugin
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\MyWebFace_5a.XMLSessionPlugin.1
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Prod.cap
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT3018509
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{0B9410D4-ADCB-408F-BB37-E3020F64DA4A}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{0DCBCA67-3A6B-40F7-BD56-B99244B5DF81}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{427B96AE-0668-44BA-A694-7966194311E0}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{654C3FF4-265E-409B-92A6-537574DECF60}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{6915A0BA-FDE9-429F-A4B0-96E4302227AC}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{8011A14A-90D9-45DE-B3DD-6D657667397E}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{B1000508-EFB9-4EAD-BB09-CE6899719B97}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{CE2E3004-A9B4-4CCE-A818-16631D861260}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{D56886D9-719D-4A9C-98BF-98B4EB5AD805}
Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{FAC8C849-4BB4-4E6F-BDED-6DCBAF1A6713}
Sleutel Verwijdert : HKLM\Software\Conduit
Sleutel Verwijdert : HKLM\Software\DealPly
Sleutel Verwijdert : HKLM\Software\Funmoods
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2263BE11-ACB7-49D9-8313-6B1D5CC42FAA}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6372C122-1E82-494A-9D5A-DE31ED303036}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{768AF043-5C5B-408B-A3E0-671B60E3FCD3}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97FC5555-8BDC-40EA-8DE2-B1E46B9EA629}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F0999591-2EDB-4A3E-907E-337B1591F643}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{41B7C739-4708-42A5-85CA-EEDE4C816578}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{75CDADBD-7A6C-4CED-9EA7-93ED462CCF71}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{91244959-96FF-47D5-A989-ACE3CC7DB0B1}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C522512A-9C2C-4DE5-9F63-976B560FEF14}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D749CF46-ABB0-4A52-BAF6-34461B8DD8CE}
Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EC6FAB8B-2417-4B2B-813B-E70BBBADF666}
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Sleutel Verwijdert : HKLM\SOFTWARE\MozillaPlugins\@MyWebFace_5a.com/Plugin
Sleutel Verwijdert : HKLM\Software\MyWebFace_5a
Sleutel Verwijdert : HKLM\SOFTWARE\Software
Waarde Verwijdert : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [5affxtbr@MyWebFace_5a.com]
***** [Browsers] *****
-\\ Internet Explorer v9.0.8112.16457
[OK] Het register bevat geen enkele ongeoorloofde invoer.
-\\ Google Chrome v24.0.1312.57
*************************
AdwCleaner[R1].txt - [13669 octets] - [04/02/2013 20:22:43]
AdwCleaner[R2].txt - [13719 octets] - [04/02/2013 20:31:12]
AdwCleaner[S1].txt - [440 octets] - [04/02/2013 20:23:30]
AdwCleaner[S2].txt - [13857 octets] - [04/02/2013 20:38:35]
########## EOF - C:\AdwCleaner[S2].txt - [13918 octets] ##########
- miss bv
- PC Web Plus - Member
- Berichten: 22
- Geregistreerd: za 26 jan, 2013 15:34:26
- Kennisniveau: (1) Beginner
Re: blekko virus
door smeenk » di 05 feb, 2013 00:08:49
Ik denk dat het voornamelijk restjes zijn die nog gevonden kunnen worden, alles wat we gevonden hebben valt onder PUP(Possible Unwanted Programs) het zijn dus geen ernstige dingen waar je je echt zorgen om moet gaan maken.
Meestal gaat het om toolbars e.d. die meegeïnstalleerd worden met gratis software.
Download de Junkware Removal Tool by Thisisu naar je bureaublad
Meestal gaat het om toolbars e.d. die meegeïnstalleerd worden met gratis software.
Download de Junkware Removal Tool by Thisisu naar je bureaublad
- Het is aanbevolen om beveiligingssoftware tijdelijk uit te schakelen, deze kan namelijk conflicteren met JRT.exe
- Windows XP: Start de tool doormiddel van dubbelklik.
- Windows Vista/7/8: Rechtsklik JRT.exe en kies voor "Uitvoeren als administrator".
- De tool zal daarna je systeem scannen.
- De scan kan afhankelijk van je systeemspecificaties soms vrij lang duren, wacht geduldig af.
- Als de scan voltooid is zal een logje (JRT.txt) op je bureaublad opgeslagen worden en automatisch openen.
- Post de inhoud van deze log in je volgende bericht.
-
smeenk - Security Helper
- Berichten: 2288
- Geregistreerd: vr 03 dec, 2010 19:00:18
- OS: MS Windows Vista
- AV: MS Security Essentials
- FW: Windows Firewall
18 berichten
• Pagina 1 van 2 • 1, 2
Keer terug naar Opgeloste problemen / logs
Wie is er online
Gebruikers op dit forum: Bernadet en 0 gasten