Popups, trage laptop

Hallo,

Laptop gaat heel traag, ook snel overhit. Last van popups tijdens het surfen.

Alvast bedankt.

Grtz,

Kobe

Logfile of random's system information tool 1.09 (written by random/random)

Run by Cannière Kobe at 2014-01-13 21:15:36

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 80 GB (17%) free of 463 GB

Total RAM: 4063 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 21:15:41, on 13/01/2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\PROGRA~2\SearchProtect\SearchProtect\bin\cltmng.exe

C:\PROGRA~2\SearchProtect\UI\bin\cltmngui.exe

C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe

C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

C:\Users\Cannière Kobe\AppData\Roaming\uTorrent\uTorrent.exe

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe

c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe

c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe

C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe

C:\Users\Cannière Kobe\AppData\Local\Lollipop\lollipop_01131900.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files\trend micro\Cannière Kobe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken=

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Ask Toolbar BHO - {4F524A2D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll" (file missing)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IPSBHO.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll

O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll

O3 - Toolbar: Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll" (file missing)

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [HPCam_Menu] "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam" UpdateWithCreateOnce "Software\Hewlett-Packard\Media\Webcam"

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

O4 - HKLM\..\Run: [updatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"

O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe

O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

O4 - HKCU\..\Run: [uTorrent] "C:\Users\Cannière Kobe\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

O4 - HKCU\..\Run: [lollipop_01131900] "c:\users\cannière kobe\appdata\local\lollipop\lollipop_01131900.exe" lollipop_01131900

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2" /build:7601 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2" /build:7601 (User 'Default user')

O8 - Extra context menu item: &AOL-werkbalk Zoeken - C:\ProgramData\AOL\ieToolbar\resources\nl-BE\local\search.html

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O9 - Extra button: Verzenden naar Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Verzenden naar &Bluetooth-apparaat... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll

O20 - AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Ask-updateservice (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: Search Protect by Conduit Service (CltMngSvc) - Conduit - C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe

O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe

O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 14943 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

winlogon.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe

C:\Windows\system32\Hpservice.exe

C:\Windows\system32\svchost.exe -k NetworkService

atieclxx

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"C:\Program Files\Bonjour\mDNSResponder.exe"

"taskhost.exe"

"C:\Windows\system32\Dwm.exe"

"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"

C:\Windows\Explorer.EXE

C:\Windows\SysWOW64\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"

"C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe" /s "Norton Internet Security" /m "C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\diMaster.dll" /prefetch:1

"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"

"C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe"

C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe

C:\PROGRA~2\SearchProtect\SearchProtect\bin\cltmng.exe

C:\Windows\system32\SearchIndexer.exe /Embedding

C:\PROGRA~2\SearchProtect\UI\bin\cltmngui.exe

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe" /c /a /s UserSession

"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe"

"C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesApp64.exe" /TUStart /pid:2548

"C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log

"C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log

"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"

"C:\Program Files\IDT\WDM\sttray64.exe"

"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"

"C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background

"C:\Program Files\Java\jre6\bin\jusched.exe"

"C:\Program Files\Greenshot\Greenshot.exe"

"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"

"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"

"C:\Users\Cannière Kobe\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"

"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding

taskeng.exe {761ECC58-6ADA-4529-B1F6-CBF7A9AF4A92}

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

"c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe"

"c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"

"C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe"

"C:\Program Files (x86)\iTunes\iTunesHelper.exe"

"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"

"C:\Program Files\iPod\bin\iPodService.exe"

"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"

C:\Windows\System32\svchost.exe -k secsvcs

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

"C:\Windows\system32\wuauclt.exe"

"C:\Users\Cannière Kobe\AppData\Local\Lollipop\lollipop_01131900.exe" -updatec:\users\cannière kobe\appdata\local\lollipop\lollipop_01110606.exe

"C:\Program Files\Internet Explorer\iexplore.exe"

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5188 CREDAT:267521 /prefetch:2

C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_170_ActiveX.exe -Embedding

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5188 CREDAT:3806508 /prefetch:2

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1182473605-3401692660-351907460-10015_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1182473605-3401692660-351907460-10015 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"

"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5188 CREDAT:3216749 /prefetch:2

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5188 CREDAT:202028 /prefetch:2

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\Users\Cannière Kobe\Desktop\RSITx64.exe"

C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-006A-76A7-7A786E7484D7}]

Ask Toolbar - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll [2014-01-11 13776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-09-04 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-006A-76A7-7A786E7484D7}]

Ask Toolbar - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll [2014-01-11 12240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]

Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll [2011-09-22 378736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]

Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IPSBHO.DLL [2009-09-04 107896]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}]

AOL Toolbar BHO - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll [2008-07-02 1185120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live Aanmelden - Help - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{4F524A2D-5637-006A-76A7-7A786E7484D7} - Ask Toolbar - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll [2014-01-11 13776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll [2011-09-22 378736]

{DE9C389F-3316-41A7-809B-AA305ED9D922} - AOL Toolbar - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll [2008-07-02 1185120]

{4F524A2D-5637-006A-76A7-7A786E7484D7} - Ask Toolbar - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll [2014-01-11 12240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-15 1815848]

"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2009-07-22 450048]

"SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2009-07-21 610872]

"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-09-04 171520]

"Greenshot"=C:\Program Files\Greenshot\Greenshot.exe [2012-10-30 462848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2013-12-12 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]

"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]

"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]

"uTorrent"=C:\Users\Cannière Kobe\AppData\Roaming\uTorrent\uTorrent.exe [2013-05-08 802136]

"lollipop_01131900"=c:\users\cannière kobe\appdata\local\lollipop\lollipop_01131900.exe [2014-01-13 2498560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Easybits Recovery]

C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2009-06-22 60464]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]

C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-07-15 1668664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]

C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\M-Audio Taskbar Icon]

C:\Windows\system32\MAFWTray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-06-24 320056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]

C:\Users\Cannière Kobe\AppData\Roaming\uTorrent\uTorrent.exe [2013-05-08 802136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WirelessAssistant]

C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-07-23 498744]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]

C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-07-30 1079584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-02 98304]

"HPCam_Menu"=c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2009-02-25 218408]

"NortonOnlineBackupReminder"=C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [2009-05-12 581480]

"UpdatePRCShortCut"=C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]

"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]

""= []

"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

"ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-01-11 1778640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2009-09-04 52272]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SymEFA.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"WallpaperStyle"=2

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"MSVideo8"=VfWWDM32.dll

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"wave4"=wdmaud.drv

"midi4"=wdmaud.drv

"mixer4"=wdmaud.drv

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-01-13 21:15:36 ----D---- C:\rsit

2014-01-13 21:15:36 ----D---- C:\Program Files\trend micro

2014-01-12 11:55:54 ----A---- C:\Windows\system32\TURegOpt.exe

2014-01-12 11:55:54 ----A---- C:\Windows\system32\authuitu.dll

2014-01-12 11:55:53 ----A---- C:\Windows\SYSWOW64\authuitu.dll

2014-01-12 11:55:28 ----D---- C:\Users\Cannière Kobe\AppData\Roaming\AVG

2014-01-12 11:54:42 ----D---- C:\Program Files (x86)\AVG PC TuneUp 2014

2014-01-12 11:52:56 ----D---- C:\ProgramData\AVG

2014-01-12 11:52:28 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

2014-01-12 11:52:28 ----HD---- C:\ProgramData\Common Files

2014-01-12 11:51:15 ----D---- C:\Program Files (x86)\SearchProtect

2014-01-12 11:50:44 ----D---- C:\Users\Cannière Kobe\AppData\Roaming\OpenCandy

2014-01-12 11:50:44 ----D---- C:\Users\Cannière Kobe\AppData\Roaming\DVDVideoSoft

2014-01-12 11:50:44 ----D---- C:\Program Files (x86)\DVDVideoSoft

2013-12-14 01:51:10 ----D---- C:\Users\Cannière Kobe\AppData\Roaming\Mozilla

======List of files/folders modified in the last 1 month======

2014-01-13 21:15:37 ----D---- C:\Windows\Temp

2014-01-13 21:15:36 ----RD---- C:\Program Files

2014-01-13 21:14:07 ----D---- C:\Users\Cannière Kobe\AppData\Roaming\uTorrent

2014-01-13 20:10:41 ----D---- C:\Windows\system32\config

2014-01-13 20:00:59 ----D---- C:\Windows\System32

2014-01-13 20:00:59 ----D---- C:\Windows\inf

2014-01-13 20:00:59 ----A---- C:\Windows\system32\PerfStringBackup.INI

2014-01-13 19:59:29 ----D---- C:\Windows\system32\Tasks

2014-01-13 19:59:28 ----D---- C:\Windows\Tasks

2014-01-12 11:56:02 ----SHD---- C:\Windows\Installer

2014-01-12 11:55:53 ----D---- C:\Windows\SysWOW64

2014-01-12 11:54:42 ----RD---- C:\Program Files (x86)

2014-01-12 11:52:56 ----HD---- C:\ProgramData

2014-01-12 11:52:34 ----D---- C:\Windows

2014-01-12 11:51:18 ----RSD---- C:\Windows\assembly

2014-01-12 11:50:44 ----D---- C:\Program Files (x86)\Common Files

2014-01-12 11:49:27 ----D---- C:\Windows\Prefetch

2014-01-09 18:12:19 ----D---- C:\Users\Cannière Kobe\AppData\Roaming\HpUpdate

2014-01-09 18:06:42 ----SHD---- C:\System Volume Information

2014-01-09 18:02:08 ----D---- C:\Windows\system32\catroot2

2013-12-29 12:24:47 ----D---- C:\ProgramData\Recovery

2013-12-24 22:54:22 ----D---- C:\Users\Cannière Kobe\AppData\Roaming\vlc

2013-12-20 22:00:00 ----D---- C:\Windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 30008]

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1008030.006\SYMEFA64.SYS [2009-09-04 402992]

R1 BHDrvx64;Symantec Heuristics Driver; C:\Windows\System32\Drivers\NISx64\1008030.006\BHDrvx64.sys [2010-01-20 334384]

R1 ccHP;Symantec Hash Provider; C:\Windows\System32\Drivers\NISx64\1008030.006\ccHPx64.sys [2013-02-10 561800]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-27 283200]

R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2013-02-07 484512]

R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20130405.001\IDSvia64.sys [2013-02-07 513184]

R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1008030.006\SRTSPX64.SYS [2009-09-04 32304]

R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2009-09-04 31280]

R1 SYMTDI;Symantec Network Dispatch Driver; C:\Windows\System32\Drivers\NISx64\1008030.006\SYMTDI.SYS [2011-09-22 279160]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 41272]

R3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-29 116752]

R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-02 6036480]

R3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]

R3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]

R3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]

R3 btwaudio;Bluetooth-audioapparaat; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]

R3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2009-07-01 132648]

R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 35104]

R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]

R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2009-06-29 70656]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-02-25 138912]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 18432]

R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-07-21 140712]

R3 NETw5s64;Intel® Wireless WiFi Link adapter stuurprogramma onder Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETw5s64.sys [2010-01-13 7675392]

R3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]

R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-07-13 233472]

R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2009-07-22 487936]

R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2013-02-08 172592]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-07-15 273456]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesDriver64.sys [2013-09-18 14112]

S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]

S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]

S3 MAFW;Service for M-Audio FireWire; C:\Windows\system32\DRIVERS\mafw.sys [2009-07-29 231944]

S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20130405.069\ENG64.SYS [2013-02-25 126192]

S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20130405.069\EX64.SYS [2013-02-25 2087664]

S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2012-03-26 22528]

S3 NETw1v64;Intel® Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\NETw1v64.sys [2009-07-21 7058432]

S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]

S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]

S3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1008030.006\SRTSP64.SYS [2009-09-04 476720]

S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]

S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]

S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]

S3 SYMFW;Symantec Network Filter Driver; C:\Windows\System32\Drivers\NISx64\1008030.006\SYMFW.SYS [2011-09-22 120952]

S3 SYMNDISV;Symantec Network Filter Driver; C:\Windows\System32\Drivers\NISx64\1008030.006\SYMNDISV.SYS [2011-09-22 56952]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]

S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [2009-03-02 89600]

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-07-02 203264]

R2 APNMCP;Ask-updateservice; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-01-11 166352]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-30 864032]

R2 CltMngSvc;Search Protect by Conduit Service; C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe [2014-01-01 2301216]

R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-07-09 124928]

R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2009-07-08 30520]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]

R2 Norton Internet Security;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe [2011-09-22 117648]

R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-01-21 247152]

R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [2009-07-22 240128]

R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]

R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe [2013-10-12 2099000]

R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10 257416]

S3 Com4QLBEx;Com4QLBEx; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]

S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2009-05-22 250616]

S3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-02-09 1255736]

-----------------EOF-----------------

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

• Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

  {4F524A2D-5637-006A-76A7-7A786E7484D7};c
 C:\Program Files (x86)\AskPartnerNetwork;fs
 {5C255C8A-E604-49b4-9D64-90988571CECB};c
 {7C554162-8CB7-45A4-B8F4-8EA1C75885F9};c
 {DE9C389F-3316-41A7-809B-AA305ED9D922};c
 ApnTBMon;s
 CltMngSvc;s
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-006A-76A7-7A786E7484D7}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-006A-76A7-7A786E7484D7}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}];r64
 C:\Program Files (x86)\AOL\AOL Toolbar 5.0;fs
 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
 ""=-;r64
 "ApnTBMon"=-;r64
 C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}:fs
 C:\Program Files (x86)\SearchProtect;fs
 C:\Users\Cannière Kobe\AppData\Roaming\OpenCandy;fs
 emptyfolderscheck;delete 
startupall; 
filesrcm;

• Klik op de knop "Options" en vink nu de onderstaande opties aan.
  
• Do a Quick Scan
  
  
• Auto Clean
  
• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.
  

Alvast bedankt voor de hulp!!!

Zoek.exe v5.0.0.0 Updated 18-Januari-2014

Tool run by CanniŠre Kobe on za 18/01/2014 at 13:36:50,09.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\CANNIR~1\Desktop\zoek.exe [scan all users] [script inserted]

==== System Restore Info ======================

18/01/2014 13:38:17 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\MSXML 4.0 deleted successfully

C:\Program Files\Google deleted successfully

C:\Program Files\Symantec deleted successfully

C:\ProgramData\Babylon deleted successfully

C:\ProgramData\Oracle deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully

HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully

HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully

HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9} deleted successfully

HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9} deleted successfully

HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DE9C389F-3316-41A7-809B-AA305ED9D922} deleted successfully

HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DE9C389F-3316-41A7-809B-AA305ED9D922} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{DE9C389F-3316-41A7-809B-AA305ED9D922} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{DE9C389F-3316-41A7-809B-AA305ED9D922} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{DE9C389F-3316-41A7-809B-AA305ED9D922} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CltMngSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\CltMngSvc deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-006A-76A7-7A786E7484D7}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-006A-76A7-7A786E7484D7}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

""=-

"ApnTBMon"=-

==== Deleting Files \ Folders ======================

C:\Users\Cannière Kobe\AppData\Roaming\OpenCandy not found

C:\Program Files (x86)\AOL\AOL Toolbar 5.0 deleted

C:\Program Files (x86)\SearchProtect deleted

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe" deleted

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted

"C:\Program Files (x86)\AskPartnerNetwork" not deleted

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar" not deleted

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\CANNIR~1\AppData\Local\Temp ====

====== Java Cache =====

2014-01-09 22:39:26 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\CANNIR~1\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\6c34baa0-2791cc72

2014-01-02 15:39:10 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\CANNIR~1\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\6c34baa0-59f981ef

====== C:\Windows\SysWOW64 =====

2014-01-12 10:55:53 D36D9D01A46AF5AA8069F26EE39F921E 25400 ----a-w- C:\Windows\SysWOW64\authuitu.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2014-01-16 23:59:48 F2BF71FCEAB8FB8A691408C478E2FF4C 3156480 ----a-w- C:\Windows\Sysnative\win32k.sys

2014-01-12 10:55:54 EBD004C187D85F33FCFCD1205D6D14BA 29496 ----a-w- C:\Windows\Sysnative\authuitu.dll

2014-01-12 10:55:54 33456F496CDC9095EEFA33C7E42F8789 40248 ----a-w- C:\Windows\Sysnative\TURegOpt.exe

====== C:\Windows\Sysnative\drivers =====

2014-01-16 23:59:49 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys

2014-01-16 23:59:46 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys

2014-01-16 23:59:46 DD253AFC3BC6CBA412342DE60C3647F3 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys

2014-01-16 23:59:46 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys

2014-01-16 23:59:46 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys

2014-01-16 23:59:46 765A92D428A8DB88B960DA5A8D6089DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys

2014-01-16 23:59:46 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys

2014-01-16 23:59:46 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys

====== C:\Windows\Tasks ======

2014-01-13 20:26:06 972ED46A2419D1E0401CC7905C1DDDB5 2764 ----a-w- C:\Windows\Sysnative\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-01-13 20:15:36 -------- d-----w- C:\Program Files\trend micro

======= C:\PROGRA~2 =====

2014-01-12 10:54:42 -------- d-----w- C:\PROGRA~2\AVG PC TuneUp 2014

2014-01-12 10:50:44 -------- d-----w- C:\PROGRA~2\DVDVideoSoft

2014-01-12 10:50:44 -------- d-----w- C:\PROGRA~2\COMMON~1\DVDVideoSoft

======= C: =====

2014-01-12 10:51:15 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\END

====== C:\Users\CANNIR~1\AppData ======

2014-01-12 11:19:27 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\AVG

2014-01-12 10:55:28 -------- d-----w- C:\Users\CANNIR~1\AppData\Roaming\AVG

2014-01-12 10:51:04 -------- d-----w- C:\Users\CANNIR~1\AppData\Local\SearchProtect

2014-01-12 10:50:44 -------- d-----w- C:\Users\CANNIR~1\AppData\Roaming\OpenCandy

2014-01-12 10:50:44 -------- d-----w- C:\Users\CANNIR~1\AppData\Roaming\DVDVideoSoft

2013-12-20 21:00:01 -------- d-----w- C:\Users\CANNIR~1\AppData\Local\Diagnostics

====== C:\Users\CANNIR~1 ======

2014-01-13 20:15:06 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\CANNIR~1\Desktop\RSITx64.exe

2014-01-12 10:55:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014

2014-01-12 10:53:22 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft

2014-01-12 10:52:56 -------- d-----w- C:\ProgramData\AVG

2014-01-12 10:52:28 -------- d-sh--w- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

2014-01-12 10:52:28 -------- d--h--w- C:\ProgramData\Common Files

2014-01-12 10:48:55 8AB80C8549131D19843D35159DBF47EE 90564448 ----a-w- C:\Users\CANNIR~1\Desktop\FreeStudio.exe

====== C: exe-files ==

2014-01-16 23:53:07 E47F642980753B44DF8BCD0951BC655F 3045888 ----a-w- C:\Users\Cannière Kobe\AppData\Local\Lollipop\lollipop_01162353.exe

2014-01-13 20:15:36 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Cannière Kobe.exe

2014-01-12 10:53:20 CCBCA63A46267D9C51D13DD45E39C950 6479328 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe

2014-01-12 10:53:13 3F53B9D4E2B3B0093A34FABAB0C982E8 1466424 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free DVD Video Burner\FreeDVDVideoBurner.exe

2014-01-12 10:53:12 9356E9AB885862A05610FCA46F82AB5A 1556024 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Disc Burner\FreeDiscBurner.exe

2014-01-12 10:53:10 7A4CAB2C45654179EA66302D31BF3096 1905720 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Audio CD Burner\FreeAudioCDBurner.exe

2014-01-12 10:53:05 EEE0670B4FD1C3EAB4A76C58E291C803 1749048 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free 3D Video Maker\Free3DVideoMaker.exe

2014-01-12 10:53:01 C51928C8698425F6A0BB36A7F1BBC900 1236024 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free 3D Photo Maker\Free3DPhotoMaker.exe

2014-01-12 10:52:58 C3FE869068B039836DB9180835A4F8F1 7953976 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Image Convert and Resize\FreeImageConvertAndResize.exe

2014-01-12 10:52:55 CC70D90ECC668C353AF45AE2C83C4241 558136 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Uploader for Facebook\FreeUploaderForFacebookStub.exe

2014-01-12 10:52:55 A8400FF3CD9AB7B08519C1842F092028 1873976 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Uploader for Facebook\FreeUploaderForFacebook.exe

2014-01-12 10:52:55 33EFBE5591C3E987E6AFA833CE3A48BE 1751608 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Screen Video Recorder\FreeScreenVideoRecorder.exe

2014-01-12 10:52:53 4286AE40E4A67C44E35F2F27603C55DC 2864696 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Dailymotion Download\FreeDailymotionDownload.exe

2014-01-12 10:52:52 41213D3C6D0806E22599B34FF2F32FFE 5144632 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe

2014-01-12 10:52:51 A38D498B4BC450FD446D4E0E1D488C4F 1794616 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Uploader\FreeYouTubeUploader.exe

2014-01-12 10:52:46 39A435574303F86F2AB41054A151CC24 83000 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to DVD Converter\ytgroovlc.exe

2014-01-12 10:52:46 16401DDDAA15213825A9F6A8C9C09C87 2870328 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to DVD Converter\FreeYouTubeToDVDConverter.exe

2014-01-12 10:52:44 39A435574303F86F2AB41054A151CC24 83000 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to Mp3 Converter\ytgroovlc.exe

2014-01-12 10:52:44 366815DF3C6D29AB4E254589DE97A007 2866232 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to Mp3 Converter\FreeYouTubeToMP3Converter.exe

2014-01-12 10:52:43 BAD7881A712AABC5C9400CA7D1BAB16F 2866744 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to iPod Converter\FreeYouTubeToiPodConverter.exe

2014-01-12 10:52:43 39A435574303F86F2AB41054A151CC24 83000 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to iPod Converter\ytgroovlc.exe

2014-01-12 10:52:41 B73058CA8F6214CB4257A6A823CB2E4D 2859064 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to iPhone Converter\FreeYouTubeToiPhoneConverter.exe

2014-01-12 10:52:41 39A435574303F86F2AB41054A151CC24 83000 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to iPhone Converter\ytgroovlc.exe

2014-01-12 10:52:40 BB52207A6A53BCB763268FA79E52063D 2865720 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe

2014-01-12 10:52:40 39A435574303F86F2AB41054A151CC24 83000 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\ytgroovlc.exe

2014-01-12 10:52:39 F330AEEF34F027B875352BC48D5BD187 285240 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video Flip and Rotate\ffmpeg.exe

2014-01-12 10:52:39 BC3B9302A10A7D090E6861B2FCAA9681 1588792 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video Flip and Rotate\FreeVideoFlipAndRotate.exe

2014-01-12 10:52:38 E157415BC9361CFD8ED9DE6A5BBFB29A 1667128 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Audio Dub\FreeVideoDub.exe

2014-01-12 10:52:38 0FC4B58106525A5AFB8811DD56E78F61 2098344 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Audio Dub\FreeAudioDub.exe

2014-01-12 10:52:37 D16380663CAE3A0330043EF7D0F67442 1703992 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free DVD Video Converter\FreeDVDVideoConverter.exe

2014-01-12 10:52:36 185123755173979D4D45D76D40D8580C 1944744 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Audio CD to MP3 Converter\FreeAudioCDToMP3Converter.exe

2014-01-12 10:52:35 37F5F7E68A80F5CF8176B37D8F2EBD33 1653304 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video Dub\FreeVideoDub.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free WebM Video Converter\FreeWebMVideoConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to Xbox Converter\FreeVideoToXboxConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to Tablet PC Converter\FreeVideoToTabletPCConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to SonyPSP Converter\FreeVideoToSonyPSPConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to SonyPhones Converter\FreeVideoToSonyPhonesConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to Sony PlayStation Converter\FreeVideoToSonyPlayStationConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to SamsungPhones Converter\FreeVideoToSamsungPhonesConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to NokiaPhones Converter\FreeVideoToNokiaPhonesConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to Nintendo Converter\FreeVideoToNintendoConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to MP3 Converter\FreeVideoToMP3Converter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to MotorolaPhones Converter\FreeVideoToMotorolaPhonesConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to LGPhones Converter\FreeVideoToLGPhonesConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to JPG Converter\FreeVideoToJPGConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to iPod Converter\FreeVideoToiPodConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to iPhone Converter\FreeVideoToiPhoneConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to iPad Converter\FreeVideoToiPadConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to HTCPhones Converter\FreeVideoToHTCPhonesConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to Flash Converter\FreeVideoToFlashConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to DVD Converter\FreeVideoToDVDConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to BlackBerry Converter\FreeVideoToBlackBerryConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to AppleTV Converter\FreeVideoToAppleTVConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free MP4 Video Converter\FreeMP4VideoConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free HTML5 Video Player and Converter\FreeHTML5VideoPlayerAndConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free AVI Video Converter\FreeAVIVideoConverter.exe

2014-01-12 10:52:31 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Audio to Flash Converter\FreeAudioToFlashConverter.exe

2014-01-12 10:52:30 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to Android Converter\FreeVideoToAndroidConverter.exe

2014-01-12 10:52:30 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Audio Converter\FreeAudioConverter.exe

2014-01-12 10:52:30 AC4E374AC2ABBDD8A57541E7380AD8C3 2208824 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free 3GP Video Converter\Free3GPVideoConverter.exe

2014-01-12 10:51:25 42ECBFF4D073D4E9B7F6DBCF53630869 108600 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\facebook_auth.exe

2014-01-12 10:51:23 F664118673CE138C502309C3B8DD6D0A 19396528 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free DVD Video Converter\HandBrakeCLI.exe

2014-01-12 10:51:22 7143EF457E08FBD658B3D39483D7FCA8 538928 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\dvdauthor.exe

2014-01-12 10:51:22 4B96993EAC02FB840AF66040CE2D51E2 403400 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\spumux.exe

2014-01-12 10:51:20 893CE51F522BC34D29F9AE8E36785375 5961496 ----a-w- C:\Users\Cannière Kobe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N8GYMHKB\SPSetup[1].exe

2014-01-12 10:51:17 78963266BDFBF30279B9CDFB7D690A3A 79584 ----a-w- C:\Users\Cannière Kobe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZP1X49F\spstub[1].exe

2014-01-12 10:51:15 FB80D60279748C61BBE6A5D442474480 297016 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Uploader\ffmpeg.exe

2014-01-12 10:51:10 0940B82611C44899FC3473369C19DEAF 122880 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free Video to Flash Converter\ffmpeg\ffmpeg.exe

2014-01-12 10:51:06 FB80D60279748C61BBE6A5D442474480 297016 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\ffmpeg.exe

2014-01-12 10:51:06 BF90E589DBF25F2C41A22086DF6FD07F 496696 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\ContextMenuHelper.exe

2014-01-12 10:51:02 CC220C1D4178B73D48E8C4C82410DE1D 1676856 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PremiumMembershipOffer.exe

2014-01-12 10:51:02 51B87A6D097425319287EA6B7861D1E3 252472 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\dvsservice.exe

2014-01-12 10:51:01 89DB8DD94EE0C42D4147486D0823CD8D 1200184 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe

2014-01-12 10:50:59 D96290AC80C0696023D8A2378BD89EFA 1115264 ----a-w- C:\Users\Cannière Kobe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M93AT9NS\SPIdentifierImpl[1].exe

2014-01-12 10:50:48 F968A44E25F85F2D09AE40B3456DE511 610360 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSUpdate.exe

2014-01-12 10:50:47 A8EE3D926C79A59E194CEFE2AB877F1B 354816 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe

2014-01-12 10:50:45 200627B4278EF5FF2F66BA8C2CBC6E5E 703544 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PrerequisiteCheck.exe

2014-01-12 10:50:44 FC2DECBC2FA5DF9A4A9BB7156DD42ABA 498744 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\SettingsHelper.exe

2014-01-12 10:50:44 EB96595708A6169F85C3888AF872461C 1176224 ----a-w- C:\Program Files (x86)\DVDVideoSoft\unins000.exe

2014-01-12 10:50:44 A8F96CCE44982F46DC9CC441E65F423F 308280 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\insthpr.exe

2014-01-12 10:50:44 597384F07E967419225DB33F5852B8EB 248376 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\Assistant64.exe

2014-01-12 10:50:44 257B61FEA91E8DEEB315A1723D340421 992824 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\BrowserHelpersInstaller.exe

=== C: other files ==

2014-01-16 23:59:49 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\System32\drivers\netio.sys

2014-01-16 23:59:48 F2BF71FCEAB8FB8A691408C478E2FF4C 3156480 ----a-w- C:\Windows\System32\win32k.sys

2014-01-16 23:59:46 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys

2014-01-16 23:59:46 DD253AFC3BC6CBA412342DE60C3647F3 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2014-01-16 23:59:46 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2014-01-16 23:59:46 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2014-01-16 23:59:46 765A92D428A8DB88B960DA5A8D6089DC 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2014-01-16 23:59:46 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2014-01-16 23:59:46 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys

2014-01-16 23:53:08 7C811EEF4BDCB2EE65FFB600C590319B 344 ----a-w- C:\Users\Cannière Kobe\AppData\Local\Lollipop\lollipop_01162353.bat

2014-01-12 10:50:52 82C780E37F0DFD7CC837F27A4199FD9B 1552138 ----a-w- C:\Users\Cannière Kobe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N8GYMHKB\GenericSS[1].zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"com.apple.dav.bookmarks.daemon"="C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"

"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"

"uTorrent"="C:\Users\CanniŠre Kobe\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"

"lollipop_01162353"="c:\users\canniŠre kobe\appdata\local\lollipop\lollipop_01162353.exe lollipop_01162353"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"HPCam_Menu"="c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe c:\Program Files (x86)\Hewlett-Packard\Media\Webcam UpdateWithCreateOnce Software\Hewlett-Packard\Media\Webcam"

"NortonOnlineBackupReminder"="C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe UNATTENDED"

"UpdatePRCShortCut"="C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Hewlett-Packard\Recovery UpdateWithCreateOnce Software\CyberLink\PowerRecover"

"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"com.apple.dav.bookmarks.daemon"="C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"

"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"

"uTorrent"="C:\Users\CanniŠre Kobe\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"

"lollipop_01162353"="c:\users\canniŠre kobe\appdata\local\lollipop\lollipop_01162353.exe lollipop_01162353"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC32Loader.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background"

"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe"

"Greenshot"="C:\Program Files\Greenshot\Greenshot.exe"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC64Loader.dll"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe Reader Speed Launcher"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="APSDaemon"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="DAEMON Tools Lite"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Easybits Recovery]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Easybits Recovery"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\EasyBits For Kids\\ezRecover.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HPADVISOR]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HPADVISOR"

"hkey"="HKCU"

"command"="C:\\Program Files (x86)\\Hewlett-Packard\\HP Advisor\\HPAdvisor.exe view=DOCKVIEW"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="iTunesHelper"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LightScribe Control Panel]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LightScribe Control Panel"

"hkey"="HKCU"

"command"="C:\\Program Files (x86)\\Common Files\\LightScribe\\LightScribeControlPanel.exe -hidden"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\M-Audio Taskbar Icon]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="M-Audio Taskbar Icon"

"hkey"="HKLM"

"command"="C:\\Windows\\system32\\MAFWTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QlbCtrl.exe]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="QlbCtrl.exe"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Hewlett-Packard\\HP Quick Launch Buttons\\QlbCtrl.exe /Start"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="uTorrent"

"hkey"="HKCU"

"command"="\"C:\\Users\\CanniŠre Kobe\\AppData\\Roaming\\uTorrent\\uTorrent.exe\" /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WirelessAssistant]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="WirelessAssistant"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Hewlett-Packard\\HP Wireless Assistant\\HPWAMain.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]

"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Bluetooth.lnk"

"backup"="C:\\Windows\\pss\\Bluetooth.lnk.CommonStartup"

"backupExtension"=".CommonStartup"

"command"="C:\\PROGRA~1\\WIDCOMM\\BLUETO~1\\BTTray.exe "

"item"="Bluetooth"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [10/12/2013 20:06]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\0" [c:\program files\internet explorer\iexplore.exe]

"C:\Windows\SysNative\tasks\4799" [wscript.exe C:\Users\CANNIR~1\AppData\Local\Temp\launchie.vbs //B]

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\CapSchedInst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe]

"C:\Windows\SysNative\tasks\CapSvcInst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe]

"C:\Windows\SysNative\tasks\CapUninst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe]

"C:\Windows\SysNative\tasks\CLMLSvc" [c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe]

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\SysNative\tasks\DVDAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe]

"C:\Windows\SysNative\tasks\RecoveryCDWin7" ["C:\Program Files (x86)\Hewlett-Packard\HP TCS\RemEngine.exe"]

"C:\Windows\SysNative\tasks\RMCreator" [C:\Program Files (x86)\Hewlett-Packard\Recovery\Reminder.exe]

"C:\Windows\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files (x86)\AVG PC TuneUp 2014\OneClick.exe]

"C:\Windows\SysNative\tasks\TVAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe]

"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask" [C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn" [12/02/2013 22:55]

==== C:\zoek_backup content ======================

C:\zoek_backup (files=126 folders=45 45757702 bytes)

==== After Reboot ======================

==== Deleting Files / Folders ======================

"C:\Program Files (x86)\AskPartnerNetwork" not found

==== EOF on za 18/01/2014 at 13:47:46,88 ======================

Dubbelklik op Zoek.exe om de tool te starten.

• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

  C:\Users\Cannière Kobe\AppData\Local\Lollipop;fs
 [HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Run];r64
 "lollipop_01162353"=-;r64
 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r64
 "lollipop_01162353"=-;r64
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
 C:\Program Files (x86)\AskPartnerNetwork;fs
 C:\Windows\SysNative\tasks\0;fs
 C:\Windows\SysNative\tasks\4799;fs

• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.
  

Zoek.exe v5.0.0.0 Updated 22-Januari-2014

Tool run by CanniŠre Kobe on do 23/01/2014 at 19:36:59,78.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\CANNIR~1\Desktop\zoek.exe [scan all users] [script inserted]

==== Older Logs ======================

C:\zoek-results2014-01-18-124746.log 34118 bytes

C:\zoek-results2014-01-23-183624.log 1230 bytes

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_USERS\S-1-5-21-1182473605-3401692660-351907460-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"lollipop_01162353"=-

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"lollipop_01162353"=-

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\Users\Cannière Kobe\AppData\Local\Lollipop not found

C:\Program Files (x86)\AskPartnerNetwork not found

C:\Windows\SysNative\tasks\0 not found

C:\Windows\SysNative\tasks\4799 not found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=128 folders=45 45764412 bytes)

==== EOF on do 23/01/2014 at 19:38:47,17 ======================

Hoe staat het nu met de pop-ups en andere problemen ?

Niet zo goed eigenlijk... Zijn er nog... :-S

- - - Updated - - -

Heb eigenlijk ook niks staan van spyware-toestanden en zo... Zijn er programma's die ik misschien best eens installeer??

Download AdwCleaner by Xplode naar het bureaublad.

AdwCleaner uitvoeren

• Sluit alle openstaande vensters.
  
• Dubbelklik op AdwCleaner.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Klik vervolgens op de knop Scan.
  
• Wanneer de scan gereed is Klikt u vervolgens op de knop Clean.
  
• Als dit gereed is wordt er gevraagd om de computer opnieuw op te starten, klik hier op OK.
  
• Nadat de computer opnieuw is opgestart wordt het logbestand automatisch geopend.
  
• Plaats dit logbestand in het volgende bericht.