Ga naar inhoud

brigitttee_

Lid
  • Items

    10
  • Registratiedatum

  • Laatst bezocht

brigitttee_'s prestaties

  1. Nee, totaal niet meer. Hij is een stuk sneller geworden en heb geen last meer. Moet ik de virusscanners houden? Of kunnen die gedelete worden?
  2. Emsisoft Anti-Malware - Versie 9.0 Laatste Update: 29-10-2014 15:28:38 Gebruikersaccount: BRIGITTENETBOOK\Brigitte Scaninstellingen: Scanmodus: Diepe scan Objecten: Rootkits, Geheugen, Sporen, C:\ Detecteer PUPs: Aan Scan archieven: Aan ADS Scan: Aan Bestandsextensiefilter: Uit Geavanceerde cache: Aan Directe schijftoegang: Uit Scan gestart: 29-10-2014 15:30:15 Value: HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR Ontdekt: Setting.DisableTaskMgr (A) Value: HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS Ontdekt: Setting.DisableRegistryTools (A) Key: HKEY_USERS\.DEFAULT\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F} Ontdekt: Application.Win32.InstallAd (A) Key: HKEY_USERS\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F} Ontdekt: Application.Win32.InstallAd (A) C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\c047df5e0fda4055b5db.dll.vir Ontdekt: Adware.BrowseFox.K ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondrea.BrowserAdapter.exe.vir Ontdekt: Gen:Variant.Adware.SwiftBrowse.1 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondrea.BrowserFilter.Helper.dll.old.66f9b3a3-b083-4d45-b020-c7673ce6414f.vir Ontdekt: Trojan.Generic.11704821 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondrea.BrowserFilter.Helper.dll.vir Ontdekt: Trojan.Generic.11704821 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondrea.PurBrowse.exe.vir Ontdekt: Adware.SwiftBrowse.BS ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondreaBrowserFilter.exe.vir Ontdekt: Adware.Generic.1016774 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\plugins\melondrea.BrowserFilterG.dll.vir Ontdekt: Adware.Generic.1006609 ( C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE\inethnfd-setup[1].exe Ontdekt: Trojan.Generic.11905133 ( C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE\inethnfd-setup[2].exe Ontdekt: Trojan.Generic.11921462 ( C:\zoek_backup\C_Program Files_SearchProtect\Main\bin\SPTool.dll Ontdekt: Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SearchProtect\SearchProtect\bin\cltmng.exe Ontdekt: Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SearchProtect\SearchProtect\bin\SPTool64.exe Ontdekt: Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SearchProtect\SearchProtect\bin\SPVC32.dll Ontdekt: Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SearchProtect\SearchProtect\bin\SPVC64Loader.dll Ontdekt: Application.SearchProtect.T ( C:\zoek_backup\C_Program Files_SearchProtect\UI\bin\cltmngui.exe Ontdekt: Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SupTab\RSHP.exe Ontdekt: Adware.SearchProtect.L ( C:\zoek_backup\C_Program Files_SupTab\SearchProtect64.dll Ontdekt: Application.Generic.842025 ( C:\zoek_backup\C_Program Files_SupTab\WindowsSupportDll32.dll Ontdekt: Adware.Agent.OKW ( C:\zoek_backup\C_ProgramData_ApPtoU\ux.dll Ontdekt: Application.BrowserExt (A) C:\zoek_backup\C_ProgramData_ApPtoU\ux.exe Ontdekt: Gen:Variant.Adware.Strictor.61989 ( C:\zoek_backup\C_PROGRA~2_ApPtoU\ux.dll Ontdekt: Application.BrowserExt (A) C:\zoek_backup\C_PROGRA~2_ApPtoU\ux.exe Ontdekt: Gen:Variant.Adware.Strictor.61989 ( C:\zoek_backup\C_PROGRA~2_WindowsMangerProtect\ProtectWindowsManager.exe Ontdekt: Adware.Agent.ODR ( C:\zoek_backup\C_Users_Brigitte_AppData_Local_22439\a7270.exe Ontdekt: Trojan.GenericKD.1877868 ( C:\zoek_backup\C_Users_Brigitte_AppData_Local_3188\Updater.exe Ontdekt: Adware.Generic.1027983 ( C:\zoek_backup\C_Users_Brigitte_AppData_Local_Mobogenie\Version\OldVersion\Mobogenie2.2.0.zip -> Mobogenie/nengine.dll Ontdekt: Gen:Variant.Adware.NewNextMe.1 ( C:\zoek_backup\C_Users_Brigitte_AppData_Local_SwvUpdater\Updater.exe Ontdekt: Gen:Variant.Application.Bundler.Amonetize.14 ( C:\zoek_backup\C_Users_Brigitte_AppData_Roaming_DigitalSites\UpdateProc\UpdateTask.exe Ontdekt: Adware.DealPly.W ( C:\zoek_backup\C_Windows_System32_drivers_nethfdrv.sys.vir Ontdekt: Adware.SwiftBrowse.AJ ( C:\zoek_backup\C_Windows_System32_drivers_{c047df5e-0fda-4055-b5db-a96a8a34a094}Gw.sys.vir Ontdekt: Trojan.Generic.11744157 ( C:\zoek_backup\C_Windows_system32_hfnapi.dll.vir Ontdekt: Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_system32_hfpapi.dll.vir Ontdekt: Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_system32_installd.exe.vir Ontdekt: Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_system32_nethtsrv.exe.vir Ontdekt: Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_system32_netupdsrv.exe.vir Ontdekt: Gen:Variant.Adware.Netfilter.2 ( Gescand: 195527 Gevonden: 39 Scan geëindigd: 29-10-2014 16:16:25 Scantijd: 0:46:10 C:\zoek_backup\C_Windows_system32_netupdsrv.exe.vir In quarantaine geplaatst Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_system32_nethtsrv.exe.vir In quarantaine geplaatst Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_system32_installd.exe.vir In quarantaine geplaatst Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_system32_hfpapi.dll.vir In quarantaine geplaatst Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_system32_hfnapi.dll.vir In quarantaine geplaatst Gen:Variant.Adware.Netfilter.2 ( C:\zoek_backup\C_Windows_System32_drivers_{c047df5e-0fda-4055-b5db-a96a8a34a094}Gw.sys.vir In quarantaine geplaatst Trojan.Generic.11744157 ( C:\zoek_backup\C_Windows_System32_drivers_nethfdrv.sys.vir In quarantaine geplaatst Adware.SwiftBrowse.AJ ( C:\zoek_backup\C_Users_Brigitte_AppData_Roaming_DigitalSites\UpdateProc\UpdateTask.exe In quarantaine geplaatst Adware.DealPly.W ( C:\zoek_backup\C_Users_Brigitte_AppData_Local_SwvUpdater\Updater.exe In quarantaine geplaatst Gen:Variant.Application.Bundler.Amonetize.14 ( C:\zoek_backup\C_Users_Brigitte_AppData_Local_Mobogenie\Version\OldVersion\Mobogenie2.2.0.zip In quarantaine geplaatst Gen:Variant.Adware.NewNextMe.1 ( C:\zoek_backup\C_Users_Brigitte_AppData_Local_3188\Updater.exe In quarantaine geplaatst Adware.Generic.1027983 ( C:\zoek_backup\C_Users_Brigitte_AppData_Local_22439\a7270.exe In quarantaine geplaatst Trojan.GenericKD.1877868 ( C:\zoek_backup\C_PROGRA~2_WindowsMangerProtect\ProtectWindowsManager.exe In quarantaine geplaatst Adware.Agent.ODR ( C:\zoek_backup\C_PROGRA~2_ApPtoU\ux.exe In quarantaine geplaatst Gen:Variant.Adware.Strictor.61989 ( C:\zoek_backup\C_PROGRA~2_ApPtoU\ux.dll In quarantaine geplaatst Application.BrowserExt (A) C:\zoek_backup\C_ProgramData_ApPtoU\ux.exe In quarantaine geplaatst Gen:Variant.Adware.Strictor.61989 ( C:\zoek_backup\C_ProgramData_ApPtoU\ux.dll In quarantaine geplaatst Application.BrowserExt (A) C:\zoek_backup\C_Program Files_SupTab\WindowsSupportDll32.dll In quarantaine geplaatst Adware.Agent.OKW ( C:\zoek_backup\C_Program Files_SupTab\SearchProtect64.dll In quarantaine geplaatst Application.Generic.842025 ( C:\zoek_backup\C_Program Files_SupTab\RSHP.exe In quarantaine geplaatst Adware.SearchProtect.L ( C:\zoek_backup\C_Program Files_SearchProtect\UI\bin\cltmngui.exe In quarantaine geplaatst Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SearchProtect\SearchProtect\bin\SPVC64Loader.dll In quarantaine geplaatst Application.SearchProtect.T ( C:\zoek_backup\C_Program Files_SearchProtect\SearchProtect\bin\SPVC32.dll In quarantaine geplaatst Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SearchProtect\SearchProtect\bin\SPTool64.exe In quarantaine geplaatst Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SearchProtect\SearchProtect\bin\cltmng.exe In quarantaine geplaatst Application.SearchProtect.P ( C:\zoek_backup\C_Program Files_SearchProtect\Main\bin\SPTool.dll In quarantaine geplaatst Application.SearchProtect.P ( C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE\inethnfd-setup[2].exe In quarantaine geplaatst Trojan.Generic.11921462 ( C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE\inethnfd-setup[1].exe In quarantaine geplaatst Trojan.Generic.11905133 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\plugins\melondrea.BrowserFilterG.dll.vir In quarantaine geplaatst Adware.Generic.1006609 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondreaBrowserFilter.exe.vir In quarantaine geplaatst Adware.Generic.1016774 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondrea.PurBrowse.exe.vir In quarantaine geplaatst Adware.SwiftBrowse.BS ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondrea.BrowserFilter.Helper.dll.vir In quarantaine geplaatst Trojan.Generic.11704821 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondrea.BrowserFilter.Helper.dll.old.66f9b3a3-b083-4d45-b020-c7673ce6414f.vir In quarantaine geplaatst Trojan.Generic.11704821 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\melondrea.BrowserAdapter.exe.vir In quarantaine geplaatst Gen:Variant.Adware.SwiftBrowse.1 ( C:\AdwCleaner\Quarantine\C\Program Files\melondrea\bin\c047df5e0fda4055b5db.dll.vir In quarantaine geplaatst Adware.BrowseFox.K ( Key: HKEY_USERS\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F} In quarantaine geplaatst Application.Win32.InstallAd (A) Value: HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS In quarantaine geplaatst Setting.DisableRegistryTools (A) Value: HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR In quarantaine geplaatst Setting.DisableTaskMgr (A) In quarantaine geplaatst 38
  3. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.3.3 (10.21.2014:1) OS: Windows 8.1 x86 Ran by Brigitte on di 28-10-2014 at 22:03:03,27 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{3257B242-AE6D-49A0-B97E-63370CE7F143} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} ~~~ Files Successfully deleted: [File] C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3360711805-4086920324-1158879377-1001 ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on di 28-10-2014 at 22:06:26,31 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  4. Okee, ik bedoel het niet ongeduldig. Ben heel erg blij met uw hulp. Ja, ik kan er verbinding mee maken nu! Heel erg bedankt! Weet u wat ik moet doen om álle rotzooi eraf te krijgen?
  5. Hieronder de log. Duurt het nog lang? # AdwCleaner v4.002 - Rapport aangemaakt 27/10/2014 op 20:46:38 # DB v2014-10-26.6 # Laatste Update 27/10/2014 door Xplode # Besturingssysteem : Windows 8.1 (32 bits) # Gebruikersnaam : Brigitte - BRIGITTENETBOOK # Gestart vanuit : C:\Users\Brigitte\Desktop\adwcleaner_4.002.exe # Optie : Verwijderen ***** [ Services ] ***** Service Verwijderd : SPPD Service Verwijderd : {c047df5e-0fda-4055-b5db-a96a8a34a094}Gw [#] Service Verwijderd : {c047df5e-0fda-4055-b5db-a96a8a34a094}t [#] Service Verwijderd : {c047df5e-0fda-4055-b5db-a96a8a34a094}w ***** [ Bestanden / Mappen ] ***** Map Verwijderd : C:\Program Files\Easy Speed Check Map Verwijderd : C:\Program Files\melondrea Bestand Verwijderd : C:\Users\Brigitte\AppData\Roaming\LiveSupport.exe_log.txt Bestand Verwijderd : C:\Users\Brigitte\AppData\Roaming\regsvr32.exe_log.txt ***** [ Taken ] ***** Taak Verwijderd : Advanced System Protector_startup Taak Verwijderd : Optimizer Pro Schedule Taak Verwijderd : Right Backup_startup Taak Verwijderd : Yahoo! Search ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\conduit.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\Superfish Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escort.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\esrv.EXE Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\secman.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc Sleutel Verwijderd : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc.1 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore Sleutel Verwijderd : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore.1 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd Sleutel Verwijderd : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd.1 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr Sleutel Verwijderd : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr.1 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Updater.AmiUpd Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd Sleutel Verwijderd : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect Sleutel Verwijderd : HKCU\Software\Classes\keepmysearch Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\melondrea_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\melondrea_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\updatemelondrea_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\updatemelondrea_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\utilmelondrea_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\utilmelondrea_RASMANCS Sleutel Verwijderd : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update melondrea Sleutel Verwijderd : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util melondrea Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{3004627E-F8E9-4E8B-909D-316753CBA923} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{4ED063C9-4A0B-4B44-A9DC-23AFF424A0D3} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{C358B3D0-B911-41E3-A276-E7D43A6BA56D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{EBFCF40E-A87B-463F-A782-55BDD4160B5E} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{0400EBCA-042C-4000-AA89-9713FBEDB671} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{0BD19251-4B4B-4B94-AB16-617106245BB7} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{3281114F-BCAB-45E3-80D9-A6CD64D4E636} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{44533FCB-F9FB-436A-8B6B-CF637B2D465A} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{44B29DDD-CF7A-454A-A275-A322A398D93F} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{AA0F50A8-2618-4AE4-A779-9F7378555A8F} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{B2DB115C-8278-4947-9A07-57B53D1C4215} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{B97FC455-DB33-431D-84DB-6F1514110BD5} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{E72E9312-0367-4216-BFC7-21485FA8390B} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{F6CCB6C9-127E-44AE-8552-B94356F39FFE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{FFD25630-2734-4AE9-88E6-21BF6525F3FE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{FBC322D5-407E-4854-8C0B-555B951FD8E3} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{16F059CB-3D3F-4ECC-B426-BAFA47233676} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3004627E-F8E9-4E8B-909D-316753CBA923} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3004627E-F8E9-4E8B-909D-316753CBA923} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{219046AE-358F-4CF1-B1FD-2B4DE83642A8} Sleutel Verwijderd : HKCU\Software\dsiteproducts Sleutel Verwijderd : HKCU\Software\InstallCore Sleutel Verwijderd : HKCU\Software\LiveSupport Sleutel Verwijderd : HKCU\Software\Myfree Codec Sleutel Verwijderd : HKCU\Software\mysearchdial Sleutel Verwijderd : HKCU\Software\Optimizer Pro Sleutel Verwijderd : HKCU\Software\Softonic Sleutel Verwijderd : HKCU\Software\SupHpUISoft Sleutel Verwijderd : HKCU\Software\systweak Sleutel Verwijderd : HKCU\Software\Wajam Sleutel Verwijderd : HKCU\Software\melondrea Sleutel Verwijderd : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Sleutel Verwijderd : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F} Sleutel Verwijderd : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Sleutel Verwijderd : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} Sleutel Verwijderd : HKLM\SOFTWARE\InstallCore Sleutel Verwijderd : HKLM\SOFTWARE\istartsurfSoftware Sleutel Verwijderd : HKLM\SOFTWARE\MediaBuzzV1 Sleutel Verwijderd : HKLM\SOFTWARE\MediaViewV1 Sleutel Verwijderd : HKLM\SOFTWARE\MediaWatchV1 Sleutel Verwijderd : HKLM\SOFTWARE\Myfree Codec Sleutel Verwijderd : HKLM\SOFTWARE\SearchProtect Sleutel Verwijderd : HKLM\SOFTWARE\SupDp Sleutel Verwijderd : HKLM\SOFTWARE\SupTab Sleutel Verwijderd : HKLM\SOFTWARE\supWindowsMangerProtect Sleutel Verwijderd : HKLM\SOFTWARE\supWPM Sleutel Verwijderd : HKLM\SOFTWARE\systweak Sleutel Verwijderd : HKLM\SOFTWARE\TrustMediaViewerV1 Sleutel Verwijderd : HKLM\SOFTWARE\Wajam Sleutel Verwijderd : HKLM\SOFTWARE\melondrea Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Digital Sites Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Zip Opener Packages Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ac225167-00fc-452d-94c5-bb93600e7d9a} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\istartsurf uninstall Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\openit open it! Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\melondrea Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17344 -\\ Google Chrome v38.0.2125.111 ************************* AdwCleaner[R0].txt - [11419 octets] - [27/10/2014 20:44:11] AdwCleaner[s0].txt - [11103 octets] - [27/10/2014 20:46:38] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [11164 octets] ##########
  6. Zoek.exe v5.0.0.0 Updated 26-10-2014 Tool run by Brigitte on ma 27-10-2014 at 19:01:04,60. Microsoft Windows 8.1 6.3.9600 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Brigitte\Downloads\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-10-27-144225.log 60781 bytes ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update service deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "mobilegeni daemon"=- ==== Deleting Files \ Folders ====================== C:\Program Files\Mobogenie not found C:\Program Files\RichMediaViewV1 not found C:\Program Files\Popcorn Time deleted ==== Reset Google Chrome ====================== C:\Users\Brigitte\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Brigitte\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=3859 folders=379 817078899 bytes) ==== EOF on ma 27-10-2014 at 19:02:50,31 ======================
  7. oh, ik zie net dat die nu pas klaar is. M'n computer is opnieuw opgestart en ik krijg deze log: Zoek.exe v5.0.0.0 Updated 26-10-2014 Tool run by Brigitte on ma 27-10-2014 at 15:01:09,66. Microsoft Windows 8.1 6.3.9600 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Brigitte\Downloads\zoek.exe [scan all users] [Checkboxes used] ==== System Restore Info ====================== 27-10-2014 15:03:27 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Windows\system32\wininit.exe C:\Windows\system32\lsass.exe C:\Windows\System32\WUDFHost.exe C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe C:\Windows\system32\WLANExt.exe C:\Windows\system32\conhost.exe C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe C:\ProgramData\IePluginServices\PluginService.exe C:\Windows\System32\spoolsv.exe C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe C:\Windows\system32\DptfParticipantProcessorService.exe C:\Windows\system32\DptfPolicyCriticalService.exe C:\Windows\system32\dashost.exe C:\Windows\system32\DptfPolicyLpmService.exe C:\Windows\system32\nethtsrv.exe C:\Windows\system32\netupdsrv.exe C:\Program Files\Popcorn Time\Updater.exe C:\Program Files\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe C:\Windows\system32\taskeng.exe C:\Program Files\Google\Update\GoogleUpdate.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\DllHost.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\WinLogon.exe C:\Windows\System32\dwm.exe C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe C:\Windows\system32\taskhostex.exe C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe C:\Windows\Explorer.EXE C:\Program Files\SupTab\HpUI.exe C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exe C:\Program Files\SupTab\Loader32.exe C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe C:\Windows\System32\skydrive.exe C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe C:\Program Files\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\system32\wwahost.exe C:\Windows\System32\SettingSyncHost.exe C:\Windows\System32\igfxtray.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\System32\DptfPolicyLpmServiceHelper.exe C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe C:\Program Files\Mobogenie\DaemonProcess.exe C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe C:\Program Files\Wajam\Wajam Internet Enhancer\WajamInternetEnhancer.exe C:\Program Files\ASUS\ASUS Live Update\LiveUpdate.exe C:\Users\Brigitte\Downloads\zoek.exe C:\Windows\system32\conhost.exe C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSPanel.exe C:\Windows\system32\conhost.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalServicePeerNet ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wajam Internet Enhancer Service deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ServiceUpdater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetHttpService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\nethfdrv deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IePluginServices deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" ==== Deleting Files \ Folders ====================== C:\awhD955.tmp not found C:\ProgramData\ApPtoU deleted C:\Program Files\Mysearchdial deleted C:\Users\Brigitte\AppData\Roaming\Mysearchdial deleted C:\Users\Brigitte\AppData\LocalLow\{3FB11EAC-F9E0-1C9B-66F4-40E4C0F420B9} deleted C:\PROGRA~2\3c53cde630ae93b5 deleted C:\Users\Brigitte\AppData\Local\22439 deleted C:\Users\Brigitte\AppData\Local\3188 deleted C:\Users\Brigitte\AppData\Local\SwvUpdater deleted C:\Users\Brigitte\.android deleted C:\Program Files\Probit Software deleted C:\Program Files\Right Backup deleted C:\Program Files\Common Files\Config\uninstinethnfd.exe deleted C:\Program Files\LiveSupport deleted C:\Program Files\Maxiget deleted C:\Program Files\SearchProtect deleted C:\Program Files\Optimizer Pro deleted C:\Program Files\OpenIt deleted C:\Program Files\MyFree Codec deleted C:\Program Files\Wajam deleted C:\Program Files\Common Files\Config deleted C:\extensions.ini deleted C:\awh118B.tmp deleted C:\awh13CE.tmp deleted C:\awh142B.tmp deleted C:\awh1719.tmp deleted C:\awh1823.tmp deleted C:\awh1B21.tmp deleted C:\awh1B7E.tmp deleted C:\awh1C49.tmp deleted C:\awh1F28.tmp deleted C:\awh20AE.tmp deleted C:\awh2811.tmp deleted C:\awh2EB8.tmp deleted C:\awh5558.tmp deleted C:\awh608.tmp deleted C:\awh641.tmp deleted C:\awh6848.tmp deleted C:\awh6D6C.tmp deleted C:\awh70EA.tmp deleted C:\awh70F8.tmp deleted C:\awh7989.tmp deleted C:\awh7A8.tmp deleted C:\awh7CC4.tmp deleted C:\awh8148.tmp deleted C:\awh98B0.tmp deleted C:\awh9A10.tmp deleted C:\awhBAF.tmp deleted C:\awhCE20.tmp deleted C:\awhD65.tmp deleted C:\awhDB78.tmp deleted C:\awhDE08.tmp deleted C:\awhDEB4.tmp deleted C:\awhDED3.tmp deleted C:\awhDF40.tmp deleted C:\awhDFDD.tmp deleted C:\awhE4DE.tmp deleted C:\awhE607.tmp deleted C:\awhE616.tmp deleted C:\awhE74F.tmp deleted C:\awhE78D.tmp deleted C:\awhE9A1.tmp deleted C:\awhF086.tmp deleted C:\awhF21D.tmp deleted C:\awhF25B.tmp deleted C:\awhF6A1.tmp deleted C:\awhFAC7.tmp deleted C:\awhFC1F.tmp deleted C:\awhFD58.tmp deleted C:\rbtemp deleted C:\Users\Brigitte\AppData\Roaming\Probit Software deleted C:\Users\Brigitte\AppData\Roaming\istartsurf deleted C:\Users\Brigitte\AppData\Roaming\newnext.me deleted C:\Users\Brigitte\AppData\Roaming\DigitalSites deleted C:\Users\Brigitte\AppData\Roaming\0D0S1L2Z1P1B0T1P1B2Z deleted C:\Users\Brigitte\AppData\Roaming\systweak deleted C:\Users\Brigitte\AppData\Roaming\Optimizer Pro deleted C:\Windows\system32\config\systemprofile\AppData\Roaming\Systweak deleted C:\PROGRA~2\Systweak deleted C:\PROGRA~2\SetStretch.VBS deleted C:\PROGRA~2\IePluginServices deleted C:\PROGRA~2\WindowsMangerProtect deleted C:\Users\Brigitte\AppData\Local\Maxiget deleted C:\Users\Brigitte\AppData\Local\MaxiGet Download Manager deleted C:\Users\Brigitte\AppData\Local\SearchProtect deleted C:\Users\Brigitte\AppData\Local\Pay-By-Ads deleted C:\Users\Brigitte\AppData\Local\Mobogenie deleted C:\Users\Brigitte\AppData\Local\cache deleted C:\Windows\system32\config\systemprofile\AppData\Local\Maxiget deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Right Backup deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2 deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open It! deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector deleted C:\Windows\System32\Tasks\MySearchDial deleted C:\Windows\Tasks\MySearchDial.job deleted C:\Windows\tasks\AmiUpdXp.job deleted C:\Windows\system32\tasks\AmiUpdXp deleted C:\Windows\system32\Tasks\Advanced System Protector_startup deleted C:\Windows\system32\Tasks\Yahoo! Search deleted C:\Windows\system32\tasks\Digital Sites deleted C:\Windows\tasks\Digital Sites.job deleted C:\Windows\system32\tasks\Optimizer Pro Schedule deleted C:\Windows\system32\tasks\Right Backup_startup deleted C:\Windows\tasks\MaxigetUpdaterTaskMachineCore.job deleted C:\Windows\tasks\MaxigetUpdaterTaskMachineUA.job deleted C:\end deleted C:\Windows\System32\drivers\nethfdrv.sys deleted C:\Windows\System32\drivers\{c047df5e-0fda-4055-b5db-a96a8a34a094}Gw.sys deleted C:\Windows\System32\drivers\{c047df5e-0fda-4055-b5db-a96a8a34a094}t.sys deleted C:\Windows\System32\drivers\{c047df5e-0fda-4055-b5db-a96a8a34a094}w.sys deleted C:\Windows\system32\sasnative32.exe deleted C:\Windows\system32\roboot.exe deleted C:\Windows\system32\GroupPolicy\Machine deleted C:\Windows\system32\GroupPolicy\User deleted C:\Windows\system32\GroupPolicy\gpt.ini deleted C:\Windows\system32\hfpapi.dll deleted C:\Windows\system32\installd.exe deleted C:\Windows\system32\netupdsrv.exe deleted C:\Windows\system32\nethtsrv.exe deleted C:\Windows\system32\hfnapi.dll deleted C:\Users\Brigitte\Documents\Optimizer Pro deleted C:\Users\Brigitte\Documents\Mobogenie deleted "C:\Users\Brigitte\daemonprocess.txt" deleted "C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe" deleted "C:\Program Files\Advanced System Protector\aspsys.dll" deleted "C:\Program Files\Advanced System Protector\Microsoft.Win32.TaskScheduler.DLL" deleted "C:\Program Files\Advanced System Protector\System.Data.SQLite.dll" deleted "C:\Program Files\Advanced System Protector\unrar.dll" deleted "C:\Program Files\Advanced System Protector\Xceed.Compression.dll" deleted "C:\Program Files\Advanced System Protector\Xceed.FileSystem.dll" deleted "C:\Program Files\Advanced System Protector\Xceed.Zip.dll" deleted "C:\Program Files\Mobogenie\DaemonProcess.exe" deleted "C:\Program Files\Mobogenie\DCR.dll" deleted "C:\Program Files\Mobogenie\Device.dll" deleted "C:\Program Files\Mobogenie\libeay32.dll" deleted "C:\Program Files\Mobogenie\msvcp100.dll" deleted "C:\Program Files\Mobogenie\msvcr100.dll" deleted "C:\Program Files\Mobogenie\QtCore4.dll" deleted "C:\Program Files\Mobogenie\QtGui4.dll" deleted "C:\Program Files\Mobogenie\QtNetwork4.dll" deleted "C:\Program Files\Mobogenie\QtSql4.dll" deleted "C:\Program Files\Mobogenie\QtWebKit4.dll" deleted "C:\Program Files\Mobogenie\ssleay32.dll" deleted "C:\Program Files\Windows Portable Devices\sqmapi.dll" deleted "C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe" deleted "C:\Program Files\Advanced System Protector\aspsys.dll" deleted "C:\Program Files\Advanced System Protector\Microsoft.Win32.TaskScheduler.DLL" deleted "C:\Program Files\Advanced System Protector\System.Data.SQLite.dll" deleted "C:\Program Files\Advanced System Protector\unrar.dll" deleted "C:\Program Files\Advanced System Protector\Xceed.Compression.dll" deleted "C:\Program Files\Advanced System Protector\Xceed.FileSystem.dll" deleted "C:\Program Files\Advanced System Protector\Xceed.Zip.dll" deleted "C:\Program Files\SupTab\Loader32.exe" deleted "C:\Program Files\SupTab\WindowsSupportDll32.dll" deleted "C:\Program Files\Advanced System Protector" not deleted "C:\Program Files\Mobogenie" deleted "C:\Program Files\Windows Portable Devices" not deleted "C:\Program Files\Advanced System Protector" not deleted "C:\Program Files\SupTab" not deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 1934 MB CPU Info: Intel® Atom CPU Z3740 @ 1.33GHz CPU Speed: 1372,1 MHz Sound Card: Speakers (Intel SST Audio Devic | Display Adapters: Intel® HD Graphics | Intel® HD Graphics Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1368 X 768 - 32 bit Network: Network Present Network Adapters: Bluetooth Device (Personal Area Network) | Microsoft Wi-Fi Direct Virtual Adapter | Broadcom 802.11abgn Wireless SDIO Adapter CD / DVD Drives: No optical drives found. Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 2 Button Wheel Mouse Present Hard Disks: C: 28,2GB Hard Disks - Free: C: 3,5GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | _ASUS_ - 3 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK COMPUTER INC. T100TA Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 36.0.1985.125 Internet Explorer Version: 11.0.9600.17351 Google Chrome version: 36.0.1985.125 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Brigitte\AppData\Local\Temp ==== 2014-10-26 22:21:52 AE94F04E0F2E85CE3B239057D38F1985 673749 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\aplinstal.exe 2014-10-24 15:59:53 49B6816293D0164AAA2F01706F00CF28 688640 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\drv85366.exe 2014-10-13 20:31:24 FDC081020F28B0EFFC432B095762EB15 73728 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\GenericProvider.dll 2014-10-13 20:31:24 FCBF7029EB623C18268F2F1DEF7AF096 223232 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\SmiProvider.dll 2014-10-13 20:31:24 F801D4DB91C098D9AEBFB628778865E1 137728 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\MsiProvider.dll 2014-10-13 20:31:24 F1494B73613E8F7FFA1302A2939A5DD6 238080 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\IntlProvider.dll 2014-10-13 20:31:24 8E38AA11808D4E198885A3F984367325 39936 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\FolderProvider.dll 2014-10-13 20:31:24 730BFC22A27EDD01FC520AE1AD8CF088 469504 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\TransmogProvider.dll 2014-10-13 20:31:24 70E52718788C6E52245CFCACF2D7541A 403456 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\WimProvider.dll 2014-10-13 20:31:24 39CB49E96E047C1BFE43066F32F7F43D 89088 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\OSProvider.dll 2014-10-13 20:31:24 2C2CCB3BA0B0C717C7BB86F2A7D60D64 228352 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\UnattendProvider.dll 2014-10-13 20:31:24 17A34F7E3C0DE747C8FFE96EB6CAF303 132608 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\ImagingProvider.dll 2014-10-13 20:31:24 0D7747F9E6EC0EBBDC542AB4EDEC866C 424448 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\VhdProvider.dll 2014-10-13 20:31:24 0B016F60721BA19FFDF74573B49E105F 39936 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\IBSProvider.dll 2014-10-13 20:31:23 EFD103A65855D11E2D62C9F964EB4C41 271872 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\AppxProvider.dll 2014-10-13 20:31:23 E646FE4DA19ECF3F085A1EA77778772B 116224 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\CompatProvider.dll 2014-10-13 20:31:23 DF5E1F2B29A0B5A123FFB68691AA69BA 81408 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\AssocProvider.dll 2014-10-13 20:31:23 DDAFEA0D5E5C1343FA51599414252934 254464 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\DmiProvider.dll 2014-10-13 20:31:23 D84C3ACD123A57D4BAFB1714EC481E2D 600064 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\CbsProvider.dll 2014-10-13 20:31:23 D74E590BEF25121CC37C9358B3723342 282624 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\DismCore.dll 2014-10-13 20:31:23 C12A33DAAD54F7930CB6B99D8FA64B08 115376 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\DismHost.exe 2014-10-13 20:31:23 1699415C3711DBA71B561C642A26F7D7 63488 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\DismCorePS.dll 2014-10-13 20:31:23 11D83F92B84B2266B3B6889DC76E73ED 177664 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\34FDC68A-7D36-486D-9570-181E45E46882\DismProv.dll 2014-10-13 20:31:18 FCBF7029EB623C18268F2F1DEF7AF096 223232 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\SmiProvider.dll 2014-10-13 20:31:18 730BFC22A27EDD01FC520AE1AD8CF088 469504 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\TransmogProvider.dll 2014-10-13 20:31:18 70E52718788C6E52245CFCACF2D7541A 403456 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\WimProvider.dll 2014-10-13 20:31:18 39CB49E96E047C1BFE43066F32F7F43D 89088 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\OSProvider.dll 2014-10-13 20:31:18 2C2CCB3BA0B0C717C7BB86F2A7D60D64 228352 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\UnattendProvider.dll 2014-10-13 20:31:18 0D7747F9E6EC0EBBDC542AB4EDEC866C 424448 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\VhdProvider.dll 2014-10-13 20:31:17 FDC081020F28B0EFFC432B095762EB15 73728 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\GenericProvider.dll 2014-10-13 20:31:17 F801D4DB91C098D9AEBFB628778865E1 137728 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\MsiProvider.dll 2014-10-13 20:31:17 F1494B73613E8F7FFA1302A2939A5DD6 238080 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\IntlProvider.dll 2014-10-13 20:31:17 8E38AA11808D4E198885A3F984367325 39936 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\FolderProvider.dll 2014-10-13 20:31:17 17A34F7E3C0DE747C8FFE96EB6CAF303 132608 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\ImagingProvider.dll 2014-10-13 20:31:17 0B016F60721BA19FFDF74573B49E105F 39936 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\IBSProvider.dll 2014-10-13 20:31:16 EFD103A65855D11E2D62C9F964EB4C41 271872 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\AppxProvider.dll 2014-10-13 20:31:16 E646FE4DA19ECF3F085A1EA77778772B 116224 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\CompatProvider.dll 2014-10-13 20:31:16 DF5E1F2B29A0B5A123FFB68691AA69BA 81408 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\AssocProvider.dll 2014-10-13 20:31:16 DDAFEA0D5E5C1343FA51599414252934 254464 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\DmiProvider.dll 2014-10-13 20:31:16 D84C3ACD123A57D4BAFB1714EC481E2D 600064 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\CbsProvider.dll 2014-10-13 20:31:16 D74E590BEF25121CC37C9358B3723342 282624 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\DismCore.dll 2014-10-13 20:31:16 C12A33DAAD54F7930CB6B99D8FA64B08 115376 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\DismHost.exe 2014-10-13 20:31:16 1699415C3711DBA71B561C642A26F7D7 63488 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\DismCorePS.dll 2014-10-13 20:31:16 11D83F92B84B2266B3B6889DC76E73ED 177664 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\9E7F7D8B-17C6-40D0-889B-3A8A9544F8D8\DismProv.dll 2014-10-13 17:36:30 FDC081020F28B0EFFC432B095762EB15 73728 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\GenericProvider.dll 2014-10-13 17:36:30 FCBF7029EB623C18268F2F1DEF7AF096 223232 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\SmiProvider.dll 2014-10-13 17:36:30 F801D4DB91C098D9AEBFB628778865E1 137728 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\MsiProvider.dll 2014-10-13 17:36:30 F1494B73613E8F7FFA1302A2939A5DD6 238080 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\IntlProvider.dll 2014-10-13 17:36:30 EFD103A65855D11E2D62C9F964EB4C41 271872 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\AppxProvider.dll 2014-10-13 17:36:30 E646FE4DA19ECF3F085A1EA77778772B 116224 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\CompatProvider.dll 2014-10-13 17:36:30 DF5E1F2B29A0B5A123FFB68691AA69BA 81408 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\AssocProvider.dll 2014-10-13 17:36:30 DDAFEA0D5E5C1343FA51599414252934 254464 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\DmiProvider.dll 2014-10-13 17:36:30 D84C3ACD123A57D4BAFB1714EC481E2D 600064 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\CbsProvider.dll 2014-10-13 17:36:30 D74E590BEF25121CC37C9358B3723342 282624 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\DismCore.dll 2014-10-13 17:36:30 C12A33DAAD54F7930CB6B99D8FA64B08 115376 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\DismHost.exe 2014-10-13 17:36:30 8E38AA11808D4E198885A3F984367325 39936 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\FolderProvider.dll 2014-10-13 17:36:30 730BFC22A27EDD01FC520AE1AD8CF088 469504 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\TransmogProvider.dll 2014-10-13 17:36:30 70E52718788C6E52245CFCACF2D7541A 403456 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\WimProvider.dll 2014-10-13 17:36:30 39CB49E96E047C1BFE43066F32F7F43D 89088 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\OSProvider.dll 2014-10-13 17:36:30 2C2CCB3BA0B0C717C7BB86F2A7D60D64 228352 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\UnattendProvider.dll 2014-10-13 17:36:30 17A34F7E3C0DE747C8FFE96EB6CAF303 132608 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\ImagingProvider.dll 2014-10-13 17:36:30 1699415C3711DBA71B561C642A26F7D7 63488 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\DismCorePS.dll 2014-10-13 17:36:30 11D83F92B84B2266B3B6889DC76E73ED 177664 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\DismProv.dll 2014-10-13 17:36:30 0D7747F9E6EC0EBBDC542AB4EDEC866C 424448 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\VhdProvider.dll 2014-10-13 17:36:30 0B016F60721BA19FFDF74573B49E105F 39936 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\8074C2A1-AAAD-4490-ABEE-79B05968CBCD\IBSProvider.dll 2014-10-13 17:36:26 70E52718788C6E52245CFCACF2D7541A 403456 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\WimProvider.dll 2014-10-13 17:36:26 2C2CCB3BA0B0C717C7BB86F2A7D60D64 228352 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\UnattendProvider.dll 2014-10-13 17:36:26 0D7747F9E6EC0EBBDC542AB4EDEC866C 424448 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\VhdProvider.dll 2014-10-13 17:36:25 FDC081020F28B0EFFC432B095762EB15 73728 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\GenericProvider.dll 2014-10-13 17:36:25 FCBF7029EB623C18268F2F1DEF7AF096 223232 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\SmiProvider.dll 2014-10-13 17:36:25 F801D4DB91C098D9AEBFB628778865E1 137728 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\MsiProvider.dll 2014-10-13 17:36:25 F1494B73613E8F7FFA1302A2939A5DD6 238080 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\IntlProvider.dll 2014-10-13 17:36:25 DDAFEA0D5E5C1343FA51599414252934 254464 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\DmiProvider.dll 2014-10-13 17:36:25 8E38AA11808D4E198885A3F984367325 39936 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\FolderProvider.dll 2014-10-13 17:36:25 730BFC22A27EDD01FC520AE1AD8CF088 469504 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\TransmogProvider.dll 2014-10-13 17:36:25 39CB49E96E047C1BFE43066F32F7F43D 89088 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\OSProvider.dll 2014-10-13 17:36:25 17A34F7E3C0DE747C8FFE96EB6CAF303 132608 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\ImagingProvider.dll 2014-10-13 17:36:25 11D83F92B84B2266B3B6889DC76E73ED 177664 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\DismProv.dll 2014-10-13 17:36:25 0B016F60721BA19FFDF74573B49E105F 39936 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\IBSProvider.dll 2014-10-13 17:36:24 EFD103A65855D11E2D62C9F964EB4C41 271872 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\AppxProvider.dll 2014-10-13 17:36:24 E646FE4DA19ECF3F085A1EA77778772B 116224 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\CompatProvider.dll 2014-10-13 17:36:24 DF5E1F2B29A0B5A123FFB68691AA69BA 81408 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\AssocProvider.dll 2014-10-13 17:36:24 D84C3ACD123A57D4BAFB1714EC481E2D 600064 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\CbsProvider.dll 2014-10-13 17:36:24 D74E590BEF25121CC37C9358B3723342 282624 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\DismCore.dll 2014-10-13 17:36:24 C12A33DAAD54F7930CB6B99D8FA64B08 115376 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\DismHost.exe 2014-10-13 17:36:24 1699415C3711DBA71B561C642A26F7D7 63488 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\6D569D35-6B8C-4970-9FDC-5B42B3A1F3D6\DismCorePS.dll ====== Java Cache ===== ====== C:\Windows\system32 ===== 2014-10-15 14:48:01 10F428429F7FF957B226E068A08B158A 3117568 ----a-w- C:\Windows\System32\msi.dll 2014-10-15 14:47:48 CDB3123A2ABB34B830224B986568F4D4 626688 ----a-w- C:\Windows\System32\MrmCoreR.dll 2014-10-15 14:47:40 D64055BEC1B8919F11B21F4DF40E24D8 98816 ----a-w- C:\Windows\System32\winbici.dll 2014-10-15 07:15:36 CE9FDB173E3FDA974B9CC2596558EA47 68608 ----a-w- C:\Windows\System32\packager.dll 2014-10-15 07:15:24 F91E55DA404B834648A3B0A2477C10DB 17484800 ----a-w- C:\Windows\System32\mshtml.dll 2014-10-15 07:14:45 D03EB7605435FE24ADE670661A932651 4201472 ----a-w- C:\Windows\System32\jscript9.dll 2014-10-15 07:14:41 EF94FA1F3D90520CCA4AE65D639A9E62 11807232 ----a-w- C:\Windows\System32\ieframe.dll 2014-10-15 07:14:37 55A400FDB21D157E947A0EE65AEDB1B3 2187264 ----a-w- C:\Windows\System32\iertutil.dll 2014-10-15 07:14:35 7AE80F921027CF88CB9D0433088A3E55 1810944 ----a-w- C:\Windows\System32\wininet.dll 2014-10-15 07:14:34 3065FF6794A7FDC882F0DA8B6230AB6E 1190400 ----a-w- C:\Windows\System32\urlmon.dll 2014-10-15 07:14:32 B89F5D2B3D3BC730FAB93CFCD931742F 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2014-10-15 07:14:32 835807E2AC0A8FA15B9A2EA80E2D5169 2017280 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-10-15 07:14:31 AF31CC5BAEB4916C0AF9AB062CFE8DA2 677888 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-10-15 07:14:31 980D01CB48811552E09D9CFF397886C9 315904 ----a-w- C:\Windows\System32\iedkcs32.dll 2014-10-15 07:14:28 410BECCA3354D471E45344F0754CC0E4 243200 ----a-w- C:\Windows\System32\dxtrans.dll 2014-10-15 07:14:27 FBE852643EDEB9D6D6502AFE6017CD64 678400 ----a-w- C:\Windows\System32\ieapfltr.dll 2014-10-15 07:14:27 DF4BA130BD41F29A894E026E456B8481 454656 ----a-w- C:\Windows\System32\vbscript.dll 2014-10-15 07:14:27 6D4DD5706C297234F457B9D9018C493F 61952 ----a-w- C:\Windows\System32\MshtmlDac.dll 2014-10-15 07:14:27 201EAFA3F17BE4990999C28657212D8E 69632 ----a-w- C:\Windows\System32\mshtmled.dll 2014-10-15 07:13:21 FB3D6A346A14B7581FDA75C53FCF5E42 89088 ----a-w- C:\Windows\System32\appinfo.dll 2014-10-15 07:13:21 C49344C2F399A22704C682C5E18B8DF2 2321920 ----a-w- C:\Windows\System32\authui.dll 2014-10-15 07:13:06 F51B727AFF404ED8D730DFA069D88D7B 18722600 ----a-w- C:\Windows\System32\shell32.dll 2014-10-15 07:13:02 074BF061D97E49AAF04F2FAF46409A14 5902848 ----a-w- C:\Windows\System32\Windows.UI.Search.dll 2014-10-15 07:12:56 7BEE9E040222E7033A820780E1A61204 5777408 ----a-w- C:\Windows\System32\mstscax.dll 2014-10-15 07:12:52 3A59F7F20323A14866CA46F0E3419973 3985408 ----a-w- C:\Windows\System32\SyncEngine.dll 2014-10-15 07:12:47 7E1DBDCB781BB7A959B31096EDAABD47 1436888 ----a-w- C:\Windows\System32\ntdll.dll 2014-10-15 07:12:47 76831C139BD9E227712B283A6A5ABBA8 840192 ----a-w- C:\Windows\System32\SearchFolder.dll 2014-10-15 07:12:45 F26359A22A7E0EA0E266C80BAD9A5C2C 863528 ----a-w- C:\Windows\System32\KernelBase.dll 2014-10-15 07:12:44 E86549FED3008360730A6B722079D537 756224 ----a-w- C:\Windows\System32\WSShared.dll 2014-10-15 07:12:44 A61DD1F02DE668A6713822942B876D4C 808448 ----a-w- C:\Windows\System32\iphlpsvc.dll 2014-10-15 07:12:43 BFC6F7889A9CFF451A418862444B9F63 321024 ----a-w- C:\Windows\System32\Wldap32.dll 2014-10-15 07:12:42 DBA00F3FC75495058A25B24906C24599 1205976 ----a-w- C:\Windows\System32\propsys.dll 2014-10-15 07:12:42 2DAFC7A0D89C3EC5B0163CFD2A115778 204800 ----a-w- C:\Windows\System32\SystemEventsBrokerServer.dll 2014-10-15 07:12:41 1BCE441DCB9ACEBCB2D7B11782023F17 220160 ----a-w- C:\Windows\System32\pcsvDevice.dll 2014-10-15 07:12:41 0693FAE9B475E1C079C6EEB52C0AC986 204800 ----a-w- C:\Windows\System32\bisrv.dll 2014-10-15 07:12:40 DA65F1320538BC417B8FAE0BCAC330A0 265216 ----a-w- C:\Windows\System32\SkyDriveShell.dll 2014-10-15 07:12:40 CB0230405199308B1A70D25000A4562B 101376 ----a-w- C:\Windows\System32\httpprxm.dll 2014-10-15 07:12:40 B288813A2AA033A9E5A611033E7171EE 586752 ----a-w- C:\Windows\System32\SkyDriveTelemetry.dll 2014-10-15 07:12:39 CE728F42D71159175587ACC040FF3FE0 60928 ----a-w- C:\Windows\System32\adhsvc.dll 2014-10-15 07:12:39 0599C76327F3DFE5A57627693DCB1A45 241664 ----a-w- C:\Windows\System32\ProximityService.dll 2014-10-15 07:12:38 E1BE759C1BCE85B17CCE5BA6FE58337E 877056 ----a-w- C:\Windows\System32\SkyDrive.exe 2014-10-15 07:12:38 B6F423906D3E10BE38C16726C0905033 388729 ----a-w- C:\Windows\System32\ApnDatabase.xml 2014-10-15 07:11:53 213F1AB0FA9306A39EF37603A395457B 3546624 ----a-w- C:\Windows\System32\win32k.sys 2014-10-15 07:10:46 5D2C15BDAD48646C8CBC83903252D87C 514048 ----a-w- C:\Windows\System32\rastls.dll 2014-10-15 07:10:41 A6DB316A49F0B8DDA2147516039874A2 2815488 ----a-w- C:\Windows\System32\wuaueng.dll 2014-10-15 07:10:41 09ABB665890DDCB614974AE563F0D877 672256 ----a-w- C:\Windows\System32\wuapi.dll 2014-10-15 07:10:40 DAAEC308C5A623C2A624F56BCB6D11B7 1634816 ----a-w- C:\Windows\System32\wucltux.dll 2014-10-15 07:10:40 D9A12E2B9332D6271CBE1BEB1B4D8D07 312832 ----a-w- C:\Windows\System32\WUSettingsProvider.dll 2014-10-15 07:10:40 853C316726DF17DA3AAFC74DF28F151A 49528 ----a-w- C:\Windows\System32\wuauclt.exe 2014-10-15 07:10:39 FBC21212942F17DBA0A66C93ADC23F59 31232 ----a-w- C:\Windows\System32\wuapp.exe 2014-10-15 07:10:39 C2F6C71F5316DA478632B3B463B06E6D 80896 ----a-w- C:\Windows\System32\wudriver.dll 2014-10-15 07:10:39 B6D3D955FBB174081CDFB977B726D069 123904 ----a-w- C:\Windows\System32\wuwebv.dll ====== C:\Windows\system32\drivers ===== 2014-10-15 07:12:48 A0404DFE33A089B3C535EFE62D617672 1858880 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-10-15 07:12:41 A95914B096997FF487EDF9ED1432967A 286528 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-10-26 22:30:22 -------- d-----w- C:\Program Files\trend micro ======= C: ===== ====== C:\Users\Brigitte\AppData\Roaming ====== ====== C:\Users\Brigitte ====== 2014-10-26 22:29:21 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Brigitte\Desktop\RSIT.exe 2014-10-18 07:01:56 -------- d-----w- C:\Windows\serviceprofiles\Localservice\winhttp ====== C: exe-files == 2014-10-27 14:03:11 EC87C870FC286178E461C1D917567DCE 41081424 ----a-w- C:\Program Files\Google\Update\Install\{25922940-A366-4CF9-81D3-F12501A2CB14}\38.0.2125.104_chrome_installer.exe 2014-10-26 22:30:23 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Brigitte.exe 2014-10-26 22:29:21 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Brigitte\Desktop\RSIT.exe 2014-10-26 22:21:52 AE94F04E0F2E85CE3B239057D38F1985 673749 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\aplinstal.exe 2014-10-24 15:59:53 49B6816293D0164AAA2F01706F00CF28 688640 ----a-w- C:\Users\Brigitte\AppData\Local\Temp\drv85366.exe 2014-10-21 21:18:53 D30F6062378AC3841FB6DAB3BF8985BC 550584 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\msosqm.exe 2014-10-21 21:18:34 E9429F79D6CB4A55507670848CB4C114 1092304 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\olicenseheartbeat.exe 2014-10-21 21:18:33 EF5CDAC3A3CE8B9A7F357805A96DB35D 207008 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\msoxmled.exe 2014-10-21 21:18:12 9AB01296A58B780E181879B3797AECC3 874152 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe 2014-10-21 21:18:07 5B27F9BE01A48BD5AC13DFCF51419A41 25705112 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\excel.exe 2014-10-21 21:18:04 CB4DFF5A901C67427ADEE1D3BEC52950 5646032 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\cmigrate.exe 2014-10-21 21:18:03 5CD0D12DDEF5C55F7A64DCECFBDA69EF 81640 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe 2014-10-21 21:18:02 BFE82F5FE97A17DD9123B5258B0FD254 474336 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dwtrig20.exe 2014-10-21 21:18:02 026130F14E4B37D5C4301FDCEB57880B 842448 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dw20.exe 2014-10-21 21:18:01 5E593E51508443A06C6D1CEAF337FEB7 528584 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\vpreview.exe 2014-10-21 21:18:01 261F4557C83373370330F2E48B9B7DFB 1923232 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\winword.exe 2014-10-21 21:18:01 10BE343895F94B7426A03DD84026DD64 480984 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\selfcert.exe 2014-10-21 21:17:59 6CCAF0A53351077CA8E5EE0499ADB576 1846952 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\powerpnt.exe 2014-10-21 21:17:58 B303F05ACAC08E4C382CA0B304B36258 449208 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\msosync.exe 2014-10-21 21:17:55 81527A17C053AF3E3727773D2C450BB3 569584 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\orgchart.exe 2014-10-21 21:17:51 7576EBAE4823160E869E7BE0159A809B 1764512 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\onenote.exe 2014-10-21 21:17:44 4AFE484AE31937293601AD30CDEBB9A9 497848 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\msouc.exe 2014-10-21 21:17:42 78203615303DCBDA99BA7E3FFDACC022 21930648 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe 2014-10-21 21:17:40 C4DB721EDCD74219F5E0F02D5823597D 517360 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\iecontentservice.exe 2014-10-21 21:17:38 2F2A1441874F210ED25A1AA4683F218F 4522680 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\graph.exe 2014-10-21 21:17:38 0384F9AD56CB8EFA5BC7165EF531A87A 991904 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\firstrun.exe 2014-10-21 21:17:33 9152AE0B52305D48C9E291936501823C 228536 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\clview.exe 2014-10-21 21:17:22 8D7A1204CC0086FDE7C3C3A08D1840C9 6014120 ----a-w- C:\Program Files\Microsoft Office 15\root\Integration\onedrivesetup.exe 2014-10-20 18:58:40 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateBroker.exe 2014-10-20 18:58:40 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe 2014-10-20 18:58:38 27DC334376EE08A0962E6367E23D3CBA 880272 ----a-w- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateSetup.exe 2014-10-20 18:58:32 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler.exe 2014-10-20 18:58:32 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateComRegisterShell64.exe 2014-10-20 18:58:32 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler64.exe 2014-10-20 18:58:31 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdate.exe 2014-10-20 18:58:23 27DC334376EE08A0962E6367E23D3CBA 880272 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.25.5\GoogleUpdateSetup.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\Software\Microsoft\Windows\CurrentVersion\Run] "ApplePhotoStreams"="C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "iCloudServices"="C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ASUSPRP"="C:\Program Files\ASUS\APRP\APRP.EXE" "WebStorage"="C:\Program Files\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "DptfPolicyLpmServiceHelper"="C:\Windows\system32\DptfPolicyLpmServiceHelper.exe" "RtkNGUI"="C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe /s" "mobilegeni daemon"="C:\Program Files\Mobogenie\DaemonProcess.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ApplePhotoStreams"="C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "iCloudServices"="C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- :C:\Program Files\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [22-02-2014 18:52] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\ASUS AC Reminder" [C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe] "C:\Windows\system32\tasks\ASUS Live Update1" [C:\Program Files\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\Windows\system32\tasks\ASUS Live Update2" [C:\Program Files\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\Windows\system32\tasks\ASUS Patch for Touch Panel" [C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe] "C:\Windows\system32\tasks\ASUS Smart Gesture Launcher" [C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLauncher.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{99DC03C7-7B5D-4873-932F-E8BF67244D9C}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "ext@RichMediaViewV1release5977.net"="C:\Program Files\RichMediaViewV1\RichMediaViewV1release5977\ff" [] ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions deoiojhnoojfagbgajbcjcpgbacnknlp - C:\Program Files\MediaViewV1\MediaViewV1alpha7978\ch\MediaViewV1alpha7978.crx[] ephghlpjejnnhnhhanddndnhpijmbdhn - C:\Program Files\MediaViewV1\MediaViewV1alpha7076\ch\MediaViewV1alpha7076.crx[] igakngigbcibfopclialpnnilngmpjdi - C:\Program Files\MediaBuzzV1\MediaBuzzV1mode3978\ch\MediaBuzzV1mode3978.crx[] kimmceplkjneikjfhbmkcbhnebhljdog - C:\Program Files\MediaWatchV1\MediaWatchV1home1837\ch\MediaWatchV1home1837.crx[] nljhdbpopkhdpkjemnoloflmaclkomfh - C:\Program Files\TrustMediaViewerV1\TrustMediaViewerV1alpha6066\ch\TrustMediaViewerV1alpha6066.crx[] Google Docs - Brigitte\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Brigitte\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Brigitte\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Brigitte\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf AdBlock - Brigitte\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Google Wallet - Brigitte\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Background Tab - Brigitte\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic Gmail - Brigitte\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\Brigitte\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.google.nl/", "startup_urls": [ "http://www.google.nl/" ], ==== Chromium Fix ====================== C:\Users\Brigitte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully C:\Users\Brigitte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Brigitte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage deleted successfully C:\Users\Brigitte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.conduit.com/?gd=&ctid=CT3315513&octid=EB_ORIGINAL_CTID&ISID=ME720845F-D98C-4DC7-889E-2565D8315451&SearchSource=55&CUI=&UM=5&UP=SPEA4260A9-D20A-4EAD-85CD-27A9B109B811&SSPV=" "Default_Page_URL"="http://www.istartsurf.com/?type=hp&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.istartsurf.com/web/?type=ds&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63&q={searchTerms}" "Default_Page_URL"="http://www.istartsurf.com/?type=hp&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63" "Start Page"="http://www.istartsurf.com/?type=hp&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63" "Search Page"="http://www.istartsurf.com/web/?type=ds&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63&q={searchTerms}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {3257B242-AE6D-49A0-B97E-63370CE7F143} Yahoo! Search Url="http://rts.dsrlte.com/?q={searchTerms}&r=763" {77AA745B-F4F8-45DA-9B14-61D2D95054C8} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} deleted successfully HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} deleted successfully HKEY_USERS\S-1-5-21-3360711805-4086920324-1158879377-1001\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3FB11EAC-F9E0-1C9B-66F4-40E4C0F420B9} deleted successfully HKEY_CLASSES_ROOT\CLSID\{3FB11EAC-F9E0-1C9B-66F4-40E4C0F420B9} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3FB11EAC-F9E0-1C9B-66F4-40E4C0F420B9} deleted successfully HKEY_CLASSES_ROOT\CLSID\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\ext@MediaViewV1alpha7076.net deleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\ext@MediaViewV1alpha7978.net deleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\ext@MediaWatchV1home1837.net deleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\ext@MediaBuzzV1mode3978.net deleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\ext@RichMediaViewV1release7308.net deleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\ext@TrustMediaViewerV1alpha6066.net deleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\ext@RichMediaViewV1release5977.net deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\Brigitte\Desktop\afbeeldingen.lnk - C:\Users\Brigitte\Pictures C:\Users\Brigitte\Desktop\Muziek.lnk - C:\Users\Brigitte\Music ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe istartsurf ==== shortcuts in Quick Launch ====================== C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe istartsurf C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies 3.lnk - C:\Program Files\Samsung\Kies3\Kies3.exe C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Word 2013.lnk - C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - ==== shortcuts After Repair ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Brigitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyOverride"="<-loopback>" "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\deoiojhnoojfagbgajbcjcpgbacnknlp deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ephghlpjejnnhnhhanddndnhpijmbdhn deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\igakngigbcibfopclialpnnilngmpjdi deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\kimmceplkjneikjfhbmkcbhnebhljdog deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\nljhdbpopkhdpkjemnoloflmaclkomfh deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{01B91C29-337A-1FFD-7CFC-473451D2F861} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\RichMediaViewV1release7308 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\980124D4-3D52-4c2d-AD41-9E90BDF4C031_Systweak_Ri~01F2B2E8_is1 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Wajam deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\mysearchdial deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\inethnfd deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1 deleted successfully ==== HijackThis Entries ====================== O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files\ASUS\APRP\APRP.EXE" O4 - HKLM\..\Run: [WebStorage] C:\Program Files\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe O4 - HKLM\..\Run: [igfxTray] "C:\Windows\system32\igfxtray.exe" O4 - HKLM\..\Run: [HotKeysCmds] "C:\Windows\system32\hkcmd.exe" O4 - HKLM\..\Run: [Persistence] "C:\Windows\system32\igfxpers.exe" O4 - HKLM\..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\system32\DptfPolicyLpmServiceHelper.exe O4 - HKLM\..\Run: [RtkNGUI] "C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe" /s O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: ASUS HID Access Service (AsHidService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: @oem29.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Broadcom Corporation. - C:\Windows\system32\BtwRSupportService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\system32\IntelCpHeciSvc.exe O23 - Service: @oem20.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Processor Participant Service Application (DptfParticipantProcessorService) - Intel Corporation - C:\Windows\system32\DptfParticipantProcessorService.exe O23 - Service: @oem20.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Critical Service Application (DptfPolicyCriticalService) - Intel Corporation - C:\Windows\system32\DptfPolicyCriticalService.exe O23 - Service: @oem20.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Low Power Mode Service Application (DptfPolicyLpmService) - Intel Corporation - C:\Windows\system32\DptfPolicyLpmService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Update service - Company - C:\Program Files\Popcorn Time\Updater.exe ==== Empty IE Cache ====================== C:\Users\Brigitte\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Brigitte\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Brigitte\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=3477 folders=355 665371944 bytes) ==== Empty Temp Folders ====================== C:\Users\Brigitte\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Brigitte\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files\Advanced System Protector" not found "C:\Program Files\Windows Portable Devices" not found "C:\Program Files\Advanced System Protector" not found "C:\Program Files\SupTab" not found ==== EOF on ma 27-10-2014 at 15:42:25,01 ======================
  8. Hier de log: Zoek.exe v5.0.0.0 Updated 26-10-2014 Tool run by Brigitte on ma 27-10-2014 at 15:01:09,66. Microsoft Windows 8.1 6.3.9600 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Brigitte\Downloads\zoek.exe [scan all users] [Checkboxes used] ===== Runcheck 15:02:46,01 ===== --- Create Environment Variables 15:02:49,24 --- Create System Restore Point 15:03:04,82
  9. Hierzo: Logfile of random's system information tool 1.10 (written by random/random) Run by Brigitte at 2014-10-26 23:30:22 Microsoft Windows 8.1 System drive C: has 4 GB (12%) free of 29 GB Total RAM: 1933 MB (34% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 23:30:31, on 26-10-2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.9600.17344) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\taskhostex.exe C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe C:\Windows\Explorer.EXE C:\Windows\System32\rundll32.exe C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe C:\Program Files\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exe C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe C:\Windows\system32\backgroundTaskHost.exe C:\Windows\system32\wwahost.exe C:\Program Files\SupTab\HpUI.exe C:\Windows\System32\skydrive.exe C:\Program Files\SupTab\Loader32.exe C:\Windows\System32\igfxtray.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\System32\hkcmd.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\SettingSyncHost.exe C:\Windows\System32\igfxpers.exe C:\Windows\System32\DptfPolicyLpmServiceHelper.exe C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe C:\Program Files\Mobogenie\DaemonProcess.exe C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSPanel.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\Brigitte\Downloads\RSIT.exe C:\Program Files\trend micro\Brigitte.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = istartsurf R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = istartsurf R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = istartsurf R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:55661;https=127.0.0.1:55661 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback> O2 - BHO: ApPtoU - {3FB11EAC-F9E0-1C9B-66F4-40E4C0F420B9} - C:\ProgramData\ApPtoU\ux.dll O2 - BHO: mysearchdial Helper Object - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - C:\Program Files\Mysearchdial\1.8.29.0\bh\mysearchdial.dll O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files\ASUS\APRP\APRP.EXE" O4 - HKLM\..\Run: [WebStorage] C:\Program Files\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe O4 - HKLM\..\Run: [igfxTray] "C:\Windows\system32\igfxtray.exe" O4 - HKLM\..\Run: [HotKeysCmds] "C:\Windows\system32\hkcmd.exe" O4 - HKLM\..\Run: [Persistence] "C:\Windows\system32\igfxpers.exe" O4 - HKLM\..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\system32\DptfPolicyLpmServiceHelper.exe O4 - HKLM\..\Run: [RtkNGUI] "C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe" /s O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: ASUS HID Access Service (AsHidService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: @oem29.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Broadcom Corporation. - C:\Windows\system32\BtwRSupportService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\system32\IntelCpHeciSvc.exe O23 - Service: @oem20.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Processor Participant Service Application (DptfParticipantProcessorService) - Intel Corporation - C:\Windows\system32\DptfParticipantProcessorService.exe O23 - Service: @oem20.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Critical Service Application (DptfPolicyCriticalService) - Intel Corporation - C:\Windows\system32\DptfPolicyCriticalService.exe O23 - Service: @oem20.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Low Power Mode Service Application (DptfPolicyLpmService) - Intel Corporation - C:\Windows\system32\DptfPolicyLpmService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: IePlugin Services (IePluginServices) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginServices\PluginService.exe O23 - Service: Network HTTP Support Service (NetHttpService) - Unknown owner - C:\Windows\system32\nethtsrv.exe O23 - Service: Network Support Service Updater (ServiceUpdater) - Unknown owner - C:\Windows\system32\netupdsrv.exe O23 - Service: Update service - Company - C:\Program Files\Popcorn Time\Updater.exe O23 - Service: Wajam Internet Enhancer Service - Wajam Internet Technologies Inc. - C:\Program Files\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe -- End of file - 9081 bytes ======Scheduled tasks folder====== C:\Windows\tasks\AmiUpdXp.job - C:\Users\Brigitte\AppData\Local\3188\Updater.exe C:\Windows\tasks\Digital Sites.job - C:\Users\Brigitte\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE /Check C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\MaxigetUpdaterTaskMachineCore.job - C:\Program Files\Maxiget\Updater\MaxigetUpdater.exe /c C:\Windows\tasks\MaxigetUpdaterTaskMachineUA.job - C:\Program Files\Maxiget\Updater\MaxigetUpdater.exe /ua /installsource scheduler C:\Windows\tasks\MySearchDial.job - C:\Users\Brigitte\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE /Check ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3FB11EAC-F9E0-1C9B-66F4-40E4C0F420B9}] ApPtoU - C:\ProgramData\ApPtoU\ux.dll [2014-08-30 452096] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}] mysearchdial Helper Object - C:\Program Files\Mysearchdial\1.8.29.0\bh\mysearchdial.dll [2014-03-07 279960] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ASUSPRP"=C:\Program Files\ASUS\APRP\APRP.EXE [2013-12-13 3216032] "WebStorage"=C:\Program Files\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe [2013-08-16 63296] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-10-10 308696] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-10-10 318936] "Persistence"=C:\Windows\system32\igfxpers.exe [2013-10-10 315352] "DptfPolicyLpmServiceHelper"=C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [2013-10-10 73216] "RtkNGUI"=C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [2013-07-16 2653912] "mobilegeni daemon"=C:\Program Files\Mobogenie\DaemonProcess.exe [2014-02-22 775872] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ApplePhotoStreams"=C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-11-20 59720] "iCloudServices"=C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [2013-11-20 59720] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2013-10-10 492032] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "msacm.msgsm610"=msgsm32.acm "msacm.msg711"=msg711.acm "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "VIDC.YUY2"=msyuv.dll "vidc.i420"=iyuv_32.dll "vidc.cvid"=iccvid.dll "VIDC.YVYU"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "wavemapper"=msacm32.drv "midimapper"=midimap.dll "VIDC.UYVY"=msyuv.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "MSVideo8"=VfWWDM32.dll "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-10-26 23:30:22 ----D---- C:\rsit 2014-10-26 23:30:22 ----D---- C:\Program Files\trend micro 2014-10-24 23:08:21 ----A---- C:\awhF25B.tmp 2014-10-24 18:10:03 ----A---- C:\awhF21D.tmp 2014-10-24 17:05:16 ----A---- C:\awh6D6C.tmp 2014-10-21 18:38:04 ----A---- C:\Windows\system32\drivers\nethfdrv.sys 2014-10-21 18:37:44 ----A---- C:\Windows\system32\netupdsrv.exe 2014-10-21 18:37:32 ----A---- C:\Windows\system32\installd.exe 2014-10-21 18:37:18 ----A---- C:\Windows\system32\nethtsrv.exe 2014-10-21 18:37:06 ----A---- C:\Windows\system32\hfnapi.dll 2014-10-21 18:36:54 ----A---- C:\Windows\system32\hfpapi.dll 2014-10-15 15:48:01 ----A---- C:\Windows\system32\msi.dll 2014-10-15 15:47:48 ----A---- C:\Windows\system32\MrmCoreR.dll 2014-10-15 15:47:40 ----A---- C:\Windows\system32\winbici.dll 2014-10-15 08:15:36 ----A---- C:\Windows\system32\packager.dll 2014-10-15 08:15:24 ----A---- C:\Windows\system32\mshtml.dll 2014-10-15 08:14:45 ----A---- C:\Windows\system32\jscript9.dll 2014-10-15 08:14:41 ----A---- C:\Windows\system32\ieframe.dll 2014-10-15 08:14:37 ----A---- C:\Windows\system32\iertutil.dll 2014-10-15 08:14:35 ----A---- C:\Windows\system32\wininet.dll 2014-10-15 08:14:34 ----A---- C:\Windows\system32\urlmon.dll 2014-10-15 08:14:32 ----A---- C:\Windows\system32\msfeeds.dll 2014-10-15 08:14:31 ----A---- C:\Windows\system32\iedkcs32.dll 2014-10-15 08:14:31 ----A---- C:\Windows\system32\ie4uinit.exe 2014-10-15 08:14:28 ----A---- C:\Windows\system32\dxtrans.dll 2014-10-15 08:14:27 ----A---- C:\Windows\system32\vbscript.dll 2014-10-15 08:14:27 ----A---- C:\Windows\system32\mshtmled.dll 2014-10-15 08:14:27 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-10-15 08:14:27 ----A---- C:\Windows\system32\ieapfltr.dll 2014-10-15 08:13:21 ----A---- C:\Windows\system32\authui.dll 2014-10-15 08:13:21 ----A---- C:\Windows\system32\appinfo.dll 2014-10-15 08:13:06 ----A---- C:\Windows\system32\shell32.dll 2014-10-15 08:13:02 ----A---- C:\Windows\system32\Windows.UI.Search.dll 2014-10-15 08:12:56 ----A---- C:\Windows\system32\mstscax.dll 2014-10-15 08:12:52 ----A---- C:\Windows\system32\SyncEngine.dll 2014-10-15 08:12:48 ----A---- C:\Windows\system32\drivers\tcpip.sys 2014-10-15 08:12:47 ----A---- C:\Windows\system32\SearchFolder.dll 2014-10-15 08:12:47 ----A---- C:\Windows\system32\ntdll.dll 2014-10-15 08:12:45 ----A---- C:\Windows\system32\KernelBase.dll 2014-10-15 08:12:44 ----A---- C:\Windows\system32\WSShared.dll 2014-10-15 08:12:44 ----A---- C:\Windows\system32\iphlpsvc.dll 2014-10-15 08:12:43 ----A---- C:\Windows\system32\Wldap32.dll 2014-10-15 08:12:42 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll 2014-10-15 08:12:42 ----A---- C:\Windows\system32\propsys.dll 2014-10-15 08:12:41 ----A---- C:\Windows\system32\pcsvDevice.dll 2014-10-15 08:12:41 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2014-10-15 08:12:41 ----A---- C:\Windows\system32\bisrv.dll 2014-10-15 08:12:40 ----A---- C:\Windows\system32\SkyDriveTelemetry.dll 2014-10-15 08:12:40 ----A---- C:\Windows\system32\SkyDriveShell.dll 2014-10-15 08:12:40 ----A---- C:\Windows\system32\httpprxm.dll 2014-10-15 08:12:39 ----A---- C:\Windows\system32\ProximityService.dll 2014-10-15 08:12:39 ----A---- C:\Windows\system32\adhsvc.dll 2014-10-15 08:12:38 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-10-15 08:12:38 ----A---- C:\Windows\system32\SkyDrive.exe 2014-10-15 08:11:53 ----A---- C:\Windows\system32\win32k.sys 2014-10-15 08:10:46 ----A---- C:\Windows\system32\rastls.dll 2014-10-15 08:10:41 ----A---- C:\Windows\system32\wuaueng.dll 2014-10-15 08:10:41 ----A---- C:\Windows\system32\wuapi.dll 2014-10-15 08:10:40 ----A---- C:\Windows\system32\WUSettingsProvider.dll 2014-10-15 08:10:40 ----A---- C:\Windows\system32\wucltux.dll 2014-10-15 08:10:40 ----A---- C:\Windows\system32\wuauclt.exe 2014-10-15 08:10:39 ----A---- C:\Windows\system32\wuwebv.dll 2014-10-15 08:10:39 ----A---- C:\Windows\system32\wudriver.dll 2014-10-15 08:10:39 ----A---- C:\Windows\system32\wuapp.exe 2014-10-14 17:29:59 ----A---- C:\awh8148.tmp 2014-10-04 12:43:38 ----A---- C:\awh2811.tmp 2014-10-04 05:13:19 ----A---- C:\awh70EA.tmp 2014-09-28 01:32:53 ----ASH---- C:\pagefile.sys ======List of files/folders modified in the last 1 month====== 2014-10-26 23:30:22 ----RD---- C:\Program Files 2014-10-26 23:29:58 ----D---- C:\Windows\Prefetch 2014-10-26 23:27:19 ----D---- C:\Windows\system32\Tasks 2014-10-26 23:27:10 ----AD---- C:\Windows\Temp 2014-10-26 23:25:52 ----RD---- C:\Windows\System32 2014-10-26 23:25:31 ----D---- C:\Windows\system32\Drivers 2014-10-26 23:22:53 ----A---- C:\extensions.ini 2014-10-26 23:22:41 ----HD---- C:\ProgramData 2014-10-26 23:19:32 ----D---- C:\Windows\AppReadiness 2014-10-26 23:07:40 ----D---- C:\Windows\system32\sru 2014-10-26 18:11:38 ----SHD---- C:\System Volume Information 2014-10-26 18:10:37 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-10-26 18:10:36 ----D---- C:\Windows\inf 2014-10-26 17:56:50 ----D---- C:\Program Files\SupTab 2014-10-26 17:24:36 ----D---- C:\Windows\Microsoft.NET 2014-10-26 17:23:11 ----RSD---- C:\Windows\assembly 2014-10-24 23:04:30 ----D---- C:\Windows\system32\NDF 2014-10-21 22:22:10 ----SHD---- C:\Windows\Installer 2014-10-21 22:21:41 ----D---- C:\ProgramData\regid.1991-06.com.microsoft 2014-10-21 22:20:28 ----D---- C:\Program Files\Microsoft Office 15 2014-10-21 22:02:11 ----HD---- C:\Program Files\WindowsApps 2014-10-21 00:53:18 ----D---- C:\Windows\system32\config 2014-10-21 00:07:50 ----D---- C:\Windows\system32\DriverStore 2014-10-20 19:58:41 ----D---- C:\Windows\Tasks 2014-10-18 11:01:08 ----D---- C:\Windows\WinSxS 2014-10-18 10:59:10 ----D---- C:\Windows\system32\nl-NL 2014-10-18 10:59:10 ----D---- C:\Program Files\Internet Explorer 2014-10-18 10:59:08 ----D---- C:\Windows\MediaViewer 2014-10-18 10:59:08 ----D---- C:\Windows\FileManager 2014-10-18 10:59:08 ----D---- C:\Windows\Camera 2014-10-18 10:59:07 ----RD---- C:\Windows\ToastData 2014-10-18 10:59:05 ----D---- C:\Windows\WinStore 2014-10-17 15:39:11 ----D---- C:\Windows\CbsTemp 2014-10-16 13:59:24 ----D---- C:\Windows\system32\MRT 2014-10-16 13:51:02 ----A---- C:\Windows\system32\MRT.exe 2014-10-15 17:52:51 ----D---- C:\Windows\Minidump 2014-10-15 17:51:50 ----AD---- C:\Windows 2014-10-15 15:46:12 ----D---- C:\Windows\system32\catroot2 2014-09-29 23:45:58 ----A---- C:\Windows\system32\FlashPlayerApp.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 MBI;@oem8.inf,%MBI.SVCDESC%;Intel® Sideband Fabric Device Service; C:\Windows\System32\drivers\MBI.sys [2013-10-08 21456] R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [2013-07-02 17720] R1 nethfdrv;nethfdrv; \??\C:\Windows\system32\drivers\nethfdrv.sys [2014-10-21 40528] R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 57344] R2 ASMMAP;ASMMAP; \??\C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [2009-07-02 13880] R3 AsusHID;@oem30.inf,%AsusHID.SvcDesc%;ASUS HID Service; C:\Windows\System32\drivers\AsusHID.sys [2013-11-08 64792] R3 BCMSDH43XX;@oem27.inf,%BCMSDH43XX_Service_DispName%;Broadcom 802.11 SDIO Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmdhd63.sys [2013-10-03 304344] R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 40448] R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 186880] R3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\Windows\System32\Drivers\BTHMINI.sys [2013-08-22 24064] R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 95744] R3 BtwSerialBus;@oem29.inf,%Bus.SVCDESC%;Broadcom Serial Bus Driver over UART Bus Enumerator; C:\Windows\system32\DRIVERS\BtwSerialBus.sys [2014-02-06 130776] R3 camera;@oem12.inf,%camera.DeviceDesc%;Intel® Imaging Signal Processor 2400; C:\Windows\system32\DRIVERS\camera.sys [2013-10-10 338944] R3 CM3218x;@oem26.inf,%CM3218xDisplayName%;CM3218x SPB Driver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 188416] R3 CPLMACPI;@oem26.inf,%CPLMACPI.SvcDesc%;Capella Micro CPLMACPI Sensor Filter; C:\Windows\system32\DRIVERS\CPLMACPI.sys [2013-09-06 16488] R3 DptfDevDBPT;DptfDevDBPT; C:\Windows\system32\DRIVERS\DptfDevPower.sys [2013-10-10 17408] R3 DptfDevDisplay;DptfDevDisplay; C:\Windows\system32\DRIVERS\DptfDevDisplay.sys [2013-10-10 19968] R3 DptfDevGen;DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [2013-10-10 28160] R3 DptfDevProc;DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [2013-10-10 72704] R3 DptfManager;DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [2013-10-10 176640] R3 GPIO;@oem4.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\Windows\System32\drivers\iaiogpioe.sys [2013-10-08 24064] R3 GpioVirtual;@oem7.inf,%Driver_Service.Desc%;GPED Virtual GPIO controller driver; C:\Windows\System32\drivers\iaiogpiovirtual.sys [2013-10-08 17408] R3 HIDSwitch;@oem31.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\Windows\System32\drivers\AsHIDSwitch.sys [2013-10-08 17720] R3 iaioi2c;@oem3.inf,%Driver_Service.Desc%;Intel® Atom Processor I2C Controller Service; C:\Windows\System32\drivers\iaioi2ce.sys [2013-10-10 57856] R3 iaiouart;@oem5.inf,%iaiouart.SVCDESC%;Intel® Atom Processor UART Controller; C:\Windows\System32\drivers\iaiouart.sys [2013-10-08 88064] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2013-10-10 3340800] R3 IntelSST;@oem10.inf,%IntelSST_Audio.SvcDesc%;Intel SST Audio Device (WDM); C:\Windows\system32\drivers\isstrtc.sys [2013-10-08 252928] R3 INVN_MotionApps;@oem25.inf,%INVN_MotionAppsDisplayName%;InvenSense MotionApps Driver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 188416] R3 iwdbus;@oem23.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-09-26 23448] R3 MT9M114;@oem16.inf,%MT9M114.SVCDESC%;Camera Sensor MT9M114; C:\Windows\System32\drivers\MT9M114.sys [2013-10-10 38912] R3 PMIC;@oem9.inf,%Driver_Service.Desc%;Intel® Power Management IC Device Service; C:\Windows\System32\drivers\PMIC.sys [2013-10-08 47104] R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-01-27 132096] R3 rtii2sac;@oem24.inf,%CodecDevice.SVCDESC%;Realtek I2S Audio Codec Device Driver; C:\Windows\system32\DRIVERS\rtii2sac.sys [2013-09-13 129752] R3 SensorsServiceDriver;@sensorsservicedriver.inf,%WudfSensorsServiceDriverDisplayName%;UMDF Reflector service for SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 188416] R3 TXEI;@oem18.inf,%TEE_SvcDesc%;Intel® Trusted Execution Engine Interface ; C:\Windows\System32\drivers\TXEI.sys [2013-10-08 76304] R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 30720] S0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-09 505192] S3 AgereSoftModem;@mdmagrs.inf,%FullProductName%;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2013-06-18 1035776] S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2014-07-24 1016320] S3 btwampfl;@oem29.inf,%btwampfl.ServiceName%;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2014-02-06 144600] S3 dg_ssudbus;@oem36.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 88576] S3 e1iexpress;@net1i32.inf,%e1iExpress.Service.DispName%;Intel® PRO/1000 PCI Express Network Connection Driver I; C:\Windows\system32\DRIVERS\e1i6332.sys [2013-06-18 379904] S3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro37.sys [2014-03-01 30976] S3 hvziphuq;hvziphuq; C:\Windows\system32\drivers\hvziphuq.sys [] S3 intaud_WaveExtensible;@oem22.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-09-26 33176] S3 NETwNs32;@netwsn00.inf,___ %NIC_Service_DispName_WIN7%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\Windows\system32\DRIVERS\Netwsn00.sys [2013-06-18 10372096] S3 RTLU3E8023-W8-32;@rtu30x86w8.inf,%Rtlunic.Service.DispName%;Realtek USB GBE NIC Family Windows8 32bit Driver; C:\Windows\system32\DRIVERS\rtu30x86w8.sys [2013-06-18 57856] S3 SPPD;SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [] S3 ssudmdm;@oem37.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 184192] S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 176768] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AsHidService;ASUS HID Access Service; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [2013-09-09 103224] R2 ASLDRService;ASLDR Service; C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2013-09-09 111416] R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe [2013-08-16 71680] R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504] R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2014-09-25 1669296] R2 DptfParticipantProcessorService;@oem20.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Processor Participant Service Application; C:\Windows\system32\DptfParticipantProcessorService.exe [2013-10-10 75264] R2 DptfPolicyCriticalService;@oem20.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Critical Service Application; C:\Windows\system32\DptfPolicyCriticalService.exe [2013-10-10 89088] R2 DptfPolicyLpmService;@oem20.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Low Power Mode Service Application; C:\Windows\system32\DptfPolicyLpmService.exe [2013-10-10 82432] R2 IePluginServices;IePlugin Services; C:\ProgramData\IePluginServices\PluginService.exe [2014-08-10 694784] R2 NetHttpService;Network HTTP Support Service; C:\Windows\system32\nethtsrv.exe [2014-10-21 180224] R2 ServiceUpdater;Network Support Service Updater; C:\Windows\system32\netupdsrv.exe [2014-10-21 162816] R2 Update service;Update service; C:\Program Files\Popcorn Time\Updater.exe [2014-08-31 179200] R2 Wajam Internet Enhancer Service;Wajam Internet Enhancer Service; C:\Program Files\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe [2014-07-25 303616] S2 BcmBtRSupport;@oem29.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\Windows\system32\BtwRSupportService.exe [2014-02-06 1678040] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-22 116648] S3 cphs;Intel® Content Protection HECI Service; C:\Windows\system32\IntelCpHeciSvc.exe [2013-10-10 279000] S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-22 43696] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-22 116648] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-02-01 150600] -----------------EOF-----------------
  10. Hoi. Ik heb een probleem. Wanneer ik google chrome open en wil surfen, krijg ik de melding: kan geen verbinding maken met de proxyserver. Maar ik ben wel verbonden met internet. Ik heb HijackThis gedownload op een andere computer en via een USB overgebracht naar de computer. Ik heb "do a system scan and save a logfile' uitgevoerd. Er werd een tabblad geopend met deze tekst: Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 18:07:27, on 26-10-2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.9600.17344) Boot mode: Normal Running processes: C:\Windows\system32\taskhostex.exe C:\Windows\Explorer.EXE C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exe C:\Windows\System32\skydrive.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\System32\igfxtray.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\System32\DptfPolicyLpmServiceHelper.exe C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe C:\Program Files\Mobogenie\DaemonProcess.exe C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe C:\Windows\System32\RuntimeBroker.exe C:\Program Files\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe C:\Windows\system32\taskeng.exe C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSPanel.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE C:\Users\Brigitte\Desktop\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = istartsurf R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = istartsurf R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1407679087&from=epom&uid=3219913727_198259_7ED9CD63&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = istartsurf R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:55661;https=127.0.0.1:55661 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback> O2 - BHO: ApPtoU - {3FB11EAC-F9E0-1C9B-66F4-40E4C0F420B9} - C:\ProgramData\ApPtoU\ux.dll O2 - BHO: mysearchdial Helper Object - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - C:\Program Files\Mysearchdial\1.8.29.0\bh\mysearchdial.dll O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files\ASUS\APRP\APRP.EXE" O4 - HKLM\..\Run: [WebStorage] C:\Program Files\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe O4 - HKLM\..\Run: [igfxTray] "C:\Windows\system32\igfxtray.exe" O4 - HKLM\..\Run: [HotKeysCmds] "C:\Windows\system32\hkcmd.exe" O4 - HKLM\..\Run: [Persistence] "C:\Windows\system32\igfxpers.exe" O4 - HKLM\..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\system32\DptfPolicyLpmServiceHelper.exe O4 - HKLM\..\Run: [RtkNGUI] "C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe" /s O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: ASUS HID Access Service (AsHidService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: @oem29.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Broadcom Corporation. - C:\Windows\system32\BtwRSupportService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\system32\IntelCpHeciSvc.exe O23 - Service: @oem20.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Processor Participant Service Application (DptfParticipantProcessorService) - Intel Corporation - C:\Windows\system32\DptfParticipantProcessorService.exe O23 - Service: @oem20.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Critical Service Application (DptfPolicyCriticalService) - Intel Corporation - C:\Windows\system32\DptfPolicyCriticalService.exe O23 - Service: @oem20.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel® Dynamic Platform & Thermal Framework Low Power Mode Service Application (DptfPolicyLpmService) - Intel Corporation - C:\Windows\system32\DptfPolicyLpmService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: IePlugin Services (IePluginServices) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginServices\PluginService.exe O23 - Service: Network HTTP Support Service (NetHttpService) - Unknown owner - C:\Windows\system32\nethtsrv.exe O23 - Service: Network Support Service Updater (ServiceUpdater) - Unknown owner - C:\Windows\system32\netupdsrv.exe O23 - Service: Update service - Company - C:\Program Files\Popcorn Time\Updater.exe O23 - Service: Wajam Internet Enhancer Service - Wajam Internet Technologies Inc. - C:\Program Files\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe -- End of file - 8302 bytes Maar wat moet ik nu verder doen? Groet Brigitte
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.