Mededeling

**Emphyrio** · 14-08-13, 16:45

Hoi sophievanrooij en welkom op Nucia Security Forum,

Voor we beginnen , wil ik even vriendelijk op de volgende richtlijnen wijzen:
.

Log enkel in als beheerder met alle rechten.
Post je probleem niet in verscheidene fora. het komt je probleem niet ten goede en het is niet netjes tegenover de helpers.
Het opruimen van je systeem kan wat tijd in beslag nemen, wees geduldig.
Volg aandachtig de instructies die door mij worden gegeven.
Volg enkel het door mij gegeven advies op
Blijf bij het topic totdat ik gemeldt heb dat je PC clean is.
Als je iets niet weet of verstaat, vraag het dan even aub.
Installeer of deinstalleer géén software of hardware terwijl we met je probleem bezig zijn.
Ga ondertussen niet wat "anders" proberen, dat maakt het alleen maar moeilijker voor ons
Zet je emoticons (Smileys) uit als je logs plaatst aub .
De logs niet als bijlage, noch tussen codetags zetten aub.

.
Opmerking: Vista of Windows 7 ? >> Alle tools steeds uitvoeren als admin.
De instructies die worden gegeven, zijn enkel geldig voor jouw PC.

Stap 1:

Malware scannen en verwijderen....

Download MalwareBytes' Anti-Malware naar je bureaublad vanuit één van de volgende links:

Dubbelklik op mbam-setup.exe om het programma te installeren.

Op het einde van de setup procedure, krijg je een scherm waar je op "Voltooien" moet klikken.
Indien je MBAM niet wenst te evalueren, vink je de eerste optie uit en klik je dan pas op "Voltooien"

Zorg dat er na de installatie een vinkje is geplaatst bij:

Update MalwareBytes' Anti-Malware
Start MalwareBytes' Anti-Malware
Klik daarna op "Voltooien". Indien een update gevonden wordt, zal die gedownload en geïnstalleerd worden.

Zodra het programma gestart is, ga je naar het tabblad "Instellingen".

Vink hier aan: "Sluit Internet Explorer tijdens verwijdering van malware".
Ga naar het tabblad "Updates" en Update MBAM.
Ga daarna naar het tabblad "Scanner", kies hier voor "VOLLEDIGE Scan".
Druk vervolgens op "Scannen" om de scan te starten.
Het scannen kan een tijdje duren, dus wees geduldig.
Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.
Zorg ervoor dat daar alles aangevinkt is, daarna klik op: "Verwijder geselecteerde".
Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.

Indien MBAM vraagt om een herstart, doe dit dan ook.
Wanneer je de restart hebt gedaan, maak je een nieuwe snelle scan met MBAM.
In dat geval post je dus de twee logs.

De log wordt automatisch bewaard door MalwareBytes' Anti-Malware en kan je terugvinden door op de "Logs" tab te klikken in het programma.

Bij problemen!!!

___________________________________________________________

Stap 2:

Controle op slechte toolbars...

Opmerking:Vista of Windows 7 ? >> Alle tools steeds uitvoeren als admin.
Beveiligingssoftware uitschakelen.

Download AdwCleaner by Xplode naar je Bureaublad.

Sluit alle openstaande vensters
Start AdwCleaner en klik op Verwijderen
Klik bij AdwCleaner – Information op OK
Klik bij AdwCleaner – Restart Required op OK

Alle icoontjes verdwijnen van het Bureaublad,dit is normaal
Je PC word opnieuw opgestart en er een opent logfile (C:\ AdwCleaner[xx].txt post de inhoud hier op het Forum.

Vergeet niet om je "smileys" uit te schakelen.

Als je Startpagina ook gehijackt was,stel dan de zoekmachine opnieuw in,deze word standaard door AdwCleaner terug gezet naar Google.com

___________________________________________________________

Stap 3:

Download DDS.com, DDS.scr of DDS.pif van één van deze locaties en plaats het op je bureaublad:

DDS is een diagnosetool en maakt gebruik van scripts.
Is het uitvoeren van scripts uitgeschakeld, dan schakel je dit weer in zodat er geen problemen optreden bij gebruik van DDS.

Dubbelklik op DDS om de tool te starten. (afhankelijk van de download die je gekozen hebt kan dit het bestand DDS.com, DDS.scr of DDS.pif zijn)
Wanneer het klaar is openen er twee logfiles: DDS.txt en Attach.txt
Beide logfiles sla je op je bureaublad.

Post de inhoud van DDS.txt.

De inhoud Attach.txt moet je niet posten en Attach.txt moet je niet als bijlage toevoegen aan je post, tenzij ik er om vraag.

___________________________________________________________

Stap 4:

Controle op updates...

Download Security Check op je bureaublad via hier of hier

Start Security Check
Volg de Instructies in het scherm
Aan het eind verschijnt een log ( checkup.txt )
Plaats de inhoud ervan in je volgende antwoord.

In je volgende posting, had ik graag de volgende logs gezien, gemaakt in de opgestelde volgorde:
.

MBAM
AdwCleaner
DDS
checkup.txt

.
Deze logs NIET als bijlage of tussen codetags posten aub.
(Desnoods in meerdere postingen.)

Emphyrio

**sophievanrooij** · 15-08-13, 09:28

MBAM-log

Malwarebytes Anti-Malware (PRO) 1.75.0.1300

Malwarebytes Cyber Security for Home & Business | Anti-Malware

https://www.malwarebytes.org

Protect your home and business PCs, Macs, iOS and Android devices from malware, viruses & cyber threats with Malwarebytes cyber security solutions.

Databaseversie: v2013.08.15.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
SophieVanRooij :: SOPHIE-PC [administrator]

Bescherming: Uitgeschakeld

15-8-2013 7:34:11
mbam-log-2013-08-15 (07-34-11).txt

Scan type: Volledige scan (C:\|D:\|)
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 463320
Verstreken tijd: 2 uur/uren, 29 minuut/minuten, 8 seconde(n)

Geheugenprocessen gedetecteerd: 2
C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe (PUP.Optional.Wajam.A) -> 2360 -> Zal worden verwijderd tijdens het herstarten.
C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe (PUP.Optional.DriverScanner.A) -> 3988 -> Zal worden verwijderd tijdens het herstarten.

Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 12
HKLM\SYSTEM\CurrentControlSet\Services\WajamUpdater (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D} (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\wajam.WajamBHO.1 (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\wajam.WajamBHO (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1 (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.

Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 33
C:\Users\SophieVanRooij\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner (PUP.Optional.DriverScanner.A) -> Zal worden verwijderd tijdens het herstarten.
C:\Program Files (x86)\Uniblue\DriverScanner\locale (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\br (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\br\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\de (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\de\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\dk (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\dk\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\en (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\en\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\es (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\es\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\fi (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\fi\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\fr (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\fr\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\it (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\it\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\jp (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\jp\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\nl (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\nl\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\no (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\no\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\ru (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\ru\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\se (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\se\LC_MESSAGES (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\x64 (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Wajam (PUP.Optional.Wajam.A) -> Zal worden verwijderd tijdens het herstarten.
C:\Program Files (x86)\Wajam\IE (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Wajam\Updater (PUP.Optional.Wajam.A) -> Zal worden verwijderd tijdens het herstarten.

Bestanden gedetecteerd: 59
C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe (PUP.Optional.Wajam.A) -> Zal worden verwijderd tijdens het herstarten.
C:\Program Files (x86)\Wajam\IE\priam_bho.dll (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\SophieVanRooij\AppData\Roaming\File Scout\filescout.exe (Trojan.PUP.Optional.FileScout.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\SophieVanRooij\AppData\Roaming\FrostWire\.AppSpecialShare\frostwire-4.21.5.windows.exe (PUP.Optional.OpenCandy) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\SophieVanRooij\Downloads\iLividSetup-r394-n-bc.exe (PUP.Optional.Vid) -> Succesvol in quarantaine geplaatst en verwijderd.
D:\SOFTWARE\deamon tools\daemon-410-x86.exe (Adware.Vomba) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\SophieVanRooij\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\intermediate_views.dat (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\cwebpage.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\DriverInstaller32.exe (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\driverscanner.exe (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe (PUP.Optional.DriverScanner.A) -> Zal worden verwijderd tijdens het herstarten.
C:\Program Files (x86)\Uniblue\DriverScanner\dsnotifier.exe (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\ds_move_serial.exe (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\InstallerExtensions.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\Launcher.exe (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\library.dat (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\Microsoft.VC90.CRT.manifest (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\msvcp90.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\msvcr90.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\unins000.dat (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\unins000.exe (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\unins000.msg (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\UninstallHelper.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\views.dat (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\br\br.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\br\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\de\de.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\de\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\dk\dk.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\dk\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\en\en.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\en\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\es\es.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\es\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\fi\fi.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\fi\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\fr\fr.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\fr\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\it\it.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\it\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\jp\jp.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\jp\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\nl\nl.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\nl\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\no\no.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\no\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\ru\ru.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\ru\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\se\se.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\locale\se\LC_MESSAGES\messages.mo (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\x64\DriverInstaller64.exe (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\x64\Microsoft.VC90.CRT.manifest (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\x64\msvcp90.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Uniblue\DriverScanner\x64\msvcr90.dll (PUP.Optional.DriverScanner.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Wajam\uninstall.exe (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Wajam\IE\favicon.ico (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Wajam\IE\wajamLogo.bmp (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Wajam\Updater\update.exe (PUP.Optional.Wajam.A) -> Succesvol in quarantaine geplaatst en verwijderd.

(einde)

**sophievanrooij** · 15-08-13, 09:29

AdwCleaner-log

# AdwCleaner v2.306 - Verslag gemaakt op 15/08/2013 om 10:15:03
# Geactualiseerd op 19/07/2013 door Xplode
# Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Gebruiker : SophieVanRooij - SOPHIE-PC
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Users\SophieVanRooij\Desktop\adwcleaner.exe
# Optie [Zoeken]

***** [Diensten] *****

***** [Files / Mappen] *****

File Aanwezig : C:\END
File Aanwezig : C:\user.js
File Aanwezig : C:\Users\SophieVanRooij\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Aanwezig : C:\Users\SophieVanRooij\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Map Aanwezig : C:\Program Files (x86)\Application Updater
Map Aanwezig : C:\Program Files (x86)\Ask.com
Map Aanwezig : C:\Program Files (x86)\Common Files\spigot
Map Aanwezig : C:\Program Files (x86)\Complitly
Map Aanwezig : C:\Program Files (x86)\mixidj
Map Aanwezig : C:\Program Files (x86)\Red Sky
Map Aanwezig : C:\Program Files\Web Assistant
Map Aanwezig : C:\ProgramData\Babylon
Map Aanwezig : C:\ProgramData\BrowserProtect
Map Aanwezig : C:\ProgramData\Partner
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Local\Conduit
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Local\DownTango
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Local\Google\Chrome\User Data\Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Local\PackageAware
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Local\Wajam
Map Aanwezig : C:\Users\SophieVanRooij\AppData\LocalLow\Conduit
Map Aanwezig : C:\Users\SophieVanRooij\AppData\LocalLow\incredibar.com
Map Aanwezig : C:\Users\SophieVanRooij\AppData\LocalLow\mixidj
Map Aanwezig : C:\Users\SophieVanRooij\AppData\LocalLow\PriceGong
Map Aanwezig : C:\Users\SophieVanRooij\AppData\LocalLow\Search Settings
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Roaming\Complitly
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Roaming\CRMixiDJTB
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Roaming\file scout
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Map Aanwezig : C:\Users\SophieVanRooij\AppData\Roaming\OpenCandy

***** [Register] *****

Sleutel Aanwezig : HKCU\Software\AppDataLow\AskToolbarInfo
Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\PriceGong
Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\Search Settings
Sleutel Aanwezig : HKCU\Software\Ask.com
Sleutel Aanwezig : HKCU\Software\BabSolution
Sleutel Aanwezig : HKCU\Software\Complitly
Sleutel Aanwezig : HKCU\Software\DataMngr
Sleutel Aanwezig : HKCU\Software\DataMngr_Toolbar
Sleutel Aanwezig : HKCU\Software\IM
Sleutel Aanwezig : HKCU\Software\ImInstaller
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CA9B9C89-4662-4ADC-9C23-A452BECD5D19}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CA9B9C89-4662-4ADC-9C23-A452BECD5D19}
Sleutel Aanwezig : HKCU\Software\mixidj
Sleutel Aanwezig : HKCU\Software\Search Settings
Sleutel Aanwezig : HKCU\Software\Wajam
Sleutel Aanwezig : HKCU\Software\YahooPartnerToolbar
Sleutel Aanwezig : HKCU\Software\5e48d8fb469ed17
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Sleutel Aanwezig : HKLM\Software\Application Updater
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Sleutel Aanwezig : HKLM\Software\Classes\Installer\Features\FA26994B9BACED4478924A63F944ABD0
Sleutel Aanwezig : HKLM\Software\Classes\Installer\Products\FA26994B9BACED4478924A63F944ABD0
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\mixidj.mixidjappCore
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\mixidj.mixidjappCore.1
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\mixidj.mixidjdskBnd
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\mixidj.mixidjdskBnd.1
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\mixidj.mixidjHlpr
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\mixidj.mixidjHlpr.1
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{CCA8F2AB-BE4E-41F0-A289-4D960CEA58EA}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Sleutel Aanwezig : HKLM\Software\Conduit
Sleutel Aanwezig : HKLM\Software\DataMngr
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASAPI32
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASMANCS
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Sleutel Aanwezig : HKLM\Software\mixidj
Sleutel Aanwezig : HKLM\Software\Search Settings
Sleutel Aanwezig : HKLM\Software\SimplyGen
Sleutel Aanwezig : HKLM\Software\Wajam
Sleutel Aanwezig : HKLM\Software\Web Assistant
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\5e48d8fb469ed17
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA9B9C89-4662-4ADC-9C23-A452BECD5D19}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\boipimhfjpakfgckhbljjengakjhkcbp
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kpepfkjapeclaafmhoelccknpfedainn
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B49962AF-CAB9-44DE-8729-A4369F44BA0D}
Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mixidj
Sleutel Aanwezig : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED}
Sleutel Aanwezig : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Sleutel Aanwezig : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Sleutel Aanwezig : HKLM\SOFTWARE\Web Assistant
Sleutel Aanwezig : HKU\S-1-5-21-1249117268-3634898319-1140475802-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Sleutel Aanwezig : HKU\S-1-5-21-1249117268-3634898319-1140475802-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Sleutel Aanwezig : HKU\S-1-5-21-1249117268-3634898319-1140475802-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Sleutel Aanwezig : HKU\S-1-5-21-1249117268-3634898319-1140475802-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Sleutel Aanwezig : HKU\S-1-5-21-1249117268-3634898319-1140475802-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Waarde Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Waarde Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Waarde Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Waarde Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Waarde Aanwezig : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}]
Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]
Waarde Aanwezig : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Waarde Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}]
Waarde Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{CA9B9C89-4662-4ADC-9C23-A452BECD5D19}]
Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]

***** [Browsers] *****

-\\ Internet Explorer v10.0.9200.16660

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://mixidj.delta-search.com/?affID=121136&babsrc=HP_ss&mntrId=52CF4487FC9EEC6A
[HKCU\Software\Microsoft\Internet Explorer\Main - bProtector Start Page] = hxxp://mixidj.delta-search.com/?affID=121136&babsrc=HP_ss&mntrId=52CF4487FC9EEC6A

-\\ Google Chrome v28.0.1500.95

File : C:\Users\SophieVanRooij\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] De file bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[R1].txt - [16250 octets] - [15/08/2013 10:13:31]
AdwCleaner[R2].txt - [16184 octets] - [15/08/2013 10:15:03]
AdwCleaner[S1].txt - [469 octets] - [15/08/2013 10:14:37]

########## EOF - C:\AdwCleaner[R2].txt - [16304 octets] ##########

**sophievanrooij** · 15-08-13, 09:29

DDS-log

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16660 BrowserJavaVersion: 10.25.2
Run by SophieVanRooij at 10:17:38 on 2013-08-15
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6135.3565 [GMT 2:00]
.
AV: McAfee Antivirus en antispyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
SP: McAfee Antivirus en antispyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\OEM\USBDECTION\USBS3S4Detection.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\SysWOW64\schtasks.exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\McAfee\MSC\McAPExe.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\vssvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://mixidj.delta-search.com/?affID=121136&babsrc=HP_ss&mntrId=52CF4487FC9EEC6A
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=aspire_m5910&r=17360211c505pe436v145w5751u36n
uDefault_Search_URL = hxxp://www.google.com/ie
mSearch Page = hxxp://nl.woofi.info
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
uURLSearchHooks: IObit Toolbar: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
uURLSearchHooks: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
uURLSearchHooks: {32b29df0-2237-4370-9a29-37cebb730e9b} - <orphaned>
mURLSearchHooks: <No Name>: - LocalServer32 - <no file>
mURLSearchHooks: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
mWinlogon: Userinit = userinit.exe,
BHO: IObit Toolbar: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\SophieVanRooij\AppData\Roaming\Complitly\Complitly.dll
BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} -
BHO: Web Assistant: {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll
BHO: BitComet Helper: {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll
BHO: mixidj Helper Object: {4D6A9BBF-402C-4301-B1EF-28D04F71D761} - C:\Program Files (x86)\mixidj\mixidj\1.8.4.1\bh\mixidj.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Aanmeldhulp voor Windows Live ID: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Advanced SystemCare Browser Protection: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
TB: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
TB: MixiDJ Toolbar: {CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - C:\Program Files (x86)\mixidj\mixidj\1.8.4.1\mixidjTlbr.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: IObit Toolbar: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
EB: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
uRun: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [MDS_Menu] "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
mRun: [DXM6Patch_981116] C:\Windows\p_981116.exe /Q:A
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
mRun: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [BCSSync] "c:\program files (x86)\microsoft office\office14\bcssync.exe" /delayservices
mRun: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
mRunOnce: [*ForceDelete] C:\Users\SophieVanRooij\Desktop\adwcleaner.exe /forcedelete
StartupFolder: C:\Users\SOPHIE~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\STICKY~1.LNK - C:\Users\SophieVanRooij\Downloads\StickyNotes\StickyNotes.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\UltraMon.lnk - C:\Windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: &D&ownload &met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload alles met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: &Verzenden naar OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: E&xporteren naar Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {5D06ED6E-DA78-4486-A246-B131A2C39807} - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
TCP: NameServer = 62.238.255.69 212.115.192.100
TCP: Interfaces\{F037E7A1-FD3B-4EFF-A644-019C59AA830E} : DHCPNameServer = 62.238.255.69 212.115.192.100
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\SophieVanRooij\AppData\Roaming\Complitly\64\Complitly64.dll
x64-BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - <orphaned>
x64-BHO: Web Assistant: {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension64.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
x64-Run: [RtHDVCpl] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
x64-Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe
x64-Run: [Apoint] C:\Program Files (x86)\Apoint\Apoint.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 amdkmafd;AMD Audio Bus Lower Filter;C:\Windows\System32\drivers\amdkmafd.sys [2013-6-7 21160]
R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\drivers\amdkmpfd.sys [2013-6-29 35936]
R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2012-9-29 647736]
R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2012-9-29 28216]
R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;C:\Windows\System32\drivers\iusb3hcs.sys [2013-6-5 20464]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2012-10-29 772944]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2012-10-29 342416]
R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDriver.sys [2013-2-9 17720]
R1 MOBKFilter;MOBKFilter;C:\Windows\System32\drivers\MOBK.sys [2012-11-18 66040]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2009-6-3 22576]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2009-6-3 20016]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2009-6-3 60464]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2012-10-24 574272]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-3-8 202752]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 Fabs;FABS - Helping agent for MAGIX media database;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-8-27 1253376]
R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]
R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-2-9 821592]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-3-11 418376]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [2013-6-26 120592]
R2 McMPFSvc;McAfee Personal Firewall;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2012-11-18 1017016]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2012-11-18 218760]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-11-18 182752]
R2 MOBKbackup;1%;C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-4-13 231224]
R2 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-2-1 305520]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-3-25 490280]
R2 UltraMonUtility;UltraMon Utility Driver;C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [2008-11-14 20512]
R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-5-12 243232]
R2 USBS3S4Detection;USBS3S4Detection;C:\OEM\USBDECTION\USBS3S4Detection.exe [2010-5-12 76320]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-8-14 96256]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2012-10-29 70112]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-3-11 25928]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2012-10-29 309968]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2012-10-29 516608]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\drivers\mfencbdc.sys [2013-2-18 337120]
R3 pmkbdfltr;PenMount Keyboard Device Filter Driver;C:\Windows\System32\drivers\pmkbdfltr.sys [2012-8-6 18832]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2013-8-14 262872]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-8-14 872152]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_driver_Intel.sys [2013-8-14 34544]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-3-11 701512]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service --> C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service [?]
S3 BRDriver64;BRDriver64;C:\ProgramData\BitRaider\BRDriver64.sys [2013-8-10 75048]
S3 BrSerIb;Brother Serial Interface Driver(WDM);C:\Windows\System32\drivers\BrSerIb.sys [2012-12-4 95344]
S3 BRSptSvc;BitRaider Mini-Support Service;C:\ProgramData\BitRaider\BRSptSvc.exe [2013-8-10 476936]
S3 BrUsbSIb;Brother Serial USB Driver(WDM);C:\Windows\System32\drivers\BrUsbSib.sys [2012-12-4 21872]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-9-24 102240]
S3 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-2-9 21384]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-8-7 3276800]
S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\System32\drivers\ggflt.sys [2011-2-16 13352]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\drivers\HipShieldK.sys [2013-4-22 197264]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-2-5 235216]
S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\drivers\mfencrk.sys [2013-2-18 95856]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-8 19456]
S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2013-2-9 33224]
S3 SmbDrv;SmbDrv;C:\Windows\System32\drivers\Smb_driver.sys [2012-7-11 22800]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-7-30 203104]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-8 57856]
S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2013-2-9 21904]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]
S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-2-3 1255736]
.
=============== Created Last 30 ================
.
2013-08-15 05:58:01 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-08-15 05:58:00 356864 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2013-08-15 05:58:00 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-08-15 05:58:00 257536 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2013-08-15 05:45:25 -------- d-----w- C:\Windows\System32\MRT
2013-08-15 05:42:52 1472512 ----a-w- C:\Windows\System32\crypt32.dll
2013-08-15 05:42:52 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-08-15 05:42:51 224256 ----a-w- C:\Windows\System32\wintrust.dll
2013-08-15 05:42:51 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-08-15 05:42:51 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-08-15 05:42:51 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2013-08-15 05:42:50 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2013-08-15 05:42:50 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-08-15 05:42:35 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll
2013-08-15 05:42:34 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2013-08-15 05:42:25 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-08-15 05:42:25 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-08-15 05:41:04 1910208 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-08-14 14:25:33 1795952 ----a-w- C:\Windows\System32\WdfCoInstaller01011.dll
2013-08-14 14:25:28 34544 ----a-w- C:\Windows\System32\drivers\Smb_driver_Intel.sys
2013-08-14 14:24:43 9890008 ----a-w- C:\Windows\SysWow64\RtsUStoricon.dll
2013-08-14 14:24:43 423640 ----a-w- C:\Windows\System32\RtsUStor.dll
2013-08-14 14:24:43 262872 ----a-w- C:\Windows\System32\drivers\RtsUStor.sys
2013-08-14 14:20:07 872152 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2013-08-14 14:20:07 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2013-08-14 14:18:44 96256 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys
2013-08-14 14:18:44 110080 ----a-w- C:\Windows\System32\DelayAPO.dll
2013-08-13 14:13:50 -------- d-----w- C:\Program Files (x86)\Application Updater
2013-08-13 14:13:49 -------- d-----w- C:\Program Files (x86)\IObit Toolbar
2013-08-13 14:13:49 -------- d-----w- C:\Program Files (x86)\Common Files\Spigot
2013-08-10 06:33:59 -------- d-----w- C:\Users\SophieVanRooij\AppData\Local\SWTOR
2013-08-10 06:20:14 -------- d-----w- C:\ProgramData\BitRaider
2013-08-10 06:20:03 -------- d-----w- C:\Users\SophieVanRooij\AppData\Local\SWTORPerf
2013-08-10 06:18:32 -------- d-----w- C:\Program Files (x86)\Common Files\BioWare
.
==================== Find3M ====================
.
2013-08-14 14:20:07 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:39:38 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-26 01:59:38 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-07-09 06:03:30 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-07-09 05:54:22 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-07-09 05:53:12 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-07-09 05:03:34 3968960 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-07-09 05:03:34 3913664 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-07-09 04:53:47 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-07-09 04:52:33 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-07-09 04:45:07 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-07-09 02:49:42 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-07-09 02:49:41 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-07-09 02:49:39 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-07-09 02:49:38 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-06-29 09:07:28 35936 ----a-w- C:\Windows\System32\drivers\amdkmpfd.sys
2013-06-27 05:56:17 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-27 05:56:17 867240 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll
2013-06-27 05:56:17 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-06-15 04:32:16 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2013-06-12 09:01:21 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2013-06-12 09:01:21 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2013-06-12 09:00:25 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-06-12 09:00:25 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-06-12 08:59:52 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-06-12 08:59:52 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-06-12 08:46:13 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-12 08:46:13 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-06-07 05:08:59 21160 ----a-w- C:\Windows\System32\drivers\amdkmafd.sys
2013-06-05 14:45:57 20464 ----a-w- C:\Windows\System32\drivers\iusb3hcs.sys
2013-06-05 03:34:27 3153920 ----a-w- C:\Windows\System32\win32k.sys
2013-06-04 06:00:13 624128 ----a-w- C:\Windows\System32\qedit.dll
2013-06-04 04:53:07 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2013-05-28 13:05:16 163328 ----a-w- C:\Windows\SysWow64\FlashPlayerUpdateService.exe
.
============= FINISH: 10:18:29,16 ===============

**sophievanrooij** · 15-08-13, 09:30

Checkup-log

Results of screen317's Security Check version 0.99.72
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 10
``````````````Antivirus/Firewall Check:``````````````
McAfee Antivirus en antispyware
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Java(TM) 6 Update 37
Java 7 Update 25
Java(TM) 6 Update 2
Adobe Flash Player 11.7.700.224
Adobe Reader XI
Google Chrome 28.0.1500.72
Google Chrome 28.0.1500.95
````````Process Check: objlist.exe by Laurent````````
IObit IObit Malware Fighter IMFsrv.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
McAfee Online Backup MOBKbackup.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 1%
````````````````````End of Log``````````````````````

**sophievanrooij** · 15-08-13, 11:19

Ik heb net starwars the old repbulic online gespeeld en helaas is het probleem niet verholpen.

(misschien handig om te weten, ik heb 2 beeldschermen. tijdens gamen heb ik niets open staan op het andere beeldscherm)

**Emphyrio** · 15-08-13, 13:08

IObit Malware Fighter mag je verwijderen van je PC.
Je pc daarna herstarten.

Download TFC en sla deze op je Bureaublad op.

Dubbelklik op TFC.exe om het programma te openen.
Het programma zal alle andere programma's sluiten, zorg er dus voor dat je al je werk hebt opgeslagen voordat je verder gaat.
Klik op de knop Start om het programma te starten.
Als het programma klaar is, dan zal het je computer opnieuw opstarten.
Als dit niet gebeurt, start dan je computer handmatig opnieuw op.

_____________________________________________________________

Download Combofix en plaats het op je bureaublad.

Extra nota... Zorg ervoor dat je Security software uitschakeld is tijdens het gebruik van Combofix.
Dit omdat deze scanners bepaalde componenten die Combofix gebruikt, onterecht zien als geïnfecteerd en Combofix zullen blokkeren.

Kijk hier indien je niet weet hoe je je Antivirus, Firewall en/of Antispywarescanner moet uitschakelen.

Sluit ALLE vensters, ook je browser en laat Combofix rustig zijn werk doen.
Open dus geen andere applicaties totdat Combofix de log heeft gepresenteert.

Als Combofix vraagt om een update, dan staat je dit toe.

Wanneer ComboFix klaar is met scannen, dit kan eventueel na een reboot zijn, opent er een logfile (combofix.txt).
Deze kan je vinden als C:\combofix.txt.

Post het Combofixlogje samen met een nieuw DDS logje in je volgende antwoord.

* OPMERKING: Indien je één van de onderstaande meldingen krijgt na het gebruik van ComboFix, herstart dan de computer.

Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.
Illegal operation attempted on a registry key that has been marked for deletion.

**sophievanrooij** · 15-08-13, 23:12

Combofix-log

ComboFix 13-08-15.02 - SophieVanRooij 15-08-2013 23:50:34.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6135.3748 [GMT 2:00]
Gestart vanuit: c:\users\SophieVanRooij\Desktop\ComboFix.exe
AV: McAfee Antivirus en antispyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
FW: McAfee Firewall *Disabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: McAfee Antivirus en antispyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Complitly
c:\program files (x86)\Complitly\chrome\ComplitlyChrome.crx
c:\program files (x86)\Complitly\FireFoxExtensionWithFF8Fix.exe
c:\program files (x86)\Complitly\FireFoxUninstaller.exe
c:\program files (x86)\Complitly\InstTracker.exe
c:\program files (x86)\Complitly\[email protected]\chrome.manifest
c:\program files (x86)\Complitly\[email protected]\chrome\content\appIcon.png
c:\program files (x86)\Complitly\[email protected]\chrome\content\browserOverlay.xul
c:\program files (x86)\Complitly\[email protected]\chrome\content\options.js
c:\program files (x86)\Complitly\[email protected]\chrome\content\options.xul
c:\program files (x86)\Complitly\[email protected]\chrome\content\utils.js
c:\program files (x86)\Complitly\[email protected]\defaults\preferences\predictad.js
c:\program files (x86)\Complitly\[email protected]\install.rdf
c:\program files (x86)\Complitly\System.Data.SQLite.dll
c:\program files (x86)\Complitly\unins000.dat
c:\program files (x86)\Complitly\unins000.exe
c:\program files\Web Assistant\ExTEnsion32.dll
c:\users\SophieVanRooij\AppData\Roaming\chrtmp
c:\users\SophieVanRooij\AppData\Roaming\inst.exe
c:\users\SophieVanRooij\AppData\Roaming\vso_ts_preview.xml
c:\windows\IsUn0413.exe
c:\windows\security\Database\tmp.edb
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2013-07-15 to 2013-08-15 ))))))))))))))))))))))))))))))
.
.
2013-08-15 05:58 . 2013-07-26 03:35 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-08-15 05:58 . 2013-07-26 05:12 526336 ----a-w- c:\windows\system32\ieui.dll
2013-08-15 05:58 . 2013-07-26 05:12 356864 ----a-w- c:\program files\Internet Explorer\IEShims.dll
2013-08-15 05:58 . 2013-07-26 03:11 257536 ----a-w- c:\program files (x86)\Internet Explorer\ieproxy.dll
2013-08-15 05:58 . 2013-07-26 02:49 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-08-15 05:45 . 2013-08-15 05:51 -------- d-----w- c:\windows\system32\MRT
2013-08-15 05:42 . 2013-07-09 05:46 1472512 ----a-w- c:\windows\system32\crypt32.dll
2013-08-15 05:42 . 2013-07-09 04:46 1166848 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-08-15 05:42 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2013-08-15 05:42 . 2013-07-09 05:46 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-15 05:42 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-08-15 05:42 . 2013-07-09 04:46 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2013-08-15 05:42 . 2013-07-09 05:46 139776 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-15 05:42 . 2013-07-09 04:46 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-08-15 05:42 . 2013-07-09 05:51 1217024 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-15 05:42 . 2013-07-09 04:52 663552 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2013-08-15 05:42 . 2013-07-25 09:25 1888768 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-08-15 05:42 . 2013-07-25 08:57 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-08-15 05:41 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-14 14:25 . 2013-08-14 14:25 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2013-08-14 14:25 . 2013-08-14 14:25 34544 ----a-w- c:\windows\system32\drivers\Smb_driver_Intel.sys
2013-08-14 14:24 . 2013-08-14 14:24 9890008 ----a-w- c:\windows\SysWow64\RtsUStoricon.dll
2013-08-14 14:24 . 2013-08-14 14:24 423640 ----a-w- c:\windows\system32\RtsUStor.dll
2013-08-14 14:24 . 2013-08-14 14:24 262872 ----a-w- c:\windows\system32\drivers\RtsUStor.sys
2013-08-14 14:20 . 2013-08-14 14:20 872152 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2013-08-14 14:20 . 2013-08-14 14:20 74456 ----a-w- c:\windows\system32\RtNicProp64.dll
2013-08-14 14:18 . 2013-08-14 14:18 96256 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2013-08-14 14:18 . 2013-08-14 14:18 110080 ----a-w- c:\windows\system32\DelayAPO.dll
2013-08-13 14:13 . 2013-08-13 14:13 -------- d-----w- c:\program files (x86)\Application Updater
2013-08-13 14:13 . 2013-08-13 14:13 -------- d-----w- c:\program files (x86)\IObit Toolbar
2013-08-13 14:13 . 2013-08-13 14:13 -------- d-----w- c:\program files (x86)\Common Files\Spigot
2013-08-10 06:33 . 2013-08-10 06:33 -------- d-----w- c:\users\SophieVanRooij\AppData\Local\SWTOR
2013-08-10 06:20 . 2013-08-11 17:39 -------- d-----w- c:\programdata\BitRaider
2013-08-10 06:18 . 2013-08-10 06:18 -------- d-----w- c:\program files (x86)\Common Files\BioWare
2013-08-10 06:18 . 2013-08-10 06:18 -------- d-----w- c:\users\hedev
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-15 05:45 . 2011-02-03 07:49 78161360 ----a-w- c:\windows\system32\MRT.exe
2013-08-14 14:20 . 2010-05-12 12:01 108760 ----a-w- c:\windows\system32\RTNUninst64.dll
2013-07-09 04:45 . 2013-08-15 05:43 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-06-29 09:07 . 2013-06-29 09:07 35936 ----a-w- c:\windows\system32\drivers\amdkmpfd.sys
2013-06-27 05:56 . 2013-06-27 05:56 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-27 05:56 . 2012-06-25 07:00 867240 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2013-06-27 05:56 . 2011-02-05 09:58 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-06-12 09:01 . 2013-06-12 09:01 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-06-12 09:01 . 2013-06-12 09:01 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-06-12 09:00 . 2013-06-12 09:00 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-06-12 09:00 . 2013-06-12 09:00 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-06-12 08:59 . 2013-06-12 08:59 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-06-12 08:59 . 2013-06-12 08:59 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-06-12 08:46 . 2012-04-03 14:19 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 08:46 . 2011-05-17 03:10 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-07 05:08 . 2013-06-07 05:08 21160 ----a-w- c:\windows\system32\drivers\amdkmafd.sys
2013-06-05 14:45 . 2013-06-05 14:45 20464 ----a-w- c:\windows\system32\drivers\iusb3hcs.sys
2013-06-05 03:34 . 2013-07-11 06:14 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 06:00 . 2013-07-11 06:15 624128 ----a-w- c:\windows\system32\qedit.dll
2013-06-04 04:53 . 2013-07-11 06:15 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2013-05-28 13:05 . 2013-06-20 06:45 163328 ----a-w- c:\windows\SysWow64\FlashPlayerUpdateService.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}"= "c:\program files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll" [2013-08-08 1356096]
.
[HKEY_CLASSES_ROOT\clsid\{0bda0769-fd72-49f4-9266-e1fb004f4d8f}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}]
2013-08-08 17:33 1356096 ----a-w- c:\program files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}]
2012-11-13 07:23 263136 ----a-w- c:\program files (x86)\mixidj\mixidj\1.8.4.1\bh\mixidj.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{CA9B9C89-4662-4ADC-9C23-A452BECD5D19}"= "c:\program files (x86)\mixidj\mixidj\1.8.4.1\mixidjTlbr.dll" [2012-11-13 337376]
"{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}"= "c:\program files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll" [2013-08-08 1356096]
.
[HKEY_CLASSES_ROOT\clsid\{ca9b9c89-4662-4adc-9c23-a452becd5d19}]
[HKEY_CLASSES_ROOT\mixidj.mixidjdskBnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]
[HKEY_CLASSES_ROOT\mixidj.mixidjdskBnd]
.
[HKEY_CLASSES_ROOT\clsid\{0bda0769-fd72-49f4-9266-e1fb004f4d8f}]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayid entifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-02-01 18:03 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2011-08-28 3077528]
"MobileDocuments"="c:\program files (x86)\Common Files\Apple\Internet Services\ubd.exe" [2012-02-23 59240]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-12 39408]
"Advanced SystemCare 6"="c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" [2013-04-18 491840]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2009-12-25 201512]
"EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2009-12-25 401192]
"Hotkey Utility"="c:\program files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" [2010-08-04 611872]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-14 98304]
"MDS_Menu"="c:\program files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"DXM6Patch_981116"="c:\windows\p_981116.exe" [1998-11-30 497376]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"nmctxth"="c:\program files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2009-07-07 647216]
"nmapp"="c:\program files (x86)\Pure Networks\Network Magic\nmapp.exe" [2009-07-08 472112]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-05-31 152392]
"BCSSync"="c:\program files (x86)\microsoft office\office14\bcssync.exe" [2010-03-13 91520]
"mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-02-28 454600]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"SearchSettings"="c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" [2013-08-08 1303360]
.
c:\users\SophieVanRooij\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Sticky Notes.lnk - c:\users\SophieVanRooij\Downloads\StickyNotes\StickyNotes.exe [2012-11-7 503808]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe [2013-2-5 272248]
UltraMon.lnk - c:\windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico /auto [2011-5-8 29310]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"SearchSettings"="c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
.
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe;c:\program files (x86)\BitComet\tools\BitCometService.exe [x]
R3 BRDriver64;BRDriver64;c:\programdata\BitRaider\BRDriver64.sys;c:\programdata\BitRaider\BRDriver64.sy s [x]
R3 BrSerIb;Brother Serial Interface Driver(WDM);c:\windows\system32\DRIVERS\BrSerIb.sys;c:\windows\SYSNATIVE\DRIVERS\BrSerIb.sys [x]
R3 BRSptSvc;BitRaider Mini-Support Service;c:\programdata\BitRaider\BRSptSvc.exe;c:\programdata\BitRaider\BRSptSvc.exe [x]
R3 BrUsbSIb;Brother Serial USB Driver(WDM);c:\windows\system32\DRIVERS\BrUsbSIb.sys;c:\windows\SYSNATIVE\DRIVERS\BrUsbSIb.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 EagleX64;EagleX64; [x]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [x]
R3 FNETTHJM;Freecom Turbo USB 2.0;c:\windows\system32\drivers\fnetthjm.sys;c:\windows\SYSNATIVE\drivers\fnetthjm.sys [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys;c:\windows\SYSNATIVE\drivers\HipShieldK.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe;c:\program files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [x]
R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys;c:\windows\SYSNATIVE\DRIVERS\mfencrk.sys [x]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys;c:\windows\SYSNATIVE\Drivers\pcouffin.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominipor t.sys [x]
R3 SmbDrv;SmbDrv;c:\windows\system32\DRIVERS\Smb_driver.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amdkmafd;AMD Audio Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmafd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmafd.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYS NATIVE\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\s ptd.sys [x]
S1 MOBKFilter;MOBKFilter;c:\windows\system32\DRIVERS\MOBK.sys;c:\windows\SYSNATIVE\DRIVERS\MOBK.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\ mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwl PSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwl PSDVDisk.sys [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET \Framework64\v4.0.30319\mscorsvw.exe [x]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [x]
S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe;c:\program files (x86)\Acer\Registration\GregHSRW.exe [x]
S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\progra~2\mcafee\SITEAD~1\mcsacore.exe;c:\progra~2\mcafee\SITEAD~1\mcsacore.exe [x]
S2 McMPFSvc;McAfee Personal Firewall;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [x]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]
S2 MOBKbackup;1%;c:\program files (x86)\McAfee Online Backup\MOBKbackup.exe;c:\program files (x86)\McAfee Online Backup\MOBKbackup.exe [x]
S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 UltraMonUtility;UltraMon Utility Driver;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [x]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S2 USBS3S4Detection;USBS3S4Detection;c:\oem\USBDECTION\USBS3S4Detection.exe;c:\oem\USBDECTION\USBS3S4De tection.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.s ys [x]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]
S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys;c:\windows\SYSNATIVE\DRIVERS\mfencbdc.sys [x]
S3 pmkbdfltr;PenMount Keyboard Device Filter Driver;c:\windows\system32\DRIVERS\pmkbdfltr.sys;c:\windows\SYSNATIVE\DRIVERS\pmkbdfltr.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_dr iver_Intel.sys [x]
.
.
--- Andere Services/Drivers In Geheugen ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-08-02 15:01 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe
.
Inhoud van de 'Gedeelde Taken' map
.
2013-08-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 13:05]
.
2013-08-15 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2011-05-01 15:24]
.
2013-08-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-02 16:19]
.
2013-08-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-02 16:19]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\eg isPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-02-01 18:06 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MO BK]
@="{3c3f3c1a-9153-7c05-f938-622e7003894d}"
[HKEY_CLASSES_ROOT\CLSID\{3c3f3c1a-9153-7c05-f938-622e7003894d}]
2010-04-13 19:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MO BK2]
@="{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}"
[HKEY_CLASSES_ROOT\CLSID\{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}]
2010-04-13 19:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MO BK3]
@="{b4caf489-1eec-c617-49ad-8d7088598c06}"
[HKEY_CLASSES_ROOT\CLSID\{b4caf489-1eec-c617-49ad-8d7088598c06}]
2010-04-13 19:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mwlDaemon"="c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-02-01 349552]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-08-14 13626072]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://mixidj.delta-search.com/?affID=121136&babsrc=HP_ss&mntrId=52CF4487FC9EEC6A
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://nl.woofi.info
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &D&ownload &met BitComet - c:\program files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload alles met BitComet - c:\program files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: &Verzenden naar OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 62.238.255.69 212.115.192.100
.
- - - - ORPHANS VERWIJDERD - - - -
.
URLSearchHooks-{32b29df0-2237-4370-9a29-37cebb730e9b} - (no file)
BHO-{336D0C35-8A85-403a-B9D2-65C292C39087} - c:\program files\Web Assistant\Extension32.dll
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
WebBrowser-{32B29DF0-2237-4370-9A29-37CEBB730E9B} - (no file)
HKLM-Run-Apoint - c:\program files (x86)\Apoint\Apoint.exe
AddRemove-{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 - c:\program files (x86)\Complitly\unins000.exe
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe ,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe ,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Cyberlink\Shared files\RichVideo.exe
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
c:\program files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
.
**************************************************************************
.
Voltooingstijd: 2013-08-16 00:09:11 - machine werd herstart
ComboFix-quarantined-files.txt 2013-08-15 22:09
.
Pre-Run: 174.656.229.376 bytes beschikbaar
Post-Run: 173.783.957.504 bytes beschikbaar
.
- - End Of File - - 03D70C79477012512A2233DC2BFB35FC
D41D8CD98F00B204E9800998ECF8427E

**sophievanrooij** · 15-08-13, 23:12

DDS-log

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16660 BrowserJavaVersion: 10.25.2
Run by SophieVanRooij at 0:10:13 on 2013-08-16
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6135.3726 [GMT 2:00]
.
AV: McAfee Antivirus en antispyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
SP: McAfee Antivirus en antispyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\OEM\USBDECTION\USBS3S4Detection.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
C:\Windows\system32\SearchIndexer.exe
C:\PROGRA~1\McAfee\MSC\McAPExe.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
C:\Program Files\UltraMon\UltraMon.exe
C:\Users\SophieVanRooij\Downloads\StickyNotes\StickyNotes.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\UltraMon\UltraMonTaskbar.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\vssvc.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\notepad.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://mixidj.delta-search.com/?affID=121136&babsrc=HP_ss&mntrId=52CF4487FC9EEC6A
uDefault_Search_URL = hxxp://www.google.com/ie
mSearch Page = hxxp://nl.woofi.info
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
uURLSearchHooks: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
mURLSearchHooks: <No Name>: - LocalServer32 - <no file>
mURLSearchHooks: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
BHO: IObit Toolbar: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\SophieVanRooij\AppData\Roaming\Complitly\Complitly.dll
BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} -
BHO: Web Assistant: {336D0C35-8A85-403a-B9D2-65C292C39087} -
BHO: BitComet Helper: {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll
BHO: mixidj Helper Object: {4D6A9BBF-402C-4301-B1EF-28D04F71D761} - C:\Program Files (x86)\mixidj\mixidj\1.8.4.1\bh\mixidj.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Aanmeldhulp voor Windows Live ID: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Advanced SystemCare Browser Protection: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
TB: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
TB: MixiDJ Toolbar: {CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - C:\Program Files (x86)\mixidj\mixidj\1.8.4.1\mixidjTlbr.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: IObit Toolbar: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
EB: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
uRun: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [MDS_Menu] "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
mRun: [DXM6Patch_981116] C:\Windows\p_981116.exe /Q:A
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
mRun: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [BCSSync] "c:\program files (x86)\microsoft office\office14\bcssync.exe" /delayservices
mRun: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
StartupFolder: C:\Users\SOPHIE~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\STICKY~1.LNK - C:\Users\SophieVanRooij\Downloads\StickyNotes\StickyNotes.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\UltraMon.lnk - C:\Windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: &D&ownload &met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload alles met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: &Verzenden naar OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: E&xporteren naar Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {5D06ED6E-DA78-4486-A246-B131A2C39807} - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
TCP: NameServer = 62.238.255.69 212.115.192.100
TCP: Interfaces\{F037E7A1-FD3B-4EFF-A644-019C59AA830E} : DHCPNameServer = 62.238.255.69 212.115.192.100
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\SophieVanRooij\AppData\Roaming\Complitly\64\Complitly64.dll
x64-BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - <orphaned>
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
x64-Run: [RtHDVCpl] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
x64-Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe
x64-Run: [Apoint] C:\Program Files (x86)\Apoint\Apoint.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 amdkmafd;AMD Audio Bus Lower Filter;C:\Windows\System32\drivers\amdkmafd.sys [2013-6-7 21160]
R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\drivers\amdkmpfd.sys [2013-6-29 35936]
R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2012-9-29 647736]
R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2012-9-29 28216]
R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;C:\Windows\System32\drivers\iusb3hcs.sys [2013-6-5 20464]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2012-10-29 772944]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2012-10-29 342416]
R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDriver.sys [2013-2-9 17720]
R1 MOBKFilter;MOBKFilter;C:\Windows\System32\drivers\MOBK.sys [2012-11-18 66040]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2009-6-3 22576]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2009-6-3 20016]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2009-6-3 60464]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2012-10-24 574272]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-3-8 202752]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 Fabs;FABS - Helping agent for MAGIX media database;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-8-27 1253376]
R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]
R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-3-11 418376]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [2013-6-26 120592]
R2 McMPFSvc;McAfee Personal Firewall;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2012-11-18 1017016]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2012-11-18 218760]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-11-18 182752]
R2 MOBKbackup;1%;C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-4-13 231224]
R2 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-2-1 305520]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-3-25 490280]
R2 UltraMonUtility;UltraMon Utility Driver;C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [2008-11-14 20512]
R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-5-12 243232]
R2 USBS3S4Detection;USBS3S4Detection;C:\OEM\USBDECTION\USBS3S4Detection.exe [2010-5-12 76320]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-8-14 96256]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2012-10-29 70112]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-3-11 25928]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2012-10-29 309968]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2012-10-29 516608]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\drivers\mfencbdc.sys [2013-2-18 337120]
R3 pmkbdfltr;PenMount Keyboard Device Filter Driver;C:\Windows\System32\drivers\pmkbdfltr.sys [2012-8-6 18832]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2013-8-14 262872]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-8-14 872152]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_driver_Intel.sys [2013-8-14 34544]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-3-11 701512]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service --> C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service [?]
S3 BRDriver64;BRDriver64;C:\ProgramData\BitRaider\BRDriver64.sys [2013-8-10 75048]
S3 BrSerIb;Brother Serial Interface Driver(WDM);C:\Windows\System32\drivers\BrSerIb.sys [2012-12-4 95344]
S3 BRSptSvc;BitRaider Mini-Support Service;C:\ProgramData\BitRaider\BRSptSvc.exe [2013-8-10 476936]
S3 BrUsbSIb;Brother Serial USB Driver(WDM);C:\Windows\System32\drivers\BrUsbSib.sys [2012-12-4 21872]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-9-24 102240]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-8-7 3276800]
S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\System32\drivers\ggflt.sys [2011-2-16 13352]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\drivers\HipShieldK.sys [2013-4-22 197264]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-2-5 235216]
S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\drivers\mfencrk.sys [2013-2-18 95856]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-8 19456]
S3 SmbDrv;SmbDrv;C:\Windows\System32\drivers\Smb_driver.sys [2012-7-11 22800]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-7-30 203104]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-8 57856]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]
S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-2-3 1255736]
.
=============== Created Last 30 ================
.
2013-08-15 22:02:33 -------- d-sh--w- C:\$RECYCLE.BIN
2013-08-15 21:48:25 98816 ----a-w- C:\Windows\sed.exe
2013-08-15 21:48:25 256000 ----a-w- C:\Windows\PEV.exe
2013-08-15 21:48:25 208896 ----a-w- C:\Windows\MBR.exe
2013-08-15 05:58:01 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-08-15 05:58:00 356864 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2013-08-15 05:58:00 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-08-15 05:58:00 257536 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2013-08-15 05:45:25 -------- d-----w- C:\Windows\System32\MRT
2013-08-15 05:42:52 1472512 ----a-w- C:\Windows\System32\crypt32.dll
2013-08-15 05:42:52 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-08-15 05:42:51 224256 ----a-w- C:\Windows\System32\wintrust.dll
2013-08-15 05:42:51 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-08-15 05:42:51 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-08-15 05:42:51 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2013-08-15 05:42:50 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2013-08-15 05:42:50 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-08-15 05:42:35 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll
2013-08-15 05:42:34 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2013-08-15 05:42:25 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-08-15 05:42:25 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-08-15 05:41:04 1910208 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-08-14 14:25:33 1795952 ----a-w- C:\Windows\System32\WdfCoInstaller01011.dll
2013-08-14 14:25:28 34544 ----a-w- C:\Windows\System32\drivers\Smb_driver_Intel.sys
2013-08-14 14:24:43 9890008 ----a-w- C:\Windows\SysWow64\RtsUStoricon.dll
2013-08-14 14:24:43 423640 ----a-w- C:\Windows\System32\RtsUStor.dll
2013-08-14 14:24:43 262872 ----a-w- C:\Windows\System32\drivers\RtsUStor.sys
2013-08-14 14:20:07 872152 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2013-08-14 14:20:07 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2013-08-14 14:18:44 96256 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys
2013-08-14 14:18:44 110080 ----a-w- C:\Windows\System32\DelayAPO.dll
2013-08-13 14:13:50 -------- d-----w- C:\Program Files (x86)\Application Updater
2013-08-13 14:13:49 -------- d-----w- C:\Program Files (x86)\IObit Toolbar
2013-08-13 14:13:49 -------- d-----w- C:\Program Files (x86)\Common Files\Spigot
2013-08-10 06:33:59 -------- d-----w- C:\Users\SophieVanRooij\AppData\Local\SWTOR
2013-08-10 06:20:14 -------- d-----w- C:\ProgramData\BitRaider
2013-08-10 06:20:03 -------- d-----w- C:\Users\SophieVanRooij\AppData\Local\SWTORPerf
2013-08-10 06:18:32 -------- d-----w- C:\Program Files (x86)\Common Files\BioWare
.
==================== Find3M ====================
.
2013-08-14 14:20:07 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:39:38 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-26 01:59:38 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-07-09 06:03:30 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-07-09 05:54:22 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-07-09 05:53:12 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-07-09 05:03:34 3968960 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-07-09 05:03:34 3913664 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-07-09 04:53:47 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-07-09 04:52:33 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-07-09 04:45:07 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-07-09 02:49:42 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-07-09 02:49:41 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-07-09 02:49:39 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-07-09 02:49:38 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-06-29 09:07:28 35936 ----a-w- C:\Windows\System32\drivers\amdkmpfd.sys
2013-06-27 05:56:17 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-27 05:56:17 867240 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll
2013-06-27 05:56:17 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-06-15 04:32:16 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2013-06-12 09:01:21 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2013-06-12 09:01:21 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2013-06-12 09:00:25 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-06-12 09:00:25 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-06-12 08:59:52 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-06-12 08:59:52 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-06-12 08:46:13 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-12 08:46:13 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-06-07 05:08:59 21160 ----a-w- C:\Windows\System32\drivers\amdkmafd.sys
2013-06-05 14:45:57 20464 ----a-w- C:\Windows\System32\drivers\iusb3hcs.sys
2013-06-05 03:34:27 3153920 ----a-w- C:\Windows\System32\win32k.sys
2013-06-04 06:00:13 624128 ----a-w- C:\Windows\System32\qedit.dll
2013-06-04 04:53:07 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2013-05-28 13:05:16 163328 ----a-w- C:\Windows\SysWow64\FlashPlayerUpdateService.exe
.
============= FINISH: 0:10:37,84 ===============

**Emphyrio** · 15-08-13, 23:25

Schakel je beveiligingssoftware uit.

Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.

Open een kladblokbestand.
Kopieer het onderstaande en plak dit in het kladblokbestand.
Sla het kladblokbestand op als CFScript.txt

Code:

KillAll::
ClearJavaCache::
AtJob::
DDS::
uStart Page = hxxp://mixidj.delta-search.com/?affID=121136&babsrc=HP_ss&mntrId=52CF4487FC9EEC6A
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
TB: MixiDJ Toolbar: {CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - C:\Program Files (x86)\mixidj\mixidj\1.8.4.1\mixidjTlbr.dll
Folder::
c:\program files (x86)\IObit Toolbar
c:\program files (x86)\mixidj
c:\program files (x86)\IObit
Driver::
AdvancedSystemCareService6
Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}"=-
[-HKEY_CLASSES_ROOT\clsid\{0bda0769-fd72-49f4-9266-e1fb004f4d8f}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{CA9B9C89-4662-4ADC-9C23-A452BECD5D19}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}"=-
[-HKEY_CLASSES_ROOT\clsid\{ca9b9c89-4662-4adc-9c23-a452becd5d19}]
[-HKEY_CLASSES_ROOT\mixidj.mixidjdskBnd.1]
[-HKEY_CLASSES_ROOT\mixidj.mixidjdskBnd]
[-HKEY_CLASSES_ROOT\clsid\{ca9b9c89-4662-4adc-9c23-a452becd5d19}]
[-HKEY_CLASSES_ROOT\clsid\{0bda0769-fd72-49f4-9266-e1fb004f4d8f}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 6"=-

Sleep nu het bestand CFScript.txt in het bestand ComboFix.exe

ComboFix zal opnieuw starten.
Als Combofix vraagt om een update, dan staat je dit toe.

Wanneer ComboFix klaar is, dit kan na een herstart zijn, opent er een logfile. Post de inhoud van de logfile.
Maak een nieuwe DDS log en post deze ook.

* OPMERKING: Indien je één van de onderstaande meldingen krijgt na het gebruik van ComboFix, herstart dan de computer.

Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.
Illegal operation attempted on a registry key that has been marked for deletion.

**sophievanrooij** · 16-08-13, 01:05

Combofix-log

ComboFix 13-08-15.02 - SophieVanRooij 16-08-2013 1:38.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6135.3731 [GMT 2:00]
Gestart vanuit: c:\users\SophieVanRooij\Desktop\ComboFix.exe
gebruikte Opdracht switches :: c:\users\SophieVanRooij\Desktop\CFScript.txt
AV: McAfee Antivirus en antispyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
FW: McAfee Firewall *Disabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: McAfee Antivirus en antispyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\IObit Toolbar
c:\program files (x86)\IObit Toolbar\IE\7.4\config.ini
c:\program files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
c:\program files (x86)\IObit Toolbar\Res\amazon.gif
c:\program files (x86)\IObit Toolbar\Res\ebay.gif
c:\program files (x86)\IObit Toolbar\Res\facebook.gif
c:\program files (x86)\IObit Toolbar\Res\googleplus.gif
c:\program files (x86)\IObit Toolbar\Res\icon_settings.gif
c:\program files (x86)\IObit Toolbar\Res\iobit_logo.gif
c:\program files (x86)\IObit Toolbar\Res\iobit_logo_hover.gif
c:\program files (x86)\IObit Toolbar\Res\Lang\res1031.ini
c:\program files (x86)\IObit Toolbar\Res\Lang\res1033.ini
c:\program files (x86)\IObit Toolbar\Res\Lang\res1034.ini
c:\program files (x86)\IObit Toolbar\Res\Lang\res1036.ini
c:\program files (x86)\IObit Toolbar\Res\Lang\res1040.ini
c:\program files (x86)\IObit Toolbar\Res\radio-close.gif
c:\program files (x86)\IObit Toolbar\Res\radio-minimize.gif
c:\program files (x86)\IObit Toolbar\Res\radiobeta.gif
c:\program files (x86)\IObit Toolbar\Res\search-button-hover.gif
c:\program files (x86)\IObit Toolbar\Res\search-button.gif
c:\program files (x86)\IObit Toolbar\Res\search-chevron-hover.gif
c:\program files (x86)\IObit Toolbar\Res\search-chevron.gif
c:\program files (x86)\IObit Toolbar\Res\search_amazon.gif
c:\program files (x86)\IObit Toolbar\Res\search_baidu.gif
c:\program files (x86)\IObit Toolbar\Res\search_ebay.gif
c:\program files (x86)\IObit Toolbar\Res\search_yahoo.gif
c:\program files (x86)\IObit Toolbar\Res\search_yandex.gif
c:\program files (x86)\IObit Toolbar\Res\security.gif
c:\program files (x86)\IObit Toolbar\Res\system.gif
c:\program files (x86)\IObit Toolbar\Res\twitter.gif
c:\program files (x86)\IObit Toolbar\Res\widgets.xml
c:\program files (x86)\IObit Toolbar\WidgiHelper.exe
c:\program files (x86)\IObit
c:\program files (x86)\IObit\Advanced SystemCare 3\AWC.exe.bak
c:\program files (x86)\IObit\Advanced SystemCare 3\License.dat
c:\program files (x86)\IObit\Advanced SystemCare 3\Registration.exe.bak
c:\program files (x86)\IObit\Advanced SystemCare 3\Sut_SoftUninstal.exe
c:\program files (x86)\IObit\Advanced SystemCare 4\checkinfo.txt
c:\program files (x86)\IObit\Advanced SystemCare 4\DiskScan.log
c:\program files (x86)\IObit\Advanced SystemCare 4\LatestNews\imagenews.png
c:\program files (x86)\IObit\Advanced SystemCare 4\LatestNews\LatestNews.ini
c:\program files (x86)\IObit\Advanced SystemCare 4\License.dat
c:\program files (x86)\IObit\Advanced SystemCare 4\PostThread.log
c:\program files (x86)\IObit\Advanced SystemCare 4\ScanCache.db
c:\program files (x86)\IObit\Advanced SystemCare 4\TBconfig.ini
c:\program files (x86)\IObit\Advanced SystemCare 4\Update\Update.Ini
c:\program files (x86)\IObit\Advanced SystemCare 4\UpdateHistory.txt
c:\program files (x86)\IObit\Advanced SystemCare 4\UPdateTest.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCInit.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCPatch.exe
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-09.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-10.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-11.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-12.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-13.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-14.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-15.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-16.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-17.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-18.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-19.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-20.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-21.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-22.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ASCServiceLog\2012-10-23.log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2011-12-07(06-39-19).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2011-12-23(09-02-09).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2011-12-27(17-54-05).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-01-02(10-28-30).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-01-10(07-25-44).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-01-19(21-55-54).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-02-20(15-56-13).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-03-28(22-19-43).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-04-13(09-21-07).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-05-03(08-35-57).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-06-02(16-17-27).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-06-26(06-21-17).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-07-09(22-08-02).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-08-12(21-18-47).log
c:\program files (x86)\IObit\Advanced SystemCare 5\BootTimeLog\Defrag2012-10-02(10-30-47).log
c:\program files (x86)\IObit\Advanced SystemCare 5\LatestNews\imagenews.jpg
c:\program files (x86)\IObit\Advanced SystemCare 5\LatestNews\imagenews.png
c:\program files (x86)\IObit\Advanced SystemCare 5\LatestNews\LatestNews.ini
c:\program files (x86)\IObit\Advanced SystemCare 5\License.dat
c:\program files (x86)\IObit\Advanced SystemCare 5\Main.ini
c:\program files (x86)\IObit\Advanced SystemCare 5\Register.log
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2585542.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2600217.exe
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2607576.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2621440.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2636927.exe
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2639308.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2641653.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2647518.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2647753.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2656351.exe
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2656356.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2661254.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2665364.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2667402.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2677070.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2699779.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2703157.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2705219.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2709630.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2709981.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2719857.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2724197.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2727727.exe
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2729094.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2731771.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2731847.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2732059.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2732487.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2732500.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2739159.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2741355.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2743555.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2749655.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHole_Backup\KB2756822.cab
c:\program files (x86)\IObit\Advanced SystemCare 5\SecurityHoleScan.log
c:\program files (x86)\IObit\Advanced SystemCare 5\sh.dat
c:\program files (x86)\IObit\Advanced SystemCare 5\SysExplorer.txt
c:\program files (x86)\IObit\Advanced SystemCare 5\test.log
c:\program files (x86)\IObit\Advanced SystemCare 5\Update.dat
c:\program files (x86)\IObit\Advanced SystemCare 5\Update\Update.Ini
c:\program files (x86)\IObit\Advanced SystemCare 5\UpdateHistory.txt
c:\program files (x86)\IObit\Advanced SystemCare 5\UpdateLicense.log
c:\program files (x86)\IObit\Advanced SystemCare 5\UPdateTest.log
c:\program files (x86)\IObit\Advanced SystemCare 5\UpgradeTip.log
c:\program files (x86)\IObit\Advanced SystemCare 5\ZLB644D.tmp
c:\program files (x86)\IObit\Advanced SystemCare 5\ZLBC448.tmp
c:\program files (x86)\IObit\Advanced SystemCare 6\About.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\ActionCenterDownloader.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\amc-remind.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\ASC.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCComputerMenu.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCComputerMenu_64.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCDownload.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCExtMenu.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCExtMenu_64.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCExtMenu_64.tmp
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCInit.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCInit.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCPatch.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService_Log.txt
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-06-26.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-01.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-02.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-03.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-04.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-05.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-06.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-07.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-08.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-09.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-10.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-11.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-12.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-13.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-14.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-15.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCServiceLog\2013-08-16.log
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTooltips.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\ASCUpgrade.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\AutoCare.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\AutoSweep.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\AutoSweeper.log
c:\program files (x86)\IObit\Advanced SystemCare 6\AutoUpdate.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Autoupdate.log
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-13 16-11-44
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-14 15-51-22
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-14 16-30-56
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-15 07-31-35
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-15 10-13-33
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-15 23-29-43
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-15 23-34-06
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-15 23-44-16
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\BootTimeData\2013-08-16 00-24-40
c:\program files (x86)\IObit\Advanced SystemCare 6\Boottime\path.ini
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2012-11-23(21-39-29).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2012-12-10(07-10-17).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2013-01-16(17-56-16).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2013-02-19(18-46-14).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2013-03-24(15-38-56).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2013-04-05(09-06-07).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2013-05-17(07-29-47).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2013-06-13(14-37-46).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BootTimeLog\Defrag2013-07-27(22-35-07).log
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePluginFor6.crx
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCBrowserProtection.safariextz
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome.manifest
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome\content\ascsurfingprotection.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome\content\ascsurfingprotection.xul
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome\content\imagemgr.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome\content\languagemgr.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome\content\popbox.css
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome\content\protectpage.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome\content\searchresultmgr.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\chrome\content\urlbaricon.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\icon.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\[email protected]\install.rdf
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCUrlScanner.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\BrowserProtect.oex
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\errorpage.html
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\asc.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\icon_gray.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\ie_risk.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\ie_safe.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\ie_tip_details.gif
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\ie_wraningBg.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\popbox_btn_close.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\popbox_btn_ok.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\risk.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\risk_logo.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\safe.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\safe_logo.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\tip_details.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\window_risk.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\window_safe.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\images\wraningBg.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\manifest.json
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\ASCPlugin_Protect.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\background.html
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\background.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\Ex.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\asc.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\popbox_btn_close.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\popbox_btn_ok.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\risk.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\risk_logo.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\safe.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\safe_logo.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\tip_details.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\window_risk.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\window_safe.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\img\wraningBg.png
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\popup.html
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\popup.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\tips.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\warning.bak
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\warning.html
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\Plugin\warning.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\PluginExtension.pem
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\np_Asc_plugin.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\NPASCSafariPluginProtect.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\Safari_baidu_script.js
c:\program files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\script.js
c:\program files (x86)\IObit\Advanced SystemCare 6\bugreport.txt
c:\program files (x86)\IObit\Advanced SystemCare 6\checkinfo.txt
c:\program files (x86)\IObit\Advanced SystemCare 6\cxLibraryD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\ActiveBoost.db
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\ASCSpecialUrl.db
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\ASCThreatUrl.db
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\Cus.dbd
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\Def.dbd
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\DriverData.db
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\ignore.dbd
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\Opt.dbd
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\PriTemp.dbd
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\Reg.dbd
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\Restore.dbd
c:\program files (x86)\IObit\Advanced SystemCare 6\Database\TurboBoostGame.dbd
c:\program files (x86)\IObit\Advanced SystemCare 6\datastate.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\DelayLoad.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\DiskMap.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\DiskScan.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Downloader.log
c:\program files (x86)\IObit\Advanced SystemCare 6\drivers\win7_amd64\RegistryDefragBootTime.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\drivers\win7_x86\RegistryDefragBootTime.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\drivers\wlh_amd64\RegistryDefragBootTime.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\drivers\wlh_x86\RegistryDefragBootTime.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\drivers\wnet_amd64\RegistryDefragBootTime.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\drivers\wnet_x86\RegistryDefragBootTime.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\drivers\wxp_amd64\RegistryDefragBootTime.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\drivers\wxp_x86\RegistryDefragBootTime.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\dxBarD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\dxComnD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\dxCoreD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\dxDockingD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\dxGDIPlusD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\dxSkinOffice2007BlueD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\dxSkinsCoreD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\dxThemeD12.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\ErrorReport.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\EULA.rtf
c:\program files (x86)\IObit\Advanced SystemCare 6\Extensions.plist
c:\program files (x86)\IObit\Advanced SystemCare 6\fav.ico
c:\program files (x86)\IObit\Advanced SystemCare 6\FfSweep.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\Help.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\help.html
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\icon_moresettings.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\icon_rescue.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\icon_skin.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\icon_tips.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\level_bad_short.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\level_general_short.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\level_good_short.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\main.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\main_2.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\pchealth.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\quciksettings.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\scaning.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\screen_actioncenter.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\screen_care.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\screen_smartscan.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\screen_toolbox.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\screen_turboboost.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\smart_deeply.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\smart_quick.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\Images\summary.jpg
c:\program files (x86)\IObit\Advanced SystemCare 6\InternetBooster.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\IObitLogon.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Arabic.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Belarusian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\ChineseSimp.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\ChineseTrad.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Czech.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Danish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Dutch.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\English.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Finnish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\French.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\German.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Hebrew.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Hungarian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Italian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Japanese.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Korean.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Polish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Portuguese(PT-BR).lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Portuguese(PT-PT).lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Romanian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Russian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Serbian (cyrillic).lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Serbian (latin).lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Slovak.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Slovenian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Spanish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Swedish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Turkish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Language\Vietnamese.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\LatestNews\imagenews.png
c:\program files (x86)\IObit\Advanced SystemCare 6\LatestNews\LatestNews.ini
c:\program files (x86)\IObit\Advanced SystemCare 6\madbasic_.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\maddisAsm_.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\madexcept_.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\Main.ini
c:\program files (x86)\IObit\Advanced SystemCare 6\MalwareScan.log
c:\program files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Nfeatures.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\NtfsData.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\OFCommon.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\PerformUpdate.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\PowerConfig.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\processlist.txt
c:\program files (x86)\IObit\Advanced SystemCare 6\QuickSettings.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Register.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Reminder.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Report.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\RescueCenter.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\rtl120.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\Scan.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\sdcore.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\sdlib.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2574819.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2592687.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2685811.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2685813.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2726535.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2750841.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2761217.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2762895.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2763523.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2773072.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2786400.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2791765.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2799926.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2807986.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2808679.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2813956.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2820331.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2834140.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2836502.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2836939.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2836942.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2836943.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2838727.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHole_Backup\KB2859903.cab
c:\program files (x86)\IObit\Advanced SystemCare 6\SecurityHoleScan.log
c:\program files (x86)\IObit\Advanced SystemCare 6\SendBugReport.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\sh.dat
c:\program files (x86)\IObit\Advanced SystemCare 6\Shortcuts.log
c:\program files (x86)\IObit\Advanced SystemCare 6\skin\black.rcc
c:\program files (x86)\IObit\Advanced SystemCare 6\skin\classic.rcc
c:\program files (x86)\IObit\Advanced SystemCare 6\skin\public.rcc
c:\program files (x86)\IObit\Advanced SystemCare 6\skin\white.rcc
c:\program files (x86)\IObit\Advanced SystemCare 6\sqlite3.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\Sua11_DiskExplorer.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Sua12_ClonedFilesScanner.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Sua13_EmptyFolderScanner.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Suc10_Uninstal.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Suc11_RegistryCleaner.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Suc13_FileShredder.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Suo11_InternetBooster.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Suo12_StartupManager.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Suo13_RegistryDefrag.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Sur12_DiskDoctor.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Sur14_IEHelper.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\taskmgr.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\TbAppCaller.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Arabic.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Belarusian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\ChineseSimp.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\ChineseTrad.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Czech.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Danish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Dutch.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\English.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Finnish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\French.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\German.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Hebrew.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Hungarian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Italian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Japanese.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Korean.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Polish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Portuguese(PT-BR).lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Portuguese(PT-PT).lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Romanian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Russian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Serbian (cyrillic).lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Serbian (latin).lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Slovak.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Slovenian.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Spanish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Swedish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Turkish.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\Toolbox_Language\Vietnamese.lng
c:\program files (x86)\IObit\Advanced SystemCare 6\unins000.dat
c:\program files (x86)\IObit\Advanced SystemCare 6\unins000.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\unins000.msg
c:\program files (x86)\IObit\Advanced SystemCare 6\UninstallPromote.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\UninstallPromote.log
c:\program files (x86)\IObit\Advanced SystemCare 6\Update History.txt
c:\program files (x86)\IObit\Advanced SystemCare 6\Update.txt
c:\program files (x86)\IObit\Advanced SystemCare 6\Update\Freeware.ini
c:\program files (x86)\IObit\Advanced SystemCare 6\Update\LastCheck.ini
c:\program files (x86)\IObit\Advanced SystemCare 6\Update\Toolbox.ini
c:\program files (x86)\IObit\Advanced SystemCare 6\Update\Update.ini
c:\program files (x86)\IObit\Advanced SystemCare 6\UpdateLicense.log
c:\program files (x86)\IObit\Advanced SystemCare 6\UpgradeTip.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\vcl120.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\vclx120.bpl
c:\program files (x86)\IObit\Advanced SystemCare 6\webres.dll
c:\program files (x86)\IObit\Advanced SystemCare 6\Wizard.exe
c:\program files (x86)\IObit\Game Booster\Boost.log
c:\program files (x86)\IObit\Game Booster\gamebooster.log
c:\program files (x86)\IObit\Game Booster\gbtray.log
c:\program files (x86)\IObit\Game Booster\LatestGames\LatestGames.ini
c:\program files (x86)\IObit\Game Booster\LatestNews\imagenews.png
c:\program files (x86)\IObit\Game Booster\LatestNews\LatestNews.ini
c:\program files (x86)\IObit\Game Booster\license.dat
c:\program files (x86)\IObit\Game Booster\Update\Update.Ini
c:\program files (x86)\IObit\IObit Malware Fighter\license.dat
c:\program files (x86)\IObit\IObit Malware Fighter\log\realtime\realtime_2013-04-07-08-06 .txt
c:\program files (x86)\IObit\IObit Malware Fighter\log\realtime\realtime_2013-04-07-18-49 .txt
c:\program files (x86)\IObit\IObit Malware Fighter\log\realtime\realtime_2013-04-08-07-32 .txt
c:\program files (x86)\IObit\IObit Malware Fighter\log\realtime\realtime_2013-04-08-20-09 .txt
c:\program files (x86)\IObit\IObit Malware Fighter\log\realtime\realtime_2013-04-09-08-58 .txt
c:\program files (x86)\IObit\IObit Malware Fighter\log\scan\scan_2013-04-04-20-02 .txt
c:\program files (x86)\IObit\Smart Defrag 2\AutoUpdate.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\win7_x64\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\win7_x64\SmartDefragDriver.sys

**sophievanrooij** · 16-08-13, 01:05

Combofix-log deel 2

c:\program files (x86)\IObit\Smart Defrag 2\drivers\win7_x86\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\win7_x86\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\drivers\win8_x64\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\win8_x64\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\drivers\win8_x86\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\win8_x86\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wlh_x64\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wlh_x64\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wlh_x86\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wlh_x86\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wnet_x64\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wnet_x64\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wnet_x86\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wnet_x86\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wxp_x64\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wxp_x64\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wxp_x86\SmartDefragBootTime.exe
c:\program files (x86)\IObit\Smart Defrag 2\drivers\wxp_x86\SmartDefragDriver.sys
c:\program files (x86)\IObit\Smart Defrag 2\EULA.rtf
c:\program files (x86)\IObit\Smart Defrag 2\fav.ico
c:\program files (x86)\IObit\Smart Defrag 2\Freeware\ASC_FreeSoftwareDownloader.exe
c:\program files (x86)\IObit\Smart Defrag 2\Freeware\Check.dll
c:\program files (x86)\IObit\Smart Defrag 2\Freeware\SD_FreeSoftwareDownloader.exe
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\001.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\002.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\003.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\004.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\005.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\006.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\007.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\008.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Images\009.jpg
c:\program files (x86)\IObit\Smart Defrag 2\Help\Index.html
c:\program files (x86)\IObit\Smart Defrag 2\IObitCommunities.exe
c:\program files (x86)\IObit\Smart Defrag 2\Language\Albanian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Arabic.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Bulgarian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\ChineseSimp.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\ChineseTrad.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Czech.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Danish.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Dutch.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\English.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Finnish.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Flemish.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\French.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Georgian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\German.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Greek.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Hebrew.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Hungarian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Indonesia.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Italian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Japanese.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Kashubian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Korean.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Kurdish.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Malay.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Malayalam.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Norwegian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Polish.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Portuguese(PT-BR).lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Portuguese(PT-PT).lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Romanian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Russian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Serbian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Slovak.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Slovenian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Spanish.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Swedish.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Turkish.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Ukrainian.lng
c:\program files (x86)\IObit\Smart Defrag 2\Language\Vietnamese.lng
c:\program files (x86)\IObit\Smart Defrag 2\LatestNews\LatestNews.ini
c:\program files (x86)\IObit\Smart Defrag 2\NtfsData.dll
c:\program files (x86)\IObit\Smart Defrag 2\rtl120.bpl
c:\program files (x86)\IObit\Smart Defrag 2\SDDriverMgr.dll
c:\program files (x86)\IObit\Smart Defrag 2\SDInit.exe
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Add_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Add_Middle.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Add_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Add_Shadow.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Analyze_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Analyze_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Analyze_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Analyze_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Center.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Checkbox_Checked.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Checkbox_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Checkbox_Unchecked.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Close_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Close_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\ColumnDivider.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\ColumnHeader.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Corner_Bottom_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Corner_Bottom_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Corner_Top_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Corner_Top_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Defrag_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Defrag_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Defrag_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Defrag_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Defrag_Option_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Defrag_Option_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Defrag_Option_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Defrag_Option_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Frame_Bottom.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Frame_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Frame_Left_Top.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Frame_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Frame_Right_Top.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Frame_Top.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Hide.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Item_Selected.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Layout.ini
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\line.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Logo.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Maximize_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Maximize_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Minimize_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Minimize_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\News_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\News_Middle.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\News_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Page_Body.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Pause_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Pause_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Pause_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Pause_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Progress_Bg_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Progress_Bg_Middle.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Progress_Bg_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Progress_Fg_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Progress_Fg_Middle.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Progress_Fg_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Restore_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Restore_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Setting_Text_Shadow.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Show.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Statistics.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Stop_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Stop_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Stop_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Stop_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Tab_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Tab_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Tab_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Title.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\Black\Top.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Add_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Add_Middle.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Add_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Add_Shadow.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Analyze_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Analyze_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Analyze_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Analyze_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\center.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Checkbox_Checked.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Checkbox_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Checkbox_Unchecked.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Close_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Close_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\ColumnDivider.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\ColumnHeader.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Corner_Bottom_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Corner_Bottom_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Corner_Top_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Corner_Top_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Defrag_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Defrag_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Defrag_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Defrag_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Defrag_Option_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Defrag_Option_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Defrag_Option_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Defrag_Option_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Frame_Bottom.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Frame_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Frame_Left_Top.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Frame_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Frame_Right_Top.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Frame_Top.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Hide.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Item_Selected.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Layout.ini
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\line.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Logo.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Maximize_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Maximize_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Minimize_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Minimize_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\News_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\News_Middle.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\News_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Page_Body.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Pause_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Pause_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Pause_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Pause_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Progress_Bg_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Progress_Bg_Middle.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Progress_Bg_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Progress_Fg_Left.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Progress_Fg_Middle.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Progress_Fg_Right.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Restore_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Restore_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Setting_Text_Shadow.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Show.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Statistics.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Stop_Disable.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Stop_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Stop_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Stop_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Tab_Focus.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Tab_Hot.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Tab_Normal.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Title.png
c:\program files (x86)\IObit\Smart Defrag 2\Skins\White\Top.png
c:\program files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
c:\program files (x86)\IObit\Smart Defrag 2\taskMgr.dll
c:\program files (x86)\IObit\Smart Defrag 2\unins000.dat
c:\program files (x86)\IObit\Smart Defrag 2\unins000.exe
c:\program files (x86)\IObit\Smart Defrag 2\unins000.msg
c:\program files (x86)\IObit\Smart Defrag 2\UninstallPromote.exe
c:\program files (x86)\IObit\Smart Defrag 2\Update\LastCheck.Ini
c:\program files (x86)\IObit\Smart Defrag 2\Update\Update.Ini
c:\program files (x86)\IObit\Smart Defrag 2\vcl120.bpl
c:\program files (x86)\IObit\Smart Defrag 2\vclx120.bpl
c:\program files (x86)\mixidj
c:\program files (x86)\mixidj\mixidj\1.8.4.1\bh\mixidj.dll
c:\program files (x86)\mixidj\mixidj\1.8.4.1\escortShld.dll
c:\program files (x86)\mixidj\mixidj\1.8.4.1\mixidj.crx
c:\program files (x86)\mixidj\mixidj\1.8.4.1\mixidjApp.dll
c:\program files (x86)\mixidj\mixidj\1.8.4.1\mixidjEng.dll
c:\program files (x86)\mixidj\mixidj\1.8.4.1\mixidjsrv.exe
c:\program files (x86)\mixidj\mixidj\1.8.4.1\mixidjTlbr.dll
c:\program files (x86)\mixidj\mixidj\1.8.4.1\uninstall.exe
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_AdvancedSystemCareService6
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2013-07-15 to 2013-08-15 ))))))))))))))))))))))))))))))
.
.
2013-08-15 05:58 . 2013-07-26 03:35 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-08-15 05:58 . 2013-07-26 05:12 526336 ----a-w- c:\windows\system32\ieui.dll
2013-08-15 05:58 . 2013-07-26 05:12 356864 ----a-w- c:\program files\Internet Explorer\IEShims.dll
2013-08-15 05:58 . 2013-07-26 03:11 257536 ----a-w- c:\program files (x86)\Internet Explorer\ieproxy.dll
2013-08-15 05:58 . 2013-07-26 02:49 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-08-15 05:45 . 2013-08-15 05:51 -------- d-----w- c:\windows\system32\MRT
2013-08-15 05:42 . 2013-07-09 05:46 1472512 ----a-w- c:\windows\system32\crypt32.dll
2013-08-15 05:42 . 2013-07-09 04:46 1166848 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-08-15 05:42 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2013-08-15 05:42 . 2013-07-09 05:46 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-15 05:42 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-08-15 05:42 . 2013-07-09 04:46 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2013-08-15 05:42 . 2013-07-09 05:46 139776 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-15 05:42 . 2013-07-09 04:46 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-08-15 05:42 . 2013-07-09 05:51 1217024 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-15 05:42 . 2013-07-09 04:52 663552 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2013-08-15 05:42 . 2013-07-25 09:25 1888768 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-08-15 05:42 . 2013-07-25 08:57 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-08-15 05:41 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-14 14:25 . 2013-08-14 14:25 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2013-08-14 14:25 . 2013-08-14 14:25 34544 ----a-w- c:\windows\system32\drivers\Smb_driver_Intel.sys
2013-08-14 14:24 . 2013-08-14 14:24 9890008 ----a-w- c:\windows\SysWow64\RtsUStoricon.dll
2013-08-14 14:24 . 2013-08-14 14:24 423640 ----a-w- c:\windows\system32\RtsUStor.dll
2013-08-14 14:24 . 2013-08-14 14:24 262872 ----a-w- c:\windows\system32\drivers\RtsUStor.sys
2013-08-14 14:20 . 2013-08-14 14:20 872152 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2013-08-14 14:20 . 2013-08-14 14:20 74456 ----a-w- c:\windows\system32\RtNicProp64.dll
2013-08-14 14:18 . 2013-08-14 14:18 96256 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2013-08-14 14:18 . 2013-08-14 14:18 110080 ----a-w- c:\windows\system32\DelayAPO.dll
2013-08-13 14:13 . 2013-08-13 14:13 -------- d-----w- c:\program files (x86)\Application Updater
2013-08-13 14:13 . 2013-08-13 14:13 -------- d-----w- c:\program files (x86)\Common Files\Spigot
2013-08-10 06:33 . 2013-08-10 06:33 -------- d-----w- c:\users\SophieVanRooij\AppData\Local\SWTOR
2013-08-10 06:20 . 2013-08-11 17:39 -------- d-----w- c:\programdata\BitRaider
2013-08-10 06:18 . 2013-08-10 06:18 -------- d-----w- c:\program files (x86)\Common Files\BioWare
2013-08-10 06:18 . 2013-08-10 06:18 -------- d-----w- c:\users\hedev
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-15 05:45 . 2011-02-03 07:49 78161360 ----a-w- c:\windows\system32\MRT.exe
2013-08-14 14:20 . 2010-05-12 12:01 108760 ----a-w- c:\windows\system32\RTNUninst64.dll
2013-07-09 04:45 . 2013-08-15 05:43 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-06-29 09:07 . 2013-06-29 09:07 35936 ----a-w- c:\windows\system32\drivers\amdkmpfd.sys
2013-06-27 05:56 . 2013-06-27 05:56 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-27 05:56 . 2012-06-25 07:00 867240 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2013-06-27 05:56 . 2011-02-05 09:58 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-06-12 09:01 . 2013-06-12 09:01 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-06-12 09:01 . 2013-06-12 09:01 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-06-12 09:00 . 2013-06-12 09:00 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-06-12 09:00 . 2013-06-12 09:00 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-06-12 08:59 . 2013-06-12 08:59 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-06-12 08:59 . 2013-06-12 08:59 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-06-12 08:46 . 2012-04-03 14:19 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 08:46 . 2011-05-17 03:10 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-07 05:08 . 2013-06-07 05:08 21160 ----a-w- c:\windows\system32\drivers\amdkmafd.sys
2013-06-05 14:45 . 2013-06-05 14:45 20464 ----a-w- c:\windows\system32\drivers\iusb3hcs.sys
2013-06-05 03:34 . 2013-07-11 06:14 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 06:00 . 2013-07-11 06:15 624128 ----a-w- c:\windows\system32\qedit.dll
2013-06-04 04:53 . 2013-07-11 06:15 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2013-05-28 13:05 . 2013-06-20 06:45 163328 ----a-w- c:\windows\SysWow64\FlashPlayerUpdateService.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}]
c:\program files\Web Assistant\Extension32.dll [BU]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayid entifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-02-01 18:03 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2011-08-28 3077528]
"MobileDocuments"="c:\program files (x86)\Common Files\Apple\Internet Services\ubd.exe" [2012-02-23 59240]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-12 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2009-12-25 201512]
"EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2009-12-25 401192]
"Hotkey Utility"="c:\program files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" [2010-08-04 611872]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-14 98304]
"MDS_Menu"="c:\program files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"DXM6Patch_981116"="c:\windows\p_981116.exe" [1998-11-30 497376]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"nmctxth"="c:\program files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2009-07-07 647216]
"nmapp"="c:\program files (x86)\Pure Networks\Network Magic\nmapp.exe" [2009-07-08 472112]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-05-31 152392]
"BCSSync"="c:\program files (x86)\microsoft office\office14\bcssync.exe" [2010-03-13 91520]
"mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-02-28 454600]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"SearchSettings"="c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" [2013-08-08 1303360]
.
c:\users\SophieVanRooij\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Sticky Notes.lnk - c:\users\SophieVanRooij\Downloads\StickyNotes\StickyNotes.exe [2012-11-7 503808]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe [2013-2-5 272248]
UltraMon.lnk - c:\windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico /auto [2011-5-8 29310]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"SearchSettings"="c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
.
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe;c:\program files (x86)\BitComet\tools\BitCometService.exe [x]
R3 BRDriver64;BRDriver64;c:\programdata\BitRaider\BRDriver64.sys;c:\programdata\BitRaider\BRDriver64.sy s [x]
R3 BrSerIb;Brother Serial Interface Driver(WDM);c:\windows\system32\DRIVERS\BrSerIb.sys;c:\windows\SYSNATIVE\DRIVERS\BrSerIb.sys [x]
R3 BRSptSvc;BitRaider Mini-Support Service;c:\programdata\BitRaider\BRSptSvc.exe;c:\programdata\BitRaider\BRSptSvc.exe [x]
R3 BrUsbSIb;Brother Serial USB Driver(WDM);c:\windows\system32\DRIVERS\BrUsbSIb.sys;c:\windows\SYSNATIVE\DRIVERS\BrUsbSIb.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 EagleX64;EagleX64; [x]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [x]
R3 FNETTHJM;Freecom Turbo USB 2.0;c:\windows\system32\drivers\fnetthjm.sys;c:\windows\SYSNATIVE\drivers\fnetthjm.sys [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys;c:\windows\SYSNATIVE\drivers\HipShieldK.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe;c:\program files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [x]
R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys;c:\windows\SYSNATIVE\DRIVERS\mfencrk.sys [x]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys;c:\windows\SYSNATIVE\Drivers\pcouffin.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominipor t.sys [x]
R3 SmbDrv;SmbDrv;c:\windows\system32\DRIVERS\Smb_driver.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amdkmafd;AMD Audio Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmafd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmafd.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYS NATIVE\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\s ptd.sys [x]
S1 MOBKFilter;MOBKFilter;c:\windows\system32\DRIVERS\MOBK.sys;c:\windows\SYSNATIVE\DRIVERS\MOBK.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\ mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwl PSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwl PSDVDisk.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET \Framework64\v4.0.30319\mscorsvw.exe [x]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [x]
S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe;c:\program files (x86)\Acer\Registration\GregHSRW.exe [x]
S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\progra~2\mcafee\SITEAD~1\mcsacore.exe;c:\progra~2\mcafee\SITEAD~1\mcsacore.exe [x]
S2 McMPFSvc;McAfee Personal Firewall;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [x]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]
S2 MOBKbackup;1%;c:\program files (x86)\McAfee Online Backup\MOBKbackup.exe;c:\program files (x86)\McAfee Online Backup\MOBKbackup.exe [x]
S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 UltraMonUtility;UltraMon Utility Driver;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [x]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S2 USBS3S4Detection;USBS3S4Detection;c:\oem\USBDECTION\USBS3S4Detection.exe;c:\oem\USBDECTION\USBS3S4De tection.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.s ys [x]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]
S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys;c:\windows\SYSNATIVE\DRIVERS\mfencbdc.sys [x]
S3 pmkbdfltr;PenMount Keyboard Device Filter Driver;c:\windows\system32\DRIVERS\pmkbdfltr.sys;c:\windows\SYSNATIVE\DRIVERS\pmkbdfltr.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_dr iver_Intel.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-08-02 15:01 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe
.
Inhoud van de 'Gedeelde Taken' map
.
2013-08-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 13:05]
.
2013-08-15 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2011-05-01 15:24]
.
2013-08-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-02 16:19]
.
2013-08-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-02 16:19]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\eg isPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-02-01 18:06 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MO BK]
@="{3c3f3c1a-9153-7c05-f938-622e7003894d}"
[HKEY_CLASSES_ROOT\CLSID\{3c3f3c1a-9153-7c05-f938-622e7003894d}]
2010-04-13 19:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MO BK2]
@="{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}"
[HKEY_CLASSES_ROOT\CLSID\{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}]
2010-04-13 19:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MO BK3]
@="{b4caf489-1eec-c617-49ad-8d7088598c06}"
[HKEY_CLASSES_ROOT\CLSID\{b4caf489-1eec-c617-49ad-8d7088598c06}]
2010-04-13 19:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mwlDaemon"="c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-02-01 349552]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-08-14 13626072]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
"Apoint"="c:\program files (x86)\Apoint\Apoint.exe" [BU]
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://nl.woofi.info
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &D&ownload &met BitComet - c:\program files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload alles met BitComet - c:\program files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: &Verzenden naar OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 62.238.255.69 212.115.192.100
.
- - - - ORPHANS VERWIJDERD - - - -
.
URLSearchHooks-{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - c:\program files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
BHO-{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - c:\program files (x86)\IObit Toolbar\IE\7.4\iobitToolbarIE.dll
BHO-{4D6A9BBF-402C-4301-B1EF-28D04F71D761} - c:\program files (x86)\mixidj\mixidj\1.8.4.1\bh\mixidj.dll
Toolbar-Locked - (no file)
AddRemove-Advanced SystemCare 6_is1 - c:\program files (x86)\IObit\Advanced SystemCare 6\unins000.exe
AddRemove-mixidj - c:\program files (x86)\mixidj\mixidj\1.8.4.1\uninstall.exe
AddRemove-Smart Defrag 2_is1 - c:\program files (x86)\IObit\Smart Defrag 2\unins000.exe
AddRemove-{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 - c:\program files (x86)\Complitly\unins000.exe
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe ,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe ,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\Cyberlink\Shared files\RichVideo.exe
c:\program files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
.
**************************************************************************
.
Voltooingstijd: 2013-08-16 01:57:33 - machine werd herstart
ComboFix-quarantined-files.txt 2013-08-15 23:57
ComboFix2.txt 2013-08-15 22:09
.
Pre-Run: 173.843.693.568 bytes beschikbaar
Post-Run: 173.902.176.256 bytes beschikbaar
.
- - End Of File - - 3806E295A1591755A6A9D77F54367E45
D41D8CD98F00B204E9800998ECF8427E

**sophievanrooij** · 16-08-13, 01:06

DDS-log

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16660 BrowserJavaVersion: 10.25.2
Run by SophieVanRooij at 1:59:25 on 2013-08-16
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6135.3781 [GMT 2:00]
.
AV: McAfee Antivirus en antispyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
SP: McAfee Antivirus en antispyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\OEM\USBDECTION\USBS3S4Detection.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
C:\Program Files\UltraMon\UltraMon.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe
C:\Program Files\UltraMon\UltraMonTaskbar.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Users\SophieVanRooij\Downloads\StickyNotes\StickyNotes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\PROGRA~1\McAfee\MSC\McAPExe.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Windows\system32\vssvc.exe
C:\Windows\system32\svchost.exe -k SDRSVC
c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
C:\Windows\system32\notepad.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uDefault_Search_URL = hxxp://www.google.com/ie
mSearch Page = hxxp://nl.woofi.info
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
uURLSearchHooks: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
mURLSearchHooks: <No Name>: - LocalServer32 - <no file>
mURLSearchHooks: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
BHO: IObit Toolbar: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} -
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\SophieVanRooij\AppData\Roaming\Complitly\Complitly.dll
BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} -
BHO: Web Assistant: {336D0C35-8A85-403a-B9D2-65C292C39087} -
BHO: BitComet Helper: {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll
BHO: mixidj Helper Object: {4D6A9BBF-402C-4301-B1EF-28D04F71D761} -
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Aanmeldhulp voor Windows Live ID: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Advanced SystemCare Browser Protection: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
TB: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
EB: SimilarWeb: {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
uRun: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [MDS_Menu] "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
mRun: [DXM6Patch_981116] C:\Windows\p_981116.exe /Q:A
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
mRun: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [BCSSync] "c:\program files (x86)\microsoft office\office14\bcssync.exe" /delayservices
mRun: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
StartupFolder: C:\Users\SOPHIE~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\STICKY~1.LNK - C:\Users\SophieVanRooij\Downloads\StickyNotes\StickyNotes.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\UltraMon.lnk - C:\Windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: &D&ownload &met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload alles met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: &Verzenden naar OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: E&xporteren naar Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {5D06ED6E-DA78-4486-A246-B131A2C39807} - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
TCP: NameServer = 62.238.255.69 212.115.192.100
TCP: Interfaces\{F037E7A1-FD3B-4EFF-A644-019C59AA830E} : DHCPNameServer = 62.238.255.69 212.115.192.100
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\SophieVanRooij\AppData\Roaming\Complitly\64\Complitly64.dll
x64-BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - <orphaned>
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
x64-Run: [RtHDVCpl] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
x64-Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe
x64-Run: [Apoint] C:\Program Files (x86)\Apoint\Apoint.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 amdkmafd;AMD Audio Bus Lower Filter;C:\Windows\System32\drivers\amdkmafd.sys [2013-6-7 21160]
R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\drivers\amdkmpfd.sys [2013-6-29 35936]
R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2012-9-29 647736]
R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2012-9-29 28216]
R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;C:\Windows\System32\drivers\iusb3hcs.sys [2013-6-5 20464]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2012-10-29 772944]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2012-10-29 342416]
R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDriver.sys [2013-2-9 17720]
R1 MOBKFilter;MOBKFilter;C:\Windows\System32\drivers\MOBK.sys [2012-11-18 66040]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2009-6-3 22576]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2009-6-3 20016]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2009-6-3 60464]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-3-8 202752]
R2 Fabs;FABS - Helping agent for MAGIX media database;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-8-27 1253376]
R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]
R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-3-11 418376]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [2013-6-26 120592]
R2 McMPFSvc;McAfee Personal Firewall;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-11-18 221296]
R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2012-11-18 1017016]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2012-11-18 218760]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-11-18 182752]
R2 MOBKbackup;1%;C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-4-13 231224]
R2 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-2-1 305520]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-3-25 490280]
R2 UltraMonUtility;UltraMon Utility Driver;C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [2008-11-14 20512]
R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-5-12 243232]
R2 USBS3S4Detection;USBS3S4Detection;C:\OEM\USBDECTION\USBS3S4Detection.exe [2010-5-12 76320]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-8-14 96256]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2012-10-29 70112]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-3-11 25928]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2012-10-29 309968]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2012-10-29 516608]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\drivers\mfencbdc.sys [2013-2-18 337120]
R3 pmkbdfltr;PenMount Keyboard Device Filter Driver;C:\Windows\System32\drivers\pmkbdfltr.sys [2012-8-6 18832]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2013-8-14 262872]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-8-14 872152]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_driver_Intel.sys [2013-8-14 34544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-3-11 701512]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service --> C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service [?]
S3 BRDriver64;BRDriver64;C:\ProgramData\BitRaider\BRDriver64.sys [2013-8-10 75048]
S3 BrSerIb;Brother Serial Interface Driver(WDM);C:\Windows\System32\drivers\BrSerIb.sys [2012-12-4 95344]
S3 BRSptSvc;BitRaider Mini-Support Service;C:\ProgramData\BitRaider\BRSptSvc.exe [2013-8-10 476936]
S3 BrUsbSIb;Brother Serial USB Driver(WDM);C:\Windows\System32\drivers\BrUsbSib.sys [2012-12-4 21872]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-9-24 102240]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-8-7 3276800]
S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\System32\drivers\ggflt.sys [2011-2-16 13352]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\drivers\HipShieldK.sys [2013-4-22 197264]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-2-5 235216]
S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\drivers\mfencrk.sys [2013-2-18 95856]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-8 19456]
S3 SmbDrv;SmbDrv;C:\Windows\System32\drivers\Smb_driver.sys [2012-7-11 22800]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-7-30 203104]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-8 57856]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]
S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-2-3 1255736]
.
=============== Created Last 30 ================
.
2013-08-15 23:49:43 -------- d-sh--w- C:\$RECYCLE.BIN
2013-08-15 21:48:25 98816 ----a-w- C:\Windows\sed.exe
2013-08-15 21:48:25 256000 ----a-w- C:\Windows\PEV.exe
2013-08-15 21:48:25 208896 ----a-w- C:\Windows\MBR.exe
2013-08-15 05:58:01 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-08-15 05:58:00 356864 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2013-08-15 05:58:00 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-08-15 05:58:00 257536 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2013-08-15 05:45:25 -------- d-----w- C:\Windows\System32\MRT
2013-08-15 05:42:52 1472512 ----a-w- C:\Windows\System32\crypt32.dll
2013-08-15 05:42:52 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-08-15 05:42:51 224256 ----a-w- C:\Windows\System32\wintrust.dll
2013-08-15 05:42:51 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-08-15 05:42:51 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-08-15 05:42:51 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2013-08-15 05:42:50 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2013-08-15 05:42:50 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-08-15 05:42:35 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll
2013-08-15 05:42:34 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2013-08-15 05:42:25 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-08-15 05:42:25 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-08-15 05:41:04 1910208 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-08-14 14:25:33 1795952 ----a-w- C:\Windows\System32\WdfCoInstaller01011.dll
2013-08-14 14:25:28 34544 ----a-w- C:\Windows\System32\drivers\Smb_driver_Intel.sys
2013-08-14 14:24:43 9890008 ----a-w- C:\Windows\SysWow64\RtsUStoricon.dll
2013-08-14 14:24:43 423640 ----a-w- C:\Windows\System32\RtsUStor.dll
2013-08-14 14:24:43 262872 ----a-w- C:\Windows\System32\drivers\RtsUStor.sys
2013-08-14 14:20:07 872152 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2013-08-14 14:20:07 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2013-08-14 14:18:44 96256 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys
2013-08-14 14:18:44 110080 ----a-w- C:\Windows\System32\DelayAPO.dll
2013-08-13 14:13:50 -------- d-----w- C:\Program Files (x86)\Application Updater
2013-08-13 14:13:49 -------- d-----w- C:\Program Files (x86)\Common Files\Spigot
2013-08-10 06:33:59 -------- d-----w- C:\Users\SophieVanRooij\AppData\Local\SWTOR
2013-08-10 06:20:14 -------- d-----w- C:\ProgramData\BitRaider
2013-08-10 06:20:03 -------- d-----w- C:\Users\SophieVanRooij\AppData\Local\SWTORPerf
2013-08-10 06:18:32 -------- d-----w- C:\Program Files (x86)\Common Files\BioWare
.
==================== Find3M ====================
.
2013-08-14 14:20:07 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:39:38 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-26 01:59:38 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-07-09 06:03:30 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-07-09 05:54:22 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-07-09 05:53:12 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-07-09 05:03:34 3968960 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-07-09 05:03:34 3913664 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-07-09 04:53:47 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-07-09 04:52:33 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-07-09 04:45:07 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-07-09 02:49:42 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-07-09 02:49:41 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-07-09 02:49:39 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-07-09 02:49:38 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-06-29 09:07:28 35936 ----a-w- C:\Windows\System32\drivers\amdkmpfd.sys
2013-06-27 05:56:17 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-27 05:56:17 867240 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll
2013-06-27 05:56:17 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-06-15 04:32:16 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2013-06-12 09:01:21 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2013-06-12 09:01:21 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2013-06-12 09:00:25 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-06-12 09:00:25 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-06-12 08:59:52 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-06-12 08:59:52 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-06-12 08:46:13 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-12 08:46:13 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-06-07 05:08:59 21160 ----a-w- C:\Windows\System32\drivers\amdkmafd.sys
2013-06-05 14:45:57 20464 ----a-w- C:\Windows\System32\drivers\iusb3hcs.sys
2013-06-05 03:34:27 3153920 ----a-w- C:\Windows\System32\win32k.sys
2013-06-04 06:00:13 624128 ----a-w- C:\Windows\System32\qedit.dll
2013-06-04 04:53:07 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2013-05-28 13:05:16 163328 ----a-w- C:\Windows\SysWow64\FlashPlayerUpdateService.exe
.
============= FINISH: 1:59:51,23 ===============

**sophievanrooij** · 16-08-13, 01:07

Ik zie nu dat Advancedsystemcare (gedeeltelijk) van mijn pc is gehaald??? Dit is een betaalde versie en vraag me eigenlijk af waarom? Is dit geen goed programma?

Mededeling

Tijdens gamen minimaliseert game automatisch steeds naar bureaublad

Tijdens gamen minimaliseert game automatisch steeds naar bureaublad

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment