CreateRestorePoint:
HKU\S-1-5-21-2616087736-3813733752-4251558300-1001\...\Run: [background_fault] => C:\Users\Jonathan\AppData\Local\background_fault\aswRD.exe [1419576 2017-05-04] () <===== AANDACHT
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
GroupPolicy: Restrictie <======= AANDACHT
GroupPolicy\User: Restrictie <======= AANDACHT
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.mystarting123.com/search/index.php?q={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> mystarting123
CHR Profile: C:\Users\Jonathan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-05-18] <==== AANDACHT
S2 BIT; C:\ProgramData\BIT\BIT.dll [1857536 2017-05-18] () [Bestand niet getekend] <==== AANDACHT
S2 CSHMDR; C:\Users\Jonathan\AppData\Local\CSHMDR\Snare.dll [832000 2017-05-18] () [Bestand niet getekend] <==== AANDACHT
S2 CWASRE; C:\Users\Jonathan\AppData\Local\CWASRE\Snare.dll [830464 2017-05-16] () [Bestand niet getekend] <==== AANDACHT
S2 NPASRE; C:\Users\Jonathan\AppData\Local\NPASRE\Snare.dll [830464 2017-05-10] () [Bestand niet getekend] <==== AANDACHT
S2 WinAppSvr; C:\ProgramData\Microsoft\AppV\sym\dbg.dll [109056 2017-05-12] () [Bestand niet getekend] <==== AANDACHT
S2 WinSAPSvc; C:\Users\Jonathan\AppData\Roaming\WinSAPSvc\WinSAP.dll [1873920 2017-05-18] () [Bestand niet getekend] <==== AANDACHT
C:\Users\Jonathan\AppData\Local\background_fault
C:\ProgramData\BIT
C:\Users\Jonathan\AppData\Local\CSHMDR
C:\Users\Jonathan\AppData\Local\CWASRE
C:\Users\Jonathan\AppData\Local\NPASRE
C:\ProgramData\Microsoft\AppV
C:\Users\Jonathan\AppData\Roaming\WinSAPSvc
C:\Windows\System32\Tasks\Milimili
C:\Reimward
C:\Users\Jonathan\AppData\Local\Eggper
C:\Program Files (x86)\Eggper
C:\Users\Public\Desktop\Google Chrome.lnk
C:\Windows\SysWOW64\1111
C:\Users\Jonathan\AppData\Local\VNASRE
C:\Program Files (x86)\MIO
C:\Windows\psgo
Task: {8166D98B-E2DF-4105-B52B-925B3A91C908} - \PJm59Oy2pQ -> Geen bestand <==== AANDACHT
Task: {8662E85D-DC9B-4120-86CB-ABBF357A1EF9} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-05-18] () <==== AANDACHT
Task: {8AD3D1EB-CD9D-408B-82E5-B1A80216EB92} - \Gherkerge -> Geen bestand <==== AANDACHT
Shortcut: C:\Users\Jonathan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Eggper\Application\chrome.exe ()
Shortcut: C:\Users\Jonathan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Eggper\Application\chrome.exe ()
Shortcut: C:\Users\Jonathan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Eggper\Application\chrome.exe ()
Shortcut: C:\Users\Jonathan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\167c78b32431516\Google Chrome.lnk -> C:\Program Files (x86)\Eggper\Application\chrome.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Eggper\Application\chrome.exe ()
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Eggper\Application\chrome.exe ()
Hosts:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state on
EmptyTemp: