Niek11

Is het mogelijk om je besturingsysteem teverplaatsen naar een nieuwe schijf?

zoek-results.log

Hellaas, ik start net mijn pc in een lange tijd weer op en het begint weer op nieuw! Opeens is chrome weg en heb ik crossbrowse ofzo iets. Uiteidelijk heb ik firefox genomen maar nu opent firefox steeds ads/nieuwe pagina's En nu vraagt hij ook steeds of ik dingen wil instaleren

Ik kan de optie google dashbord niet vinden

Ik ga der overmorgen mee bezig! Heb het erg druk

hellaas wel

Ik had de java update na het zoeklogje gedaan

AdwCleanerS0.txt

zoek-results.log

Mijn excuus voor het wachten ik zal er morgen middag mee aan de slag gaan

Dit is de log van zoek.exe: Zoek.exe v5.0.0.0 Updated 02-April-2015 Tool run by Niek on ma 06-04-2015 at 14:06:43,71. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Niek\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2015-04-06-120500.log 9085 bytes ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} deleted successfully HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CA89D229-A080-41AA-887F-7C1F84FA5958} deleted successfully HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Adobe Flash Player ActiveX Adobe Photoshop CS6 Agrar Simulator 2011 Apple Application Support Apple Software Update ASUS PCE-N53 WLAN Card Utilities & Driver ASUS Product Register Program Battle.net Battlelog Web Plugins Bing Bar BitTorrent CCleaner Craften Terminal 4.0.2 De SimsT 4 Definition Update for Microsoft Office 2010 (KB2956207) 64-Bit Edition ESN Sonar Fraps (remove only) Garbage Truck Simulator Google Chrome Google Toolbar for Internet Explorer Google Update Helper Heavyweight Simulator 1.11 Intel® Chipset Device Software Intel® Network Connections 19.1.51.0 Intel® Rapid Storage Technology Intel® USB 3.0 eXtensible Host Controller Driver Java 7 Update 67 Java 7 Update 67 (64-bit) Java Auto Updater Loadout Microsoft .NET Framework 4.5.1 Microsoft ASP.NET MVC 4 Runtime Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office Office 32-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 32-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Outlook Hotmail Connector 64-bits Microsoft Security Client Microsoft Security Essentials Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Microsoft_VC80_CRT_x86 Microsoft_VC90_CRT_x86 Minecraft MSI GamingApp NVIDIA-configuratiescherm 344.60 NVIDIA 3D Vision controllerstuurprogramma 344.46 NVIDIA 3D Vision stuurprogramma 344.60 NVIDIA GeForce Experience 2.1.3 NVIDIA GeForce Experience Service NVIDIA Grafisch stuurprogramma 344.60 NVIDIA HD Audio-stuurprogramma 1.3.32.1 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA PhysX NVIDIA PhysX systeemsoftware 9.14.0702 NVIDIA ShadowPlay 16.13.56 NVIDIA Stereoscopic 3D Driver NVIDIA Update 16.13.56 NVIDIA Update Core NVIDIA Virtual Audio 1.2.25 Origin PAYDAY 2 PDF Settings CS6 PlanetSide 2 Popcorn Time QuickTime 7 Realtek High Definition Audio Driver ROBLOX Player for Niek Robocraft Rust Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft .NET Framework 4.5.1 (KB2972107) Security Update for Microsoft .NET Framework 4.5.1 (KB2972216) Security Update for Microsoft .NET Framework 4.5.1 (KB2978128) Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2) Security Update for Microsoft Excel 2010 (KB2956142) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2883100) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2889839) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 64-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 64-Bit Edition Security Update for Microsoft Word 2010 (KB2956139) 64-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition SHIELD Streaming SHIELD Wireless Controller Driver SkypeT 7.1 Software voor Intel© Chipset-apparaten Space Engineers SPORET Steam Supreme AdBlocker Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD Team Fortress 2 TeamSpeak 3 Client THE SETTLERS - Rise of an Empire Theme Hospital To Do List Trawler Simulator Unity Web Player Update for Microsoft Access 2010 (KB2837601) 64-Bit Edition Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition Update for Microsoft Office 2010 (KB2837602) 64-Bit Edition Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition Update for Microsoft Office 2010 (KB2920813) 64-Bit Edition Update for Microsoft Office 2010 (KB2956141) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2956205) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2956128) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2956203) 64-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition Update for Microsoft Visio 2010 (KB2878283) 64-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition WinRAR 5.01 (32-bit) World of Tanks World of Warcraft World of Warplanes ==== Running Processes ====================== C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Windows\System32\TiltWheelMouse.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Users\Niek\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\WindowsMangerProtect deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WindowsMangerProtect deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64607997-95df-47d4-aed2-1cb0a5cdfdda}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8c406a8b-73c6-4fae-9a2d-b099a5becdeb}] ==== Batch Command(s) Run By Tool====================== De Winsock-catalogus is opnieuw ingesteld. De computer dient opnieuw te worden opgestart om het opnieuw instellen te voltooien. ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\XTab not found C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f} not found C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd} not found C:\Program Files (x86)\Fun2SSavE not found C:\Program Files (x86)\Isaverr not found C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879 not found C:\Program Files (x86)\AnyProtectEx not found C:\Program Files (x86)\AllSaveer not found "C:\Windows\tasks\APSnotifierPP1.JOB" not found "C:\Windows\tasks\APSnotifierPP2.job" not found "C:\Windows\tasks\APSnotifierPP3.job" not found "C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\optimizerpro_soft_partner.lnk" not found "C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\superpc_soft_partner.lnk" not found C:\PROGRA~2\eyeCare Protect your vision and health deleted C:\PROGRA~2\To Do List deleted C:\PROGRA~2\UniDEalosa deleted C:\PROGRA~3\dmcfiidpjnmbhookaihpghmfbihghgfj deleted C:\PROGRA~3\gfigacejallcjhhgkminhbncegfngcii deleted C:\PROGRA~3\hjnghnajimjeakelnfllmbpjldmijdii deleted C:\PROGRA~3\lkcfmgbmhdghafbmgnnmpkdmobibckme deleted C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\Adobe Photoshop CS5 Full.lnk deleted C:\PROGRA~3\7125272534184871677 deleted C:\Users\Niek\AppData\Roaming\appdataFr3.bin deleted C:\Users\Niek\AppData\Roaming\AnyProtectEx deleted C:\PROGRA~3\APN deleted C:\PROGRA~3\Browser AdBlocker deleted C:\PROGRA~3\Mini - Adblocker deleted C:\PROGRA~3\Supreme AdBlocker deleted C:\PROGRA~3\IHProtectUpDate deleted C:\PROGRA~3\EpicScale deleted C:\PROGRA~3\WindowsMangerProtect deleted C:\PROGRA~3\Package Cache deleted C:\Users\Niek\AppData\Local\nsqC403.tmp deleted C:\Users\Niek\AppData\Local\5D14FF20-1425229746-11DD-B1EB-10C37B6E8879 deleted C:\Users\Niek\AppData\Local\SmartWeb deleted C:\Users\Niek\AppData\Local\Maxiget deleted C:\Windows\patsearch.bin deleted C:\Windows\Syswow64\BasementDusterOff.ini deleted C:\windows\SysNative\BasementDusterOff.ini deleted C:\windows\SysNative\tasks\SmartWeb Upgrade Trigger Task deleted C:\windows\SysNative\drivers\Msft_Kernel_webTinst_01009.Wdf deleted C:\windows\SysNative\drivers\{ca032d0a-a16a-4ca5-8bc6-c3c5a2d19d37}Gw64.sys deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\Users\Niek\Documents\Optimizer Pro deleted "C:\Windows\Syswow64\BDL.dll" deleted "C:\Users\Niek\AppData\Roaming\.minecraft\launcher.jar" not deleted "C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\5b5b9f563aaa7daf" not deleted "C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\96a639031d7e9a7b" not deleted "C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe" deleted "C:\Users\Niek\AppData\Roaming\.minecraft" not deleted "C:\Users\Niek\AppData\Roaming\.technic" deleted "C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}" not deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 8136 MB CPU Info: Intel® Core i5-4460 CPU @ 3.20GHz CPU Speed: 3196,6 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek Digital Output(Optical) | Realtek Digital Output (Realtek | Display Adapters: NVIDIA GeForce GTX 750 Ti | NVIDIA GeForce GTX 750 Ti | NVIDIA GeForce GTX 750 Ti | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: ASUS PCE-N53 300Mbps 11n Dual band Wireless LAN PCI-E Card | Intel® Ethernet Connection (2) I218-V CD / DVD Drives: 1x (D: | ) D: ASUS DRW-24F1ST a Ports: COM1 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 931,4GB | N: 931,5GB Hard Disks - Free: C: 671,9GB | N: 930,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 05/29/14 | ALASKA - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK COMPUTER INC. Z97-A Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated) Anti-Spyware: Microsoft Security Essentials disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 41.0.2272.118 Internet Explorer Version: 11.0.9600.17691 Google Chrome version: 41.0.2272.118 Sun Java version: 1.7.0_67 (32-bit) Sun Java version: 1.7.0_67 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Niek\AppData\Local\Temp ==== 2015-04-06 10:07:47 05CC63B698817C7A50E7A2EEEBD59B4E 169298152 ----a-w- C:\Users\Niek\AppData\Local\Temp\ubiBC11.tmp.exe 2015-03-25 16:18:09 15946E28BFC63D817212BC21EFA0B0C3 29479936 ----a-w- C:\Users\Niek\AppData\Local\Temp\SkypeSetup.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-03-25 16:39:59 4BA77DD4E4894EAF2BCB2D3E0A0B6F7A 30720 ----a-w- C:\Windows\Sysnative\acmigration.dll 2015-03-25 16:39:58 EBDE90C94A0671F05AAA0DF2A2139F43 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll 2015-03-25 16:39:58 EBDBE8037B0BE75B05CBC5DEEE49BA90 677888 ----a-w- C:\Windows\Sysnative\generaltel.dll 2015-03-25 16:39:58 E82D241A892C15FB42AB0A3D83C01ACA 414720 ----a-w- C:\Windows\Sysnative\devinv.dll 2015-03-25 16:39:58 B3B9C29F90A10216F13113757BCACAD8 1107456 ----a-w- C:\Windows\Sysnative\aeinv.dll 2015-03-25 16:39:58 82009026471290E8A512D1FE2442FDFC 760832 ----a-w- C:\Windows\Sysnative\invagent.dll 2015-03-25 16:39:58 75A43F9EA79BF721DC6D94980F85F87D 943616 ----a-w- C:\Windows\Sysnative\appraiser.dll 2015-03-25 16:39:57 1C11E0739B2B354647D292FCDCB7AF8E 192000 ----a-w- C:\Windows\Sysnative\aepic.dll ====== C:\Windows\Sysnative\drivers ===== 2015-03-13 16:48:54 87BCD1034CBF33537D4D4C251D39BA26 94656 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys 2015-03-13 16:48:48 ED6E75158D28D33A2E2A020AC5B2B59D 663552 ----a-w- C:\Windows\Sysnative\drivers\PEAuth.sys 2015-03-13 16:48:48 90C53BD47979FB8814F465A08B885102 61440 ----a-w- C:\Windows\Sysnative\drivers\appid.sys 2015-03-13 16:48:33 8BA90F480705D7153AD0060CCA62222A 155576 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2015-03-13 16:48:33 27667A788130A7F7A5858DE27572E6D7 459336 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2015-03-13 16:48:32 56ED3EE5FED6BF2FC1305CF872042868 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys ====== C:\Windows\Tasks ====== 2015-03-11 12:58:48 D2819AE97694FF391357262FD285BA15 3498 ----a-w- C:\Windows\Sysnative\Tasks\AdobeAAMUpdater-1.0-Niek-PC-Niek ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-04-06 08:52:19 -------- d-----w- C:\Program Files\trend micro 2015-03-10 18:38:05 -------- d-----w- C:\Program Files\Adobe 2015-03-10 18:35:27 -------- d-----w- C:\Program Files\Common Files\Adobe ======= C:\PROGRA~2 ===== 2015-04-06 09:37:03 -------- d-----w- C:\PROGRA~2\Ubisoft 2015-03-10 18:37:02 -------- d-----w- C:\PROGRA~2\Adobe 2015-03-10 18:28:10 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe ======= C: ===== ====== C:\Users\Niek\AppData\Roaming ====== 2015-04-02 12:01:31 -------- d-----w- C:\Users\Niek\AppData\Local\Popcorn-Time 2015-04-02 12:01:26 -------- d-----w- C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time 2015-04-02 12:00:45 -------- d-----w- C:\Users\Niek\AppData\Local\Popcorn Time 2015-03-11 13:15:14 -------- d-----w- C:\Users\Niek\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 2015-03-10 18:23:25 -------- d-----w- C:\Users\Niek\AppData\Local\Adobe 2015-03-10 17:08:40 B88C7B1313C1EB2890F9BE6A3BABB4F2 20 ----a-w- C:\Users\Niek\AppData\Roaming\appdataFr3.bin ====== C:\Users\Niek ====== 2015-04-06 09:40:52 -------- d-----w- C:\ProgramData\Media Center Programs 2015-04-06 08:52:00 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Niek\Downloads\RSITx64.exe 2015-04-02 12:00:50 -------- d-----w- C:\ProgramData\98b5451200001294 2015-04-02 11:59:29 722821DE247038BB934D9B2AC3812D98 23315064 ----a-w- C:\Users\Niek\Downloads\Popcorn-Time-0.3.7.2-Setup.exe 2015-03-25 16:24:59 -------- d-----w- C:\ProgramData\5b7719bc00004870 2015-03-10 18:38:40 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe 2015-03-10 18:23:41 -------- d-----w- C:\ProgramData\Adobe ====== C: exe-files == 2015-04-06 10:07:47 05CC63B698817C7A50E7A2EEEBD59B4E 169298152 ----a-w- C:\Users\Niek\AppData\Local\Temp\ubiBC11.tmp.exe 2015-04-06 09:40:46 044DB3FF25D506592CCDC1F9B7C51A8B 7849208 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\bin\Settlers6.exe 2015-04-06 09:40:45 D73880FC92AAA00ED44CCA78486AB42A 7652600 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\bin\S6MapEditor.exe 2015-04-06 09:39:44 8D211D7FC3D39D5914569EA38118B2F6 619768 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\support\GameUpdate\S6GameUpdate.exe 2015-04-06 09:39:44 7DAA3370032CF025DCABD9F97BA17475 189688 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\support\Uninstall\S6Uninstall.exe 2015-04-06 09:39:44 105B516D54EDEA059957223738752C44 87288 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\support\PDFLauncher\S6PDFLauncher.exe 2015-04-06 09:37:04 8DD5F63B3D8A5F614DFFE43DDCDD3C6D 181496 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\Play Settlers 6.exe 2015-04-06 09:37:03 677DA38DEDBC7FF1F7DCAACABA7FE2C4 378104 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{D3F80A98-05AB-4D8C-9272-766CCFA6A48D}\setup.exe 2015-04-06 08:52:19 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Niek.exe 2015-04-06 08:52:00 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Niek\Downloads\RSITx64.exe 2015-04-06 08:42:27 04A8F29E2CB7A633109E6AF1316F6E97 864336 ----a-w- C:\Program Files (x86)\Google\Update\Install\{8C91C03F-884B-43BB-AF64-409E502FE1AC}\41.0.2272.118_41.0.2272.101_chrome_updater.exe 2015-04-06 08:42:27 04A8F29E2CB7A633109E6AF1316F6E97 864336 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\41.0.2272.118\41.0.2272.118_41.0.2272.101_chrome_updater.exe 2015-04-06 08:13:52 9E6A68C67250872F32B226E8D023F4E6 5347536 ----a-w- C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\Packages\00007313\DAO.19457206.exe 2015-04-06 08:13:52 554D0E50BFE40D6B633392A03077C046 446584 ----a-w- C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\Packages\0000731e\CoProc update.19457567.exe 2015-04-02 12:01:25 E5CC3086D8AF960DECB5EEAC2A556762 380212 ----a-w- C:\Users\Niek\AppData\Local\Popcorn Time\Uninstall.exe 2015-04-02 11:59:40 091D04129C8DA68A6563364EF0E509D8 36672136 ----a-w- C:\ProgramData\NVIDIA Corporation\NetService\06ae36f4-41c8-4c11-b622-91011fbc115f\GeForce_Experience_Update_v2.4.1.21.exe 2015-04-02 11:59:29 722821DE247038BB934D9B2AC3812D98 23315064 ----a-w- C:\Users\Niek\Downloads\Popcorn-Time-0.3.7.2-Setup.exe 2015-04-02 11:49:14 895411AF4EB208C1D61484B783C24152 675256 ----a-w- C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe 2015-04-02 11:49:10 B7358DA2B84CA224A6BC86D9BBCEC32E 172984 ----a-w- C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe === C: other files == 2015-04-02 12:40:17 A02B860F050117A176246389B13F8F1E 31297 ----a-w- C:\FTB\direwolf20_17\minecraft\mods\carpentersblocks\CarpentersBlocksCachedResources.zip 2015-04-02 12:38:54 72E5929577C08DA10B968188F8F004BA 128319760 ----a-w- C:\Users\Niek\AppData\Local\ftblauncher\ModPacks\direwolf20_17\direwolf20_17.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart" "BitTorrent"="C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "USB3MON"="C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" "AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart" "BitTorrent"="C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" "RtHDVBg_DTS"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /DTSU2P" "IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "MouseDriver"="TiltWheelMouse.exe" "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:6C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [14-08-2014 22:07] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Niek-PC-Niek" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\ASUS\ASUS Product Register Service" [C:\Program Files (x86)\ASUS\APRP\aprp.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Chromium Look ====================== Google Slides - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf eyeCare Protect your vision and health - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeeningnfkaonkonalpcicgemnnijjhn Google Sheets - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Wallet - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://google.com/", "startup_urls": [ "http://google.com/" ] ==== Chromium Fix ====================== C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage-journal deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_searches.vi-view.com_0.localstorage deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_searches.vi-view.com_0.localstorage-journal deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage-journal deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_infrarecorder.en.softonic.com_0.localstorage deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_infrarecorder.en.softonic.com_0.localstorage-journal deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeeningnfkaonkonalpcicgemnnijjhn deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eeeningnfkaonkonalpcicgemnnijjhn_0.localstorage deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eeeningnfkaonkonalpcicgemnnijjhn_0.localstorage-journal deleted successfully C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\eeeningnfkaonkonalpcicgemnnijjhn deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK" "Search Page"="http://www.mystartsearch.com/web/?type=dspp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}" "Default_Page_URL"="http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK" "Default_Search_URL"="http://www.mystartsearch.com/web/?type=dspp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.mystartsearch.com/web/?type=ds&ts=1425226075&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}" "Default_Page_URL"="http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK" "Start Page"="http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK" "Search Page"="http://www.mystartsearch.com/web/?type=ds&ts=1425226075&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.mystartsearch.com/web/?type=ds&ts=1425226075&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}" "Default_Page_URL"="http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK" "Start Page"="http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK" "Search Page"="http://www.mystartsearch.com/web/?type=ds&ts=1425226075&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{CA89D229-A080-41AA-887F-7C1F84FA5958}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CA89D229-A080-41AA-887F-7C1F84FA5958}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613} deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart O4 - HKCU\..\Run: [bitTorrent] "C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.clonewarsadventures.com O15 - Trusted Zone: *.freerealms.com O15 - Trusted Zone: *.soe.com O15 - Trusted Zone: *.sony.com O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1X5XLFYD will be deleted at reboot C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LA6250B6 will be deleted at reboot C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N9WSAA66 will be deleted at reboot C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UJE1G116 will be deleted at reboot C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VUVKEY98 will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=10918 folders=1784 2137970307 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Niek\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Niek\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Niek\AppData\Roaming\.minecraft\launcher.jar" not found "C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\5b5b9f563aaa7daf" not found "C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\96a639031d7e9a7b" not found "C:\Windows\Syswow64\BDL.dllsearch" not found "C:\Users\Niek\AppData\Roaming\.minecraft" not found "C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}" not found "C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1X5XLFYD" not found "C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LA6250B6" not found "C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N9WSAA66" not found "C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UJE1G116" not found "C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VUVKEY98" not found ==== EOF on ma 06-04-2015 at 14:32:56,57 ======================

Hij is bezig

De log nog een keer Logfile of random's system information tool 1.10 (written by random/random) Run by Niek at 2015-04-06 10:52:19 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 692 GB (73%) free of 954 GB Total RAM: 8135 MB (63% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:52:25, on 6-4-2015 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17689) Boot mode: Normal Running processes: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Windows\System32\TiltWheelMouse.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Origin\Origin.exe C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe C:\Program Files (x86)\XTab\cmdshell.exe C:\Program Files (x86)\XTab\HPNotify.exe C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f}\optimizerpro_soft_partner.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd}\superpc_soft_partner.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files\trend micro\Niek.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=dspp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms} R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=dspp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=ds&ts=1425226075&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1425226075&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\XTab\SupTab.dll O2 - BHO: Fun2SSavE - {64607997-95df-47d4-aed2-1cb0a5cdfdda} - C:\Program Files (x86)\Fun2SSavE\84HDQN5JK4j3cx.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Isaverr - {8c406a8b-73c6-4fae-9a2d-b099a5becdeb} - C:\Program Files (x86)\Isaverr\jOHLYlAjaqiiyo.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart O4 - HKCU\..\Run: [bitTorrent] "C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Adobe Photoshop CS5 Full.lnk = C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe O4 - Startup: optimizerpro_soft_partner.lnk = C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f}\optimizerpro_soft_partner.exe O4 - Startup: superpc_soft_partner.lnk = C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd}\superpc_soft_partner.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.clonewarsadventures.com O15 - Trusted Zone: *.freerealms.com O15 - Trusted Zone: *.soe.com O15 - Trusted Zone: *.sony.com O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: IHProtect Service - XTab system - C:\Program Files (x86)\XTab\ProtectService.exe O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing) O23 - Service: Clone Zoom Out (kebyvuxe) - Unknown owner - C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\nsa4D8D.tmpfs O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Portal Reformat (ronojewe) - Unknown owner - C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\jnsf7C9E.tmp O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - SysTool PasSame LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 14328 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Windows\system32\nvvsvc.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" C:\Windows\system32\svchost.exe -k RPCSS "C:\Program Files\Microsoft Security Client\MsMpEng.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe" C:\Windows\system32\nvvsvc.exe -session -first C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe" "C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe" "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe" "C:\Program Files (x86)\XTab\ProtectService.exe" C:\Windows\system32\IProsetMonitor.exe C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\nsa4D8D.tmpfs "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe" "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" C:\Windows\SysWOW64\PnkBstrA.exe C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\jnsf7C9E.tmp "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 91c27fa0-2486-465a-b1f2-905e6a32aff0 1 \??\C:\Windows\system32\conhost.exe "13883335631495590112-174146605220466485161605495156-225067223241789119-803959261 "C:\Program Files\Microsoft Security Client\NisSrv.exe" "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-55b205d5-5dbe-4902-b011-e55358041d7f -SystemEventPortName:HostProcess-2a2e7757-f496-42d7-adf6-119b59afe5f6 -IoCancelEventPortName:HostProcess-55b05736-5424-47a5-a378-de2b784d606b -NonStateChangingEventPortName:HostProcess-a0008e39-829d-4d7d-9f83-113f388a576b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d87b2c8a-89da-45d1-8cb4-8f1307877656 -DeviceGroupId: C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "taskhost.exe" "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp \??\C:\Windows\system32\conhost.exe "-313674456-1576091379-1025069321213548982-1908176415861025784937086247825220346 "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P "C:\Windows\System32\TiltWheelMouse.exe" "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart "C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe" --startup=1 "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1 "C:\Program Files (x86)\XTab\cmdshell.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet HPNotify.exe -run "C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f}\optimizerpro_soft_partner.exe" /startup "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd}\superpc_soft_partner.exe" /startup "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6132.0.1837527788\1491031990" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40,48 --gpu-vendor-id=0x10de --gpu-device-id=0x1380 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4460 --ignored=" --type=renderer " /prefetch:822062411 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.2.241443528\1909295980" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.3.1616857304\703886129" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.4.1025695304\1442628229" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.5.795190880\947189830" /prefetch:673131151 "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Windows\system32\wuauclt.exe" consent.exe 1128 566 00000000097E9B80 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="6132.10.2116062189\791323517" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.12.1503832088\1469267581" /prefetch:673131151 "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe" "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.21.1381691663\670453500" /prefetch:673131151 "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528 "C:\Users\Niek\Downloads\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\APSnotifierPP1.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier 3A C:\Windows\tasks\APSnotifierPP2.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier 4 C:\Windows\tasks\APSnotifierPP3.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier 6 C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64607997-95df-47d4-aed2-1cb0a5cdfdda}] Fun2SSavE - C:\Program Files (x86)\Fun2SSavE\84HDQN5JK4j3cx.x64.dll [2015-03-17 660480] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-08 553896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8c406a8b-73c6-4fae-9a2d-b099a5becdeb}] Isaverr - C:\Program Files (x86)\Isaverr\jOHLYlAjaqiiyo.x64.dll [2015-03-17 660480] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-08 211880] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}] IETabPage Class - C:\Program Files (x86)\XTab\SupTab.dll [2015-01-16 210096] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64607997-95df-47d4-aed2-1cb0a5cdfdda}] Fun2SSavE - C:\Program Files (x86)\Fun2SSavE\84HDQN5JK4j3cx.dll [2015-03-17 587264] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-15 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8c406a8b-73c6-4fae-9a2d-b099a5becdeb}] Isaverr - C:\Program Files (x86)\Isaverr\jOHLYlAjaqiiyo.dll [2015-03-17 587264] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-15 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03 194504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-04-22 7573208] "RtHDVBg_DTS"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-04-15 1385840] "IAStorIcon"=C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe [2014-04-11 36352] "NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-10-04 2463552] "ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-10-04 2800296] "BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144] "MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2015-01-30 1332296] "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2014-08-14 39408] "Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31087200] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584] "EADM"=C:\Program Files (x86)\Origin\Origin.exe [2015-03-01 3631448] "BitTorrent"=C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe [2015-03-05 1744472] "EpicScale"= [] "AdobeBridge"= [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "USB3MON"=C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-21 292848] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896] "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-10-02 421888] "gmsd_nl_107"= [] "SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] "AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312] C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Adobe Photoshop CS5 Full.lnk - C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe optimizerpro_soft_partner.lnk - C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f}\optimizerpro_soft_partner.exe superpc_soft_partner.lnk - C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd}\superpc_soft_partner.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "VIDC.FPS1"=frapsv64.dll "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2015-04-06 10:52:19 ----D---- C:\rsit 2015-04-06 10:52:19 ----D---- C:\Program Files\trend micro 2015-04-02 14:00:50 ----D---- C:\ProgramData\98b5451200001294 2015-03-25 18:39:59 ----A---- C:\Windows\system32\acmigration.dll 2015-03-25 18:39:58 ----A---- C:\Windows\system32\invagent.dll 2015-03-25 18:39:58 ----A---- C:\Windows\system32\generaltel.dll 2015-03-25 18:39:58 ----A---- C:\Windows\system32\devinv.dll 2015-03-25 18:39:58 ----A---- C:\Windows\system32\appraiser.dll 2015-03-25 18:39:58 ----A---- C:\Windows\system32\aepdu.dll 2015-03-25 18:39:58 ----A---- C:\Windows\system32\aeinv.dll 2015-03-25 18:39:57 ----A---- C:\Windows\system32\aepic.dll 2015-03-25 18:24:59 ----D---- C:\ProgramData\5b7719bc00004870 2015-03-22 19:46:57 ----D---- C:\ProgramData\Supreme AdBlocker 2015-03-17 21:04:34 ----D---- C:\Program Files (x86)\eyeCare Protect your vision and health 2015-03-17 21:04:04 ----D---- C:\Program Files (x86)\Fun2SSavE 2015-03-17 21:03:57 ----D---- C:\Program Files (x86)\Isaverr 2015-03-17 21:03:53 ----D---- C:\Program Files (x86)\AllSaveer 2015-03-16 18:31:27 ----D---- C:\ProgramData\Mini - Adblocker 2015-03-15 11:11:24 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe 2015-03-15 11:11:20 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe 2015-03-14 11:26:41 ----D---- C:\ProgramData\fd05f803000010d9 2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\lpk.dll 2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\fontsub.dll 2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\dciman32.dll 2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\atmlib.dll 2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\atmfd.dll 2015-03-13 18:49:01 ----A---- C:\Windows\system32\lpk.dll 2015-03-13 18:49:01 ----A---- C:\Windows\system32\fontsub.dll 2015-03-13 18:49:01 ----A---- C:\Windows\system32\dciman32.dll 2015-03-13 18:49:01 ----A---- C:\Windows\system32\atmlib.dll 2015-03-13 18:49:01 ----A---- C:\Windows\system32\atmfd.dll 2015-03-13 18:48:56 ----A---- C:\Windows\SYSWOW64\wmp.dll 2015-03-13 18:48:56 ----A---- C:\Windows\SYSWOW64\mf.dll 2015-03-13 18:48:56 ----A---- C:\Windows\system32\ntoskrnl.exe 2015-03-13 18:48:55 ----A---- C:\Windows\system32\crypt32.dll 2015-03-13 18:48:54 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2015-03-13 18:48:54 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2015-03-13 18:48:54 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2015-03-13 18:48:54 ----A---- C:\Windows\system32\mf.dll 2015-03-13 18:48:54 ----A---- C:\Windows\system32\drivers\mountmgr.sys 2015-03-13 18:48:53 ----A---- C:\Windows\SYSWOW64\quartz.dll 2015-03-13 18:48:53 ----A---- C:\Windows\system32\wmp.dll 2015-03-13 18:48:53 ----A---- C:\Windows\system32\drmv2clt.dll 2015-03-13 18:48:52 ----A---- C:\Windows\SYSWOW64\qdvd.dll 2015-03-13 18:48:52 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll 2015-03-13 18:48:52 ----A---- C:\Windows\SYSWOW64\cryptui.dll 2015-03-13 18:48:52 ----A---- C:\Windows\SYSWOW64\blackbox.dll 2015-03-13 18:48:52 ----A---- C:\Windows\system32\wmdrmsdk.dll 2015-03-13 18:48:52 ----A---- C:\Windows\system32\winload.exe 2015-03-13 18:48:52 ----A---- C:\Windows\system32\quartz.dll 2015-03-13 18:48:52 ----A---- C:\Windows\system32\msscp.dll 2015-03-13 18:48:52 ----A---- C:\Windows\system32\cryptui.dll 2015-03-13 18:48:52 ----A---- C:\Windows\system32\cryptnet.dll 2015-03-13 18:48:51 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll 2015-03-13 18:48:51 ----A---- C:\Windows\SYSWOW64\wintrust.dll 2015-03-13 18:48:51 ----A---- C:\Windows\SYSWOW64\mfplat.dll 2015-03-13 18:48:51 ----A---- C:\Windows\SYSWOW64\cryptnet.dll 2015-03-13 18:48:51 ----A---- C:\Windows\system32\wintrust.dll 2015-03-13 18:48:51 ----A---- C:\Windows\system32\srcore.dll 2015-03-13 18:48:51 ----A---- C:\Windows\system32\rstrui.exe 2015-03-13 18:48:51 ----A---- C:\Windows\system32\pcasvc.dll 2015-03-13 18:48:51 ----A---- C:\Windows\system32\mfplat.dll 2015-03-13 18:48:51 ----A---- C:\Windows\system32\drmmgrtn.dll 2015-03-13 18:48:51 ----A---- C:\Windows\system32\blackbox.dll 2015-03-13 18:48:51 ----A---- C:\Windows\system32\audiosrv.dll 2015-03-13 18:48:51 ----A---- C:\Windows\system32\AUDIOKSE.dll 2015-03-13 18:48:50 ----A---- C:\Windows\SYSWOW64\msscp.dll 2015-03-13 18:48:50 ----A---- C:\Windows\SYSWOW64\evr.dll 2015-03-13 18:48:50 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll 2015-03-13 18:48:50 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll 2015-03-13 18:48:50 ----A---- C:\Windows\system32\qdvd.dll 2015-03-13 18:48:50 ----A---- C:\Windows\system32\msnetobj.dll 2015-03-13 18:48:50 ----A---- C:\Windows\system32\evr.dll 2015-03-13 18:48:50 ----A---- C:\Windows\system32\cryptsvc.dll 2015-03-13 18:48:50 ----A---- C:\Windows\system32\AudioSes.dll 2015-03-13 18:48:50 ----A---- C:\Windows\system32\audiodg.exe 2015-03-13 18:48:49 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe 2015-03-13 18:48:49 ----A---- C:\Windows\SYSWOW64\msnetobj.dll 2015-03-13 18:48:49 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll 2015-03-13 18:48:49 ----A---- C:\Windows\SYSWOW64\AudioEng.dll 2015-03-13 18:48:49 ----A---- C:\Windows\system32\smss.exe 2015-03-13 18:48:49 ----A---- C:\Windows\system32\rrinstaller.exe 2015-03-13 18:48:49 ----A---- C:\Windows\system32\pcadm.dll 2015-03-13 18:48:49 ----A---- C:\Windows\system32\AudioEng.dll 2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\srclient.dll 2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\mfps.dll 2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\mfpmp.exe 2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\cryptsp.dll 2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\AudioSes.dll 2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\appidapi.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\srclient.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\setbcdlocale.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\pcawrk.exe 2015-03-13 18:48:48 ----A---- C:\Windows\system32\pcalua.exe 2015-03-13 18:48:48 ----A---- C:\Windows\system32\msmmsp.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\mfps.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\mfpmp.exe 2015-03-13 18:48:48 ----A---- C:\Windows\system32\EncDump.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\drivers\PEAuth.sys 2015-03-13 18:48:48 ----A---- C:\Windows\system32\drivers\appid.sys 2015-03-13 18:48:48 ----A---- C:\Windows\system32\csrsrv.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\cryptsp.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\appidsvc.dll 2015-03-13 18:48:48 ----A---- C:\Windows\system32\appidpolicyconverter.exe 2015-03-13 18:48:48 ----A---- C:\Windows\system32\appidcertstorecheck.exe 2015-03-13 18:48:48 ----A---- C:\Windows\system32\appidapi.dll 2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\wmploc.DLL 2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\spwmp.dll 2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\mferror.dll 2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\dxmasf.dll 2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\apisetschema.dll 2015-03-13 18:48:47 ----A---- C:\Windows\system32\wmploc.DLL 2015-03-13 18:48:47 ----A---- C:\Windows\system32\spwmp.dll 2015-03-13 18:48:47 ----A---- C:\Windows\system32\pcaevts.dll 2015-03-13 18:48:47 ----A---- C:\Windows\system32\mferror.dll 2015-03-13 18:48:47 ----A---- C:\Windows\system32\dxmasf.dll 2015-03-13 18:48:47 ----A---- C:\Windows\system32\apisetschema.dll 2015-03-13 18:48:35 ----A---- C:\Windows\SYSWOW64\ubpm.dll 2015-03-13 18:48:35 ----A---- C:\Windows\SYSWOW64\shell32.dll 2015-03-13 18:48:35 ----A---- C:\Windows\system32\ubpm.dll 2015-03-13 18:48:35 ----A---- C:\Windows\system32\shell32.dll 2015-03-13 18:48:33 ----A---- C:\Windows\system32\schannel.dll 2015-03-13 18:48:33 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2015-03-13 18:48:33 ----A---- C:\Windows\system32\drivers\cng.sys 2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\wdigest.dll 2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\TSpkg.dll 2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\schannel.dll 2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll 2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2015-03-13 18:48:32 ----A---- C:\Windows\system32\wdigest.dll 2015-03-13 18:48:32 ----A---- C:\Windows\system32\TSpkg.dll 2015-03-13 18:48:32 ----A---- C:\Windows\system32\sspicli.dll 2015-03-13 18:48:32 ----A---- C:\Windows\system32\ncrypt.dll 2015-03-13 18:48:32 ----A---- C:\Windows\system32\msv1_0.dll 2015-03-13 18:48:32 ----A---- C:\Windows\system32\lsass.exe 2015-03-13 18:48:32 ----A---- C:\Windows\system32\lsasrv.dll 2015-03-13 18:48:32 ----A---- C:\Windows\system32\kerberos.dll 2015-03-13 18:48:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\secur32.dll 2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\msobjs.dll 2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\msaudite.dll 2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\credssp.dll 2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\auditpol.exe 2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\adtschema.dll 2015-03-13 18:48:31 ----A---- C:\Windows\system32\sspisrv.dll 2015-03-13 18:48:31 ----A---- C:\Windows\system32\secur32.dll 2015-03-13 18:48:31 ----A---- C:\Windows\system32\msobjs.dll 2015-03-13 18:48:31 ----A---- C:\Windows\system32\msaudite.dll 2015-03-13 18:48:31 ----A---- C:\Windows\system32\credssp.dll 2015-03-13 18:48:31 ----A---- C:\Windows\system32\auditpol.exe 2015-03-13 18:48:31 ----A---- C:\Windows\system32\adtschema.dll 2015-03-13 18:48:29 ----A---- C:\Windows\SYSWOW64\msctf.dll 2015-03-13 18:48:29 ----A---- C:\Windows\system32\msctf.dll 2015-03-13 18:48:28 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll 2015-03-13 18:48:28 ----A---- C:\Windows\system32\WindowsCodecs.dll 2015-03-13 18:48:27 ----A---- C:\Windows\system32\win32k.sys 2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2015-03-13 18:48:26 ----A---- C:\Windows\system32\iernonce.dll 2015-03-13 18:48:26 ----A---- C:\Windows\system32\ieetwproxystub.dll 2015-03-13 18:48:26 ----A---- C:\Windows\system32\ieetwcollector.exe 2015-03-13 18:48:26 ----A---- C:\Windows\system32\ie4uinit.exe 2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2015-03-13 18:48:25 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\ieui.dll 2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2015-03-13 18:48:24 ----A---- C:\Windows\system32\urlmon.dll 2015-03-13 18:48:24 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2015-03-13 18:48:24 ----A---- C:\Windows\system32\msfeeds.dll 2015-03-13 18:48:24 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2015-03-13 18:48:24 ----A---- C:\Windows\system32\iedkcs32.dll 2015-03-13 18:48:24 ----A---- C:\Windows\system32\dxtrans.dll 2015-03-13 18:48:23 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2015-03-13 18:48:23 ----A---- C:\Windows\system32\iesetup.dll 2015-03-13 18:48:23 ----A---- C:\Windows\system32\iertutil.dll 2015-03-13 18:48:23 ----A---- C:\Windows\system32\ieapfltr.dll 2015-03-13 18:48:22 ----A---- C:\Windows\SYSWOW64\wininet.dll 2015-03-13 18:48:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2015-03-13 18:48:22 ----A---- C:\Windows\SYSWOW64\msrating.dll 2015-03-13 18:48:22 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2015-03-13 18:48:22 ----A---- C:\Windows\system32\jsproxy.dll 2015-03-13 18:48:22 ----A---- C:\Windows\system32\ieUnatt.exe 2015-03-13 18:48:22 ----A---- C:\Windows\system32\ieui.dll 2015-03-13 18:48:22 ----A---- C:\Windows\system32\dxtmsft.dll 2015-03-13 18:48:21 ----A---- C:\Windows\system32\vbscript.dll 2015-03-13 18:48:21 ----A---- C:\Windows\system32\mshtmlmedia.dll 2015-03-13 18:48:21 ----A---- C:\Windows\system32\mshtmled.dll 2015-03-13 18:48:21 ----A---- C:\Windows\system32\jscript9diag.dll 2015-03-13 18:48:21 ----A---- C:\Windows\system32\jscript9.dll 2015-03-13 18:48:21 ----A---- C:\Windows\system32\ieframe.dll 2015-03-13 18:48:20 ----A---- C:\Windows\system32\wininet.dll 2015-03-13 18:48:20 ----A---- C:\Windows\system32\msrating.dll 2015-03-13 18:48:20 ----A---- C:\Windows\system32\MshtmlDac.dll 2015-03-13 18:48:20 ----A---- C:\Windows\system32\mshtml.dll 2015-03-13 18:47:50 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll 2015-03-13 18:47:50 ----A---- C:\Windows\system32\WMPhoto.dll 2015-03-11 15:15:14 ----D---- C:\Users\Niek\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 2015-03-10 20:38:40 ----D---- C:\ProgramData\regid.1986-12.com.adobe 2015-03-10 20:38:05 ----D---- C:\Program Files\Adobe 2015-03-10 20:37:02 ----D---- C:\Program Files (x86)\Adobe 2015-03-10 20:35:27 ----D---- C:\Program Files\Common Files\Adobe 2015-03-10 20:23:41 ----D---- C:\ProgramData\Adobe 2015-03-10 19:08:40 ----D---- C:\ProgramData\Browser AdBlocker ======List of files/folders modified in the last 1 month====== 2015-04-06 10:52:25 ----D---- C:\Windows\Prefetch 2015-04-06 10:52:23 ----D---- C:\Windows\Temp 2015-04-06 10:52:19 ----RD---- C:\Program Files 2015-04-06 10:52:09 ----D---- C:\Users\Niek\AppData\Roaming\BitTorrent 2015-04-06 10:49:00 ----D---- C:\Users\Niek\AppData\Roaming\Skype 2015-04-06 10:31:35 ----D---- C:\Windows\system32\config 2015-04-06 10:20:53 ----SHD---- C:\System Volume Information 2015-04-06 10:13:24 ----D---- C:\Windows\System32 2015-04-06 10:13:24 ----D---- C:\Windows\inf 2015-04-06 10:13:24 ----A---- C:\Windows\system32\PerfStringBackup.INI 2015-04-06 10:08:14 ----D---- C:\ProgramData\NVIDIA 2015-04-02 14:38:54 ----D---- C:\FTB 2015-04-02 14:36:45 ----D---- C:\Users\Niek\AppData\Roaming\.minecraft 2015-04-02 14:00:50 ----RD---- C:\Program Files (x86) 2015-04-02 14:00:50 ----HD---- C:\ProgramData 2015-04-02 13:59:57 ----D---- C:\Program Files (x86)\Common Files 2015-03-30 00:52:39 ----D---- C:\ProgramData\Origin 2015-03-29 23:53:09 ----D---- C:\Windows\rescache 2015-03-28 21:50:32 ----D---- C:\Windows\winsxs 2015-03-28 21:49:38 ----SD---- C:\Windows\system32\CompatTel 2015-03-28 21:49:37 ----D---- C:\Windows\system32\wbem 2015-03-28 21:49:37 ----D---- C:\Windows\system32\appraiser 2015-03-28 21:49:37 ----D---- C:\Windows\AppPatch 2015-03-22 20:44:39 ----D---- C:\Program Files (x86)\Steam 2015-03-22 20:30:37 ----D---- C:\Program Files (x86)\Origin Games 2015-03-22 18:23:25 ----D---- C:\Windows\system32\NDF 2015-03-22 18:06:26 ----D---- C:\ProgramData\c65f92fe00005978 2015-03-22 18:06:22 ----D---- C:\ProgramData\c8a9775800006a12 2015-03-22 18:06:22 ----D---- C:\ProgramData\c24d49b100000e88 2015-03-17 21:04:34 ----D---- C:\ProgramData\7125272534184871677 2015-03-16 18:10:56 ----D---- C:\ProgramData\eefafaef00001a98 2015-03-15 11:49:07 ----D---- C:\Windows\SysWOW64 2015-03-15 11:11:48 ----D---- C:\Program Files (x86)\Battlelog Web Plugins 2015-03-15 11:10:47 ----RSD---- C:\Windows\assembly 2015-03-15 11:10:40 ----D---- C:\Windows 2015-03-15 11:09:50 ----D---- C:\Windows\Logs 2015-03-14 12:55:39 ----D---- C:\ProgramData\EpicScale 2015-03-14 11:10:36 ----D---- C:\ProgramData\Package Cache 2015-03-14 11:10:18 ----SHD---- C:\Windows\Installer 2015-03-14 10:47:58 ----D---- C:\Windows\SYSWOW64\nl-NL 2015-03-14 10:47:58 ----D---- C:\Windows\SYSWOW64\Dism 2015-03-14 10:47:58 ----D---- C:\Windows\system32\nl-NL 2015-03-14 10:47:58 ----D---- C:\Windows\system32\drivers 2015-03-14 10:47:58 ----D---- C:\Program Files\Windows Media Player 2015-03-14 10:47:58 ----D---- C:\Program Files (x86)\Windows Media Player 2015-03-14 10:47:57 ----D---- C:\Windows\system32\Dism 2015-03-14 10:47:56 ----D---- C:\Windows\system32\Boot 2015-03-14 10:47:52 ----D---- C:\Windows\SYSWOW64\en-US 2015-03-14 10:47:52 ----D---- C:\Program Files\Internet Explorer 2015-03-14 10:47:51 ----D---- C:\Windows\system32\en-US 2015-03-14 10:47:50 ----D---- C:\Program Files (x86)\Internet Explorer 2015-03-13 19:20:03 ----D---- C:\ProgramData\Microsoft Help 2015-03-13 19:14:57 ----A---- C:\Windows\win.ini 2015-03-13 18:47:31 ----D---- C:\Windows\system32\catroot2 2015-03-11 17:17:52 ----RSD---- C:\Windows\Fonts 2015-03-11 15:15:14 ----D---- C:\Users\Niek\AppData\Roaming\Adobe 2015-03-11 14:59:31 ----D---- C:\Users\Niek\AppData\Roaming\Origin 2015-03-11 14:58:48 ----D---- C:\Windows\system32\Tasks 2015-03-10 20:35:27 ----D---- C:\Program Files\Common Files ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2014-04-11 645480] R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2014-04-11 28008] R0 iusb3hcs;Intel® USB 3.0 hostcontrollerswitch-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-02-21 20464] R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-11-15 274696] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 {ca032d0a-a16a-4ca5-8bc6-c3c5a2d19d37}Gw64;{ca032d0a-a16a-4ca5-8bc6-c3c5a2d19d37}Gw64; C:\Windows\system32\drivers\{ca032d0a-a16a-4ca5-8bc6-c3c5a2d19d37}Gw64.sys [2015-03-01 48792] R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2014-01-28 15232] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-11-15 124560] R3 e1dexpress;Intel® PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2014-03-14 487704] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-04-24 3944536] R3 iusb3hub;Intel® USB 3.0 hub-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-21 370672] R3 iusb3xhc;Intel® USB 3.0 uitbreidbare hostcontroller-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-21 791024] R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2012-09-13 1808448] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-10-30 197408] R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-10-04 20288] R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048] R3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 tenCapture;tenCapture; C:\Windows\system32\DRIVERS\tenCapture.sys [2012-07-20 23736] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [2014-01-28 936728] R2 DTSAudioSvc;DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [2013-10-06 240576] R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-10-04 1149760] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-11 16232] R2 IHProtect Service;IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [2015-01-16 158896] R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2014-03-11 260360] R2 kebyvuxe;Clone Zoom Out; C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\nsa4D8D.tmpfs [2015-03-01 113664] R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-01-30 23784] R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-10-04 1796928] R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-10-04 19440960] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-30 935232] R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-03-15 76888] R2 ronojewe;Portal Reformat; C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\jnsf7C9E.tmp [2015-03-01 174592] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-30 411968] R2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [2015-03-01 487056] R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408] R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2015-01-30 366512] S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-14 116648] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488] S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2014-12-07 182304] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-14 116648] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-14 194032] S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-02-20 114688] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144] S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-03-01 1910640] S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-01-24 834752] S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-08-17 1255736] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------

Verwittgd?

Dit is de log log.txt (de mensen zijn verwittigd, Passer)