"Controle"logje

[doedelzak123]

Beste experts,

Sinds een paar dagen begint de laptop (ondertussen toch een kleine 3 jaar oud) redelijk vaak te oververhitten zonder dat ik met zware programma's bezig ben. Hij begint dan op volle kracht te ventileren etc. Daarom wil ik toch even laten controleren op beestjes. Ik wil er namelijk 100% zeker van zijn dat er momenteel niets in zit van viezigheid, waarna ik een grondige nieuwe back-up zal maken moest het toch aan de laptop zelf liggen. Alvast bedankt! Hieronder ook mijn RSIT log.

Logfile of random's system information tool 1.09 (written by random/random)

Run by Vincent at 2014-01-09 17:24:16

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 42 GB (9%) free of 477 GB

Total RAM: 4061 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 17:24:32, on 9/01/2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA GLOBAL PROTECTION 2014\WebProxy.exe

C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe

C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe

C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe

C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Users\Vincent\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\ApVxdWin.exe

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PavBckPT.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Roaming\BitTorrent\BitTorrent.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Program Files\trend micro\Vincent.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

F2 - REG:system.ini: UserInit=C:\Windows\SysWOW64\userinit.exe,

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\APVXDWIN.EXE" /s

O4 - HKLM\..\Run: [sCANINICIO] "C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\Inicio.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [Google Update] "C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Dropbox.lnk = Vincent\AppData\Roaming\Dropbox\bin\Dropbox.exe

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel® Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

O23 - Service: CyberGhost VPN Client (CGVPNCliSrvc) - mobile concepts GmbH - C:\Program Files\CyberGhost VPN\CGVPNCliService.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLService - New Softwares.net - C:\Windows\SysWow64\WinFLService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe

O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsCtrls.exe

O23 - Service: Panda Function Service (PAVFNSVR) - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PavFnSvr.exe

O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe

O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\pavsrvx86.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Panda Host Service (PSHost) - Unknown owner - c:\program files (x86)\panda security\panda global protection 2014\firewall\PSHOST.EXE

O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsImSvc.exe

O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PskSvc.exe

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\TPSrvWow.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 12298 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

C:\Windows\system32\services.exe

winlogon.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

"C:\Windows\system32\nvvsvc.exe"

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"

C:\Windows\system32\nvvsvc.exe -session -first

C:\Windows\system32\svchost.exe -k NetworkService

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PskSvc.exe"

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\TPSrvWow.exe"

"C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA GLOBAL PROTECTION 2014\WebProxy.exe" oso_XGCGLR

C:\Windows\system32\WLANExt.exe 50758944

\??\C:\Windows\system32\conhost.exe "-749748950-10403195401230812236-827428501-14677624321275965291491956959555674350

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\System32\spoolsv.exe

"taskhost.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

taskeng.exe {F2A9D747-120A-4A2B-BED3-6EA0440CCB98}

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"C:\Program Files\Bonjour\mDNSResponder.exe"

"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"

C:\Windows\SysWow64\WinFLService.exe

C:\Windows\System32\svchost.exe -k HPZ12

"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"

"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"

dummy.exe /resident /agreelicense

"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsCtrls.exe"

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PavFnSvr.exe"

"C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe"

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\pavsrvx86.exe"

C:\Windows\System32\svchost.exe -k HPZ12

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\AVENGINE.EXE"

C:\Windows\SysWOW64\PnkBstrA.exe

"c:\program files (x86)\panda security\panda global protection 2014\firewall\PSHOST.EXE"

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsImSvc.exe"

"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl

"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

WLIDSvcM.exe 4088

C:\Windows\system32\wbem\unsecapp.exe -Embedding

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp

C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding

\??\C:\Windows\system32\conhost.exe "1651560627-13090914721697493544-501500479650081577-1321530702156566998-1671747129

C:\Windows\system32\wbem\wmiprvse.exe

"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1

"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray

"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun

"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"

C:\Windows\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe"

"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe" -Embedding

"C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"C:\Windows\System32\StikyNot.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Users\Vincent\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\ApVxdWin.exe" /s

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"

"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"

C:\Windows\system32\svchost.exe -k HPService

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\SRVLOAD.EXE"

"C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PavBckPT.exe" C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\

C:\Windows\System32\svchost.exe -k secsvcs

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe"

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/InstantExtended/Group16 pct:1i stable:r3 use_remote_ntp_on_startup:1 espv:215/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --instant-process --disable-html-notifications --disable-webgl --disable-pepper-3d --disable-gl-multisampling --disable-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-video-decode --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="3384.0.1228227049\169975088" /prefetch:673131151

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/InstantExtended/Group16 pct:1i stable:r3 use_remote_ntp_on_startup:1 espv:215/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --disable-html-notifications --disable-webgl --disable-pepper-3d --disable-gl-multisampling --disable-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-video-decode --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="3384.1.827966133\1529570474" /prefetch:673131151

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/InstantExtended/Group16 pct:1i stable:r3 use_remote_ntp_on_startup:1 espv:215/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="3384.2.1230571389\1933539122" /prefetch:673131151

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/InstantExtended/Group16 pct:1i stable:r3 use_remote_ntp_on_startup:1 espv:215/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="3384.4.1912667384\1370805863" /prefetch:673131151

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3384.6.700993941\1668891187" --ppapi-flash-args --lang=nl --ignored=" --type=renderer " /prefetch:-632637702

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3384.12.254015945\1077646590" --use-gl=swiftshader --supports-dual-gpus=false --swiftshader-path="C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0" --gpu-driver-bug-workarounds=0,13,23,28 --gpu-vendor-id=0x10de --gpu-device-id=0x06ec --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3165 --ignored=" --type=renderer " /prefetch:822062411

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/InstantExtended/Group16 pct:1i stable:r3 use_remote_ntp_on_startup:1 espv:215/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="3384.27.1178949273\1331181562" /prefetch:673131151

"C:\Users\Vincent\AppData\Roaming\BitTorrent\BitTorrent.exe" "magnet:?xt=urn:btih:2f24d4276c0cf6b59fccb156eb478f873979232e&dn=taxi+driver+1976+720p+brrip+yify&tr=udp%3A%2F%2Finferno.demonoid.com%3A3408%2Fannounce&tr=udp%3A%2F%2Fopen.demonii.com%3A1337"

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/InstantExtended/Group16 pct:1i stable:r3 use_remote_ntp_on_startup:1 espv:215/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="3384.30.263422462\84225284" /prefetch:673131151

"C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/InstantExtended/Group16 pct:1i stable:r3 use_remote_ntp_on_startup:1 espv:215/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="3384.31.1308671156\618369225" /prefetch:673131151

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Users\Vincent\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1295074538-1964144441-2249229760-1000Core.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1295074538-1964144441-2249229760-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Profiles\38mw3lsb.default

prefs.js - "browser.startup.homepage" - "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPE39300D5-2EEE-4A59-B43A-6AEF20CEFEC0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]

"Description"=Adobe Shockwave Player

"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1205146.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]

"Description"=iTunes Detector Plug-in

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]

"Description"=

"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]

"Description"=Google Earth in your browser

"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.3]

"Description"=VLC Multimedia Plugin

"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Profiles\38mw3lsb.default\searchplugins\

conduit-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-10 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-10 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"IntelPAN"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2012-01-04 1935120]

""= []

"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]

"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-11-08 1028384]

"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2013-12-10 1100248]

"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2013-12-10 2279712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2012-09-12 4272640]

"FLBackup"=C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe [2013-04-06 275656]

"Spotify Web Helper"=C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2013-12-08 1168896]

"Google Update"=C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-18 116648]

"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-08-28 3671904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-18 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-05-31 152392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]

C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]

C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]

C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]

C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2012-09-12 4272640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14 20584608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]

C:\Users\Vincent\AppData\Roaming\Spotify\Spotify.exe [2013-12-08 5951488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]

C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2013-12-08 1168896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodeMeter Control Center.lnk]

C:\PROGRA~2\CODEME~1\Runtime\bin\CODEME~2.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888]

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"APVXDWIN"=C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\APVXDWIN.EXE [2013-09-30 1062880]

"SCANINICIO"=C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\Inicio.exe [2013-09-30 71648]

C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

Dropbox.lnk - C:\Users\Vincent\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr]

C:\Windows\SYSTEM32\avldr64.dll [2010-03-24 64768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\Users\Vincent\AppData\Roaming\FWQ0E3BH7P.exe"="C:\Users\Vincent\AppData\Roaming\FWQ0E3BH7P.exe:*:Enabled:Windows Messanger"

"C:\Users\Vincent\Downloads\Autobuyer.exe"="C:\Users\Vincent\Downloads\Autobuyer.exe:*:Enabled:Windows Messanger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"MSVideo8"=VfWWDM32.dll

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"aux2"=wdmaud.drv

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"aux3"=wdmaud.drv

"wave4"=wdmaud.drv

"midi4"=wdmaud.drv

"mixer4"=wdmaud.drv

"aux4"=wdmaud.drv

"wave5"=wdmaud.drv

"midi5"=wdmaud.drv

"mixer5"=wdmaud.drv

"aux5"=wdmaud.drv

"wave6"=wdmaud.drv

"midi6"=wdmaud.drv

"mixer6"=wdmaud.drv

"aux6"=wdmaud.drv

"wave7"=wdmaud.drv

"midi7"=wdmaud.drv

"mixer7"=wdmaud.drv

"aux7"=wdmaud.drv

"wave8"=wdmaud.drv

"midi8"=wdmaud.drv

"mixer8"=wdmaud.drv

"aux8"=wdmaud.drv

"wave9"=wdmaud.drv

"midi9"=wdmaud.drv

"mixer9"=wdmaud.drv

"aux9"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open -

.vbs - open - C:\PROGRA~2\PANDAS~1\PANDAG~1\PAVSCRIP.EXE "%1" %*

======List of files/folders created in the last 1 month======

2014-01-08 14:30:18 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll

2014-01-08 14:30:18 ----A---- C:\Windows\system32\drivers\nvvad64v.sys

2013-12-28 18:54:24 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin

2013-12-28 18:54:18 ----D---- C:\Users\Vincent\AppData\Roaming\.minecraft

2013-12-22 14:08:19 ----HDC---- C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3}

2013-12-22 14:05:14 ----HDC---- C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900}

2013-12-22 14:04:41 ----HDC---- C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A}

2013-12-22 14:04:37 ----D---- C:\Program Files\Native Instruments

2013-12-21 15:14:41 ----D---- C:\Program Files\Common Files\Adobe

2013-12-21 15:12:34 ----D---- C:\Program Files\Adobe

2013-12-13 21:25:48 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll

2013-12-13 21:15:25 ----D---- C:\Program Files (x86)\2K Sports

2013-12-13 08:42:21 ----A---- C:\Windows\system32\wmploc.DLL

2013-12-13 08:42:20 ----A---- C:\Windows\SYSWOW64\wmploc.DLL

2013-12-13 08:42:20 ----A---- C:\Windows\SYSWOW64\wmp.dll

2013-12-13 08:42:18 ----A---- C:\Windows\system32\wmp.dll

2013-12-13 08:39:51 ----A---- C:\Windows\system32\ieetwcollectorres.dll

2013-12-13 08:39:50 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2013-12-13 08:39:50 ----A---- C:\Windows\SYSWOW64\ieui.dll

2013-12-13 08:39:50 ----A---- C:\Windows\system32\jsproxy.dll

2013-12-13 08:39:50 ----A---- C:\Windows\system32\ieUnatt.exe

2013-12-13 08:39:50 ----A---- C:\Windows\system32\ieui.dll

2013-12-13 08:39:49 ----A---- C:\Windows\system32\iesetup.dll

2013-12-13 08:39:49 ----A---- C:\Windows\system32\iernonce.dll

2013-12-13 08:39:49 ----A---- C:\Windows\system32\ieetwproxystub.dll

2013-12-13 08:39:49 ----A---- C:\Windows\system32\ieetwcollector.exe

2013-12-13 08:39:49 ----A---- C:\Windows\system32\ie4uinit.exe

2013-12-13 08:39:48 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

2013-12-13 08:39:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2013-12-13 08:39:48 ----A---- C:\Windows\system32\mshtml.dll

2013-12-13 08:39:48 ----A---- C:\Windows\system32\jscript9diag.dll

2013-12-13 08:39:48 ----A---- C:\Windows\system32\ieapfltr.dll

2013-12-13 08:39:47 ----A---- C:\Windows\SYSWOW64\wininet.dll

2013-12-13 08:39:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2013-12-13 08:39:47 ----A---- C:\Windows\system32\iertutil.dll

2013-12-13 08:39:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2013-12-13 08:39:46 ----A---- C:\Windows\system32\wininet.dll

2013-12-13 08:39:46 ----A---- C:\Windows\system32\urlmon.dll

2013-12-13 08:39:45 ----A---- C:\Windows\system32\ieframe.dll

2013-12-13 08:39:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2013-12-13 08:39:43 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2013-12-13 08:39:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2013-12-13 08:39:43 ----A---- C:\Windows\system32\jscript9.dll

2013-12-12 12:20:49 ----A---- C:\Windows\SYSWOW64\msieftp.dll

2013-12-12 12:20:49 ----A---- C:\Windows\system32\msieftp.dll

2013-12-12 12:20:46 ----A---- C:\Windows\system32\win32k.sys

2013-12-12 12:20:45 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll

2013-12-12 12:20:45 ----A---- C:\Windows\SYSWOW64\imagehlp.dll

2013-12-12 12:20:45 ----A---- C:\Windows\system32\WMPhoto.dll

2013-12-12 12:20:45 ----A---- C:\Windows\system32\imagehlp.dll

2013-12-12 12:20:42 ----A---- C:\Windows\SYSWOW64\tzres.dll

2013-12-12 12:20:42 ----A---- C:\Windows\system32\tzres.dll

2013-12-12 12:20:38 ----A---- C:\Windows\system32\drivers\portcls.sys

2013-12-12 12:20:38 ----A---- C:\Windows\system32\drivers\drmk.sys

2013-12-12 12:20:36 ----A---- C:\Windows\SYSWOW64\wscript.exe

2013-12-12 12:20:36 ----A---- C:\Windows\SYSWOW64\scrrun.dll

2013-12-12 12:20:36 ----A---- C:\Windows\SYSWOW64\cscript.exe

2013-12-12 12:20:36 ----A---- C:\Windows\system32\wscript.exe

2013-12-12 12:20:36 ----A---- C:\Windows\system32\scrrun.dll

2013-12-12 12:20:36 ----A---- C:\Windows\system32\cscript.exe

2013-12-10 19:06:59 ----D---- C:\Program Files (x86)\ASIO4ALL v2

2013-12-10 14:28:48 ----A---- C:\Windows\system32\javaws.exe

2013-12-10 14:28:38 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll

2013-12-10 14:28:38 ----A---- C:\Windows\system32\javaw.exe

2013-12-10 14:28:38 ----A---- C:\Windows\system32\java.exe

2013-12-10 14:28:26 ----D---- C:\Program Files\Java

======List of files/folders modified in the last 1 month======

2014-01-09 17:24:23 ----D---- C:\Program Files\trend micro

2014-01-09 17:24:17 ----D---- C:\Windows\system32\drivers

2014-01-09 17:24:16 ----D---- C:\rsit

2014-01-09 17:23:15 ----D---- C:\Users\Vincent\AppData\Roaming\BitTorrent

2014-01-09 17:02:55 ----D---- C:\Windows\Temp

2014-01-09 15:32:02 ----D---- C:\Windows\system32\drivers\etc

2014-01-09 15:30:21 ----D---- C:\Users\Vincent\AppData\Roaming\Dropbox

2014-01-09 15:29:51 ----D---- C:\Windows

2014-01-09 15:28:41 ----D---- C:\Windows\System32

2014-01-09 15:28:24 ----D---- C:\Windows\Minidump

2014-01-09 04:48:19 ----SHD---- C:\System Volume Information

2014-01-09 01:26:07 ----D---- C:\Windows\system32\config

2014-01-08 14:33:13 ----D---- C:\ProgramData\NVIDIA Corporation

2014-01-08 14:33:13 ----D---- C:\ProgramData\NVIDIA

2014-01-08 14:32:02 ----D---- C:\Windows\SysWOW64

2014-01-08 14:31:50 ----RSD---- C:\Windows\assembly

2014-01-08 14:30:55 ----D---- C:\Program Files\NVIDIA Corporation

2014-01-08 14:30:55 ----D---- C:\Program Files (x86)\NVIDIA Corporation

2014-01-08 14:30:51 ----D---- C:\Windows\inf

2014-01-08 14:30:50 ----D---- C:\Windows\system32\DriverStore

2014-01-08 14:30:50 ----D---- C:\Windows\system32\catroot

2014-01-08 14:30:32 ----RD---- C:\Users

2014-01-08 05:19:19 ----A---- C:\Windows\system32\PerfStringBackup.INI

2014-01-06 23:06:00 ----D---- C:\Windows\Prefetch

2014-01-04 12:57:46 ----D---- C:\Users\Vincent\AppData\Roaming\vlc

2013-12-28 18:54:26 ----SHD---- C:\Windows\Installer

2013-12-28 18:54:25 ----D---- C:\Config.Msi

2013-12-26 16:51:21 ----D---- C:\Windows\system32\FxsTmp

2013-12-25 21:39:08 ----D---- C:\Users\Vincent\AppData\Roaming\dvdcss

2013-12-25 12:36:27 ----D---- C:\Windows\system32\catroot2

2013-12-24 10:09:59 ----HD---- C:\ProgramData

2013-12-22 14:05:53 ----D---- C:\Program Files (x86)\Common Files

2013-12-22 14:05:07 ----D---- C:\Program Files\Common Files\Native Instruments

2013-12-22 14:04:37 ----RD---- C:\Program Files

2013-12-22 14:04:37 ----D---- C:\ProgramData\Native Instruments

2013-12-21 15:26:00 ----D---- C:\Users\Vincent\AppData\Roaming\Adobe

2013-12-21 15:15:14 ----D---- C:\Windows\winsxs

2013-12-21 15:14:41 ----D---- C:\ProgramData\Adobe

2013-12-21 15:14:41 ----D---- C:\Program Files\Common Files

2013-12-20 23:15:03 ----D---- C:\Users\Vincent\AppData\Roaming\PioneerLog

2013-12-20 21:23:12 ----D---- C:\Program Files (x86)\Pioneer

2013-12-17 19:18:30 ----D---- C:\Windows\rescache

2013-12-15 10:53:23 ----D---- C:\Windows\system32\MRT

2013-12-15 10:48:42 ----D---- C:\Windows\debug

2013-12-15 10:48:34 ----A---- C:\Windows\system32\MRT.exe

2013-12-13 23:26:15 ----D---- C:\Users\Vincent\AppData\Roaming\2K Sports

2013-12-13 23:18:20 ----D---- C:\Program Files\Windows Media Player

2013-12-13 23:18:20 ----D---- C:\Program Files (x86)\Windows Media Player

2013-12-13 23:18:19 ----D---- C:\Program Files\Internet Explorer

2013-12-13 23:18:19 ----D---- C:\Program Files (x86)\Internet Explorer

2013-12-13 23:18:18 ----D---- C:\Windows\SYSWOW64\nl-NL

2013-12-13 23:18:18 ----D---- C:\Windows\system32\nl-NL

2013-12-13 21:15:25 ----RD---- C:\Program Files (x86)

2013-12-13 21:13:41 ----D---- C:\Users\Vincent\AppData\Roaming\DAEMON Tools Lite

2013-12-13 08:41:51 ----D---- C:\ProgramData\Microsoft Help

2013-12-11 22:09:38 ----D---- C:\Users\Vincent\AppData\Roaming\Spotify

2013-12-11 18:15:23 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2013-12-10 23:02:59 ----D---- C:\Program Files (x86)\Google

2013-12-10 14:28:59 ----D---- C:\ProgramData\Oracle

2013-12-10 14:20:38 ----D---- C:\Program Files (x86)\Java

2013-12-10 03:13:11 ----A---- C:\Windows\SYSWOW64\nvspcap.dll

2013-12-10 03:13:01 ----A---- C:\Windows\system32\nvspcap64.dll

2013-12-10 00:24:02 ----D---- C:\Users\Vincent\AppData\Roaming\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pavboot;Panda boot driver; C:\Windows\system32\Drivers\pavboot64.sys [2010-06-22 30792]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-09-11 283200]

R1 ShldFlt;Panda File Shield Driver; C:\Windows\System32\DRIVERS\ShldFlt.sys [2009-10-27 48136]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R1 WinFLAdrv;WinFLAdrv; C:\Windows\SysWOW64\WinFLAdrv.sys [2013-04-06 34816]

R2 AmFSM;AmFSM; C:\Windows\system32\DRIVERS\amm6460.sys [2012-03-26 71432]

R2 APPFLT;App Filter Plugin; \??\C:\Windows\system32\Drivers\APPFLT64.SYS [2011-01-31 129096]

R2 ComFiltr;Panda Anti-Dialer; \??\C:\Windows\system32\DRIVERS\COMFiltr.sys [2013-12-03 15928]

R2 DSAFLT;DSA Filter Plugin; \??\C:\Windows\system32\Drivers\DSAFLT64.SYS [2009-09-25 82952]

R2 FNETMON;NetMon Filter Plugin; \??\C:\Windows\system32\Drivers\fnetm64.SYS [2009-09-25 31752]

R2 IDSFLT;Ids Filter Plugin; \??\C:\Windows\system32\Drivers\IDSFLT64.SYS [2010-09-09 78920]

R2 NETFLTDI;Panda Net Driver [TDI Layer]; \??\C:\Windows\system32\Drivers\NETTDI64.SYS [2009-09-25 170504]

R2 NEWDRIVER;NEWDRIVER; \??\C:\Windows\SysWow64\WinVDEdrv6.sys [2013-04-06 197648]

R2 WinVDEDrv;WinVDEDrv; \??\C:\Windows\SysWow64\WinVDEdrv.sys [2013-04-06 225680]

R2 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\Windows\system32\Drivers\WNMFLT64.SYS [2009-09-25 74760]

R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtuele adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2011-12-12 195072]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]

R3 NETIMFLT01060044;PANDA NDIS IM Filter Miniport v1.6.0.44; C:\Windows\system32\DRIVERS\n64i1644.sys [2010-09-01 216648]

R3 NETwNs64;___ Intel® Wireless WiFi Link 5000 Series adapter stuurprogramma onder Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-12-06 11518976]

R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-05 39200]

R3 PavTPK.sys;PavTPK.sys; \??\C:\Windows\syswow64\PavTPK.sys []

R3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2011-12-15 31232]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

S0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []

S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2011-12-12 195072]

S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]

S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]

S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]

S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]

S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]

S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]

S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2013-11-01 82048]

S3 Prot6Flt;Prot6Flt; C:\Windows\system32\DRIVERS\Prot6Flt.sys []

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]

S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]

S3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR64.SYS [2009-02-06 68096]

S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]

S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-04-25 52736]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]

R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-12-12 661504]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-01-13 135952]

R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-01-04 1526032]

R2 FLService;FLService; C:\Windows\SysWow64\WinFLService.exe [2013-04-06 92360]

R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2013-06-11 6718256]

R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]

R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-10 15129376]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-23 922912]

R2 Panda Software Controller;Panda Software Controller; C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsCtrls.exe [2012-11-19 177440]

R2 PAVFNSVR;Panda Function Service; C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PavFnSvr.exe [2012-09-21 202016]

R2 PavPrSrv;Panda Process Protection Service; C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe [2008-02-04 62768]

R2 PAVSRV;Panda On-Access Anti-Malware Service; C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\pavsrvx86.exe [2011-04-13 313664]

R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-11-23 76888]

R2 PSHost;Panda Host Service; c:\program files (x86)\panda security\panda global protection 2014\firewall\PSHOST.EXE [2009-11-26 226560]

R2 PSIMSVC;Panda IManager Service; C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsImSvc.exe [2008-06-19 108288]

R2 PskSvcRetail;Panda PSK service; C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PskSvc.exe [2010-08-16 28992]

R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-01-04 844560]

R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-11-29 3463080]

R2 TPSrv;Panda TPSrv; C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\TPSrvWow.exe [2012-11-16 173344]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-01 116648]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]

S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]

S3 CGVPNCliSrvc;CyberGhost VPN Client; C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2012-04-26 2438696]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-01 116648]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-05-31 641352]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-09-11 118680]

S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-01-04 340240]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-30 566696]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-18 1255736]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[kape]

Niet meteen "beestjes", maar we zetten nog even een stapje verder ...

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.zip naar het bureaublad.

• Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  
• Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r64
 ""=-;r64
 C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3};fs
 C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900};fs
 C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A};fs
 emptyfolderscheck;delete 
startupall; 
filesrcm;

• Klik op de knop "Options" en vink nu de onderstaande opties aan.
  
• Do a Deep Scan
  
  
• Auto Clean
  
• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.
  

[doedelzak123]

Zoek.exe v5.0.0.0 Updated 09-Januari-2014

Tool run by Vincent on za 11/01/2014 at 5:05:44,09.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Vincent\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2012-10-20-202828.log 118417 bytes

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully

C:\PROGRA~2\Fonts deleted successfully

C:\PROGRA~2\MSXML 4.0 deleted successfully

C:\ProgramData\Ableton deleted successfully

C:\ProgramData\AVAST Software deleted successfully

C:\ProgramData\Babylon deleted successfully

C:\ProgramData\Guitar Pro 6 deleted successfully

C:\ProgramData\Oracle deleted successfully

C:\Users\Vincent\AppData\Roaming\Samsung deleted successfully

C:\Users\Vincent\AppData\Roaming\Vso deleted successfully

C:\Users\Vincent\AppData\Local\Conduit deleted successfully

C:\Users\Vincent\AppData\Local\Ubisoft Game Launcher deleted successfully

C:\Users\Vincent\AppData\Local\VMware deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1295074538-1964144441-2249229760-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully

HKEY_USERS\S-1-5-21-1295074538-1964144441-2249229760-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-1295074538-1964144441-2249229760-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-1295074538-1964144441-2249229760-1000\Software\Microsoft\Active Setup\Installed Components\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Running Processes ======================

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PskSvc.exe

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\TPSrvWow.exe

C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA GLOBAL PROTECTION 2014\WebProxy.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe

C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe

C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Users\Vincent\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Windows\SysWow64\WinFLService.exe

C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsCtrls.exe

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PavFnSvr.exe

C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\pavsrvx86.exe

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\AVENGINE.EXE

c:\program files (x86)\panda security\panda global protection 2014\firewall\PSHOST.EXE

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsImSvc.exe

C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\SRVLOAD.EXE

C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PavBckPT.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\SysWOW64\cmd.exe

C:\Users\Vincent\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\SysWOW64\cmd.exe

==== Deleting Services ======================

==== FireFox Fix ======================

ProfilePath: C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Profiles\38mw3lsb.default

user.js not found

---- Lines conduit removed from prefs.js ----

user_pref("browser.search.defaultenginename", "Conduit Search");

user_pref("browser.search.selectedEngine", "Conduit Search");

user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPE39300D5-2EEE-4

---- FireFox user.js and prefs.js backups ----

prefs_20141101_0523_.backup

ProfilePath: C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

prefs.js not found

user.js not found

---- FireFox user.js and prefs.js backups ----

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

""=-

==== Deleting Files \ Folders ======================

C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3} deleted

C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900} deleted

C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A} deleted

C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted

C:\extensions deleted

C:\Users\Vincent\AppData\Roaming\DVDVideoSoftIEHelpers deleted

C:\ProgramData\win_mpwd_sys.dat deleted

C:\ProgramData\Package Cache deleted

C:\Users\Vincent\AppData\Local\CRE deleted

C:\Users\Vincent\AppData\Local\avgchrome deleted

C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard deleted

C:\Users\Vincent\AppData\LocalLow\Conduit deleted

C:\windows\SysNative\tasks\BitGuard deleted

C:\Windows\SysWow64\AI_RecycleBin deleted

C:\Windows\SysWow64\searchplugins deleted

C:\Windows\SysWow64\Extensions deleted

C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Profiles\38mw3lsb.default\searchplugins\conduit-search.xml deleted

"C:\Users\Vincent\AppData\Roaming\erds" deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)

Memory (RAM): 4061 MB

CPU Info: Intel® Core2 Duo CPU T6570 @ 2.10GHz

CPU Speed: 643,3 MHz

Sound Card: Hoofdtelefoon (High Definition |

Digitale audio (S/PDIF) (High D |

Luidsprekers (High Definition A |

Display Adapters: NVIDIA GeForce G 105M | NVIDIA GeForce G 105M | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver

Monitors: 1x; Algemeen PnP-beeldscherm |

Screen Resolution: 1366 X 768 - 32 bit

Network: Network Present

Network Adapters: TAP-Win32 Adapter V9 | Microsoft Virtual WiFi Miniport Adapter #2 | Microsoft Virtual WiFi Miniport Adapter | Intel® Centrino® Wireless-N 1000 | Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20)

CD / DVD Drives: 2x (D: | E: | ) D: TSSTcorpCDDVDW TS-L633C | E: DTSOFT BDROM

Ports: COM Ports NOT Present. LPT Port NOT Present.

Mouse: 2 Button Mouse Present

Hard Disks: C: 465,7GB

Hard Disks - Free: C: 40,7GB

Manufacturer *: Phoenix

BIOS Info: AT/AT COMPATIBLE | 12/21/09 | ACRSYS - 6040000

Time Zone: West-Europa (standaardtijd)

Motherboard *: Acer BA50-MV

Country: Belgi‰

Language: NLB

==== System Specs (Software) ======================

Anti-Virus: Panda Global Protection 2014 On-access scanning disabled (Outdated)

Anti-Spyware: Panda Global Protection 2014 disabled (Outdated)

Anti-Spyware: Windows Defender disabled (Outdated)

Firewall: Panda Personal Firewall 2014 disabled

Default Browser: Google Chrome 32.0.1700.72

Internet Explorer Version: 11.0.9600.16476

Mozilla Firefox version: 24.0 (x86 nl)

Google Chrome version: 32.0.1700.72

Adobe Reader version: 10.1.8.24

Sun Java version: 1.7.0_45 (32-bit)

Sun Java version: 1.7.0_45 (64-bit)

Shockwave Player version: 12.0.5r146

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Vincent\AppData\Local\Temp ====

2014-01-08 13:28:42 FE2862B2E07BD46AA8D2F7122F2B5653 21792 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\System.Reactive.Windows.Threading.dll

2014-01-08 13:28:42 E8BEF814823025903E9F8CAA49D99169 923976 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\UpdateCoreExt.dll

2014-01-08 13:28:42 DAC9726D9C90631D6A1C0ECAA0226021 34080 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NvVAD\nvvad32v.sys

2014-01-08 13:28:42 D12B82E6C3CE13D08A5591E666E8F490 121120 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\steam_api64.dll

2014-01-08 13:28:42 BA52B57B279154D8EEED9B0F80277F14 184608 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\swscale-0.dll

2014-01-08 13:28:42 AC7F4FCCE65AD76B7B916C8108D91B79 758048 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\twitchsdk32.dll

2014-01-08 13:28:42 AAA894BDF340434D5E1F614F12F2CE51 17184 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\System.Reactive.Interfaces.dll

2014-01-08 13:28:42 81E29902DCD0603309F841DC2B8CE748 106272 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\steam_api.dll

2014-01-08 13:28:42 708F6DD88C3240401BF546E2DD1F7716 48928 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\System.Windows.Interactivity.dll

2014-01-08 13:28:42 62F5D4CD35283C56E08EBC2437359C5B 675616 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\System.Reactive.Linq.dll

2014-01-08 13:28:42 5E4D4DA5AD646DE125DB6FC7147FBB82 18720 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\System.Reactive.Runtime.Remoting.dll

2014-01-08 13:28:42 4363C9090413D8A404E897CD75846BE9 874784 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\twitchsdk64.dll

2014-01-08 13:28:42 250569FEDFE68F3BC1E7C9A666A4AFEB 97056 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\System.Reactive.Core.dll

2014-01-08 13:28:42 0E799A9B8C984EA6E97104F06DE872AC 248608 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\System.Reactive.Providers.dll

2014-01-08 13:28:42 0C0253FE295490C70437D9C83CA81958 30496 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\System.Reactive.PlatformServices.dll

2014-01-08 13:28:42 09216A70CC364D0974F606F6F2109210 39200 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NvVAD\nvvad64v.sys

2014-01-08 13:28:41 B0FCB5C0580CB1C7172D352FE3A22889 774432 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\ShadowPlayExt.dll

2014-01-08 13:28:41 A5947BD4C8C599E7DBFD58E74AB60A0F 373024 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\rxinput.dll

2014-01-08 13:28:41 858E1193551B48958E462902DA9B86C5 241952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\ShadowPlay.dll

2014-01-08 13:28:41 57F3E1DFCF45703FD8D91C8AEB749618 176928 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\oaremote_plugin.dll

2014-01-08 13:28:41 35CC1C168EBBB8680207CB7533A289DE 192800 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\protobuf-net.dll

2014-01-08 13:28:41 25F90AF7EC1D7ECD113F51571BEE3513 768288 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NVI2\ReleaseHighlights.dll

2014-01-08 13:28:41 07A1652F1572A758A49166400074258B 831264 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Display.Optimus\OptimusUpdateExt.dll

2014-01-08 13:28:41 03D12654783AC8D35BCA01F4AB809638 309536 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\rxinput.dll

2014-01-08 13:28:40 FC1B65F59165C0292F88DB91A1255F0F 980296 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\nvupdtrXP64.dll

2014-01-08 13:28:40 F11C5A1D64CA5042DF9BCB307EE421FB 982816 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\nvupdtr64.dll

2014-01-08 13:28:40 D975E8F89B3483DAE4598F8B7944412E 979784 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\nvupdtrXP32.dll

2014-01-08 13:28:40 C33F3A94E9DC6A63DE0325A0FD6E9D2F 3067720 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\nvupdtXP64.dll

2014-01-08 13:28:40 AAB0A5FF4FEF15BCE9629CB2930686A9 11600672 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\nvwinstreamc.dll

2014-01-08 13:28:40 8E8C8C88090315A96C53F444661E38CD 982304 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\nvupdtr32.dll

2014-01-08 13:28:40 00B41A128CB5F1C89CBD1155F36B84E9 2453832 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\nvupdtXP32.dll

2014-01-08 13:28:39 E2A16B931CD79259D568842FD1A8952E 1100248 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\nvspcap64.dll

2014-01-08 13:28:39 DCE87C2CD24E7F60CEEC1B80AAA2572C 791328 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\NvStreamCExt.dll

2014-01-08 13:28:39 8CEB1E24F48DD07A7A2169A801A07630 1323808 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\nvsteamsupport.dll

2014-01-08 13:28:39 83038307D2626DD2E79A2DBAAC00A6D1 3071776 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\nvupdt64.dll

2014-01-08 13:28:39 7AEF57D74CD96F3C456199057DE636CA 982232 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\nvspcap.dll

2014-01-08 13:28:39 6FE15A33EA058D824EA51E398D5B3AD8 2457888 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\nvupdt32.dll

2014-01-08 13:28:39 3ED97C1C7A8428985F2774B035FAF469 1054496 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\nvsteamsupport.dll

2014-01-08 13:28:38 FCA90BAF3D74DBF204B1403B7B2CA92A 41760 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\NvLedServiceLib.dll

2014-01-08 13:28:38 FA5FE22D3E840CF9BF3575C363ECE8B9 622408 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\en-US\NvLedVisualizer.resources.dll

2014-01-08 13:28:38 F65BFA2BBEE51275DDF4DB2C7FAF28E2 19744 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\NvLedVisualizerControl.dll

2014-01-08 13:28:38 F14649E05175ACCC9191E737851C3A28 497952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Network.Service\NVNetworkServiceAPI.dll

2014-01-08 13:28:38 E9A79D7A05E37BAC68EBD0BC5E4CEA49 26440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\da-DK\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 DF104B0FC4E3DADDAF620533713084FE 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\es-ES\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 DAEC4C473F3A931AAA3FEA2DD89503C2 26440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\sv-SE\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 CAB737BA4F9572A0DAFF20D3F2D15710 27976 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\ja-JP\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 CA8DEA356E57853F1B51F5BB084736A2 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\de-DE\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 C8702D7942CB63000CFCEC8C5B7C235F 25928 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\zh-CHT\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 BE8F21188C5524168CCC1D15DAEB1A18 29512 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\el-GR\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 B7DF18B59003C40737DDF43011C84B10 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\sl-SI\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 B1E5D1AB82569F9D5C4B0AC263CEE03E 28488 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\ar-SA\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 AA0FFCBAA1ACCBF2422EEF68EC374BA7 33608 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\en-US\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 9F1F264891A8BAD0BD9CDEE2CED72105 29512 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\ru-RU\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 9CCC9122FCD8A6E3C09A34B885E44B93 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\fi-FI\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 8026728741EF1DD622F53959746B0DF9 24352 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NVIDIA.Settings.Properties.dll

2014-01-08 13:28:38 7A3E85FAE37FFACD01B595D73632BA98 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\hu-HU\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 75C309305D015B2CCFB208977CF85640 84256 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NVIDIA.Win32Api.dll

2014-01-08 13:28:38 6A026C35816BDDFA3A857D08A2E0FAAD 32072 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\th-TH\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 6022C61D126D4EA96514831208607A6E 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\pl-PL\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 5B537101801B4697440A0B4ADEA0C4B2 26440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\nl-NL\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 4AC7C8C39B6ABDEB87B3943F10E356F5 26440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\cs-CZ\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 49C3B3FBCA44737E563A4708CA14E6F7 26440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\pt-BR\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 3A499DF8FAA208F1FB5EF54FD2A04CCD 836384 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NVI2\NVPrxy32.dll

2014-01-08 13:28:38 3806FFD1683472256691E928C61F5075 1429280 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NVI2\NVPrxy64.dll

2014-01-08 13:28:38 2E7B3F3E93DB471713B4671D0262B2CE 26440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\pt-PT\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 2C3156AB53749D995457EA008EEF4846 27464 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\he-IL\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 2ACFFD8437BEA5ADE84EBF3E55D5B5C5 27464 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\fr-FR\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 22D2B52926C844A3374B625B5F556342 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\es-MX\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 226C55EEE02BD32F6F5DFAA8EDF7CD6D 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\sk-SK\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 2058932E6A540FA9D3DFBCF2A97A8C94 25928 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\en-GB\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 1EE130C2C0780BB2EF44DA23AC877B75 26440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\nb-NO\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 1BF36476BBD62D084F7A0867DD4B8F68 25928 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\zh-CHS\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 0A901FF79CF952AC4744EA3C437FA415 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\tr-TR\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 07DE0B51352420FE002DC1050A9B0143 35104 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NVIDIA.UpdateService.dll

2014-01-08 13:28:38 036CED2B988867D165F054F3448E92E4 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\ko-KR\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:38 031A540B181A6861D071B0CE8236A842 26952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\it-IT\NvLedVisualizerControl.resources.dll

2014-01-08 13:28:37 F5FD8C9DC7C877A177C35571B7A5652C 622368 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\NvGpuInterface.dll

2014-01-08 13:28:37 D4209BF6898084137A8C4DE6BF5027F8 1424672 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NVI2\NVI2UI.dll

2014-01-08 13:28:37 27963564E001C80BE6C89CD9065BB981 43296 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NVIDIA.Settings.dll

2014-01-08 13:28:37 1675A415DC385AEE260926B176233CB8 4185888 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NVI2\NVI2.dll

2014-01-08 13:28:36 AA94605989E4B862287A10048429998A 794912 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\NvGfeServiceBridge.dll

2014-01-08 13:28:36 9232B752BE28D7EA628F572198644D8D 1199904 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NvGFTrayPluginr32.dll

2014-01-08 13:28:36 9028D5551990A3C2A24407FB3CA9881E 4430112 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NvGFTrayPlugin64.dll

2014-01-08 13:28:36 5ADB497F9B3D20E00295A36775C9A64D 3838240 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NvGFTrayPluginXP64.dll

2014-01-08 13:28:36 48355082165A4D322C5C3FBBD89F0B79 1199904 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NvGFTrayPluginrXP32.dll

2014-01-08 13:28:36 34B7779B51DEEEE11D7D1B31D0B4AC7B 1199904 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NvGFTrayPluginr64.dll

2014-01-08 13:28:36 2DBADC757AC21DB894722C81CE94DD2F 1199904 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NvGFTrayPluginrXP64.dll

2014-01-08 13:28:36 24240DECEE1459FD7D49DFE2DB2AA8E2 979744 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\NvGfeServiceBridge.dll

2014-01-08 13:28:36 23702472794323FAD7C9B84445D17A97 3518240 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NvGFTrayPlugin32.dll

2014-01-08 13:28:36 1A1048300D20B6CF31895AD006C40C94 3186976 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\NvGFTrayPluginXP32.dll

2014-01-08 13:28:35 F952F3E89CF6741A5547409B613C8015 35104 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NvVAD\nvaudcap64v.dll

2014-01-08 13:28:35 EE92E6EDC275D89362BA84DCF1221A67 201504 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\th-TH\GFExperienceControls.resources.dll

2014-01-08 13:28:35 E41D420A02523B40D2CA9597394C9843 177952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\pt-PT\GFExperienceControls.resources.dll

2014-01-08 13:28:35 E1AE340C83F0AFCC75647C04C5D73A3F 587040 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\nvFBC.dll

2014-01-08 13:28:35 DED38EB15098AAEEEBF4CCECF9D005E6 1122592 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\GFExperienceExt.dll

2014-01-08 13:28:35 D61CCA91160C0AD2816DC24FDB56BBDD 177952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\sk-SK\GFExperienceControls.resources.dll

2014-01-08 13:28:35 D35227C14C8664B5BC99A721659DCACA 1515296 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NvVAD\nvgenco64.dll

2014-01-08 13:28:35 BB664D6ABF8A83EE6DA8095D6E3CF380 136480 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\GFExperienceCore.dll

2014-01-08 13:28:35 B9DFBB07FEE15710E133765F5B340C4A 176928 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\it-IT\GFExperienceControls.resources.dll

2014-01-08 13:28:35 B1A710F0374998D711050B8291B64496 176416 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\tr-TR\GFExperienceControls.resources.dll

2014-01-08 13:28:35 AAC72FC2957501E6264BCD454A5E359C 177952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\ko-KR\GFExperienceControls.resources.dll

2014-01-08 13:28:35 9B9473C121D9C3CB4AFF4CB5BE97A1CA 20768 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\InstallerService.dll

2014-01-08 13:28:35 8F1978265969C910349899852BB87CAD 82208 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\GridService.dll

2014-01-08 13:28:35 8E873DE9D52CADE0F1991A9E69A33AAD 177440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\pl-PL\GFExperienceControls.resources.dll

2014-01-08 13:28:35 8CDBDA1C420D96733525E5062C831C1F 482592 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\nvFBC.dll

2014-01-08 13:28:35 8A8DE5A721FD4C4C6037CDC3E1A61876 24352 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\NvDashBoardControls.dll

2014-01-08 13:28:35 87B28F57A72D2F95007FE3774F60C11C 183584 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\ja-JP\GFExperienceControls.resources.dll

2014-01-08 13:28:35 86A4E3C28D776E60BAFE328F56F994B0 29472 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\Microsoft.Practices.ServiceLocation.dll

2014-01-08 13:28:35 85D9F661E85E5BF3C263EC84FEDB0AA8 135968 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\Ninject.dll

2014-01-08 13:28:35 83DEF9D5323E3556B9B1BE2AC3C31821 178464 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\hu-HU\GFExperienceControls.resources.dll

2014-01-08 13:28:35 7A7567A61DB5255513413429995ED1FE 894752 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NvVAD\nvgenco32.dll

2014-01-08 13:28:35 76DC2BF0D643A10C32135BF8486C7B47 831776 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\NvBackendAPI32.dll

2014-01-08 13:28:35 6E485CB02C9F8C5A51846170750DA908 114976 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\Microsoft.WindowsAPICodePack.dll

2014-01-08 13:28:35 63E3B0DAAEFC7ADA92A62EA1C9652844 176928 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\pt-BR\GFExperienceControls.resources.dll

2014-01-08 13:28:35 5F98B477AD10A7C7FC24ADEC2F7F4A69 839968 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\MS.NET\MSNetExt.dll

2014-01-08 13:28:35 5128CC84E66D0CD4531AD94427114D7B 176416 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\nl-NL\GFExperienceControls.resources.dll

2014-01-08 13:28:35 4C48050E54E69694E02B998ED7153481 1178400 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\NvBackendAPI64.dll

2014-01-08 13:28:35 32E390954B2C6B1583A969ED0E7C8A9D 421200 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\msvcp100.dll

2014-01-08 13:28:35 2B92A88E329F4845D31941967A3BAA90 768848 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\msvcr100.dll

2014-01-08 13:28:35 28AC0BD3E6712C07B663A48F2E5CE3AC 32544 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NvVAD\nvaudcap32v.dll

2014-01-08 13:28:35 1C2DEB0FA3A8B6F72F7DFD0D01E83730 190240 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\ru-RU\GFExperienceControls.resources.dll

2014-01-08 13:28:35 1B4CD1846053A963CA217172951C563C 175904 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\sv-SE\GFExperienceControls.resources.dll

2014-01-08 13:28:35 0F93D76052BDBE2A80724A1667F91318 551712 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\Microsoft.WindowsAPICodePack.Shell.dll

2014-01-08 13:28:35 0E8CC128B79317D9EDCF57AF68358290 172832 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\zh-CHS\GFExperienceControls.resources.dll

2014-01-08 13:28:35 0CBA707B6E75A9F0AEBFC1C15EABCF03 31008 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\InstallerUIExtension.dll

2014-01-08 13:28:35 0BF23C1B6AB48663AF707855764521DB 176416 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\sl-SI\GFExperienceControls.resources.dll

2014-01-08 13:28:35 0A78A12828E2A5F4D46A19BD429208AD 173344 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\zh-CHT\GFExperienceControls.resources.dll

2014-01-08 13:28:35 0344F28B7AAA35819AE8E8567D56B1AA 175392 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\nb-NO\GFExperienceControls.resources.dll

2014-01-08 13:28:34 EFABF1AE2D6DF625198B2DBEADB528B1 37152 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\GalaSoft.MvvmLight.WPF4.dll

2014-01-08 13:28:34 E4989AB4AC421AE971213379DD1FA669 175904 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\fi-FI\GFExperienceControls.resources.dll

2014-01-08 13:28:34 D6E8CE21BDC508BAB7538C17A6DFF83A 177952 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\es-ES\GFExperienceControls.resources.dll

2014-01-08 13:28:34 D325F902325AD2F2367E56575E9AE5DD 183072 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\he-IL\GFExperienceControls.resources.dll

2014-01-08 13:28:34 C87316BACFB516B583E71422B21149FB 178464 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\fr-FR\GFExperienceControls.resources.dll

2014-01-08 13:28:34 C86DD175FBD3FA7E17CC1BB168D8186F 173856 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\en-GB\GFExperienceControls.resources.dll

2014-01-08 13:28:34 C7C0948E511BEEE833526C33DB705AB1 175392 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\da-DK\GFExperienceControls.resources.dll

2014-01-08 13:28:34 C49D3BB80BA70768C208E97B5DFBE527 872224 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Display.Update\DisplayUpdateExt.dll

2014-01-08 13:28:34 B8B003FAE222995BCA44FC6A5F94FEB3 184096 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\ar-AE\GFExperienceControls.resources.dll

2014-01-08 13:28:34 B55EC02E23B94886D1813F95DDEE9ABB 2772256 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\en-US\GFExperience.resources.dll

2014-01-08 13:28:34 AD0C439B68D9E801D498FACD45018F47 178464 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\de-DE\GFExperienceControls.resources.dll

2014-01-08 13:28:34 A1E1E9A35D0B7AD6D1F5C7B11C976509 13088 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\detoured.dll

2014-01-08 13:28:34 99141245DD0599824A329249C9B4BE22 189728 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\en-US\GFExperienceControls.resources.dll

2014-01-08 13:28:34 983BBDD426240C4995016C43BF64579A 157472 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\GFExperienceControls.dll

2014-01-08 13:28:34 9373DEB8F1BCEA3B25861BDE63E86F50 33568 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\GalaSoft.MvvmLight.Extras.WPF4.dll

2014-01-08 13:28:34 88A41389167AA7FBF658CFA860675BCF 81184 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\gamecaster32.dll

2014-01-08 13:28:34 721F9D54A227CF3C504DE074C7181689 1215264 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\dbghelp.dll

2014-01-08 13:28:34 5C2E7D623B8FDFFDCD21FDA3A4ADC3B4 92960 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\DSETUP.dll

2014-01-08 13:28:34 59D73DD00D76DCC953DEA91AB5FD2FA5 176928 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\cs-CZ\GFExperienceControls.resources.dll

2014-01-08 13:28:34 579A1379A296AA2044C607291813E1EF 13088 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\detoured.dll

2014-01-08 13:28:34 47473B0E89B572692AC3C0286A2918CC 1015072 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\DisplayCplExt.dll

2014-01-08 13:28:34 3316207D00E9127EB8213E61B67284DE 93984 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\gamecaster64.dll

2014-01-08 13:28:34 31886093F6EAEE76FE2B062817D2B002 1168672 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\ExtensionLoader.dll

2014-01-08 13:28:34 2D00D8C50E3B5DEB1CC63473A161DDE8 249120 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\cudart32_55.dll

2014-01-08 13:28:34 271753DFFAD1F4488767811C888F50EC 431392 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\cudart32_41_0.dll

2014-01-08 13:28:34 17A4323484B121047C47CCBDEC871C1B 194336 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\el-GR\GFExperienceControls.resources.dll

2014-01-08 13:28:34 10FBA8DBF2D70375CEA6546565F67122 1804064 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\dsetup32.dll

2014-01-08 13:28:34 0C0DE59F4F6317A232D0DA098C8A10A6 298272 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\cudart64_55.dll

2014-01-08 13:28:34 0B43692110DA51F867FE8D492555783D 177440 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\es-MX\GFExperienceControls.resources.dll

2014-01-08 13:28:33 C71507AAAE5C89886C6A7EFF2B799D8C 663840 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\avformat-52.dll

2014-01-08 13:28:33 B017473C066B4AE8888C4F64324A9B1F 70944 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\avutil-49.dll

2014-01-08 13:28:33 A9D2F3809A10864A59EEA302467206FB 194888 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\WLMerger.exe

2014-01-08 13:28:33 97658FCE150D2431BC8D4519ECB7F25C 18208 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\avdevice-52.dll

2014-01-08 13:28:33 823291C9A53A2C6C828793A2B1D997E7 1906976 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\Bifrost.dll

2014-01-08 13:28:33 2BB3F8E25A562E41E65A8070376CE95F 8636704 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamC\avcodec-52.dll

2014-01-08 13:28:32 E9D24F62220A0F563AB6571A20688628 412960 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\setup.exe

2014-01-08 13:28:31 47BE5424331F159AEE96B0EBBBE4ACB3 14658848 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\nvstreamsvc.exe

2014-01-08 13:28:30 8ABF790C8A5BC13593A8092966308A6A 3063072 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\nvstreamer.exe

2014-01-08 13:28:30 7A03646D5330A790A9D47D9F9C38758D 15129376 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\nvstreamsvc.exe

2014-01-08 13:28:29 F451A69055324E9CB0BA919F39508278 1785120 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\nvspcaps64.exe

2014-01-08 13:28:29 53D9C1B37EAB1673FF97A04B2E5406FF 3960096 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\nvstreamer.exe

2014-01-08 13:28:28 62189125EF56400430A465F57858E607 1475360 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\nvspcaps.exe

2014-01-08 13:28:27 4A8B43D324521AEFCA813434B8AED3C2 127264 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\NvLedVisualizer.exe

2014-01-08 13:28:27 336DF94267FC40D147FC3AC8798DFA73 87328 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\NvLedServiceHost.exe

2014-01-08 13:28:27 2B735AF45B6A742B0A76EB9A7CFAC788 636232 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe

2014-01-08 13:28:27 1C7C6D7481CABD4EF38A81F5B68F02E8 1494304 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Network.Service\NVNetworkService.exe

2014-01-08 13:28:26 8513CC2752139DA0789917798F384198 540448 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\DXSETUP.exe

2014-01-08 13:28:26 8271ECB37A9B61C6DC9058D6BC5149A9 1015584 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\GFExperience.exe

2014-01-08 13:28:26 05C5CBE5C0C26EFF48AF60639F30F4F5 2279712 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\NvBackend.exe

2014-01-08 13:28:25 DC6453B68B08D306F8EB2D3F76237B42 596768 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\7z.exe

2014-01-08 13:28:25 53406E9988306CBD4537677C5336ABA4 889416 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\MS.NET\dotNetFx40_Full_setup.exe

2013-12-28 17:50:05 24F6D923EF6956ABD0449C879F36D7C7 27411 ----a-w- C:\Users\Vincent\AppData\Local\Temp\i4jdel0.exe

====== Java Cache =====

2013-12-13 14:13:51 73F9DC6300292859A8038285AF1944F0 107 ----a-w- C:\Users\Vincent\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\70c1126c-6.0.lap

2013-12-13 14:13:53 D41F3BBA3B6E699FD31957B5209C278F 354733 ----a-w- C:\Users\Vincent\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\e729e45-4035d1a5

====== C:\Windows\SysWOW64 =====

2014-01-08 13:30:18 28AC0BD3E6712C07B663A48F2E5CE3AC 32544 ----a-w- C:\Windows\SysWOW64\nvaudcap32v.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

====== C:\Windows\Sysnative\drivers =====

2014-01-08 13:30:18 09216A70CC364D0974F606F6F2109210 39200 ----a-w- C:\Windows\Sysnative\drivers\nvvad64v.sys

2013-12-12 11:20:38 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys

2013-12-12 11:20:38 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-12-22 13:04:37 -------- d-----w- C:\Program Files\Native Instruments

2013-12-21 14:14:41 -------- d-----w- C:\Program Files\Common Files\Adobe

2013-12-21 14:12:34 -------- d-----w- C:\Program Files\Adobe

======= C:\PROGRA~2 =====

2013-12-22 13:05:53 -------- d-----w- C:\PROGRA~2\COMMON~1\Native Instruments

2013-12-13 20:15:25 -------- d-----w- C:\PROGRA~2\2K Sports

======= C: =====

====== C:\Users\Vincent\AppData\Roaming ======

2013-12-28 17:54:18 -------- d-----w- C:\Users\Vincent\AppData\Roaming\.minecraft

2013-12-13 20:23:46 -------- d-----w- C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2K Sports

====== C:\Users\Vincent ======

2014-01-11 04:03:03 8141DC2382882BD14BE556D7CA8650C3 4779896 ----a-w- C:\Users\Vincent\Downloads\spsetup124 (1).exe

2014-01-11 04:02:57 8141DC2382882BD14BE556D7CA8650C3 4779896 ----a-w- C:\Users\Vincent\Downloads\spsetup124.exe

2013-12-28 17:54:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft

2013-12-22 13:04:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments

2013-12-20 20:23:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pioneer

====== C: exe-files ==

2014-01-11 04:24:36 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Vincent\Dropbox\.dropbox.cache\dropbox-upgrade-2.4.11.exe

2014-01-11 04:03:03 8141DC2382882BD14BE556D7CA8650C3 4779896 ----a-w- C:\Users\Vincent\Downloads\spsetup124 (1).exe

2014-01-11 04:02:57 8141DC2382882BD14BE556D7CA8650C3 4779896 ----a-w- C:\Users\Vincent\Downloads\spsetup124.exe

2014-01-09 14:32:47 F3CF5360C107C1A2AE713158921353A3 234488 ----a-w- C:\Users\Vincent\AppData\Local\NVIDIA\NvBackend\Packages\000054af\streaming-assets-steam.17178767.exe

2014-01-08 13:32:46 A80190F73FA30312A157211A0E23BF8B 3098896 ----a-w- C:\Users\Vincent\AppData\Local\NVIDIA\NvBackend\Packages\000056bd\dao.17562149.exe

2014-01-08 13:32:40 A24E30BE8AFB834F3A40073BDE989062 297200 ----a-w- C:\Users\Vincent\AppData\Local\NVIDIA\NvBackend\Packages\000054c3\drsupdate.17186803_RUNASUSER.exe

2014-01-08 13:30:56 A9D2F3809A10864A59EEA302467206FB 194888 ----a-w- C:\Program Files\NVIDIA Corporation\Update Core\WLMerger.exe

2014-01-08 13:30:56 05C5CBE5C0C26EFF48AF60639F30F4F5 2279712 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

2014-01-08 13:30:41 1C7C6D7481CABD4EF38A81F5B68F02E8 1494304 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

2014-01-08 13:30:26 F451A69055324E9CB0BA919F39508278 1785120 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{70B1AFA2-CB6B-454C-8AC5-1EC8C708AF10}\nvspcaps64.exe

2014-01-08 13:30:26 8513CC2752139DA0789917798F384198 540448 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{70B1AFA2-CB6B-454C-8AC5-1EC8C708AF10}\DXSETUP.exe

2014-01-08 13:30:26 62189125EF56400430A465F57858E607 1475360 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{70B1AFA2-CB6B-454C-8AC5-1EC8C708AF10}\nvspcaps.exe

2014-01-08 13:30:25 4A8B43D324521AEFCA813434B8AED3C2 127264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.LEDVisualizer.{6A79F4EE-583F-4FBB-A9BB-57BAFB381216}\NvLedVisualizer.exe

2014-01-08 13:30:25 336DF94267FC40D147FC3AC8798DFA73 87328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.LEDVisualizer.{6A79F4EE-583F-4FBB-A9BB-57BAFB381216}\NvLedServiceHost.exe

2014-01-08 13:30:22 DC6453B68B08D306F8EB2D3F76237B42 596768 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{767966DF-49F8-42EC-AFA7-C2E083756C97}\7z.exe

2014-01-08 13:30:22 8271ECB37A9B61C6DC9058D6BC5149A9 1015584 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{767966DF-49F8-42EC-AFA7-C2E083756C97}\GFExperience.exe

2014-01-08 13:30:21 47BE5424331F159AEE96B0EBBBE4ACB3 14658848 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{376F8BD4-AED4-4B5C-AC2F-C77BDBB4CFF6}\x86\server\nvstreamsvc.exe

2014-01-08 13:30:21 2B735AF45B6A742B0A76EB9A7CFAC788 636232 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{376F8BD4-AED4-4B5C-AC2F-C77BDBB4CFF6}\SteamLauncher\NVIDIA.SteamLauncher.exe

2014-01-08 13:30:20 8ABF790C8A5BC13593A8092966308A6A 3063072 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{376F8BD4-AED4-4B5C-AC2F-C77BDBB4CFF6}\x86\server\nvstreamer.exe

2014-01-08 13:30:20 7A03646D5330A790A9D47D9F9C38758D 15129376 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{376F8BD4-AED4-4B5C-AC2F-C77BDBB4CFF6}\amd64\server\nvstreamsvc.exe

2014-01-08 13:30:19 A9D2F3809A10864A59EEA302467206FB 194888 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Update.Core.{ADCE0ACF-B76F-4EA2-B1E6-D99C74AC4BED}\WLMerger.exe

2014-01-08 13:30:19 53D9C1B37EAB1673FF97A04B2E5406FF 3960096 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{376F8BD4-AED4-4B5C-AC2F-C77BDBB4CFF6}\amd64\server\nvstreamer.exe

2014-01-08 13:30:18 05C5CBE5C0C26EFF48AF60639F30F4F5 2279712 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Update.Core.{ADCE0ACF-B76F-4EA2-B1E6-D99C74AC4BED}\NvBackend.exe

2014-01-08 13:30:17 1C7C6D7481CABD4EF38A81F5B68F02E8 1494304 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Network.Service.{AF771E61-47AE-4AB1-BD43-533AA733623F}\NVNetworkService.exe

2014-01-08 13:28:51 E9D24F62220A0F563AB6571A20688628 412960 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{86128508-5365-4797-81E0-B7C11E189B2E}\setup.exe

2014-01-08 13:28:33 A9D2F3809A10864A59EEA302467206FB 194888 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\WLMerger.exe

2014-01-08 13:28:32 E9D24F62220A0F563AB6571A20688628 412960 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\setup.exe

2014-01-08 13:28:31 47BE5424331F159AEE96B0EBBBE4ACB3 14658848 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\nvstreamsvc.exe

2014-01-08 13:28:30 8ABF790C8A5BC13593A8092966308A6A 3063072 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\x86\server\nvstreamer.exe

2014-01-08 13:28:30 7A03646D5330A790A9D47D9F9C38758D 15129376 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\nvstreamsvc.exe

2014-01-08 13:28:29 F451A69055324E9CB0BA919F39508278 1785120 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\nvspcaps64.exe

2014-01-08 13:28:29 53D9C1B37EAB1673FF97A04B2E5406FF 3960096 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\amd64\server\nvstreamer.exe

2014-01-08 13:28:28 62189125EF56400430A465F57858E607 1475360 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\nvspcaps.exe

2014-01-08 13:28:27 4A8B43D324521AEFCA813434B8AED3C2 127264 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\NvLedVisualizer.exe

2014-01-08 13:28:27 336DF94267FC40D147FC3AC8798DFA73 87328 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\LEDVisualizer\NvLedServiceHost.exe

2014-01-08 13:28:27 2B735AF45B6A742B0A76EB9A7CFAC788 636232 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience.NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe

2014-01-08 13:28:27 1C7C6D7481CABD4EF38A81F5B68F02E8 1494304 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Network.Service\NVNetworkService.exe

2014-01-08 13:28:26 8513CC2752139DA0789917798F384198 540448 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\ShadowPlay\DXSETUP.exe

2014-01-08 13:28:26 8271ECB37A9B61C6DC9058D6BC5149A9 1015584 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\GFExperience.exe

2014-01-08 13:28:26 05C5CBE5C0C26EFF48AF60639F30F4F5 2279712 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\Update.Core\NvBackend.exe

2014-01-08 13:28:25 DC6453B68B08D306F8EB2D3F76237B42 596768 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\GFExperience\7z.exe

2014-01-08 13:28:25 53406E9988306CBD4537677C5336ABA4 889416 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\MS.NET\dotNetFx40_Full_setup.exe

2014-01-08 01:37:28 B81F0EFEF390A3379F4D217EF6793F41 36487336 ----a-w- C:\Users\Vincent\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\32.0.1700.72\32.0.1700.72_chrome_installer.exe

=== C: other files ==

2014-01-08 13:30:18 DAC9726D9C90631D6A1C0ECAA0226021 34080 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{A57DB993-2586-4B91-AC5E-F4925241F01E}\nvvad32v.sys

2014-01-08 13:30:18 09216A70CC364D0974F606F6F2109210 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys

2014-01-08 13:30:18 09216A70CC364D0974F606F6F2109210 39200 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{A57DB993-2586-4B91-AC5E-F4925241F01E}\nvvad64v.sys

2014-01-08 13:28:42 DAC9726D9C90631D6A1C0ECAA0226021 34080 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NvVAD\nvvad32v.sys

2014-01-08 13:28:42 09216A70CC364D0974F606F6F2109210 39200 ----a-w- C:\Users\Vincent\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\10.11.15.0\NvVAD\nvvad64v.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1295074538-1964144441-2249229760-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"

"FLBackup"="C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe"

"Spotify Web Helper"="C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"Google Update"="C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"APVXDWIN"="C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\APVXDWIN.EXE /s"

"SCANINICIO"="C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\Inicio.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"

"FLBackup"="C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe"

"Spotify Web Helper"="C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"Google Update"="C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IntelPAN"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PAN Tray"

"XboxStat"="C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun"

"Nvtmru"="C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"

"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"

"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe ARM"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="APSDaemon"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="DAEMON Tools Lite"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Google Update"

"hkey"="HKCU"

"command"="\"C:\\Users\\Vincent\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="iTunesHelper"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesAirMessage]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="KiesAirMessage"

"hkey"="HKCU"

"command"="C:\\Program Files (x86)\\Samsung\\Kies\\KiesAirMessage.exe -startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesPDLR]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="KiesPDLR"

"hkey"="HKCU"

"command"="C:\\Program Files (x86)\\Samsung\\Kies\\External\\FirmwareUpdate\\KiesPDLR.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesPreload]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="KiesPreload"

"hkey"="HKCU"

"command"="C:\\Program Files (x86)\\Samsung\\Kies\\Kies.exe /preload"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesTrayAgent]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="KiesTrayAgent"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Samsung\\Kies\\KiesTrayAgent.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="msnmsgr"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Skype"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\Skype\\Phone\\Skype.exe\" /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Spotify"

"hkey"="HKCU"

"command"="\"C:\\Users\\Vincent\\AppData\\Roaming\\Spotify\\Spotify.exe\" /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Spotify Web Helper"

"hkey"="HKCU"

"command"="\"C:\\Users\\Vincent\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="SunJavaUpdateSched"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodeMeter Control Center.lnk]

"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\CodeMeter Control Center.lnk"

"backup"="C:\\Windows\\pss\\CodeMeter Control Center.lnk.CommonStartup"

"backupExtension"=".CommonStartup"

"command"="C:\\PROGRA~2\\CODEME~1\\Runtime\\bin\\CODEME~2.EXE "

"item"="CodeMeter Control Center"

==== Startup Folders ======================

2013-04-06 12:08:43 1053 ----a-w- C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11/12/2013 18:15]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/10/2012 21:49]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/10/2012 21:49]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1295074538-1964144441-2249229760-1000Core.job --a------ C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe [18/08/2012 22:05]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1295074538-1964144441-2249229760-1000UA.job --a------ C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe [18/08/2012 22:05]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-1295074538-1964144441-2249229760-1000Core" [C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-1295074538-1964144441-2249229760-1000UA" [C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\PandaUSBVaccine" ["C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe"]

"C:\Windows\SysNative\tasks\{15940C99-63F4-4FEF-9DD8-43A69B56303F}" ["c:\users\vincent\appdata\local\google\chrome\application\chrome.exe"]

"C:\Windows\SysNative\tasks\{DBF9D369-76CC-458D-BB62-6BAECCF558A5}" [C:\Users\Vincent\Downloads\Autobuyer.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"hotfix@mozilla.org"="C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Extensions\MozillaHotfix" [15/01/2013 18:49]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"hotfix@mozilla.org"="C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Extensions\MozillaHotfix" [15/01/2013 18:49]

==== Firefox Extensions ======================

ExtDir: C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

- HDvid Codec - %ExtDir%\hdvc@hdvc.com.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Profiles\38mw3lsb.default

C2321043FA2CA4C32FF449DE6116B5D9 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1205146.dll - Shockwave for Director / Shockwave for Director

==== Deleted Firefox Extensions ======================

C:\Users\Vincent\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\hdvc@hdvc.com.xpi deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

kpkbnefaikfaeadgidhpoanckoiaheli - C:\Program Files (x86)\HDvidCodec.com\HDvidCodec10.crx[]

ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\Vincent\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\Vincent\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[]

nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[]

Google Docs - Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Invite All - Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopekjehpibhfpjjcokfmhcaeiclddih

AdBlock - Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

Google Wallet - Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.com"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.com"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=C:\Windows\SysWOW64\userinit.exe,

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\APVXDWIN.EXE" /s

O4 - HKLM\..\Run: [sCANINICIO] "C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\Inicio.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Vincent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [Google Update] "C:\Users\Vincent\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Dropbox.lnk = Vincent\AppData\Roaming\Dropbox\bin\Dropbox.exe

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel® Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

O23 - Service: CyberGhost VPN Client (CGVPNCliSrvc) - mobile concepts GmbH - C:\Program Files\CyberGhost VPN\CGVPNCliService.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLService - New Softwares.net - C:\Windows\SysWow64\WinFLService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe

O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsCtrls.exe

O23 - Service: Panda Function Service (PAVFNSVR) - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PavFnSvr.exe

O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe

O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\pavsrvx86.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Panda Host Service (PSHost) - Unknown owner - c:\program files (x86)\panda security\panda global protection 2014\firewall\PSHOST.EXE

O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PsImSvc.exe

O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\PskSvc.exe

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Global Protection 2014\TPSrvWow.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Vincent\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Vincent\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=216 folders=56 110752320 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Vincent\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Vincent\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on za 11/01/2014 at 5:38:41,09 ======================

Hier ook nog een speccy logje: http://speccy.piriform.com/results/Mpu3UbEWnaZJEv4qEjxBZBg

Kan misschien zijn dat de koelpasta eens vervangen moet worden?

[kape]

Voor de "beestjes" mag je dit nog doen:

Download AdwCleaner by Xplode naar het bureaublad.

AdwCleaner uitvoeren

• Sluit alle openstaande vensters.
  
• Dubbelklik op AdwCleaner.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Klik vervolgens op de knop Scan.
  
• Wanneer de scan gereed is Klikt u vervolgens op de knop Clean.
  
• Als dit gereed is wordt er gevraagd om de computer opnieuw op te starten, klik hier op OK.
  
• Nadat de computer opnieuw is opgestart wordt het logbestand automatisch geopend.
  
• Plaats dit logbestand in het volgende bericht.
  

[doedelzak123]

Iets te vinden?

Jazeker ... maar dat is inmiddels al verwijderd door de voorbije behandeling 12 januari 2014 aangepast door kape