Z-Analyse V1.0.0.4 Updated 11-March-2015
Tool run by Carl on do 12-03-2015 at 13:22:10,44.
Microsoft Windows 7 Professional  6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Carl\Desktop\Z-analyse\Z-Analyse.exe [Deep Scan]

==== Older Logs ======================

C:\zoek-results2015-03-09-125358.log	484 bytes

==== Running Processes ======================

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Acer\Acer SmartBoot\ASLSvc.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Acer\Empowering Technology\eLock\Service\eLockServ.exe
C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
C:\Program Files\Acer\Registration\GregHSRW.exe
C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe
C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe
C:\Program Files\Acer\Acer PowerSaver\PowerSaverTray.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\System32\spool\drivers\w32x86\3\E_FATIJAE.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_16_0_0_287_ActiveX.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Users\Carl\Desktop\Z-analyse\Z-Analyse.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\conhost.exe
C:\Users\Carl\AppData\Local\Temp\ZAScan.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet

==== Drivers(whitelist) ======================
Powered by [url=http://www.antimalwarehelp.be/EDev/]E Dev[/url]

R0 - [FileInfo] - File Information FS MiniFilter - C:\Windows\system32\Drivers\FileInfo.sys
R0 - [FltMgr] - FltMgr - C:\Windows\system32\Drivers\FltMgr.sys
R0 - [Mup] - Mup - C:\Windows\system32\Drivers\Mup.sys
R0 - [SymEFA] - Symantec Extended File Attributes - C:\Windows\system32\Drivers\SymEFA.sys [x]
R1 - [NetBIOS] - NetBIOS Interface - C:\Windows\system32\Drivers\NetBIOS.sys
R3 - [srv] - Stuurprogramma Server SMB 1.xxx - C:\Windows\system32\Drivers\srv.sys
R3 - [srv2] - Stuurprogramma Server SMB 2.xxx - C:\Windows\system32\Drivers\srv2.sys
R0 - [ACPI] - Microsoft ACPI-stuurprogramma - C:\Windows\system32\Drivers\ACPI.sys
R0 - [amdxata] - amdxata - C:\Windows\system32\Drivers\amdxata.sys
R0 - [atapi] - IDE-kanaal - C:\Windows\system32\Drivers\atapi.sys
R0 - [CLFS] - Common Log (CLFS) - C:\Windows\system32\Drivers\CLFS.sys [x]
R0 - [CNG] - CNG - C:\Windows\system32\Drivers\CNG.sys
R0 - [Disk] - Stuurprogramma voor schijfstations - C:\Windows\system32\Drivers\Disk.sys
R0 - [eLock2BurnerLockDriver] - Disk Performance Monitor Filter Driver - C:\Windows\system32\Drivers\eLock2BurnerLockDriver.sys
R0 - [fvevol] - Filterstuurprogramma Bitlocker-stationsvergrendeling - C:\Windows\system32\Drivers\fvevol.sys
R0 - [hwpolicy] - Hardware Policy Driver - C:\Windows\system32\Drivers\hwpolicy.sys
R0 - [intelide] - intelide - C:\Windows\system32\Drivers\intelide.sys
R0 - [KSecDD] - KSecDD - C:\Windows\system32\Drivers\KSecDD.sys
R0 - [KSecPkg] - KSecPkg - C:\Windows\system32\Drivers\KSecPkg.sys
R0 - [mountmgr] - Koppelpuntbeheer - C:\Windows\system32\Drivers\mountmgr.sys
R0 - [msisadrv] - msisadrv - C:\Windows\system32\Drivers\msisadrv.sys
R0 - [NDIS] - NDIS-systeemstuurprogramma - C:\Windows\system32\Drivers\NDIS.sys
R0 - [partmgr] - Partitiebeheer - C:\Windows\system32\Drivers\partmgr.sys
R0 - [pci] - PCI Bus-stuurprogramma - C:\Windows\system32\Drivers\pci.sys
R0 - [pcw] - Performance Counters for Windows Driver - C:\Windows\system32\Drivers\pcw.sys
R0 - [rdyboost] - ReadyBoost - C:\Windows\system32\Drivers\rdyboost.sys
R0 - [spldr] - Security Processor Loader Driver - C:\Windows\system32\Drivers\spldr.sys
R0 - [storflt] - Schijf - Filterstuurprogramma voor Virtual Machine-busaccelerator - C:\Windows\system32\Drivers\storflt.sys [x]
R0 - [SymDS] - Symantec Data Store - C:\Windows\system32\Drivers\SymDS.sys [x]
R0 - [Tcpip] - Stuurprogramma voor TCP/IP-protocol - C:\Windows\system32\Drivers\Tcpip.sys
R0 - [vdrvroot] - Microsoft Virtual Drive Enumerator-stuurprogramma - C:\Windows\system32\Drivers\vdrvroot.sys
R0 - [vmbus] - Virtual Machine-bus - C:\Windows\system32\Drivers\vmbus.sys
R0 - [volmgr] - Stuurprogramma voor Volumebeheer - C:\Windows\system32\Drivers\volmgr.sys
R0 - [volmgrx] - Dynamisch Volumebeheer - C:\Windows\system32\Drivers\volmgrx.sys
R0 - [volsnap] - Opslagvolumes - C:\Windows\system32\Drivers\volsnap.sys
R0 - [Wdf01000] - Kernel Mode Driver Frameworks service - C:\Windows\system32\Drivers\Wdf01000.sys
R1 - [AFD] - Ancillary Function Driver for Winsock - C:\Windows\system32\Drivers\AFD.sys
R1 - [Beep] - Beep - C:\Windows\system32\Drivers\Beep.sys
R1 - [tdx] - Stuurprogramma voor ondersteuning van NetIO Legacy TDI - C:\Windows\system32\Drivers\tdx.sys
R2 - [tcpipreg] - TCP/IP Registry Compatibility - C:\Windows\system32\Drivers\tcpipreg.sys

==== System Specs ======================

Windows: Windows 7 Professional Edition Service Pack 1 (Build 7601)
Memory (RAM): 2014 MB
CPU Info: Pentium(R) Dual-Core  CPU      E5500  @ 2.80GHz
CPU Speed: 2792,9 MHz
Sound Card: Luidsprekers (Realtek High Defi | 
Realtek Digital Output (Realtek | 
Display Adapters: Intel(R) G41 Express Chipset | Intel(R) G41 Express Chipset | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; LG 27MP35(Analog) | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Broadcom NetXtreme Gigabit Ethernet
CD / DVD Drives: 1x (E: | ) E: ATAPI   DVD A  DH16AASH
Ports: COM1 | COM2 LPT1
Mouse: 8 Button Wheel Mouse Present
Hard Disks: C:  59,0GB | D:  59,0GB
Hard Disks - Free: C:  28,8GB | D:  31,7GB
Manufacturer *: Acer
BIOS Info: AT/AT COMPATIBLE | 04/01/10 | ACRSYS - 20100401
Time Zone: West-Europa (standaardtijd)
Motherboard *: Acer Veriton M275
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Anti-Virus: Norton 360 Premier Edition On-access scanning disabled (Outdated)
Anti-Spyware: Norton 360 Premier Edition disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Firewall: Norton 360 Premier Edition disabled
Default Browser: Google Chrome	40.0.2214.115
Internet Explorer Version: 11.0.9600.17691 
Google Chrome version: 40.0.2214.115
Adobe Reader version: 11.0.10.32
Flash Player version: 16.0.0.296

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Carl\AppData\Local\Temp ====
2015-03-12 12:22:07	3304FDFB4F7424B385C308B812FB019C	71680	----a-w-	C:\Users\Carl\AppData\Local\Temp\ZAScan.exe
====== Java Cache =====
====== C:\Windows\system32 =====
2015-03-11 09:20:51	5F3628DCF926C4499BE1DC74431DFBC8	1230848	----a-w-	C:\Windows\System32\WindowsCodecs.dll
2015-03-11 09:20:50	84B460BB65567ED42DD605FA044DB370	828928	----a-w-	C:\Windows\System32\msctf.dll
2015-03-11 09:20:49	340EECB781E6C06A6171B3068DA208AD	12875264	----a-w-	C:\Windows\System32\shell32.dll
2015-03-11 09:20:46	BA3CB7D5C1DCF17E6FFFB28DB950841A	2381312	----a-w-	C:\Windows\System32\win32k.sys
2015-03-11 09:20:43	FDF0B4DC83627A859D18EE439B8E5A26	47616	----a-w-	C:\Windows\System32\ieetwproxystub.dll
2015-03-11 09:20:43	97F98251AC65657A07673E64AA31519F	684544	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-03-11 09:20:43	8FDE1162C9DCF7B180AA702DD9EB6071	60416	----a-w-	C:\Windows\System32\JavaScriptCollectionAgent.dll
2015-03-11 09:20:43	87E5DC0BADC63A6E92A3C7A896B8C15E	102912	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-03-11 09:20:42	F5F730ED126DCFBEBDB9BB629BD482C4	620032	----a-w-	C:\Windows\System32\jscript9diag.dll
2015-03-11 09:20:42	BA10D970EB39913357B224F4473D535B	418304	----a-w-	C:\Windows\System32\dxtmsft.dll
2015-03-11 09:20:42	B8445B89D0EA5C2575C98EA7BD180C5C	30720	----a-w-	C:\Windows\System32\iernonce.dll
2015-03-11 09:20:42	B35C35C55FED3DD7F995C77F63CBC29B	1311232	----a-w-	C:\Windows\System32\urlmon.dll
2015-03-11 09:20:42	A41C85FDB2275FA9AAA821A118807FDB	710144	----a-w-	C:\Windows\System32\ieapfltr.dll
2015-03-11 09:20:42	988AB676FBF4484508BA134CAAB711EB	115712	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-03-11 09:20:42	756B4F77945C61ADBE68150D7D2EC7A6	47104	----a-w-	C:\Windows\System32\jsproxy.dll
2015-03-11 09:20:42	59788C115F8362C5DBBAD68B54AD6357	667648	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-03-11 09:20:42	29EDBC5C381F1406A5262351E69BC87A	342696	----a-w-	C:\Windows\System32\iedkcs32.dll
2015-03-11 09:20:41	AD1BA932AC31D2BC8C9105DA59BEA6BE	689152	----a-w-	C:\Windows\System32\msfeeds.dll
2015-03-11 09:20:41	08B30EB9751858C1C369E8775492D732	2724864	----a-w-	C:\Windows\System32\mshtml.tlb
2015-03-11 09:20:40	BD838E2129623E8311720AA86C5DFBBF	62464	----a-w-	C:\Windows\System32\iesetup.dll
2015-03-11 09:20:40	B0B83B31853E15C619FDB91B64F8349A	168960	----a-w-	C:\Windows\System32\msrating.dll
2015-03-11 09:20:40	A34897A1A39316BDECCA3E61986F98F2	2052608	----a-w-	C:\Windows\System32\inetcpl.cpl
2015-03-11 09:20:39	EA6EA6912F27F05C61D8D747517EB47E	1888256	----a-w-	C:\Windows\System32\wininet.dll
2015-03-11 09:20:39	3B2A9D5AF0E44A8C41E7545A8A7D5A98	4096	----a-w-	C:\Windows\System32\ieetwcollectorres.dll
2015-03-11 09:20:38	AD13E719AE506AA0E0BB5D49E0D5B44A	285696	----a-w-	C:\Windows\System32\dxtrans.dll
2015-03-11 09:20:38	AC35DA94A14679E8E515A44A8CF90804	478208	----a-w-	C:\Windows\System32\ieui.dll
2015-03-11 09:20:37	E868396BC5F8957A9E39BD9A28EA814D	12827648	----a-w-	C:\Windows\System32\ieframe.dll
2015-03-11 09:20:36	02C0770DA3BE9231EFAF7185EE51020C	1155072	----a-w-	C:\Windows\System32\mshtmlmedia.dll
2015-03-11 09:20:36	00F39165D6D14302618C20CDD7BB213A	76288	----a-w-	C:\Windows\System32\mshtmled.dll
2015-03-11 09:20:35	6108ED659B5962DE73DACB3B04D86ED3	64000	----a-w-	C:\Windows\System32\MshtmlDac.dll
2015-03-11 09:20:35	52B4DECDC70B8758380D37EA2CDD4254	2278400	----a-w-	C:\Windows\System32\iertutil.dll
2015-03-11 09:20:34	95CB6079B3E62D4301958023C2070A48	19720192	----a-w-	C:\Windows\System32\mshtml.dll
2015-03-11 09:20:33	BC9CE46C3F05CCC40F8F1EFC7E4B41C7	503296	----a-w-	C:\Windows\System32\vbscript.dll
2015-03-11 09:20:32	FC5FE9F2D140435FC95CB3EF6724EF0A	4300288	----a-w-	C:\Windows\System32\jscript9.dll
2015-03-11 09:20:29	D9FAD47AFADE210921EF0991307DAD6D	1061376	----a-w-	C:\Windows\System32\lsasrv.dll
2015-03-11 09:20:29	D5063B86DC3F85B93D02AF68099F4C9A	248832	----a-w-	C:\Windows\System32\schannel.dll
2015-03-11 09:20:29	69925A266D265DAD96C6FCBB861FA5CD	550912	----a-w-	C:\Windows\System32\kerberos.dll
2015-03-11 09:20:28	F65F365AC0D1657917EFDB52445C848B	22528	----a-w-	C:\Windows\System32\lsass.exe
2015-03-11 09:20:28	C7D334A01C66BF07B92D04CD7A981B7F	259584	----a-w-	C:\Windows\System32\msv1_0.dll
2015-03-11 09:20:28	B06A4105DD22E91A1D922D7310803140	65536	----a-w-	C:\Windows\System32\TSpkg.dll
2015-03-11 09:20:28	ACD0CA819E279E1C17BE5C8A077EF448	146432	----a-w-	C:\Windows\System32\msaudite.dll
2015-03-11 09:20:28	887C8C0BF3FF4C74E76714375AE9B1D8	15872	----a-w-	C:\Windows\System32\sspisrv.dll
2015-03-11 09:20:28	84974782ED5D108DA2EFAF3C6534A760	22016	----a-w-	C:\Windows\System32\secur32.dll
2015-03-11 09:20:28	7A71DA6D6F75AB73475128F787DD8EAD	221184	----a-w-	C:\Windows\System32\ncrypt.dll
2015-03-11 09:20:28	7407DDA27838C393DE67A0BDCDD044D0	60416	----a-w-	C:\Windows\System32\msobjs.dll
2015-03-11 09:20:28	5E76C26CAE2810EA71C161ED9A2CF0D1	50176	----a-w-	C:\Windows\System32\auditpol.exe
2015-03-11 09:20:28	4E15E2D20AE755FDEACD96F359F732DB	172032	----a-w-	C:\Windows\System32\wdigest.dll
2015-03-11 09:20:28	49144A633AB640E34A0FFDE26CB31EB5	100352	----a-w-	C:\Windows\System32\sspicli.dll
2015-03-11 09:20:28	30F5B3E28636009A0B194057AAE4392A	17408	----a-w-	C:\Windows\System32\credssp.dll
2015-03-11 09:20:28	0485899A035E02C53014C0545D912405	686080	----a-w-	C:\Windows\System32\adtschema.dll
2015-03-11 09:20:21	B804EAA9E037580F96C22537C2ECB62A	171520	----a-w-	C:\Windows\System32\ubpm.dll
2015-03-11 09:20:09	DD16C06B79DA2FBD422E87923C6C0C9D	26624	----a-w-	C:\Windows\System32\lpk.dll
2015-03-11 09:20:09	ABB358777FDF4AF51B2FE26137D2B8D4	70656	----a-w-	C:\Windows\System32\fontsub.dll
2015-03-11 09:20:09	965D6A2B30A95A9F7EF13653988D3D9F	299008	----a-w-	C:\Windows\System32\atmfd.dll
2015-03-11 09:20:09	55273844B66D77A2F1A2213C17A9EA4A	34304	----a-w-	C:\Windows\System32\atmlib.dll
2015-03-11 09:20:09	274F0540FD4C88FC845C94CA1569688A	10240	----a-w-	C:\Windows\System32\dciman32.dll
2015-03-11 09:20:07	9566C8BBD2271A7962D4432A624762AD	417792	----a-w-	C:\Windows\System32\WMPhoto.dll
2015-03-11 09:19:55	DCC148408770F2D55B201F8FC26438A1	988160	----a-w-	C:\Windows\System32\drmv2clt.dll
2015-03-11 09:19:55	003C51B9FE38287BA4E0E58D3AE080BD	744960	----a-w-	C:\Windows\System32\blackbox.dll
2015-03-11 09:19:54	B378B6A865C28CE5C1E23C35760A1199	11411968	----a-w-	C:\Windows\System32\wmp.dll
2015-03-11 09:19:54	833FCABCB5D95B1911BA6E62FC82AC04	617984	----a-w-	C:\Windows\System32\wmdrmsdk.dll
2015-03-11 09:19:54	5B0C6247027FCF5A2E2F150E298D2FFA	3209728	----a-w-	C:\Windows\System32\mf.dll
2015-03-11 09:19:53	BB73C907D1BD437B6C30F2C23BB089FC	406016	----a-w-	C:\Windows\System32\drmmgrtn.dll
2015-03-11 09:19:53	74264B7F57A16D25CB581C07964D324A	1174528	----a-w-	C:\Windows\System32\crypt32.dll
2015-03-11 09:19:52	6C2D4DC5D2E271F4AE4016FD4587B0B2	3973048	----a-w-	C:\Windows\System32\ntkrnlpa.exe
2015-03-11 09:19:52	2CFE69A0A8AFDA8DB9A773D728000BB7	3917760	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-03-11 09:19:51	B7D2BB84C590F0AE9DA51DBB065A780E	1005056	----a-w-	C:\Windows\System32\cryptui.dll
2015-03-11 09:19:51	96DB6A923DEDB58FC7CBBF5CFF73314D	1329664	----a-w-	C:\Windows\System32\quartz.dll
2015-03-11 09:19:51	2D4814D567E5A85C473228BA772A7AFB	489984	----a-w-	C:\Windows\System32\evr.dll
2015-03-11 09:19:50	C5667EE72D7364BE81516C0707FEF724	354816	----a-w-	C:\Windows\System32\mfplat.dll
2015-03-11 09:19:50	52954BE460EC6C54C0ACB2B3B126FFC6	157184	----a-w-	C:\Windows\System32\pcasvc.dll
2015-03-11 09:19:50	18F1BBB37F1BC76332B5C1B5FA5ED310	455752	----a-w-	C:\Windows\System32\winresume.exe
2015-03-11 09:19:49	B54FD1991E659FD61EF1D34EC27AAECD	81408	----a-w-	C:\Windows\System32\cryptsp.dll
2015-03-11 09:19:48	FFCFCDFD8D17DC62F168B50E92143EFA	400896	----a-w-	C:\Windows\System32\srcore.dll
2015-03-11 09:19:48	D5EC42139D6A6158CF188975C50B6A60	179200	----a-w-	C:\Windows\System32\wintrust.dll
2015-03-11 09:19:48	D31FB78F37F075FA9605D7ED9B2070D2	409272	----a-w-	C:\Windows\System32\ci.dll
2015-03-11 09:19:48	98C1191C862B44567FCF3C18BAEE859E	519680	----a-w-	C:\Windows\System32\qdvd.dll
2015-03-11 09:19:48	7DD3B3971D45197FA059C7CF55387BE8	521384	----a-w-	C:\Windows\System32\winload.exe
2015-03-11 09:19:48	3BAA4BAE71460C5CEB40D5E9339A61BC	103936	----a-w-	C:\Windows\System32\cryptnet.dll
2015-03-11 09:19:48	320A8699369C43CF53B2DB4538D17C52	504320	----a-w-	C:\Windows\System32\msscp.dll
2015-03-11 09:19:48	055C6BD2B4216C69302807A44A2C2B46	262656	----a-w-	C:\Windows\System32\rstrui.exe
2015-03-11 09:19:47	FCD5137A10C8943B34C9BE891C50159F	6656	----a-w-	C:\Windows\System32\apisetschema.dll
2015-03-11 09:19:47	F5090F8FA6757C58E17BAEAA86093636	27648	----a-w-	C:\Windows\System32\appidsvc.dll
2015-03-11 09:19:47	F0C8038C9336EE6C3244CF431AB362BE	8704	----a-w-	C:\Windows\System32\pcaevts.dll
2015-03-11 09:19:47	E0AB9CA912398BE1AAD14FF7AD75C397	50688	----a-w-	C:\Windows\System32\appidapi.dll
2015-03-11 09:19:47	D3916F83AC8F2314262387A2E16C6578	4096	----a-w-	C:\Windows\System32\msdxm.ocx
2015-03-11 09:19:47	D3916F83AC8F2314262387A2E16C6578	4096	----a-w-	C:\Windows\System32\dxmasf.dll
2015-03-11 09:19:47	CFE8B425822E478B530A590896ECF091	100864	----a-w-	C:\Windows\System32\audiodg.exe
2015-03-11 09:19:47	C45E651DD6C0D7C1D92B338CE9331EF3	28160	----a-w-	C:\Windows\System32\pcadm.dll
2015-03-11 09:19:47	C1619A13B10CAC5038BF7129F57D8DE3	475136	----a-w-	C:\Windows\System32\audiosrv.dll
2015-03-11 09:19:47	AF47EAA4ADDA9AA221FB7647EE22BF53	103424	----a-w-	C:\Windows\System32\mfps.dll
2015-03-11 09:19:47	A6AEADE370FFE3F37554D8AAA3E4B873	8192	----a-w-	C:\Windows\System32\pcalua.exe
2015-03-11 09:19:47	A56F4029FDCF4F817E78953CDA953E28	442880	----a-w-	C:\Windows\System32\AUDIOKSE.dll
2015-03-11 09:19:47	A4A2EFB40015B76467F09E6DC388BC26	43008	----a-w-	C:\Windows\System32\srclient.dll
2015-03-11 09:19:47	8B07DBA0D77346545C6359AC67DCB980	8192	----a-w-	C:\Windows\System32\spwmp.dll
2015-03-11 09:19:47	7847865A78B7FB9221D9DFB35A7B8ECD	38912	----a-w-	C:\Windows\System32\csrsrv.dll
2015-03-11 09:19:47	70E96EBE87A38857619671FCB9C8EC7B	265216	----a-w-	C:\Windows\System32\msnetobj.dll
2015-03-11 09:19:47	6EBC44F464A00EF4E4F0DBBB6BD3FF14	275968	----a-w-	C:\Windows\System32\EncDump.dll
2015-03-11 09:19:47	6C620B9DDB9EB0F0D92E9607D76B3D3D	50176	----a-w-	C:\Windows\System32\setbcdlocale.dll
2015-03-11 09:19:47	6B1EB62B8DD3F439F972BE14D7A34FC8	10752	----a-w-	C:\Windows\System32\msmmsp.dll
2015-03-11 09:19:47	69B4CE000298A9253EB206C3AC1360F5	16896	----a-w-	C:\Windows\System32\appidcertstorecheck.exe
2015-03-11 09:19:47	50B8937A81360D16A5C772302BD32CFE	195584	----a-w-	C:\Windows\System32\AudioSes.dll
2015-03-11 09:19:47	49F4EE8DF752CFA159B99046CD1FDD2B	23040	----a-w-	C:\Windows\System32\mfpmp.exe
2015-03-11 09:19:47	49474B3E37969AF4B5C076F42B623AFF	143872	----a-w-	C:\Windows\System32\cryptsvc.dll
2015-03-11 09:19:47	3245B3D9A1F36C8A80900003B22F9FA4	96768	----a-w-	C:\Windows\System32\appidpolicyconverter.exe
2015-03-11 09:19:47	2D21189858856316D55EAD55DF4964C2	374784	----a-w-	C:\Windows\System32\AudioEng.dll
2015-03-11 09:19:47	10495B2681F3E271CB93608D853A0CF0	9728	----a-w-	C:\Windows\System32\pcawrk.exe
2015-03-11 09:19:47	08FF727297A97907AADED4BA86CF44E9	50176	----a-w-	C:\Windows\System32\rrinstaller.exe
2015-03-11 09:19:47	01C6C743FE49D0FB3F0A1391FEF1DEB3	69632	----a-w-	C:\Windows\System32\smss.exe
2015-03-11 09:19:46	7C1CADCA0E674212412559B0EAD0919A	12625408	----a-w-	C:\Windows\System32\wmploc.DLL
2015-03-11 09:19:46	2F3CE58D8C276570EEB69C99CFBAFD58	2048	----a-w-	C:\Windows\System32\mferror.dll
2015-03-08 11:59:26	DDE994E9159497D0D5AB2CDF66D1EAD6	76800	----a-w-	C:\Windows\System32\wdi.dll
2015-03-08 11:59:26	A580CFFC56EE72550B803AED2EFD5442	27136	----a-w-	C:\Windows\System32\powertracker.dll
2015-03-08 11:59:26	1115D5A98043254A0E787F888FC273C0	635904	----a-w-	C:\Windows\System32\perftrack.dll
====== C:\Windows\system32\drivers =====
2015-03-11 09:20:29	9EED5E0B7BF784C491C2289A09920BDA	137656	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-03-11 09:20:29	4DAC97CF81FAE4B2988AEF0DF40D04AE	67512	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-03-11 09:19:53	AEBC369F7DC72AB3F5B9BDF34FA0D43F	593920	----a-w-	C:\Windows\System32\drivers\PEAuth.sys
2015-03-11 09:19:51	3051724F223EA48968B19567DE2A81F4	370488	----a-w-	C:\Windows\System32\drivers\cng.sys
2015-03-11 09:19:49	644905A19D0F37F2233DFCE53BC4BC19	78784	----a-w-	C:\Windows\System32\drivers\mountmgr.sys
2015-03-11 09:19:47	81F97D8F8B3FB94A451CC6F7CF8B2965	50176	----a-w-	C:\Windows\System32\drivers\appid.sys
2015-03-10 20:35:55	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-03-08 15:12:17	--------	d-----w-	C:\Program Files\trend micro
======= C: =====
====== C:\Users\Carl\AppData\Roaming ======
2015-03-12 09:05:00	407AAB8C27CF7081EECE071C90A65B83	17	----a-w-	C:\Users\Carl\AppData\Local\resmon.resmoncfg
2015-03-09 12:55:48	--------	d-----w-	C:\Users\Carl\AppData\Local\Acer PowerSaver
====== C:\Users\Carl ======
2015-03-08 15:15:06	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Carl\Downloads\RSIT.exe

====== C: exe-files ==
2015-03-12 12:22:07	3304FDFB4F7424B385C308B812FB019C	71680	----a-w-	C:\Users\Carl\AppData\Local\Temp\ZAScan.exe
2015-03-11 09:20:43	97F98251AC65657A07673E64AA31519F	684544	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-03-11 09:20:43	87E5DC0BADC63A6E92A3C7A896B8C15E	102912	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-03-11 09:20:42	B5F3C8A860C39AEC1356A708C2A701A1	221184	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-03-11 09:20:42	988AB676FBF4484508BA134CAAB711EB	115712	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-03-11 09:20:42	59788C115F8362C5DBBAD68B54AD6357	667648	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-03-11 09:20:40	5CC34CBBBD90696FD82DB670C38B13FD	469504	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-03-11 09:20:39	E931C01E7DD7CEC0BD26CD1B9DA967A3	815272	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-03-11 09:20:28	F65F365AC0D1657917EFDB52445C848B	22528	----a-w-	C:\Windows\System32\lsass.exe
2015-03-11 09:20:28	5E76C26CAE2810EA71C161ED9A2CF0D1	50176	----a-w-	C:\Windows\System32\auditpol.exe
2015-03-11 09:19:52	6C2D4DC5D2E271F4AE4016FD4587B0B2	3973048	----a-w-	C:\Windows\System32\ntkrnlpa.exe
2015-03-11 09:19:52	2CFE69A0A8AFDA8DB9A773D728000BB7	3917760	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-03-11 09:19:50	18F1BBB37F1BC76332B5C1B5FA5ED310	455752	----a-w-	C:\Windows\System32\winresume.exe
2015-03-11 09:19:50	18F1BBB37F1BC76332B5C1B5FA5ED310	455752	----a-w-	C:\Windows\System32\Boot\winresume.exe
2015-03-11 09:19:48	7DD3B3971D45197FA059C7CF55387BE8	521384	----a-w-	C:\Windows\System32\winload.exe
2015-03-11 09:19:48	7DD3B3971D45197FA059C7CF55387BE8	521384	----a-w-	C:\Windows\System32\Boot\winload.exe
2015-03-11 09:19:48	055C6BD2B4216C69302807A44A2C2B46	262656	----a-w-	C:\Windows\System32\rstrui.exe
2015-03-11 09:19:47	E357783E1561251E25513247B534D423	102400	----a-w-	C:\Program Files\Windows Media Player\wmpshare.exe
2015-03-11 09:19:47	CFE8B425822E478B530A590896ECF091	100864	----a-w-	C:\Windows\System32\audiodg.exe
2015-03-11 09:19:47	A6AEADE370FFE3F37554D8AAA3E4B873	8192	----a-w-	C:\Windows\System32\pcalua.exe
2015-03-11 09:19:47	69B4CE000298A9253EB206C3AC1360F5	16896	----a-w-	C:\Windows\System32\appidcertstorecheck.exe
2015-03-11 09:19:47	49F4EE8DF752CFA159B99046CD1FDD2B	23040	----a-w-	C:\Windows\System32\mfpmp.exe
2015-03-11 09:19:47	3CB513A4E2D3666282725B09FF66D2B1	164864	----a-w-	C:\Program Files\Windows Media Player\wmplayer.exe
2015-03-11 09:19:47	3245B3D9A1F36C8A80900003B22F9FA4	96768	----a-w-	C:\Windows\System32\appidpolicyconverter.exe
2015-03-11 09:19:47	201283E93160A0EBBA8CC9F3F2388FDA	101888	----a-w-	C:\Program Files\Windows Media Player\wmpconfig.exe
2015-03-11 09:19:47	10495B2681F3E271CB93608D853A0CF0	9728	----a-w-	C:\Windows\System32\pcawrk.exe
2015-03-11 09:19:47	08FF727297A97907AADED4BA86CF44E9	50176	----a-w-	C:\Windows\System32\rrinstaller.exe
2015-03-11 09:19:47	01C6C743FE49D0FB3F0A1391FEF1DEB3	69632	----a-w-	C:\Windows\System32\smss.exe
2015-03-08 15:15:06	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Carl\Downloads\RSIT.exe
2015-03-08 15:12:18	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Carl.exe
=== C: other files ==
2015-03-12 12:21:08	27BC6F317E15BAFA939958D47ACEB309	2718608	----a-w-	C:\Users\Carl\Desktop\Z-analyse.zip
2015-03-11 09:20:46	BA3CB7D5C1DCF17E6FFFB28DB950841A	2381312	----a-w-	C:\Windows\System32\win32k.sys
2015-03-11 09:20:29	9EED5E0B7BF784C491C2289A09920BDA	137656	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-03-11 09:20:29	4DAC97CF81FAE4B2988AEF0DF40D04AE	67512	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-03-11 09:19:53	AEBC369F7DC72AB3F5B9BDF34FA0D43F	593920	----a-w-	C:\Windows\System32\drivers\PEAuth.sys
2015-03-11 09:19:51	3051724F223EA48968B19567DE2A81F4	370488	----a-w-	C:\Windows\System32\drivers\cng.sys
2015-03-11 09:19:49	644905A19D0F37F2233DFCE53BC4BC19	78784	----a-w-	C:\Windows\System32\drivers\mountmgr.sys
2015-03-11 09:19:47	81F97D8F8B3FB94A451CC6F7CF8B2965	50176	----a-w-	C:\Windows\System32\drivers\appid.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-701905407-302059568-1861994296-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"VoipConnect"="C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe -nosplash -minimized"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"
"EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIJAE.EXE /EPT EPLTarget\P0000000000000000 /M XP-800 Series"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BackupManagerTray"="C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe -h -k"
"AutoLockProcess"="C:\Program Files\Acer\Empowering Technology\eLock\autolockprocess\autolockprocess.exe"
"Acer PowerSaver"="C:\Program Files\Acer\Acer PowerSaver\PowerSaverTray.exe"
"NortonOnlineBackupReminder"="C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe UNATTENDED"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s"
"EmbassySecurityCheck"=";C:\Program Files\Wave Systems Corp\EMBASSY Security Setup\EMBASSYSecurityCheck.exe"
"RemoteControl8"="C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"VoipConnect"="C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe -nosplash -minimized"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"
"EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIJAE.EXE /EPT EPLTarget\P0000000000000000 /M XP-800 Series"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acer SmartBoot]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Acer SmartBoot"
"hkey"="HKLM"
"command"="C:\\Program Files\\Acer\\Acer SmartBoot\\ASLTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner Monitoring"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\CCleaner\\CCleaner.exe\" /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\VoipBuster]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="VoipBuster"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\VoipBuster.com\\VoipBuster\\voipbuster.exe\" -nosplash -minimized"


==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [23-01-2015 15:01]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\system32\tasks\CleanerPro_Popup" [C:\Program Files\Cleaner Pro\Splash.exe]
"C:\Windows\system32\tasks\CleanerPro_Start" [C:\Program Files\Cleaner Pro\CleanerPro.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\McQcModifier-5c47-a7b0" [C:\ProgramData\McQcModifier-5c47-a7b0\McQcModifier-5c47-a7b0.cmd]
"C:\Windows\system32\tasks\Norton WSC Integration" ["C:\Program Files\Norton 360\Engine\21.6.0.32\WSCStub.exe"]
"C:\Windows\system32\tasks\Norton 360\Norton Error Analyzer" [C:\Program Files\Norton 360\Engine\21.6.0.32\SymErr.exe]
"C:\Windows\system32\tasks\Norton 360\Norton Error Processor" [C:\Program Files\Norton 360\Engine\21.6.0.32\SymErr.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn" [12-03-2015 10:53]

==== Chromium Look ======================

Google Chrome Version: 40.0.2214.115 (Possible outdated, latest Stable version: 41.0.2272.89)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
iikflkcanblccfahdhdonehdalibjnif - No path found[]
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx[20-09-2014 09:52]

Google Docs - Carl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Carl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Carl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Carl\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Norton Identity Safe - Carl\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif
Google Wallet - Carl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Carl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"
"Default_Page_URL"="http://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=veriton_m275&r=17050115r806pe415u245z4654r44r"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{67A2568C-7A0A-4EED-AECC-B5405DE63B64}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google  Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_nlNL624"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"

==== HijackThis Entries ======================

O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [AutoLockProcess] C:\Program Files\Acer\Empowering Technology\eLock\autolockprocess\autolockprocess.exe
O4 - HKLM\..\Run: [Acer PowerSaver] C:\Program Files\Acer\Acer PowerSaver\PowerSaverTray.exe
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [EmbassySecurityCheck] ";C:\Program Files\Wave Systems Corp\EMBASSY Security Setup\EMBASSYSecurityCheck.exe"
O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [VoipConnect] "C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe" -nosplash -minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIJAE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-800 Series"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Acer SmartBoot Service (ASLSvc) - Acer Incorporated - C:\Program Files\Acer\Acer SmartBoot\ASLSvc.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Program Files\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files\Acer\Registration\GregHSRW.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on do 12-03-2015 at 13:26:13,26 ======================