ComboFix 15-06-22.01 - Sijbren 22-06-2015  15:39:58.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.31.1043.18.8128.4756 [GMT 2:00]
Gestart vanuit: e:\downloads hdd\ComboFix.exe
AV: BullGuard Antivirus *Disabled/Outdated* {EDBB5818-2352-E06B-028A-4E6873B92CC5}
FW: BullGuard Firewall *Enabled* {D580D93D-693D-E133-29D5-E75D8D6A6BBE}
SP: BullGuard Antispyware *Disabled/Outdated* {56DAB9FC-0568-EFE5-383A-751A083E6678}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Nieuw herstelpunt werd aangemaakt
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
E:\install.exe
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2015-05-22 to 2015-06-22  ))))))))))))))))))))))))))))))
.
.
2015-06-22 13:42 . 2015-06-22 13:42	--------	d-----w-	c:\users\Default\AppData\Local\temp
2015-06-16 16:10 . 2015-06-17 14:13	--------	d-----w-	C:\AdwCleaner
2015-06-15 16:09 . 2015-06-15 15:59	24064	----a-w-	c:\windows\zoek-delete.exe
2015-06-15 15:58 . 2015-06-15 16:08	--------	d-----w-	C:\zoek_backup
2015-06-15 12:54 . 2015-06-15 12:54	61736	----a-w-	c:\windows\SysWow64\BGLsp.dll
2015-06-15 12:54 . 2015-06-15 12:54	76584	----a-w-	c:\windows\system32\BGLsp.dll
2015-06-15 12:54 . 2015-06-15 12:54	169672	----a-w-	c:\windows\system32\BgGamingMonitor.dll
2015-06-15 12:54 . 2015-06-15 12:54	148024	----a-w-	c:\windows\SysWow64\BgGamingMonitor.dll
2015-06-14 18:27 . 2015-06-14 18:27	--------	d-----w-	C:\rsit
2015-06-14 18:27 . 2015-06-14 18:27	--------	d-----w-	c:\program files\trend micro
2015-06-14 15:53 . 2015-06-21 18:22	--------	d-----w-	c:\program files (x86)\Heroes of the Storm
2015-06-14 15:51 . 2015-06-21 10:36	--------	d-----w-	c:\program files (x86)\Battle.net
2015-06-14 15:51 . 2015-06-14 16:01	--------	d-----w-	c:\programdata\Blizzard Entertainment
2015-06-14 15:49 . 2015-06-14 15:49	--------	d-----w-	c:\programdata\Battle.net
2015-06-14 14:17 . 2015-06-14 14:17	--------	d-----w-	c:\program files (x86)\VideoLAN
2015-06-10 15:17 . 2015-06-10 15:17	--------	d-----w-	C:\2-click run
2015-06-09 14:12 . 2015-05-28 03:52	571024	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2015-06-09 14:09 . 2015-05-23 01:47	1320304	----a-w-	c:\windows\SysWow64\nvspcap.dll
2015-06-09 14:09 . 2015-05-23 01:47	1316000	----a-w-	c:\windows\SysWow64\nvspbridge.dll
2015-06-09 14:09 . 2015-05-23 01:47	1756424	----a-w-	c:\windows\system32\nvspbridge64.dll
2015-06-09 14:09 . 2015-05-23 01:47	1571696	----a-w-	c:\windows\system32\nvspcap64.dll
2015-06-09 14:09 . 2015-06-09 14:09	--------	d-----w-	c:\programdata\boost_interprocess
2015-06-09 14:09 . 2015-04-03 13:21	52880	----a-w-	c:\windows\system32\nvaudcap64v.dll
2015-06-09 14:09 . 2015-04-03 13:21	48784	----a-w-	c:\windows\SysWow64\nvaudcap32v.dll
2015-06-09 14:09 . 2015-04-03 13:21	38032	----a-w-	c:\windows\system32\drivers\nvvad64v.sys
2015-06-09 14:01 . 2015-06-09 14:01	--------	d-----w-	c:\program files (x86)\NirSoft
2015-06-08 17:09 . 2015-06-08 17:09	--------	d-----w-	c:\programdata\McAfee
2015-06-08 17:09 . 2015-06-08 17:09	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2015-06-08 12:40 . 2015-06-08 12:40	--------	d-----w-	c:\program files (x86)\Ubisoft
2015-06-08 11:43 . 2015-06-08 11:43	--------	d-----w-	c:\programdata\Nexon
2015-06-07 17:01 . 2015-06-07 17:01	--------	d-----w-	c:\program files (x86)\NEXON
2015-06-07 15:31 . 2011-11-28 12:51	33872	----a-w-	c:\windows\system32\drivers\anvsnddrv.sys
2015-06-07 15:31 . 2015-06-07 15:31	--------	d-----w-	c:\program files (x86)\Anvsoft
2015-06-07 14:50 . 2015-06-07 14:50	--------	d-----w-	c:\program files (x86)\Common Files\Aimersoft
2015-06-07 14:50 . 2015-02-27 12:38	721263	----a-w-	c:\windows\SysWow64\AiCM64.dll
2015-06-07 14:50 . 2015-06-07 15:30	--------	d-----w-	c:\programdata\Aimersoft Video Converter Ultimate
2015-06-07 14:50 . 2015-06-07 15:30	--------	d-----w-	c:\programdata\Aimersoft
2015-06-07 14:50 . 2015-06-07 14:50	--------	d-----w-	c:\program files (x86)\Aimersoft
2015-06-05 16:48 . 2015-06-05 16:48	--------	d-----w-	c:\program files (x86)\MakeMKV
2015-06-05 16:46 . 2015-06-05 16:49	--------	d-----w-	c:\program files (x86)\TeamViewer
2015-06-02 16:42 . 2015-06-02 16:42	--------	d-----w-	c:\program files\Speccy
2015-06-01 18:07 . 2005-05-26 13:34	3767504	----a-w-	c:\windows\system32\d3dx9_26.dll
2015-06-01 18:07 . 2005-05-26 13:34	2297552	----a-w-	c:\windows\SysWow64\d3dx9_26.dll
2015-06-01 18:07 . 2005-03-18 15:19	3823312	----a-w-	c:\windows\system32\d3dx9_25.dll
2015-06-01 18:07 . 2005-02-05 17:45	3544272	----a-w-	c:\windows\system32\d3dx9_24.dll
2015-06-01 16:51 . 2015-06-01 16:51	--------	d-----w-	c:\program files\CAD Accent
2015-06-01 16:49 . 2015-06-01 16:49	--------	d-----w-	c:\programdata\InfraCAD
2015-06-01 16:47 . 2015-06-01 16:47	--------	d-----w-	c:\programdata\FLEXnet
2015-06-01 16:42 . 2009-09-24 10:55	26824	----a-w-	c:\windows\system32\novamnk6.dll
2015-06-01 16:42 . 2009-09-24 10:55	19656	----a-w-	c:\windows\system32\novamik6.dll
2015-06-01 16:40 . 2015-06-01 16:40	--------	d-----w-	c:\programdata\FARO
2015-06-01 16:38 . 2015-06-01 16:38	--------	d-----w-	C:\Civil 3D Projects
2015-06-01 16:38 . 2015-06-01 16:38	--------	d-----w-	C:\Civil 3D Project Templates
2015-06-01 16:31 . 2015-06-01 16:31	--------	d-----w-	c:\program files\Common Files\Macrovision Shared
2015-06-01 16:26 . 2015-06-01 16:27	--------	d-----w-	C:\Autodesk
2015-06-01 15:42 . 2015-06-01 16:44	--------	d-----w-	c:\program files (x86)\Autodesk
2015-06-01 15:42 . 2015-06-01 15:42	--------	d-----w-	c:\program files (x86)\AutoCAD 2016
2015-06-01 15:39 . 2015-06-01 16:45	--------	d-----w-	c:\program files\Common Files\Autodesk Shared
2015-06-01 15:39 . 2015-06-01 16:44	--------	d-----w-	c:\program files\Autodesk
2015-06-01 15:39 . 2015-06-01 16:44	--------	d-----w-	c:\program files (x86)\Common Files\Autodesk Shared
2015-06-01 14:42 . 2015-06-01 16:55	--------	d-----w-	c:\programdata\Autodesk
2015-06-01 14:05 . 2015-01-31 03:48	3179520	----a-w-	c:\windows\system32\rdpcorets.dll
2015-06-01 14:05 . 2015-01-31 03:48	16384	----a-w-	c:\windows\system32\RdpGroupPolicyExtension.dll
2015-06-01 14:05 . 2015-01-30 23:56	243200	----a-w-	c:\windows\system32\rdpudd.dll
2015-06-01 14:05 . 2014-12-11 17:47	87040	----a-w-	c:\windows\system32\TSWbPrxy.exe
2015-06-01 14:05 . 2014-09-05 02:11	6584320	----a-w-	c:\windows\system32\mstscax.dll
2015-06-01 14:05 . 2014-09-05 01:52	5703168	----a-w-	c:\windows\SysWow64\mstscax.dll
2015-06-01 13:55 . 2015-06-01 13:55	--------	d-----w-	c:\program files (x86)\DaumBack
2015-05-31 18:14 . 2015-05-31 18:14	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2015-05-31 18:14 . 2015-05-31 18:14	--------	d-----r-	c:\program files (x86)\Skype
2015-05-31 18:14 . 2015-06-01 13:54	--------	d-----w-	c:\program files (x86)\uTorrent
2015-05-31 18:13 . 2015-05-31 18:13	--------	d-----w-	c:\programdata\Skype
2015-05-31 18:13 . 2015-06-01 13:54	--------	d-----w-	c:\program files (x86)\AIMP3
2015-05-31 18:12 . 2015-05-31 18:12	--------	d-----w-	c:\program files\7-Zip
2015-05-31 18:12 . 2015-05-31 18:12	--------	d-----w-	c:\program files (x86)\Common Files\Java
2015-05-31 18:12 . 2015-05-31 18:12	111016	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2015-05-31 18:12 . 2015-05-31 18:12	--------	d-----w-	c:\program files\Java
2015-05-31 18:12 . 2015-05-31 18:12	98216	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-05-31 18:12 . 2015-05-31 18:12	--------	d-----w-	c:\program files (x86)\Java
2015-05-31 18:11 . 2015-05-31 18:11	--------	d-----w-	c:\program files\Microsoft Silverlight
2015-05-31 18:11 . 2015-05-31 18:11	--------	d-----w-	c:\program files (x86)\Microsoft Silverlight
2015-05-31 18:06 . 2015-05-31 18:06	--------	d-----w-	c:\windows\SysWow64\Adobe
2015-05-31 18:06 . 2015-05-31 18:06	--------	d-----w-	c:\windows\SysWow64\Macromed
2015-05-31 18:06 . 2015-04-14 10:28	778416	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2015-05-31 18:06 . 2015-04-14 10:28	142512	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-05-31 18:06 . 2015-05-31 18:06	--------	d-----w-	c:\windows\system32\Macromed
2015-05-31 18:06 . 2015-05-31 18:06	--------	d-----w-	c:\programdata\AomeiBR
2015-05-31 18:05 . 2015-02-25 22:00	30648	----a-w-	c:\windows\system32\ambakdrv.sys
2015-05-31 18:05 . 2015-02-25 22:00	17848	----a-w-	c:\windows\system32\amwrtdrv.sys
2015-05-31 18:05 . 2015-02-25 22:00	151480	----a-w-	c:\windows\system32\ammntdrv.sys
2015-05-31 18:05 . 2015-05-31 18:05	--------	d-----w-	c:\windows\SysWow64\Backup
2015-05-31 18:05 . 2015-05-31 18:05	--------	d-----w-	c:\windows\system32\Backup
2015-05-31 18:05 . 2015-05-31 18:05	--------	d-----w-	c:\program files\SAM CoDeC Pack
2015-05-31 18:05 . 2015-05-31 18:05	--------	d-----w-	c:\program files (x86)\SAM CoDeC Pack
2015-05-31 18:05 . 2015-03-23 16:34	800016	----a-w-	c:\windows\system32\drivers\iusb3xhc.sys
2015-05-31 18:02 . 2014-01-12 09:05	86016	----a-w-	c:\windows\system32\drivers\nuvserial.sys
2015-05-31 18:02 . 2014-01-12 09:05	23552	----a-w-	c:\windows\system32\drivers\nuvserenum.sys
2015-05-31 18:02 . 2015-01-27 18:33	30960	----a-w-	c:\windows\system32\drivers\iaStorF.sys
2015-05-31 18:02 . 2015-01-27 18:33	1399536	----a-w-	c:\windows\system32\drivers\iaStorA.sys
2015-05-31 18:02 . 2014-02-03 07:46	44744	----a-w-	c:\windows\system32\drivers\ISCTD.sys
2015-05-31 18:02 . 2009-09-09 09:23	51712	----a-w-	c:\windows\system32\drivers\flashud.sys
2015-05-31 17:08 . 2015-05-31 17:08	--------	d-----w-	c:\program files\Killer Networking
2015-05-31 16:49 . 2015-05-31 16:49	--------	d-----w-	C:\uninstall
2015-05-31 16:49 . 2015-06-01 15:39	--------	d-----w-	c:\program files\Microsoft SQL Server Compact Edition
2015-05-31 16:49 . 2015-05-31 16:49	--------	d-----w-	c:\program files\Microsoft Synchronization Services
2015-05-31 16:49 . 2015-06-01 15:39	--------	d-----w-	c:\program files (x86)\Microsoft SQL Server Compact Edition
2015-05-31 16:49 . 2015-05-31 16:49	--------	d-----w-	c:\program files (x86)\Microsoft Synchronization Services
2015-05-31 16:30 . 2015-05-31 16:30	--------	d-----w-	c:\programdata\Oracle
2015-05-31 14:01 . 2015-05-31 14:01	30264	----a-w-	c:\windows\system32\drivers\dtlitescsibus.sys
2015-05-31 14:01 . 2015-05-31 14:01	--------	d-----w-	c:\program files\DAEMON Tools Lite
2015-05-31 14:01 . 2015-05-31 14:01	--------	d-----w-	c:\programdata\DAEMON Tools Lite
2015-05-31 13:47 . 2015-06-14 18:45	--------	d-----w-	c:\programdata\PMS
2015-05-31 13:47 . 2015-05-31 13:47	--------	d-----w-	c:\program files (x86)\PS3 Media Server
2015-05-31 13:36 . 2015-05-31 13:36	--------	d-----w-	c:\program files (x86)\GunzOT
2015-05-31 13:20 . 2015-06-01 18:28	--------	d-----w-	c:\programdata\Electronic Arts
2015-05-31 13:14 . 2015-06-22 13:37	--------	d-----w-	c:\programdata\Origin
2015-05-31 12:52 . 2015-05-31 12:52	--------	d-----w-	c:\program files\Common Files\BullGuard Ltd
2015-05-31 12:52 . 2015-05-31 12:52	--------	d-----w-	c:\program files\BullGuard Ltd
2015-05-31 12:51 . 2015-06-22 13:42	--------	d-----w-	c:\programdata\BullGuard
2015-05-31 12:50 . 2015-06-07 11:34	--------	d-----w-	c:\program files (x86)\Common Files\Steam
2015-05-31 12:43 . 2015-05-31 12:43	--------	d-s---w-	c:\windows\system32\GWX
2015-05-31 12:43 . 2015-05-31 12:43	--------	d-s---w-	c:\windows\SysWow64\GWX
2015-05-31 12:39 . 2014-06-27 02:08	2777088	----a-w-	c:\windows\system32\msmpeg2vdec.dll
2015-05-31 12:39 . 2014-06-27 01:45	2285056	----a-w-	c:\windows\SysWow64\msmpeg2vdec.dll
2015-05-31 12:37 . 2011-02-25 06:19	2871808	----a-w-	c:\windows\explorer.exe
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-06-15 12:54 . 2015-02-25 11:21	52912	----a-r-	c:\windows\system32\drivers\afw.sys
2015-06-15 12:54 . 2015-02-25 11:21	465072	----a-r-	c:\windows\system32\drivers\afwcore.sys
2015-05-28 07:04 . 2015-02-19 23:18	17486856	----a-w-	c:\windows\system32\nvwgf2umx.dll
2015-05-28 07:04 . 2015-02-19 23:18	1558848	----a-w-	c:\windows\system32\nvhdagenco6420103.dll
2015-05-28 07:04 . 2015-02-19 23:18	12852152	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2015-05-28 07:04 . 2015-02-19 23:18	3379680	----a-w-	c:\windows\system32\nvapi64.dll
2015-05-25 18:01 . 2015-06-10 15:09	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2015-05-06 11:37 . 2015-05-06 11:37	330888	----a-w-	c:\windows\system32\drivers\NSKernel.sys
2015-05-06 11:37 . 2015-05-06 11:37	27544	----a-w-	c:\windows\system32\drivers\NSNetmon.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="e:\program files\Steam\steam.exe" [2015-06-04 2892992]
"EADM"="e:\program files (x86)\Origin\Origin.exe" [2015-06-02 3632472]
"DAEMON Tools Lite Automount"="c:\program files\DAEMON Tools Lite\DTAgent.exe" [2015-05-21 4471536]
"Akamai NetSession Interface"="c:\users\Sijbren\AppData\Local\Akamai\netsession_win.exe" [2014-10-29 4673432]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2015-01-27 1310088]
"uTorrent"="c:\users\Sijbren\AppData\Roaming\uTorrent\uTorrent.exe" [2015-05-31 1998432]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema 2"="c:\program files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" [2014-05-29 1442304]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-10 90112]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2014-09-03 134616]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2014-06-27 292848]
"Super Charger"="c:\program files (x86)\MSI\Super Charger\Super Charger.exe" [2014-07-22 1014736]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2015-04-10 335232]
"ADSKAppManager"="c:\program files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" [2014-12-05 493960]
"Aimersoft Helper Compact.exe"="c:\program files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe" [2014-10-31 2066432]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2015-01-27 1310088]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 intelsba;Intel(R) Small Business Advantage;c:\program files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe;c:\program files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [x]
R3 MSICDSetup;MSICDSetup;e:\cdriver64.sys;e:\CDriver64.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;e:\ntiolib_x64.sys;e:\NTIOLib_X64.sys [x]
R3 Origin Client Service;Origin Client Service;e:\program files (x86)\Origin\OriginClientService.exe;e:\program files (x86)\Origin\OriginClientService.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 AFW;Agnitum Firewall Driver;c:\windows\system32\DRIVERS\afw.sys;c:\windows\SYSNATIVE\DRIVERS\afw.sys [x]
S1 BdAgent;BullGuard Security Agent;c:\windows\system32\DRIVERS\BdAgent.sys;c:\windows\SYSNATIVE\DRIVERS\BdAgent.sys [x]
S1 BdSpy;BdSpy;c:\windows\system32\drivers\BdSpy.sys;c:\windows\SYSNATIVE\drivers\BdSpy.sys [x]
S1 NovaShieldFilterDriver;NovaShieldFilterDriver;c:\windows\system32\DRIVERS\NSKernel.sys;c:\windows\SYSNATIVE\DRIVERS\NSKernel.sys [x]
S1 NovaShieldTDIDriver;NovaShieldTDIDriver;c:\windows\system32\DRIVERS\NSNetmon.sys;c:\windows\SYSNATIVE\DRIVERS\NSNetmon.sys [x]
S2 AdAppMgrSvc;Autodesk Application Manager Service;c:\program files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe ;c:\program files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe  [x]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
S2 BsBackup;BullGuard backup service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsBhvScan;BullGuard Behavioural Detection;c:\program files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe;c:\program files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [x]
S2 BsCache;BullGuard cache service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsFileScan;BullGuard on-access service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsFire;BullGuard firewall service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsMailProxy;BullGuard e-mail monitoring service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsMain;BullGuard Main Service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsScanner;BullGuard scanning service;c:\program files\BullGuard Ltd\BullGuard\BullGuardScanner.exe;c:\program files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [x]
S2 BsUpdate;BullGuard update service;c:\program files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe;c:\program files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 iocbios2;iocbios2;c:\program files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys;c:\program files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super Charger\ChargeService.exe;c:\program files (x86)\MSI\Super Charger\ChargeService.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 XTU3SERVICE;Intel(R) Extreme Tuning Utility Service;c:\program files (x86)\Intel\Extreme Tuning Utility\XtuService.exe;c:\program files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [x]
S3 AcpiCtlDrv;AcpiCtlDrv;c:\windows\system32\DRIVERS\AcpiCtlDrv.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiCtlDrv.sys [x]
S3 afwcore;afwcore;c:\windows\system32\DRIVERS\afwcore.sys;c:\windows\SYSNATIVE\DRIVERS\afwcore.sys [x]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys;c:\windows\SYSNATIVE\drivers\anvsnddrv.sys [x]
S3 BdNet;BdNet;c:\windows\system32\DRIVERS\BdNet.sys;c:\windows\SYSNATIVE\DRIVERS\BdNet.sys [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
S3 int0800;Intel 28F320C3 Flash Update Device Driver v6.4;c:\windows\system32\DRIVERS\flashud.sys;c:\windows\SYSNATIVE\DRIVERS\flashud.sys [x]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD.sys [x]
S3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 Ke2200;NDIS Miniport Driver for Killer e2201/e2202 PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\e22w7x64.sys;c:\windows\SYSNATIVE\DRIVERS\e22w7x64.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-30 17:56	1210320	----a-w-	c:\program files (x86)\Google\Chrome\Application\31.0.1650.59\Installer\chrmstp.exe
.
Inhoud van de 'Gedeelde Taken' map
.
2015-06-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-30 17:56]
.
2015-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-30 17:56]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\BackupOverlayErr]
@="{8749448C-D907-45BF-A842-4D3898894AC8}"
[HKEY_CLASSES_ROOT\CLSID\{8749448C-D907-45BF-A842-4D3898894AC8}]
2015-06-15 12:54	250152	----a-w-	c:\program files\BullGuard Ltd\BullGuard\BackupShellHook.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\BackupOverlayInProgress]
@="{3FFBF330-7839-476B-BE14-2C8597CE11B6}"
[HKEY_CLASSES_ROOT\CLSID\{3FFBF330-7839-476B-BE14-2C8597CE11B6}]
2015-06-15 12:54	250152	----a-w-	c:\program files\BullGuard Ltd\BullGuard\BackupShellHook.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\BackupOverlaySynced]
@="{C62CF4DB-48CB-4B03-BFD0-30A29125FA49}"
[HKEY_CLASSES_ROOT\CLSID\{C62CF4DB-48CB-4B03-BFD0-30A29125FA49}]
2015-06-15 12:54	250152	----a-w-	c:\program files\BullGuard Ltd\BullGuard\BackupShellHook.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2015-04-29 8466960]
"MBCfg64"="c:\windows\system32\MBCfg64.dll" [2014-02-21 41088]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-05-23 2754704]
"BullGuard"="c:\program files\BullGuard Ltd\BullGuard\BullGuard.exe" [2015-06-15 1333544]
"BullGuardUpdate2"="c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe" [2015-06-15 2854184]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-05-23 1571696]
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS VERWIJDERD - - - -
.
Wow6432Node-HKLM-Run-DelaypluginInstall - c:\programdata\Aimersoft\Video Converter Ultimate\DelayPluginI.exe
AddRemove-553E35CD-0415-41bc-B39A-410375E88534 - c:\program files (x86)\Intel\ACPI Driver Installer\Uninstall\setup.exe
AddRemove-{01db25f3-1b76-4d97-88c8-1c90634d88fb} - c:\programdata\Package Cache\{01db25f3-1b76-4d97-88c8-1c90634d88fb}\vcredist_x86.exe
AddRemove-{050d4fc8-5d48-4b8f-8972-47c82c46020f} - c:\programdata\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe
AddRemove-{0f12c81f-93ef-46ec-bc94-d952c1a775d4} - c:\programdata\Package Cache\{0f12c81f-93ef-46ec-bc94-d952c1a775d4}\vcredist_x64.exe
AddRemove-{15134cb0-b767-4960-a911-f2d16ae54797} - c:\programdata\Package Cache\{15134cb0-b767-4960-a911-f2d16ae54797}\vcredist_x64.exe
AddRemove-{1a63c099-febd-4eaf-83ad-a82ea4fdac49} - c:\programdata\Package Cache\{1a63c099-febd-4eaf-83ad-a82ea4fdac49}\vcredist_x64.exe
AddRemove-{22154f09-719a-4619-bb71-5b3356999fbf} - c:\programdata\Package Cache\{22154f09-719a-4619-bb71-5b3356999fbf}\vcredist_x86.exe
AddRemove-{2af972c7-13b0-4978-92a8-fee26a4fb4e9} - c:\programdata\Package Cache\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}\vcredist_x86.exe
AddRemove-{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} - c:\programdata\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
AddRemove-{35459b22-19a6-44ec-8d34-27eb3131acac} - c:\programdata\Package Cache\{35459b22-19a6-44ec-8d34-27eb3131acac}\vcredist_x64.exe
AddRemove-{51adbf11-493f-431c-a862-967a0fae2944} - c:\programdata\Package Cache\{51adbf11-493f-431c-a862-967a0fae2944}\vcredist_x64.exe
AddRemove-{615bc16d-60f5-482e-91b3-b51d8130963b} - c:\programdata\Package Cache\{615bc16d-60f5-482e-91b3-b51d8130963b}\vcredist_x86.exe
AddRemove-{6c95b50e-cb5a-4a1f-a7b4-8a6004f8dd6a} - c:\programdata\Package Cache\{6c95b50e-cb5a-4a1f-a7b4-8a6004f8dd6a}\vcredist_x86.exe
AddRemove-{6e8f74e0-43bd-4dce-8477-6ff6828acc07} - c:\programdata\Package Cache\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}\vcredist_x64.exe
AddRemove-{7f51bdb9-ee21-49ee-94d6-90afc321780e} - c:\programdata\Package Cache\{7f51bdb9-ee21-49ee-94d6-90afc321780e}\vcredist_x64.exe
AddRemove-{8e70e4e1-06d7-470b-9f74-a51bef21088e} - c:\programdata\Package Cache\{8e70e4e1-06d7-470b-9f74-a51bef21088e}\vcredist_x86.exe
AddRemove-{95716cce-fc71-413f-8ad5-56c2892d4b3a} - c:\programdata\Package Cache\{95716cce-fc71-413f-8ad5-56c2892d4b3a}\vcredist_x86.exe
AddRemove-{a1909659-0a08-4554-8af1-2175904903a1} - c:\programdata\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe
AddRemove-{a2199617-3609-410f-a8e8-e8806c73545b} - c:\programdata\Package Cache\{a2199617-3609-410f-a8e8-e8806c73545b}\vcredist_x64.exe
AddRemove-{b55f7208-e02b-4828-ac78-59c73ddf5bc7} - c:\programdata\Package Cache\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}\vcredist_x86.exe
AddRemove-{c39ccdf6-4cad-48b9-87d8-00131589afca} - c:\programdata\Package Cache\{c39ccdf6-4cad-48b9-87d8-00131589afca}\xtu-setup-exe.exe
AddRemove-{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} - c:\programdata\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
AddRemove-{ce085a78-074e-4823-8dc1-8a721b94b76d} - c:\programdata\Package Cache\{ce085a78-074e-4823-8dc1-8a721b94b76d}\vcredist_x86.exe
AddRemove-{d370215a-d003-43ae-a3b6-1028af64d5a1} - c:\programdata\Package Cache\{d370215a-d003-43ae-a3b6-1028af64d5a1}\SetupChipset.exe
AddRemove-{dde2682b-961a-41ea-8d44-6005991b7947} - c:\programdata\Package Cache\{dde2682b-961a-41ea-8d44-6005991b7947}\vcredist_x64.exe
AddRemove-{f0080ca2-80ae-4958-b6eb-e8fa916d744a} - c:\programdata\Package Cache\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}\vcredist_x86.exe
AddRemove-{f65db027-aff3-4070-886a-0d87064aabb1} - c:\programdata\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.17"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2015-06-22  15:43:53
ComboFix-quarantined-files.txt  2015-06-22 13:43
.
Pre-Run: 162.533.765.120 bytes beschikbaar
Post-Run: 165.749.927.936 bytes beschikbaar
.
- - End Of File - - 02A986A05790A94F9B10281DA9C2E626
A36C5E4F47E84449FF07ED3517B43A31