Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Brian on ma 15-02-2016 at 21:29:23,39. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: O:\programmas pc rajni\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 15-2-2016 21:32:24 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) deleted successfully C:\PROGRA~3\Movavi Screen Capture 7 deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\PROGRA~3\Synology deleted successfully C:\Users\Brian\AppData\Local\ActiveSync deleted successfully C:\Users\Brian\AppData\Local\NetworkTiles deleted successfully C:\Users\Brian\AppData\Local\Secunia PSI deleted successfully C:\Users\Brian\AppData\Local\Skype deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== DriverSetupUtility Adobe Acrobat Reader DC - Nederlands Adobe AIR Adobe Flash Player 20 NPAPI Adobe Refresh Manager Adobe Shockwave Player 12.2 Alcor Micro USB Card Reader Driver Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update BitTorrent Bonjour BootRacer CameraHelperMsi CCleaner D3DX10 Definition Update for Microsoft Office 2010 (KB3114758) 32-Bit Edition erLT ESET Smart Security Evernote v. 5.9.1 Google Chrome Canary Google Update Helper HandBrake 0.10.2 HD Tune 2.55 HP Support Solutions Framework iCloud inSSIDer Home Intel(R) Rapid Storage Technology Internet Explorer (Enable DEP) iTunes Java 8 Update 71 Java Auto Updater Junk Mail filter update K-Lite Codec Pack 11.3.6 Full KeePass Password Safe 1.29 Logitech-webcamsoftware LWS Facebook LWS Gallery LWS Help_main LWS Launcher LWS Motion Detection LWS Pictures And Video LWS Twitter LWS Webcam Software LWS WLM Plugin LWS YouTube Plugin Malwarebytes Anti-Malware versie 2.2.0.1024 Microsoft Application Error Reporting Microsoft ASP.NET MVC 4 Runtime Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Standard 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Silverlight Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Mozilla Firefox 44.0.2 (x86 nl) Mozilla Maintenance Service MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 Node.js NVIDIA-configuratiescherm 361.75 NVIDIA 3D Vision controllerstuurprogramma 352.65 NVIDIA 3D Vision stuurprogramma 361.75 NVIDIA GeForce Experience 2.9.1.22 NVIDIA GeForce Experience Service NVIDIA Grafisch stuurprogramma 361.75 NVIDIA HD Audio-stuurprogramma 1.3.34.4 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA PhysX Systeem Software 9.15.0428 NVIDIA ShadowPlay 2.9.1.22 NVIDIA Stereoscopic 3D Driver NVIDIA Update 2.9.1.22 NVIDIA Update Core NVIDIA Virtual Audio 1.2.34 Photo Common Popcorn Time Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Recuva Samsung Data Migration Samsung Magician Secunia PSI (3.0.0.11003) Security Update for Microsoft Excel 2010 (KB3114759) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2878230) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881029) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3054848) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085528) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB3114396) 32-Bit Edition Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition Security Update for Microsoft Word 2010 (KB3114755) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition SHIELD Streaming SHIELD Wireless Controller Driver SkypeT 7.18 Speccy swMSM Synology Assistant (remove only) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD TeamViewer 11 TrackView version 2.3.0.0 Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2999508) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition Update for Microsoft Office 2010 (KB3085512) 32-Bit Edition Update for Microsoft Office 2010 (KB3114555) 32-Bit Edition Update for Microsoft Office 2010 (KB3114750) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2965297) 32-Bit Edition Update for Microsoft OneNote 2010 (KB3114410) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2760779) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3114756) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition VLC media player WinBar (x86) Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Mail Windows Live Messenger Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinRAR 5.20 (64-bit) ==== Running Processes ====================== C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Program Files (x86)\BootRacer\BootRacerServ.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\Program Files (x86)\Popcorn Time\Updater.exe P:\Synology\Assistant\UsbClientService.exe P:\Teamviewer10\TeamViewer_Service.exe P:\Teamviewer10\TeamViewer.exe C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe P:\Teamviewer10\tv_w32.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe T:\Winbar\WinBar.exe C:\Program Files (x86)\Secunia\PSI\psi_tray.exe T:\Samsung Magician\Samsung Magician.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Secunia\PSI\PSIA.exe C:\Users\Brian\Desktop\Telegram\Telegram\Telegram.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O:\programmas pc rajni\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) not found C:\PROGRA~2\Winamp deleted C:\PROGRA~3\Package Cache deleted C:\Users\Brian\AppData\Local\SlimWare Utilities Inc deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted "C:\Users\Brian\AppData\Roaming\npm" deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 16291 MB CPU Info: Intel(R) Core(TM) i5-4690 CPU @ 3.50GHz CPU Speed: 3503,1 MHz Sound Card: Luidsprekers (3- Bose USB Audio | Realtek Digital Output (Realtek | Display Adapters: NVIDIA GeForce GT 730 | NVIDIA GeForce GT 730 | NVIDIA GeForce GT 730 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1680 X 1050 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (D: | ) D: hp DVD RW AD-7251H5 Ports: COM1 LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 209,2GB | O: 540,9GB | P: 293,0GB | T: 97,7GB Hard Disks - Free: C: 151,4GB | O: 469,3GB | P: 291,7GB | T: 96,3GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 06/13/14 | ALASKA - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK COMPUTER INC. B85-PLUS Country: Nederland Language: NLD ==== System Specs (Software) ====================== Default Browser: Firefox 44.0.2 Internet Explorer Version: 11.103.10586.0 Mozilla Firefox version: 44.0.2 (x86 nl) Adobe Reader version: 15.10.20056.167417 Sun Java version: 1.8.0_71 (32-bit) Sun Java version: 1.8.0_71 (64-bit) Flash Player version: 20.0.0.306 Shockwave Player version: 12.2.1r171 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2016-02-10 14:05:24 95D730526EF81792CD6848D8D10FAA1C 4502352 ----a-w- C:\WINDOWS\explorer.exe ====== C:\Users\Brian\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2016-02-14 00:33:53 D618F587C82ED71D0CBD3D6CBD02EADB 341160 ----a-w- C:\WINDOWS\SysWOW64\SRCOM.dll 2016-02-14 00:33:53 3CF611FB9667C5E4A2621290775C95B0 83632 ----a-w- C:\WINDOWS\SysWOW64\SFCOM.dll 2016-02-14 00:33:53 1FCD57261927B4FF32645B1876C91EF2 589072 ----a-w- C:\WINDOWS\SysWOW64\SECOMN32.DLL 2016-02-14 00:33:52 4AAE6AA16A4BF58222B5E156BF871115 2692848 ----a-w- C:\WINDOWS\SysWOW64\RltkAPO.dll 2016-02-10 14:05:31 8098C092B1C51D918C7FD17A0BC1B93A 18678272 ----a-w- C:\WINDOWS\SysWOW64\edgehtml.dll 2016-02-10 14:05:30 A898C851127646F4F657BBC7CD9DB987 19339776 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2016-02-10 14:05:29 3B0CA32C396D84B4D3984177EA615F07 12125696 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2016-02-10 14:05:27 8B9DDC7866BD9B1A502D000D39CD40E3 5242496 ----a-w- C:\WINDOWS\SysWOW64\windows.storage.dll 2016-02-10 14:05:27 0FAFB579F8D0DD97D62EAF87AE552B03 21124344 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2016-02-10 14:05:27 01BFC0BC4D4986C7911B5A120E0EAC7B 9918976 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2016-02-10 14:05:24 FBF8BBB141504F661FA7F6864D95C16B 2230784 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2016-02-10 14:05:24 F29FE67D93D1EC698D8FE7B0A5BB32F1 1542816 ----a-w- C:\WINDOWS\SysWOW64\ntdll.dll 2016-02-10 14:05:24 E6EE0236D61AE1B946B9FE7F059C694F 5662208 ----a-w- C:\WINDOWS\SysWOW64\Chakra.dll 2016-02-10 14:05:24 00ECC00ED8713D7FDE30323237C5CAEF 792064 ----a-w- C:\WINDOWS\SysWOW64\kerberos.dll 2016-02-10 14:05:23 FCBCED2A237DCD7EF86CED551B731742 4064320 ----a-w- C:\WINDOWS\SysWOW64\explorer.exe 2016-02-10 14:05:23 F02A0D9F011212BC96B6DEF4F0E42AE9 1504768 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2016-02-10 14:05:23 CBE2DFB96C188DC8913B0CCBFA50C2FF 1824264 ----a-w- C:\WINDOWS\SysWOW64\combase.dll 2016-02-10 14:05:23 838A36729CEC0E27D760AFE625104BB6 1557776 ----a-w- C:\WINDOWS\SysWOW64\KernelBase.dll 2016-02-10 14:05:23 7FCEAC6F67C822B63306D1F6CB8B8A4B 3666432 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2016-02-10 14:05:23 52C8B2C9A9F61F2F1BE133E6015FA288 2919320 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2016-02-10 14:05:22 F87C928A9C09611670BBF6533281003C 162816 ----a-w- C:\WINDOWS\SysWOW64\msorcl32.dll 2016-02-10 14:05:22 F7169F42A954DEAD789529859921BD36 81112 ----a-w- C:\WINDOWS\SysWOW64\OpenWith.exe 2016-02-10 14:05:22 EC0F9E1BF64F2162F232C072BB1D6768 45568 ----a-w- C:\WINDOWS\SysWOW64\jsproxy.dll 2016-02-10 14:05:22 AD18802933E2F0BD9FDE02FF35D8AEC3 118272 ----a-w- C:\WINDOWS\SysWOW64\mtxoci.dll 2016-02-10 14:05:22 A9EEEFE4CFF7EEA891C77169A4C43D0A 295264 ----a-w- C:\WINDOWS\SysWOW64\msv1_0.dll 2016-02-10 14:05:22 6EB3A9117D1849AE452110A2C66CC411 820704 ----a-w- C:\WINDOWS\SysWOW64\WinTypes.dll 2016-02-10 14:05:22 0FC0E3CA4D36EB8A3BC1BA48436C1645 63488 ----a-w- C:\WINDOWS\SysWOW64\cfgbkend.dll 2016-02-10 14:05:22 0B247775E6D85763E490BAE3B7CE0CB9 31232 ----a-w- C:\WINDOWS\SysWOW64\ztrace_maps.dll 2016-02-10 14:05:21 F7F4D3C8F419097D5219C80B811978A9 203264 ----a-w- C:\WINDOWS\SysWOW64\iassam.dll 2016-02-10 14:05:21 529D8C676C042EC2E6930221F81C1A4A 99840 ----a-w- C:\WINDOWS\SysWOW64\hlink.dll 2016-02-10 14:05:21 3ADA661523773B1A461CCA2BB1E4478B 65536 ----a-w- C:\WINDOWS\SysWOW64\wininetlui.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2016-02-14 00:33:53 F1B757BA402664C19EA772119A5938D5 1008360 ----a-w- C:\WINDOWS\Sysnative\sl3apo64.dll 2016-02-14 00:33:53 D98850B6AB65C392A1AB14DF56E5165D 90920 ----a-w- C:\WINDOWS\Sysnative\SFCOM64.dll 2016-02-14 00:33:53 D618F587C82ED71D0CBD3D6CBD02EADB 341160 ----a-w- C:\WINDOWS\Sysnative\SRCOM.dll 2016-02-14 00:33:53 D20411D1EF81D8AEAE12A7E05A1E4777 532384 ----a-w- C:\WINDOWS\Sysnative\SRSTSX64.dll 2016-02-14 00:33:53 D04AFE349E7581AB2DC17B625C96AD50 3299832 ----a-w- C:\WINDOWS\Sysnative\YamahaAE2.dll 2016-02-14 00:33:53 D02203B857C9C2F53276461EF73FD1B4 214840 ----a-w- C:\WINDOWS\Sysnative\RTEED64A.dll 2016-02-14 00:33:53 C48469DB1609EC11BE0F9C782D71A125 258504 ----a-w- C:\WINDOWS\Sysnative\slprp64.dll 2016-02-14 00:33:53 C389F5E84C616CD4DCEBDEC3E4A43AC8 2110600 ----a-w- C:\WINDOWS\Sysnative\WavesGUILib64.dll 2016-02-14 00:33:53 C2C9F6A41D4A08DB9F6990B4AEE96554 1286160 ----a-w- C:\WINDOWS\Sysnative\slcnt64.dll 2016-02-14 00:33:53 BB485076843D60144D5B8CB105B418CD 192984 ----a-w- C:\WINDOWS\Sysnative\RtkCfg64.dll 2016-02-14 00:33:53 BAB628A10B0D834A10E6157BE35841BA 1356504 ----a-w- C:\WINDOWS\Sysnative\RTCOM64.dll 2016-02-14 00:33:53 B7F1AD75253B953124CEA2FE88958850 888472 ----a-w- C:\WINDOWS\Sysnative\tossaeapo64.dll 2016-02-14 00:33:53 B47C0AD27BF49F7CC4DCE86B81414D72 88328 ----a-w- C:\WINDOWS\Sysnative\SFAPO64.dll 2016-02-14 00:33:53 AD60E56FDCC205F560BE33BFBD7FAF7F 387320 ----a-w- C:\WINDOWS\Sysnative\RTEEP64A.dll 2016-02-14 00:33:53 A1E855D4692FC402BD1E6AAFA3AF41AC 172584 ----a-w- C:\WINDOWS\Sysnative\toseaeapo64.dll 2016-02-14 00:33:53 A199A2C675CB75A759DD99E5B374295D 88352 ----a-w- C:\WINDOWS\Sysnative\RTEEG64A.dll 2016-02-14 00:33:53 A0D45C086024C78BDF7F10F10335FD97 75544 ----a-w- C:\WINDOWS\Sysnative\tepeqapo64.dll 2016-02-14 00:33:53 9F4EA90130547063C7F9F2993F15CDB4 231920 ----a-w- C:\WINDOWS\Sysnative\SFNHK64.dll 2016-02-14 00:33:53 9717B91EB8E8F5788CE3A7A3A1B12F4F 381416 ----a-w- C:\WINDOWS\Sysnative\SRCOM64.dll 2016-02-14 00:33:53 8559FFDB4F356C4CA16E8A6D6739A46F 110992 ----a-w- C:\WINDOWS\Sysnative\RTEEL64A.dll 2016-02-14 00:33:53 83CF912F63D3D967D7D3D5063F6CFD8C 716112 ----a-w- C:\WINDOWS\Sysnative\SECOMN64.dll 2016-02-14 00:33:53 8352B0BD82B4FC8CCE93EFA94F069F4E 467160 ----a-w- C:\WINDOWS\Sysnative\SRAPO64.dll 2016-02-14 00:33:53 80D75FBC3D642B4A091B93A853797FF2 209536 ----a-w- C:\WINDOWS\Sysnative\SRSHP64.dll 2016-02-14 00:33:53 70EAB9327895C50B7EC6B3BE4AB96B07 221968 ----a-w- C:\WINDOWS\Sysnative\SRSTSH64.dll 2016-02-14 00:33:53 6CC1A2063650FD8A68199CE2104626FF 933640 ----a-w- C:\WINDOWS\Sysnative\SEHDRA64.dll 2016-02-14 00:33:53 688F0432F73CEEFEF58D2C53AFFEA436 158704 ----a-w- C:\WINDOWS\Sysnative\tadefxapo.dll 2016-02-14 00:33:53 615034EAB783C51295166C580BAF8390 343712 ----a-w- C:\WINDOWS\Sysnative\RtlCPAPI64.dll 2016-02-14 00:33:53 5B14C9FC68C0EE9856A43565F13773CC 2893568 ----a-w- C:\WINDOWS\Sysnative\RTSnMg64.cpl 2016-02-14 00:33:53 56769B857483F4B202A97A7D9A35A85A 166208 ----a-w- C:\WINDOWS\Sysnative\SRSWOW64.dll 2016-02-14 00:33:53 532504C177DAEE142C8755DEAB0499CF 596120 ----a-w- C:\WINDOWS\Sysnative\tosasfapo64.dll 2016-02-14 00:33:53 52F5E1944167C77AF355897D80CAED46 1928632 ----a-w- C:\WINDOWS\Sysnative\sltech64.dll 2016-02-14 00:33:53 4AF3488266FE28E605E04B5BB3BB36BF 965032 ----a-w- C:\WINDOWS\Sysnative\SFSS_APO.dll 2016-02-14 00:33:53 49B03C477C8B35EA0770DCB819F3575A 1435152 ----a-w- C:\WINDOWS\Sysnative\SRRPTR64.dll 2016-02-14 00:33:53 474DC8C0235D8FDC36F735D5B84DFB09 689888 ----a-w- C:\WINDOWS\Sysnative\RtDataProc64.dll 2016-02-14 00:33:53 467B5747B53FF1CACAD0AAAFB8FA72B5 224264 ----a-w- C:\WINDOWS\Sysnative\tossaemaxapo64.dll 2016-02-14 00:33:53 4027E7878EAB66DF5D0BA0F3A04FFB4B 3271912 ----a-w- C:\WINDOWS\Sysnative\RtkApi64.dll 2016-02-14 00:33:53 293AE03574B7FF850DEC0E7AB5467728 1382240 ----a-w- C:\WINDOWS\Sysnative\tosade.dll 2016-02-14 00:33:53 291D96E95B612CBC4E0C99F70041EED8 3195648 ----a-w- C:\WINDOWS\Sysnative\RtPgEx64.dll 2016-02-14 00:33:53 1A04F11A195518DAEBD2F0C75DF0DD2E 873472 ----a-w- C:\WINDOWS\Sysnative\tadefxapo264.dll 2016-02-14 00:33:53 19552ADCABE48C759861B622FEA570E6 448592 ----a-w- C:\WINDOWS\Sysnative\SEAPO64.dll 2016-02-14 00:33:53 12DF3CA0A3353F9E840C0D6975A1A8CC 2190992 ----a-w- C:\WINDOWS\Sysnative\YamahaAE.dll 2016-02-14 00:33:53 0E70D283465E3611B49E433BC7F7D4DA 23696 ----a-w- C:\WINDOWS\Sysnative\RtkCoLDR64.dll 2016-02-14 00:33:52 FC552CD55F9BBC8B2BCD80B2EB59DA6A 447728 ----a-w- C:\WINDOWS\Sysnative\R4EED64A.dll 2016-02-14 00:33:52 FC4D11A824C9C2A536B45B932D8ABEED 72203792 ----a-w- C:\WINDOWS\Sysnative\RCoRes64.dat 2016-02-14 00:33:52 E3E9AC2EC03CE95CC50E9B8A56608AFD 2030208 ----a-w- C:\WINDOWS\Sysnative\RCoInstII64.dll 2016-02-14 00:33:52 E2472AA86CEF71B0F7B85BE45272BD8A 84624 ----a-w- C:\WINDOWS\Sysnative\R4EEG64A.dll 2016-02-14 00:33:52 BC56269AAE798EF5F5C33832B0690A36 5776688 ----a-w- C:\WINDOWS\Sysnative\NAHIMICV2apo.dll 2016-02-14 00:33:52 A04E8BC8ED3DAB571EC2606FB6012E7C 5289952 ----a-w- C:\WINDOWS\Sysnative\NAHIMICAPOlfx.dll 2016-02-14 00:33:52 84B7D1AED6885A4B9123F04E418E0757 321720 ----a-w- C:\WINDOWS\Sysnative\RP3DAA64.dll 2016-02-14 00:33:52 76B8BA6A6EEB5DAF6E72809232BC2642 151792 ----a-w- C:\WINDOWS\Sysnative\R4EEL64A.dll 2016-02-14 00:33:52 4C8C1943916565A1A2C4D74D3F13F9DF 321720 ----a-w- C:\WINDOWS\Sysnative\RP3DHT64.dll 2016-02-14 00:33:52 4BAD11F6059F9707B79560FAB2EDE517 7172920 ----a-w- C:\WINDOWS\Sysnative\R4EEP64A.dll 2016-02-14 00:33:52 4560CE5521C34100432A7A9E05DC005E 3052880 ----a-w- C:\WINDOWS\Sysnative\RltkAPO64.dll 2016-02-14 00:33:52 44C324D9DDD4CCD241C536711824EB88 134208 ----a-w- C:\WINDOWS\Sysnative\R4EEA64A.dll 2016-02-14 00:33:52 22CE6B81D572F28746A3A211CF40623B 677680 ----a-w- C:\WINDOWS\Sysnative\MaxxVolumeSDAPO.dll 2016-02-14 00:33:52 16B2FD380DFAEEA72218E350B2F224BE 923752 ----a-w- C:\WINDOWS\Sysnative\MISS_APO.dll 2016-02-14 00:33:52 03010C956815C0488C613B6BDECB91D9 1003864 ----a-w- C:\WINDOWS\Sysnative\NahimicAPONSControl.dll 2016-02-14 00:33:51 F0CF7D3FD475D1FA461A0419C8A73BA2 2050184 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioEQ64.dll 2016-02-14 00:33:51 EE26C4A77791AC1283AA4796D0169CC1 428232 ----a-w- C:\WINDOWS\Sysnative\DTSU2PREC64.dll 2016-02-14 00:33:51 EBB524D3FA3123CC80D7FC6B54B077F2 253904 ----a-w- C:\WINDOWS\Sysnative\DTSGFXAPO64.dll 2016-02-14 00:33:51 EB933AD326EFB834368FC8B06730000B 10521552 ----a-w- C:\WINDOWS\Sysnative\IntelSSTAPO.dll 2016-02-14 00:33:51 EA2EB8BCC33FA20DEEAEC37001DA463F 2823280 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPO7064.dll 2016-02-14 00:33:51 D75B08C80DDCACD2B097BEC87E55A413 5338936 ----a-w- C:\WINDOWS\Sysnative\DolbyDAX2APOv211.dll 2016-02-14 00:33:51 CF8DDA1B98813C2A02F4F312DF4EFC48 678192 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPO30.dll 2016-02-14 00:33:51 C1FF3EEE7A35BCE0B2F1104B069D91EF 253872 ----a-w- C:\WINDOWS\Sysnative\DTSLFXAPO64.dll 2016-02-14 00:33:51 B971D4726988784A050059DFC665BC1F 14057256 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioRealtek64.dll 2016-02-14 00:33:51 B93633C8A4A3E9436DEB6DE2F94896C6 618192 ----a-w- C:\WINDOWS\Sysnative\KAAPORT64.dll 2016-02-14 00:33:51 B3C02AFC478C369B2D930D8E1FE0690F 952984 ----a-w- C:\WINDOWS\Sysnative\DolbyDAX2APOProp.dll 2016-02-14 00:33:51 AC280C74B966A066EA53AA1620817B36 6264640 ----a-w- C:\WINDOWS\Sysnative\DDPP64AF3.dll 2016-02-14 00:33:51 A9556186C20B0A60E55171A85CED525D 504312 ----a-w- C:\WINDOWS\Sysnative\DTSNeoPCDLL64.dll 2016-02-14 00:33:51 9D863AC4E0EC2744BD52429E454705C9 340648 ----a-w- C:\WINDOWS\Sysnative\ICEsoundAPO64.dll 2016-02-14 00:33:51 9D3B5090B3EF266D4D692FC0E16AB1CA 1186160 ----a-w- C:\WINDOWS\Sysnative\IntelSstCApoPropPage.dll 2016-02-14 00:33:51 7E29D1215D14781C911526A088436686 2437144 ----a-w- C:\WINDOWS\Sysnative\DolbyDAX2APOv201.dll 2016-02-14 00:33:51 7CD609A5AD3DC8A16C3748D5E04061F8 1780624 ----a-w- C:\WINDOWS\Sysnative\DTSS2SpeakerDLL64.dll 2016-02-14 00:33:51 7B078C94A4A1041C83438E641254C743 743968 ----a-w- C:\WINDOWS\Sysnative\DTSBassEnhancementDLL64.dll 2016-02-14 00:33:51 7AE97F6CEEF0BBA2693E27C2C9DC8C2D 13120760 ----a-w- C:\WINDOWS\Sysnative\MaxxVoiceAPO3064.dll 2016-02-14 00:33:51 79BC8A2B5269BC24CC2A48B745547CD4 445408 ----a-w- C:\WINDOWS\Sysnative\DTSLimiterDLL64.dll 2016-02-14 00:33:51 6DB6EC50F822DA6948B4BCD51F6C2F85 727440 ----a-w- C:\WINDOWS\Sysnative\DTSSymmetryDLL64.dll 2016-02-14 00:33:51 689B81158898BC85FFE3534978726C8B 514528 ----a-w- C:\WINDOWS\Sysnative\DTSU2PLFX64.dll 2016-02-14 00:33:51 5FC25FB77B342CB1BE20D3D20D2C9DA2 252880 ----a-w- C:\WINDOWS\Sysnative\DTSGFXAPONS64.dll 2016-02-14 00:33:51 5E6B126240F60276C653388F7CD635A7 1508936 ----a-w- C:\WINDOWS\Sysnative\DTSBoostDLL64.dll 2016-02-14 00:33:51 5B90E9F57721F1ABB8993B073922FEAB 3282032 ----a-w- C:\WINDOWS\Sysnative\FMAPO64.dll 2016-02-14 00:33:51 59AFB2773A4A5E77BD6F401FBB265247 12986528 ----a-w- C:\WINDOWS\Sysnative\MaxxVoiceAPO4064.dll 2016-02-14 00:33:51 4ED148C364C4F3FEB998420DEFAEF8D9 1164336 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPO4064.dll 2016-02-14 00:33:51 4C64FEC05115E0DC20D566855D0635BC 1211840 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPO5064.dll 2016-02-14 00:33:51 48ABDFA419EA48B75BD475C59B88F191 441272 ----a-w- C:\WINDOWS\Sysnative\DTSGainCompensatorDLL64.dll 2016-02-14 00:33:51 45E53B0D48EF4710F5B3A6A0B73BC242 998032 ----a-w- C:\WINDOWS\Sysnative\MaxxVoiceAPO2064.dll 2016-02-14 00:33:51 275E58B949EBB45BEBD4FF0B446AB8EC 369304 ----a-w- C:\WINDOWS\Sysnative\HiFiDAX2API.dll 2016-02-14 00:33:51 254CFD1186625F9319977228FE409A87 931624 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPOShell64.dll 2016-02-14 00:33:51 2216E5B089EE171378F3473AFD9DB1CF 330568 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPO20.dll 2016-02-14 00:33:51 1D541B93034CF3AFCC076391E40E6728 500560 ----a-w- C:\WINDOWS\Sysnative\DTSU2PGFX64.dll 2016-02-14 00:33:51 156F4FDE35361A943AA320AC5F95824F 708312 ----a-w- C:\WINDOWS\Sysnative\DTSVoiceClarityDLL64.dll 2016-02-14 00:33:51 11C90BECF9263D297F63F4AAAA3FD0E4 1591064 ----a-w- C:\WINDOWS\Sysnative\DTSS2HeadphoneDLL64.dll 2016-02-14 00:33:51 0C7A8A74D697C2A5AC8DFB8D27F23589 1322656 ----a-w- C:\WINDOWS\Sysnative\MaxxSpeechAPO64.dll 2016-02-14 00:33:51 0AE2077197EB23AE12E589E5503A2BBE 1421104 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPO6064.dll 2016-02-14 00:33:50 ED01A454B2ACEA80134B6DE894B95106 1959608 ----a-w- C:\WINDOWS\Sysnative\DDPD64AF3.dll 2016-02-14 00:33:50 D64BC1A9B4C16905613CCEDB83B9BCDE 327464 ----a-w- C:\WINDOWS\Sysnative\DDPO64A.dll 2016-02-14 00:33:50 D5A25CEC3B50F62BC9CC09FD34F6F252 310432 ----a-w- C:\WINDOWS\Sysnative\DDPA64F3.dll 2016-02-14 00:33:50 B619F5E67D358FB6E7549403F74BA6C0 7096192 ----a-w- C:\WINDOWS\Sysnative\DDPP64A.dll 2016-02-14 00:33:50 97726C8AAB9DCC88E8C44B6898635471 362064 ----a-w- C:\WINDOWS\Sysnative\DDPO64AF3.dll 2016-02-14 00:33:50 6F16A65EF9FC6B3240F0222DE296EC0A 1601952 ----a-w- C:\WINDOWS\Sysnative\CX64APO.dll 2016-02-14 00:33:50 6AE20EC0804AA55F23865743AEC675A4 122328 ----a-w- C:\WINDOWS\Sysnative\CONEQMSAPOGUILibrary.dll 2016-02-14 00:33:50 6A620772DA517CDC678026163239D5F3 272720 ----a-w- C:\WINDOWS\Sysnative\DDPA64.dll 2016-02-14 00:33:50 5D95348088705A3ED6B629116FE7A53E 118600 ----a-w- C:\WINDOWS\Sysnative\AERTAR64.dll 2016-02-14 00:33:50 5A35AAE915BCFA8268CB18A938235DC3 105312 ----a-w- C:\WINDOWS\Sysnative\audioLibVc.dll 2016-02-14 00:33:50 4C52DC0407C91A02D800CC967FCA45A7 574760 ----a-w- C:\WINDOWS\Sysnative\AERTAC64.dll 2016-02-14 00:33:50 2EB729A8EB71106B5B6849D0CF68061C 1965816 ----a-w- C:\WINDOWS\Sysnative\DDPD64A.dll 2016-02-14 00:33:50 2BC1D0EA3280A94D1BA30E87E4F553AF 118600 ----a-w- C:\WINDOWS\Sysnative\AcpiServiceVnA64.dll 2016-02-10 14:05:29 5343CC447AA0BEE71ECADCCDB5670F9A 13382656 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2016-02-10 14:05:29 1CA392E9520D8B86CFC484DE04B39F55 22394368 ----a-w- C:\WINDOWS\Sysnative\edgehtml.dll 2016-02-10 14:05:28 4844C11E00F0ED6100B3375C216BFB49 24603136 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2016-02-10 14:05:28 1C772A877B4724F7F56117FB899C740C 3592704 ----a-w- C:\WINDOWS\Sysnative\win32kfull.sys 2016-02-10 14:05:27 5CADC12CD7D8C21952AF932EFD1707B7 11545088 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2016-02-10 14:05:26 3D6CDEB19DE3D9FD55533C28ED664EA0 22564328 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2016-02-10 14:05:26 3BFD141B784459A10F1DA623B7BE5E6C 6605544 ----a-w- C:\WINDOWS\Sysnative\windows.storage.dll 2016-02-10 14:05:25 F25D44D09132849746A080D9BAE331D9 7835648 ----a-w- C:\WINDOWS\Sysnative\Chakra.dll 2016-02-10 14:05:25 E0D72868E01C22B985A9341F8295613B 2757120 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2016-02-10 14:05:25 380A4E413E227A6445FDB5244181BAFF 1087488 ----a-w- C:\WINDOWS\Sysnative\reseteng.dll 2016-02-10 14:05:24 F23708D1B4C792F35CF40710804D51A4 4894720 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2016-02-10 14:05:24 B67BE37DB6E01693A8529DBC4B2A1C88 970752 ----a-w- C:\WINDOWS\Sysnative\kerberos.dll 2016-02-10 14:05:24 A2001D2C8E6C237B8F01E4375B16AF4E 7476064 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2016-02-10 14:05:24 9B98D38675D854AE9D5DC06AE62E5E53 2275328 ----a-w- C:\WINDOWS\Sysnative\wuaueng.dll 2016-02-10 14:05:24 80D6AF1D9BE30E386322E9E723F7B6DE 1387520 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2016-02-10 14:05:23 D02F3E132E6AD02F2CB4F9991FB77B56 1270072 ----a-w- C:\WINDOWS\Sysnative\WinTypes.dll 2016-02-10 14:05:23 C402B84B789382748EEEC04284781732 2606824 ----a-w- C:\WINDOWS\Sysnative\combase.dll 2016-02-10 14:05:23 C2737837E8DE02DCEE93EB9E0492E607 1819720 ----a-w- C:\WINDOWS\Sysnative\ntdll.dll 2016-02-10 14:05:23 B0AD1A1DCBD8690F11C44708610974B9 1997328 ----a-w- C:\WINDOWS\Sysnative\KernelBase.dll 2016-02-10 14:05:23 AAD4516753A9EDD1CF93B81E8B5D0CE5 359776 ----a-w- C:\WINDOWS\Sysnative\msv1_0.dll 2016-02-10 14:05:23 95F1566DEB77160095EC236964EE506D 1734656 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2016-02-10 14:05:22 FAB5054707064EA9881954F98D9150C0 85320 ----a-w- C:\WINDOWS\Sysnative\OpenWith.exe 2016-02-10 14:05:22 D974EACE921C3B1C78DD29334CC7F861 109056 ----a-w- C:\WINDOWS\Sysnative\hlink.dll 2016-02-10 14:05:22 D53F94A3F5DA461209C6128D5337FFF1 304752 ----a-w- C:\WINDOWS\Sysnative\systemreset.exe 2016-02-10 14:05:22 C177128E60700E43109584F33D0430F9 258048 ----a-w- C:\WINDOWS\Sysnative\iassam.dll 2016-02-10 14:05:22 BAAB5AE1EC2A970C16FDA670882EEE39 79360 ----a-w- C:\WINDOWS\Sysnative\cfgbkend.dll 2016-02-10 14:05:22 8A48AEAACC0F44E999BEC15BF017E74B 36864 ----a-w- C:\WINDOWS\Sysnative\ztrace_maps.dll 2016-02-10 14:05:22 1C375486D1F6D0DD5281B76C750EEFA3 147456 ----a-w- C:\WINDOWS\Sysnative\mtxoci.dll 2016-02-10 14:05:22 0319FFA35F366D2FD1C9776DAA98FE96 299008 ----a-w- C:\WINDOWS\Sysnative\microsoft-windows-system-events.dll 2016-02-10 14:05:22 00FFABBFBEE8A064DF817885187B1D8B 52224 ----a-w- C:\WINDOWS\Sysnative\jsproxy.dll 2016-02-10 14:05:21 DE4D2583E70B89D027CF9C5ABCD3673B 764928 ----a-w- C:\WINDOWS\Sysnative\Chakradiag.dll 2016-02-10 14:05:21 DD4C204506488414C8980B925445481C 99328 ----a-w- C:\WINDOWS\Sysnative\ngckeyenum.dll 2016-02-10 14:05:21 AA94C58A205952A01A58C3D18E4B987F 69632 ----a-w- C:\WINDOWS\Sysnative\wininetlui.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2016-02-14 00:33:53 C336AF48C9609B1B586319FC1BB7F360 4705536 ----a-w- C:\WINDOWS\Sysnative\drivers\RTKVHD64.sys 2016-02-14 00:33:53 7D7FBC9504575D97885A858EA93684F5 5804772 ----a-w- C:\WINDOWS\Sysnative\drivers\rtvienna.dat 2016-02-14 00:33:53 62D86452D74FD5849E48662F02E224D9 3152591 ----a-w- C:\WINDOWS\Sysnative\drivers\rtkSSTsetting.dat 2016-02-14 00:33:52 9AEC402939B7A460C907FCD0DD1FDA4F 4486133 ----a-w- C:\WINDOWS\Sysnative\drivers\RTAIODAT.DAT 2016-02-10 14:05:28 CC0A2F91C231E0D25EE3DBBF11B660D9 1998176 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2016-02-10 14:05:25 299B5570571185DB929194C40A1A0DB0 576352 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2016-02-10 14:05:22 BF6CA7EA5ECD6CF72D3D76652A9B8280 144384 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys 2016-02-10 14:05:22 A1105260EEEE3DBD8D38FD054B22BD00 604928 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2016-01-27 22:30:46 D812362E8AF615B521AD4DF19A93BD5A 205456 ----a-w- C:\WINDOWS\Sysnative\drivers\nvhda64v.sys 2016-01-27 22:30:46 563000D29B9DABDD8CE308177D98EB5D 12474312 ----a-w- C:\WINDOWS\Sysnative\drivers\nvlddmkm.sys 2016-01-27 21:59:42 318E816717431D3C23DC82779900C744 1089880 ----a-w- C:\WINDOWS\Sysnative\drivers\http.sys 2016-01-27 21:59:04 F259A45D6B555B14CC8365AA6BC8DC20 67072 ----a-w- C:\WINDOWS\Sysnative\drivers\usbser.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-02-14 00:34:02 -------- d-----w- C:\Program Files\Realtek ======= C:\PROGRA~2 ===== 2016-02-15 19:02:03 -------- d-----w- C:\PROGRA~2\BootRacer 2016-02-14 00:36:27 -------- d-----w- C:\PROGRA~2\AmUStor 2016-02-14 00:22:51 -------- d-----w- C:\PROGRA~2\nodejs 2016-01-24 22:36:01 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2016-01-19 21:33:34 -------- d-----w- C:\PROGRA~2\COMMON~1\PX Storage Engine ======= C: ===== ====== C:\Users\Brian\AppData\Roaming ====== 2016-02-15 19:02:03 -------- d-----w- C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BootRacer 2016-02-14 00:22:51 -------- d-----w- C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js 2016-02-03 16:41:42 -------- d-----w- C:\Users\Brian\AppData\Local\MetaGeek,_LLC 2016-01-19 01:20:51 -------- d-----w- C:\Users\Brian\AppData\Local\Nvidia Corporation ====== C:\Users\Brian ====== 2016-02-15 19:04:00 -------- d-----w- C:\ProgramData\BootRacer 2016-02-14 19:48:40 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Brian\Desktop\RSITx64.exe 2016-02-14 00:36:26 -------- d-----w- C:\ProgramData\AmUStor 2016-02-14 00:28:08 -------- d-----w- C:\Users\Public\Documents\Downloaded Installers 2016-02-10 00:07:22 -------- d-----w- C:\ProgramData\G DATA 2016-02-09 00:50:19 E38F964D09275CAB0DA2383F5BBC0868 6828320 ----a-w- C:\Users\Brian\Downloads\ccsetup514.exe 2016-02-03 16:41:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek 2016-01-24 22:35:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java ====== C: exe-files == 2016-02-15 18:09:32 A85D8F8622429F2448EE3F496D2FDEC7 1438360 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2651.0\Installer\setup.exe 2016-02-15 18:09:29 FADD5049E11E64619E091755D2256EC9 850584 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2651.0\delegate_execute.exe 2016-02-15 18:09:10 FB1A5DEE499BB9F7C9CBED4A60F48F24 2144664 ----a-w- C:\Users\Brian\AppData\Local\Google\Update\Install\{4F5ADF74-9E88-49A8-A9DA-E62A01DC23DB}\50.0.2651.0_50.0.2650.0_chrome_updater.exe 2016-02-15 18:09:10 FB1A5DEE499BB9F7C9CBED4A60F48F24 2144664 ----a-w- C:\Users\Brian\AppData\Local\Google\Update\Download\{4EA16AC7-FD5A-47C3-875B-DBF4A2008C20}\50.0.2651.0\50.0.2651.0_50.0.2650.0_chrome_updater.exe 2016-02-15 00:43:21 EB5C6A1753AF31B8D761E5B80484002A 7262880 ----a-w- C:\Users\Brian\AppData\Local\NVIDIA\NvBackend\Packages\0000861f\DAO.20437765.exe 2016-02-14 19:48:40 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Brian\Desktop\RSITx64.exe 2016-02-14 17:12:38 48CE2CDF6CEBF7767DCEBAC0C3444462 1438360 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2650.0\Installer\setup.exe 2016-02-14 17:12:33 E896EC15331D5A4D4F13A8FE170226DF 850584 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2650.0\delegate_execute.exe 2016-02-14 00:36:30 7E4E9209E27E3FBFF7C1CC97BDFF09B1 311296 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{7BCB15FE-CC5D-4C6D-B1C6-B0AF74EE09E0}\setup.exe 2016-02-14 00:35:56 0E4D4CAECC6A3F12F148DD2F19C62487 17161289 ----a-w- C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\000E4D4CAECC6A3F12F148DD2F19C62487000000000105DC49.exe 2016-02-14 00:34:15 FAF8CE5C039B27FEDBAEEB72BC2AFFF2 196608 ------w- C:\Program Files (x86)\Realtek\Audio\ASIO\RTASIOCP.exe 2016-02-14 00:34:15 1E866CF32933B2E30EF3134639957D1D 1777408 ------w- C:\Program Files (x86)\Realtek\Audio\InstallShield\Rtkupd64.exe 2016-02-14 00:34:15 04892381D6393CE4A073B4EB80C31BBD 299008 ------w- C:\Program Files (x86)\Realtek\Audio\ASIO\Install.exe 2016-02-14 00:33:53 EEA51DB7B232803E44AC3242ADE30D9F 571544 ----a-w- C:\Program Files\Realtek\Audio\HDA\vncutil64.exe 2016-02-14 00:33:53 4D19B743262D5B482F1A5ACDEEA3A64B 8783616 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe 2016-02-14 00:33:53 1EFB00699DA1C8904EF4BFDCE1AB1F31 307456 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe 2016-02-14 00:33:53 1E866CF32933B2E30EF3134639957D1D 1777408 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe 2016-02-14 00:33:53 1E866CF32933B2E30EF3134639957D1D 1777408 ------w- C:\Program Files (x86)\Realtek\Audio\Drivers\RtlUpd64.exe 2016-02-14 00:33:52 FA26315840C2CD6B5C12A5D26B321DB4 1407104 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe 2016-02-14 00:33:52 765A23500C37517D36C3E98E3FD3AE35 16408320 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 2016-02-14 00:33:51 B1CB7E976B8361A088FE8F0EBC35AEA0 249320 ----a-w- C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe 2016-02-14 00:33:51 982C415E49525D8161AB5B78A7AF0DA8 150080 ----a-w- C:\Program Files\Realtek\Audio\HDA\FMAPP.exe 2016-02-14 00:33:51 6EB5EA928DBB40B8276411829C2CCA41 218776 ----a-w- C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe 2016-02-14 00:33:50 F48799D83D952B4327C4B9DC354E8F89 106952 ----a-w- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe 2016-02-14 00:33:50 95DB27F447CE9E56441BE7E498300017 75520 ----a-w- C:\Program Files\Realtek\Audio\HDA\CreateRtkToastLnk.exe 2016-02-14 00:33:50 45040CB568355D74B11AD3D0A1F15DAF 751336 ----a-w- C:\Program Files\Realtek\Audio\HDA\CXAPOAgent64.exe 2016-02-14 00:33:49 AAB469BD4DA7B4FB8AF0B59C43A8E77D 1194576 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe 2016-02-14 00:29:26 8E19D16067FB592C0BFB6F2FCE5AA07A 168166829 ----a-w- C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\008E19D16067FB592C0BFB6F2FCE5AA07A000000000A0605AD.exe 2016-02-14 00:20:02 C5B752D53B71C6664A2C85104A5479BC 362672 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe 2016-02-14 00:20:02 B5F9D1EAF05842C3FAFE198747AE8868 62464 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe 2016-02-14 00:20:02 8EBBDC77A8DC96272500702FDF7F5350 389808 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe 2016-02-14 00:20:02 2F48CCBB877A3095925C2C2AFCAF6AA3 310960 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe 2016-02-14 00:20:02 2F48CCBB877A3095925C2C2AFCAF6AA3 310960 ----a-w- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe 2016-02-13 19:27:55 4E95AB8BEB2C8FD53B348EF4AD5121C5 149184 ----a-w- C:\Users\Brian\AppData\Local\Temp\589D89C8-0E63-4C83-BB8F-CAD9970F346E\DismHost.exe 2016-02-13 19:22:47 4E95AB8BEB2C8FD53B348EF4AD5121C5 149184 ----a-w- C:\Users\Brian\AppData\Local\Temp\116035E0-B644-4F2A-8C14-3A704BDC2B5B\DismHost.exe 2016-02-13 18:56:19 4E95AB8BEB2C8FD53B348EF4AD5121C5 149184 ----a-w- C:\Users\Brian\AppData\Local\Temp\2F445ED4-97EC-42DD-8C8C-B1141F6F2055\DismHost.exe 2016-02-13 15:48:25 C4ACBE11BCC9195781E204EC088D5FFC 1903648 ----a-w- C:\Users\Brian\AppData\Roaming\BitTorrent\updates\7.9.5_41713.exe 2016-02-12 16:31:32 A07AA4DAFF869540B785B7C502DFF21D 630200 ----a-w- C:\Users\Brian\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe 2016-02-12 16:31:28 C683B84B7438BFEB6F659EBBAE1E8EF0 172984 ----a-w- C:\Users\Brian\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe 2016-02-11 14:06:35 52EDC272776C3F3B64C596F0BDC15746 607984 ----a-w- C:\Users\Brian\AppData\Local\NVIDIA\NvBackend\Packages\0000860a\CoProc update.20432888.exe 2016-02-10 20:33:41 3616301A86A2F78D94E2BAA86805112C 47362176 ----a-w- C:\Users\Brian\AppData\Local\Temp\SkypeSetup.exe 2016-02-10 18:02:59 4E95AB8BEB2C8FD53B348EF4AD5121C5 149184 ----a-w- C:\Users\Brian\AppData\Local\Temp\FB1339A4-7649-4418-9B54-C49136B892DC\DismHost.exe 2016-02-10 14:05:26 273E63CE3E8BBF186314F39F8189AF70 7300464 ----a-w- C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 2016-02-10 14:05:24 A2001D2C8E6C237B8F01E4375B16AF4E 7476064 ----a-w- C:\Windows\System32\ntoskrnl.exe 2016-02-10 14:05:24 95D730526EF81792CD6848D8D10FAA1C 4502352 ----a-w- C:\Windows\explorer.exe 2016-02-10 14:05:23 FCBCED2A237DCD7EF86CED551B731742 4064320 ----a-w- C:\Windows\SysWOW64\explorer.exe 2016-02-10 14:05:22 FAB5054707064EA9881954F98D9150C0 85320 ----a-w- C:\Windows\System32\OpenWith.exe 2016-02-10 14:05:22 F7169F42A954DEAD789529859921BD36 81112 ----a-w- C:\Windows\SysWOW64\OpenWith.exe 2016-02-10 14:05:22 D53F94A3F5DA461209C6128D5337FFF1 304752 ----a-w- C:\Windows\System32\systemreset.exe 2016-02-10 12:44:22 FFD906DD935A1BE748B9855B2AA245B4 50599552 ----a-r- C:\Program Files (x86)\Skype\Phone\Skype.exe 2016-02-10 00:17:11 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Brian\AppData\Local\Temp\jrt\nfo\nircmdc.exe 2016-02-09 11:58:18 2890F1847D5D5F8F0E0C036EB0E9D58C 5493888 ----a-w- C:\Program Files (x86)\nodejs\node.exe 2016-02-09 00:50:19 E38F964D09275CAB0DA2383F5BBC0868 6828320 ----a-w- C:\Users\Brian\Downloads\ccsetup514.exe === C: other files == 2016-02-15 19:00:45 BB1A536B22D71CB8AF8B91BCA8ED595E 5236574 ----a-w- C:\Users\Brian\Downloads\bootracer_free.zip 2016-02-15 18:09:26 D2F6A1B11344D9AC7BCFB75900D4ADE1 23668 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2651.0\default_apps\youtube.crx 2016-02-15 18:09:26 71E1283B8440F6264CEC99DF9AD81F5B 25561 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2651.0\default_apps\drive.crx 2016-02-15 18:09:26 2E2E328E5BF6BE61203164B3E9EA8094 24040 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2651.0\default_apps\gmail.crx 2016-02-15 18:09:26 2C71C49F991095A1848624907BACBB08 4578 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2651.0\default_apps\docs.crx 2016-02-14 17:12:29 D2F6A1B11344D9AC7BCFB75900D4ADE1 23668 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2650.0\default_apps\youtube.crx 2016-02-14 17:12:29 71E1283B8440F6264CEC99DF9AD81F5B 25561 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2650.0\default_apps\drive.crx 2016-02-14 17:12:29 2E2E328E5BF6BE61203164B3E9EA8094 24040 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2650.0\default_apps\gmail.crx 2016-02-14 17:12:29 2C71C49F991095A1848624907BACBB08 4578 ----a-w- C:\Users\Brian\AppData\Local\Google\Chrome SxS\Application\50.0.2650.0\default_apps\docs.crx 2016-02-14 00:33:53 C336AF48C9609B1B586319FC1BB7F360 4705536 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys 2016-02-10 14:05:28 CC0A2F91C231E0D25EE3DBBF11B660D9 1998176 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2016-02-10 14:05:28 1C772A877B4724F7F56117FB899C740C 3592704 ----a-w- C:\Windows\System32\win32kfull.sys 2016-02-10 14:05:25 299B5570571185DB929194C40A1A0DB0 576352 ----a-w- C:\Windows\System32\drivers\dxgmms2.sys 2016-02-10 14:05:22 BF6CA7EA5ECD6CF72D3D76652A9B8280 144384 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2016-02-10 14:05:22 A1105260EEEE3DBD8D38FD054B22BD00 604928 ----a-w- C:\Windows\System32\drivers\cng.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-1778768322-595465748-2038507635-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "WinBar (x86)"="T:\Winbar\WinBar.exe" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "Google Update"="C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe /c" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LWS"="P:\Logitech\LWS\Webcam Software\LWS.exe -hide" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "WinBar (x86)"="T:\Winbar\WinBar.exe" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "Google Update"="C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe /c" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BootRacer"="C:\Program Files (x86)\BootRacer\Bootrace.exe /2" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch" "IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" "iTunesHelper"="T:\iTunes\iTunesHelper.exe" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "ShadowPlay"="C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BootRacer"="C:\Program Files (x86)\BootRacer\Bootrace.exe /2" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\asComSvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Bonjour Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMService] ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [10-02-2016 15:59] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1778768322-595465748-2038507635-1000Core.job --a-------- C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [31-10-2015 16:01] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1778768322-595465748-2038507635-1000UA.job --a-------- C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [31-10-2015 16:01] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\ACC" [C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat] "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["P:\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\CreateExplorerShellUnelevatedTask" [C:\WINDOWS\explorer.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-1778768322-595465748-2038507635-1000Core" [C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-1778768322-595465748-2038507635-1000UA" [C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\klcp_update" ["C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe"] "C:\WINDOWS\SysNative\tasks\SamsungMagician" ["T:\Samsung Magician\Samsung Magician.exe"] "C:\WINDOWS\SysNative\tasks\Tweaking.com - Windows Repair Tray Icon" [T:\\WR_Tray_Icon.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{A6E02282-B74B-4878-B246-BE3C8D2FC6D4}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\{010D2214-1FC7-4C1E-959D-5F6C2DC88CEF}" ["c:\program files (x86)\mozilla firefox\firefox.exe"] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\SysNative\tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}" ["C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"] "C:\WINDOWS\SysNative\tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}" ["C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"] "C:\WINDOWS\SysNative\tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}" ["C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"] "C:\WINDOWS\SysNative\tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}" ["C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"] "C:\WINDOWS\SysNative\tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}" ["C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"] "C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\odhqtxrl.default user_pref("browser.startup.homepage", "http://google.nl/"); user_pref("browser.newtab.url", "http://search.norton.com"); user_pref("browser.search.defaultenginename", "Norton Safe Search"); user_pref("services.sync.prefs.sync.browser.search.selectedEngine", true); ==== Firefox Extensions ====================== ProfilePath: C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\odhqtxrl.default - YouTube Video and Audio Downloader - %ProfilePath%\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi - YouTube AdBlock - %ProfilePath%\extensions\jid1-w4wG5nJhx4LJZr@jetpack.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\odhqtxrl.default 9F9E2E37C8455FCC7E2716E3AFD3EF88 - P:\Vlc Player\VLC\npvlc.dll - VLC Web Plugin 88041A1D3DB193614C1DD264CDD7417E - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1221171.dll - Shockwave for Director / Shockwave for Director 6FE651F6E3025AD51CC1D54913AEEADC - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll - Shockwave Flash AF8A94BCB98C299C49B28CC12EBC0ED2 - C:\Users\Brian\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll - Google Update ==== Chromium Look ====================== Browsing Protection by F-Secure - Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade Chrome Web Store Payments - Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Google Docs - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf TV - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh YouTube - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Facebook - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm Pool - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb RTL XL Downloader - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cjpokhlejjnkfhmibeehgdlmcaldonni Google Search - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf 3D Table Tennis - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\eceoimpjbncjmhghmhfpmbkkkgkkchen Tetriz Challenge - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\emidddocikgklceeeifefomdnbkldhng Google Sheets - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap This information is used only for diagnosing the problem you are reporting is available only to someone investigating your report and is retained for no more than 30 days. - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp Google Docs Offline - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi AdBlock - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Google Maps - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh Park the car on this shopping mall parking as quick as you can. - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\mjfoehokglnmbbnncflhhgapdfkhahle Chrome Web Store Payments - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Teletekst - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\noblnklnhglbnfomoipgcidnbpdjfbom Background Tab - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic 3D Bomb Destroyer - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\okehlnjpihomkdokiiafpejniofjaoom Uitzending Gemist Downloader - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onogpacodgjlaoicjnmbfnigmbojmnlc TeamViewer - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oooiobdokpcfdlahlmcddobejikcmkfo Gmail - Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Fix ====================== C:\Users\Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\mjfoehokglnmbbnncflhhgapdfkhahle deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.nl/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.nl/" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== HijackThis Entries ====================== O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - P:\Evernote\EvernoteIE.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll O4 - HKLM\..\Run: [LWS] P:\Logitech\LWS\Webcam Software\LWS.exe -hide O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [WinBar (x86)] T:\Winbar\WinBar.exe O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKLM\..\Policies\Explorer\Run: [BootRacer] "C:\Program Files (x86)\BootRacer\Bootrace.exe" /2 O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - Startup: EvernoteClipper.lnk = P:\Evernote\EvernoteClipper.exe O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Afbeelding knippen - P:\Evernote\\EvernoteIERes\Clip.html?clipAction=4 O8 - Extra context menu item: Afbeelding opnemen - P:\Evernote\EvernoteIERes\Clip.html?clipAction=4 O8 - Extra context menu item: Bladwijzer knippen - P:\Evernote\EvernoteIERes\Clip.html?clipAction=0 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Kopieer selectie - P:\Evernote\EvernoteIERes\Clip.html?clipAction=3 O8 - Extra context menu item: Kopieer URL - P:\Evernote\\EvernoteIERes\Clip.html?clipAction=0 O8 - Extra context menu item: Nieuwe notitie - P:\Evernote\EvernoteIERes\NewNote.html O8 - Extra context menu item: Pagina opemen - P:\Evernote\EvernoteIERes\Clip.html?clipAction=1 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: @P:\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - P:\Evernote\\EvernoteIERes\AddNote.html O9 - Extra 'Tools' menuitem: @P:\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - P:\Evernote\\EvernoteIERes\AddNote.html O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: http://help.eset.com (HKLM) O15 - ESC Trusted Zone: http://help.eset.com (HKLM) O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: BootRacerServ - Greatis Software, LLC - C:\Program Files (x86)\BootRacer\BootRacerServ.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - P:\Teamviewer10\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Update service - Popcorn Time - C:\Program Files (x86)\Popcorn Time\Updater.exe O23 - Service: UsbClientService - Unknown owner - P:\Synology\Assistant\UsbClientService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Brian\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Brian\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Brian\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Brian\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Brian\AppData\Local\Mozilla\Firefox\Profiles\odhqtxrl.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Brian\AppData\Local\Google\Chrome SxS\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=71 folders=68 14969928 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Brian\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 15-02-2016 at 21:47:56,03 ======================