Ga naar inhoud

internet explorer


Aanbevolen berichten

Hallo,

Sinds een tijdje start explorer heel traag op, of gaat vastzitten. Hetzelfde gebeurt met chrome af en toe. Het lampje op de computer brandt dan constant alsof er heel veel activiteit is. Hier is mijn hijack log.

Alvast bedankt,

disk.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 01:34:38, on 1-12-2014

Platform: Unknown Windows (WinNT 6.02.1008)

MSIE: Internet Explorer v11.0 (11.00.9600.17416)

Boot mode: Normal

Running processes:

D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe

D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizTools.exe

C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE

C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

D:\downloads\hijack this\installatie\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = msn

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = msn

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe"

O4 - HKLM\..\Run: [indexSearch] "C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe"

O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"

O4 - HKLM\..\Run: [brMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN

O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun

O4 - HKLM\..\Run: [RemoteControl11] D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe

O4 - HKLM\..\Run: [KiesTrayAgent] D:\downloads\samsung kies\installatie\Kies\KiesTrayAgent.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe

O4 - HKCU\..\Run: [incrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020

O4 - HKCU\..\Run: [sUPERAntiSpyware] D:\downloads\superantispyware\installatie\SUPERAntiSpyware.exe

O4 - HKCU\..\Run: [KiesPreload] D:\downloads\samsung kies\installatie\Kies\Kies.exe /preload

O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_01946C57B66348E906C45ECFFD7F19BC] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

O4 - HKCU\..\Run: [Google Update] "C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [ToolwizCareFree] "D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe" -autorun

O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\downloads\deamon tools\installatie\DAEMON Tools Lite\DTLite.exe" -autorun

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab

O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL

O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - D:\downloads\superantispyware\installatie\SASCORE.EXE

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe

O23 - Service: CLHNServiceForPowerDVD - Unknown owner - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe

O23 - Service: CyberLink PowerDVD 11.0 Monitor Service - CyberLink - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe

O23 - Service: CyberLink PowerDVD 11.0 Service - CyberLink - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSServer.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Service KMSELDI - Unknown owner - D:\downloads\Office and Windows Activators\KMSpico v9.2.3 Final Activator For Windows and Office Full\installatie\KMSpico\Service_KMS.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 12113 bytes

Link naar reactie
Delen op andere sites

Je topic werd verplaatst naar Bestrijding malware & virussen, zo blijft het forum overzichtelijk.

Kan je het onderstaande uitvoeren en het gevraagde logje hier in je topic posten ? ...

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hoe je controleert of je met een 32- of 64-bitversie van Windows werkt kan je hier bekijken.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

De handleiding voor het gebruik van RSIT kan je HIER bekijken en we hebben ook nog een instructievideo.

Link naar reactie
Delen op andere sites

Hallo,

Hier is de rsit log.

Logfile of random's system information tool 1.10 (written by random/random)

Run by Disk at 2014-12-01 11:29:37

Microsoft Windows 8.1

System drive C: has 34 GB (34%) free of 102 GB

Total RAM: 8190 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 11:29:39, on 1-12-2014

Platform: Unknown Windows (WinNT 6.02.1008)

MSIE: Internet Explorer v11.0 (11.00.9600.17416)

Boot mode: Normal

Running processes:

D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe

D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizTools.exe

C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE

C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Users\Disk\AppData\Roaming\uTorrent\uTorrent.exe

C:\Program Files\trend micro\Disk.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = msn

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = msn

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe"

O4 - HKLM\..\Run: [indexSearch] "C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe"

O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"

O4 - HKLM\..\Run: [brMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN

O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun

O4 - HKLM\..\Run: [RemoteControl11] D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe

O4 - HKLM\..\Run: [KiesTrayAgent] D:\downloads\samsung kies\installatie\Kies\KiesTrayAgent.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe

O4 - HKCU\..\Run: [incrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020

O4 - HKCU\..\Run: [sUPERAntiSpyware] D:\downloads\superantispyware\installatie\SUPERAntiSpyware.exe

O4 - HKCU\..\Run: [KiesPreload] D:\downloads\samsung kies\installatie\Kies\Kies.exe /preload

O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_01946C57B66348E906C45ECFFD7F19BC] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

O4 - HKCU\..\Run: [Google Update] "C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [ToolwizCareFree] "D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe" -autorun

O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\downloads\deamon tools\installatie\DAEMON Tools Lite\DTLite.exe" -autorun

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab

O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL

O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - D:\downloads\superantispyware\installatie\SASCORE.EXE

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe

O23 - Service: CLHNServiceForPowerDVD - Unknown owner - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe

O23 - Service: CyberLink PowerDVD 11.0 Monitor Service - CyberLink - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe

O23 - Service: CyberLink PowerDVD 11.0 Service - CyberLink - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSServer.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Service KMSELDI - Unknown owner - D:\downloads\Office and Windows Activators\KMSpico v9.2.3 Final Activator For Windows and Office Full\installatie\KMSpico\Service_KMS.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 11881 bytes

======Listing Processes======

wininit.exe

C:\Windows\system32\lsass.exe

winlogon.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

"dwm.exe"

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

taskhostex.exe

C:\Windows\Explorer.EXE

"D:\downloads\superantispyware\installatie\SASCORE.EXE"

"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"

"D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe"

"D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe"

"D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSServer.exe"

dashost.exe {83f91e66-1fcc-49c3-90fea29ebff21212}

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted

"C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe"

"D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe" -autorun

C:\Windows\System32\RuntimeBroker.exe -Embedding

"D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizTools.exe" -STARTUPGUARD

"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000006f8

C:\Windows\system32\SearchIndexer.exe /Embedding

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c271437d-ed55-4146-a782-93f2a54de686 -SystemEventPortName:HostProcess-7227bc0f-961c-4527-989d-ea6b36ed304a -IoCancelEventPortName:HostProcess-f8fd3240-c479-470b-af3c-52a73120ac8a -NonStateChangingEventPortName:HostProcess-aa140d0b-aa50-4214-8510-0fa0d0174b34 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5f7f9af1-63cf-45f6-b0a9-1232bf92ae2a -DeviceGroupId:WpdFsGroup

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

"C:\Windows\System32\SettingSyncHost.exe" -Embedding

"C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

C:\Windows\System32\skydrive.exe -Embedding

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

"D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE"

"C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4592.0.574874457\1745179761" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38 --gpu-vendor-id=0x1002 --gpu-device-id=0x9440 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.97.10.6 --ignored=" --type=renderer " /prefetch:822062411

"D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe"

C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials=DomRel-Enable/enable/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_40/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4592.1.30700048\901483480" /prefetch:673131151

"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

"C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials=BrowserBlacklist/Enabled/DomRel-Enable/enable/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_40/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4592.2.1328871215\787520679" /prefetch:673131151

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca

"C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe" -Embedding

D:\PROGRA~1\MICROS~1\INSTAL~1\Office15\WINWORD.EXE -Embedding

"C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe" /c

"C:\Users\Disk\AppData\Roaming\uTorrent\uTorrent.exe" "D:\torrent\Pro Evolution Soccer 2015 Update v1.01.01.torrent"

"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe238_ Global\UsGthrCtrlFltPipeMssGthrPipe238 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\Windows\system32\SearchFilterHost.exe" 0 560 564 572 65536 568

"C:\Users\Disk\Desktop\RSITx64.exe"

C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-476776748-143487406-171064425-1001Core.job - C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe /c

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-476776748-143487406-171064425-1001UA.job - C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

C:\Windows\tasks\ParetoLogic Registration3.job - C:\Windows\system32\rundll32.exe "C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns

=========Mozilla firefox=========

ProfilePath - C:\Users\Disk\AppData\Roaming\Mozilla\Firefox\Profiles\uxflsrki.default

prefs.js - "browser.startup.homepage" - "about:blank"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]

"Description"=Microsoft Lync Plug-in for Firefox

"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]

"Description"=Microsoft SharePoint Plug-in for Firefox

"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]

"Description"=VLC Multimedia Plugin

"Path"=D:\downloads\vlcplayer\installatie\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]

"Description"=VLC Multimedia Plugin

"Path"=D:\downloads\vlcplayer\installatie\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]

"Description"=

"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]

"Description"=Microsoft SharePoint Plug-in for Firefox

"Path"=D:\PROGRA~1\MICROS~1\INSTAL~1\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]

"Description"=

"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll

D:\downloads\firefox\installatie\plugins\

MyCamera.dll

NPCIG.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]

Lync Browser Helper - D:\programma\Microsoft Office Professional Plus 64Bit 2013 NL\installatie\Office15\OCHelper.dll [2014-10-22 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-04-15 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]

Microsoft SkyDrive Pro Browser Helper - D:\PROGRA~1\MICROS~1\INSTAL~1\Office15\GROOVEEX.DLL [2014-10-14 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]

Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-10-22 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-15 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]

Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 1729752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-04-15 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-15 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"IncrediMail"=C:\Program Files (x86)\IncrediMail\bin\IncMail.exe [2014-03-30 444840]

"Spotify Web Helper"=C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-10-20 1514040]

"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-02-28 1828136]

"SUPERAntiSpyware"=D:\downloads\superantispyware\installatie\SUPERAntiSpyware.exe [2012-07-10 4777856]

"KiesPreload"=D:\downloads\samsung kies\installatie\Kies\Kies.exe [2014-07-25 1562264]

"GoogleChromeAutoLaunch_01946C57B66348E906C45ECFFD7F19BC"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-11-25 856904]

"Google Update"=C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-23 116648]

"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2014-04-15 39408]

"ToolwizCareFree"=D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe [2014-10-05 5274328]

"DAEMON Tools Lite"=D:\downloads\deamon tools\installatie\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"PWRISOVM.EXE"=D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE [2009-03-15 180224]

"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]

"SSBkgdUpdate"=C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]

"PaperPort PTD"=C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe [2008-07-09 29984]

"IndexSearch"=C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe [2008-07-09 46368]

"PPort11reminder"=C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe [2007-08-31 328992]

"BrMfcWnd"=C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [2012-09-25 1163264]

"ControlCenter3"=C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [2008-12-24 114688]

"RemoteControl11"=D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe [2011-05-19 234792]

"KiesTrayAgent"=D:\downloads\samsung kies\installatie\Kies\KiesTrayAgent.exe [2014-07-25 311616]

"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2014-11-18 703736]

"Avira Systray"=C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [2014-10-22 124208]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.yuy2"=msyuv.dll

"vidc.i420"=iyuv_32.dll

"msacm.msgsm610"=msgsm32.acm

"msacm.msg711"=msg711.acm

"vidc.yvyu"=msyuv.dll

"vidc.yvu9"=tsbyuv.dll

"wavemapper"=msacm32.drv

"midimapper"=midimap.dll

"vidc.uyvy"=msyuv.dll

"vidc.iyuv"=iyuv_32.dll

"vidc.mrle"=msrle32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msadpcm"=msadp32.acm

"vidc.msvc"=msvidc32.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave2"=wdmaud.drv

"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-01 11:29:38 ----D---- C:\Program Files\trend micro

2014-12-01 11:29:37 ----D---- C:\rsit

2014-11-28 10:50:11 ----SHD---- C:\found.009

2014-11-24 20:01:31 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe

2014-11-24 20:01:29 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe

2014-11-24 20:00:57 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll

2014-11-24 20:00:57 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll

2014-11-24 20:00:57 ----A---- C:\Windows\system32\XAudio2_7.dll

2014-11-24 20:00:57 ----A---- C:\Windows\system32\XAPOFX1_5.dll

2014-11-24 20:00:56 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll

2014-11-24 20:00:56 ----A---- C:\Windows\system32\xactengine3_7.dll

2014-11-24 20:00:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll

2014-11-24 20:00:55 ----A---- C:\Windows\system32\D3DCompiler_43.dll

2014-11-24 20:00:54 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll

2014-11-24 20:00:54 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll

2014-11-24 20:00:54 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll

2014-11-24 20:00:54 ----A---- C:\Windows\system32\d3dx11_43.dll

2014-11-24 20:00:54 ----A---- C:\Windows\system32\d3dx10_43.dll

2014-11-24 20:00:54 ----A---- C:\Windows\system32\d3dcsx_43.dll

2014-11-24 20:00:53 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll

2014-11-24 20:00:53 ----A---- C:\Windows\system32\D3DX9_43.dll

2014-11-24 20:00:52 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll

2014-11-24 20:00:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll

2014-11-24 20:00:52 ----A---- C:\Windows\system32\XAudio2_6.dll

2014-11-24 20:00:52 ----A---- C:\Windows\system32\XAPOFX1_4.dll

2014-11-24 20:00:51 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll

2014-11-24 20:00:51 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll

2014-11-24 20:00:51 ----A---- C:\Windows\system32\xactengine3_6.dll

2014-11-24 20:00:51 ----A---- C:\Windows\system32\X3DAudio1_7.dll

2014-11-24 20:00:50 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll

2014-11-24 20:00:50 ----A---- C:\Windows\system32\XAudio2_5.dll

2014-11-24 20:00:49 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll

2014-11-24 20:00:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll

2014-11-24 20:00:49 ----A---- C:\Windows\system32\xactengine3_5.dll

2014-11-24 20:00:49 ----A---- C:\Windows\system32\D3DCompiler_42.dll

2014-11-24 20:00:47 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll

2014-11-24 20:00:47 ----A---- C:\Windows\system32\d3dcsx_42.dll

2014-11-24 20:00:46 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll

2014-11-24 20:00:46 ----A---- C:\Windows\system32\d3dx11_42.dll

2014-11-24 20:00:45 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll

2014-11-24 20:00:45 ----A---- C:\Windows\system32\d3dx10_42.dll

2014-11-24 20:00:44 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll

2014-11-24 20:00:44 ----A---- C:\Windows\system32\D3DX9_42.dll

2014-11-24 20:00:42 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll

2014-11-24 20:00:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll

2014-11-24 20:00:42 ----A---- C:\Windows\system32\d3dx10_41.dll

2014-11-24 20:00:42 ----A---- C:\Windows\system32\D3DCompiler_41.dll

2014-11-24 20:00:41 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll

2014-11-24 20:00:41 ----A---- C:\Windows\system32\D3DX9_41.dll

2014-11-24 20:00:40 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll

2014-11-24 20:00:40 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll

2014-11-24 20:00:40 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll

2014-11-24 20:00:40 ----A---- C:\Windows\system32\XAudio2_4.dll

2014-11-24 20:00:40 ----A---- C:\Windows\system32\XAPOFX1_3.dll

2014-11-24 20:00:40 ----A---- C:\Windows\system32\xactengine3_4.dll

2014-11-24 20:00:39 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll

2014-11-24 20:00:39 ----A---- C:\Windows\system32\X3DAudio1_6.dll

2014-11-24 20:00:38 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll

2014-11-24 20:00:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll

2014-11-24 20:00:38 ----A---- C:\Windows\system32\d3dx10_40.dll

2014-11-24 20:00:38 ----A---- C:\Windows\system32\D3DCompiler_40.dll

2014-11-24 20:00:37 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll

2014-11-24 20:00:37 ----A---- C:\Windows\system32\D3DX9_40.dll

2014-11-24 20:00:36 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll

2014-11-24 20:00:36 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll

2014-11-24 20:00:36 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll

2014-11-24 20:00:36 ----A---- C:\Windows\system32\XAudio2_3.dll

2014-11-24 20:00:36 ----A---- C:\Windows\system32\XAPOFX1_2.dll

2014-11-24 20:00:36 ----A---- C:\Windows\system32\xactengine3_3.dll

2014-11-24 20:00:35 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll

2014-11-24 20:00:35 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll

2014-11-24 20:00:35 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll

2014-11-24 20:00:35 ----A---- C:\Windows\system32\XAudio2_2.dll

2014-11-24 20:00:35 ----A---- C:\Windows\system32\XAPOFX1_1.dll

2014-11-24 20:00:35 ----A---- C:\Windows\system32\X3DAudio1_5.dll

2014-11-24 20:00:34 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll

2014-11-24 20:00:34 ----A---- C:\Windows\system32\xactengine3_2.dll

2014-11-24 20:00:33 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll

2014-11-24 20:00:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll

2014-11-24 20:00:33 ----A---- C:\Windows\system32\d3dx10_39.dll

2014-11-24 20:00:33 ----A---- C:\Windows\system32\D3DCompiler_39.dll

2014-11-24 20:00:32 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll

2014-11-24 20:00:32 ----A---- C:\Windows\system32\D3DX9_39.dll

2014-11-24 20:00:31 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll

2014-11-24 20:00:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll

2014-11-24 20:00:31 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll

2014-11-24 20:00:31 ----A---- C:\Windows\system32\XAudio2_1.dll

2014-11-24 20:00:31 ----A---- C:\Windows\system32\XAPOFX1_0.dll

2014-11-24 20:00:31 ----A---- C:\Windows\system32\xactengine3_1.dll

2014-11-24 20:00:30 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll

2014-11-24 20:00:30 ----A---- C:\Windows\system32\X3DAudio1_4.dll

2014-11-24 20:00:29 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll

2014-11-24 20:00:29 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll

2014-11-24 20:00:29 ----A---- C:\Windows\system32\d3dx10_38.dll

2014-11-24 20:00:29 ----A---- C:\Windows\system32\D3DCompiler_38.dll

2014-11-24 20:00:28 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll

2014-11-24 20:00:28 ----A---- C:\Windows\system32\D3DX9_38.dll

2014-11-24 20:00:27 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll

2014-11-24 20:00:27 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll

2014-11-24 20:00:27 ----A---- C:\Windows\system32\XAudio2_0.dll

2014-11-24 20:00:27 ----A---- C:\Windows\system32\xactengine3_0.dll

2014-11-24 20:00:26 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll

2014-11-24 20:00:26 ----A---- C:\Windows\system32\X3DAudio1_3.dll

2014-11-24 20:00:25 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll

2014-11-24 20:00:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll

2014-11-24 20:00:25 ----A---- C:\Windows\system32\d3dx10_37.dll

2014-11-24 20:00:25 ----A---- C:\Windows\system32\D3DCompiler_37.dll

2014-11-24 20:00:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll

2014-11-24 20:00:24 ----A---- C:\Windows\system32\D3DX9_37.dll

2014-11-24 20:00:23 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll

2014-11-24 20:00:23 ----A---- C:\Windows\system32\xactengine2_10.dll

2014-11-24 20:00:22 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll

2014-11-24 20:00:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll

2014-11-24 20:00:22 ----A---- C:\Windows\system32\d3dx10_36.dll

2014-11-24 20:00:22 ----A---- C:\Windows\system32\D3DCompiler_36.dll

2014-11-24 20:00:21 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll

2014-11-24 20:00:21 ----A---- C:\Windows\system32\d3dx9_36.dll

2014-11-24 20:00:20 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll

2014-11-24 20:00:20 ----A---- C:\Windows\system32\xactengine2_9.dll

2014-11-24 20:00:19 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll

2014-11-24 20:00:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll

2014-11-24 20:00:19 ----A---- C:\Windows\system32\d3dx10_35.dll

2014-11-24 20:00:19 ----A---- C:\Windows\system32\D3DCompiler_35.dll

2014-11-24 20:00:18 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll

2014-11-24 20:00:18 ----A---- C:\Windows\system32\d3dx9_35.dll

2014-11-24 20:00:17 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll

2014-11-24 20:00:17 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll

2014-11-24 20:00:17 ----A---- C:\Windows\system32\xactengine2_8.dll

2014-11-24 20:00:17 ----A---- C:\Windows\system32\X3DAudio1_2.dll

2014-11-24 20:00:15 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll

2014-11-24 20:00:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll

2014-11-24 20:00:15 ----A---- C:\Windows\system32\d3dx10_34.dll

2014-11-24 20:00:15 ----A---- C:\Windows\system32\D3DCompiler_34.dll

2014-11-24 20:00:14 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll

2014-11-24 20:00:14 ----A---- C:\Windows\system32\d3dx9_34.dll

2014-11-24 20:00:13 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll

2014-11-24 20:00:13 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll

2014-11-24 20:00:13 ----A---- C:\Windows\system32\xinput1_3.dll

2014-11-24 20:00:13 ----A---- C:\Windows\system32\xactengine2_7.dll

2014-11-24 20:00:12 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll

2014-11-24 20:00:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll

2014-11-24 20:00:12 ----A---- C:\Windows\system32\d3dx10_33.dll

2014-11-24 20:00:12 ----A---- C:\Windows\system32\D3DCompiler_33.dll

2014-11-24 20:00:11 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll

2014-11-24 20:00:11 ----A---- C:\Windows\system32\d3dx9_33.dll

2014-11-24 20:00:10 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll

2014-11-24 20:00:10 ----A---- C:\Windows\system32\xactengine2_6.dll

2014-11-24 20:00:09 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll

2014-11-24 20:00:09 ----A---- C:\Windows\system32\xactengine2_5.dll

2014-11-24 20:00:08 ----A---- C:\Windows\SYSWOW64\d3dx10.dll

2014-11-24 20:00:08 ----A---- C:\Windows\system32\d3dx10.dll

2014-11-24 20:00:07 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll

2014-11-24 20:00:07 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll

2014-11-24 20:00:07 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll

2014-11-24 20:00:07 ----A---- C:\Windows\system32\xactengine2_4.dll

2014-11-24 20:00:07 ----A---- C:\Windows\system32\x3daudio1_1.dll

2014-11-24 20:00:07 ----A---- C:\Windows\system32\d3dx9_32.dll

2014-11-24 20:00:05 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll

2014-11-24 20:00:05 ----A---- C:\Windows\system32\d3dx9_31.dll

2014-11-24 20:00:04 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll

2014-11-24 20:00:04 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll

2014-11-24 20:00:04 ----A---- C:\Windows\system32\xinput1_2.dll

2014-11-24 20:00:04 ----A---- C:\Windows\system32\xactengine2_3.dll

2014-11-24 20:00:03 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll

2014-11-24 20:00:03 ----A---- C:\Windows\system32\xactengine2_2.dll

2014-11-24 20:00:02 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll

2014-11-24 20:00:02 ----A---- C:\Windows\system32\xinput1_1.dll

2014-11-24 20:00:01 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll

2014-11-24 20:00:01 ----A---- C:\Windows\system32\xactengine2_1.dll

2014-11-24 19:59:54 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll

2014-11-24 19:59:54 ----A---- C:\Windows\system32\d3dx9_30.dll

2014-11-24 19:59:53 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll

2014-11-24 19:59:53 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll

2014-11-24 19:59:53 ----A---- C:\Windows\system32\xactengine2_0.dll

2014-11-24 19:59:53 ----A---- C:\Windows\system32\x3daudio1_0.dll

2014-11-24 19:59:52 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll

2014-11-24 19:59:52 ----A---- C:\Windows\system32\d3dx9_29.dll

2014-11-24 19:59:50 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll

2014-11-24 19:59:50 ----A---- C:\Windows\system32\d3dx9_28.dll

2014-11-24 19:59:49 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll

2014-11-24 19:59:49 ----A---- C:\Windows\system32\d3dx9_27.dll

2014-11-24 19:59:48 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll

2014-11-24 19:59:48 ----A---- C:\Windows\system32\d3dx9_26.dll

2014-11-24 19:59:46 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll

2014-11-24 19:59:46 ----A---- C:\Windows\system32\d3dx9_25.dll

2014-11-24 19:59:45 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll

2014-11-24 19:59:45 ----A---- C:\Windows\system32\d3dx9_24.dll

2014-11-24 19:42:55 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys

2014-11-24 18:45:31 ----D---- C:\Users\Disk\AppData\Roaming\iWin

2014-11-19 20:02:22 ----D---- C:\Users\Disk\AppData\Roaming\AIMP3

2014-11-19 17:21:07 ----D---- C:\Users\Disk\AppData\Roaming\cYo

2014-11-19 04:16:56 ----A---- C:\Windows\SYSWOW64\pku2u.dll

2014-11-19 04:16:56 ----A---- C:\Windows\SYSWOW64\kerberos.dll

2014-11-19 04:16:56 ----A---- C:\Windows\system32\kerberos.dll

2014-11-19 04:16:55 ----A---- C:\Windows\system32\pku2u.dll

2014-11-12 07:25:06 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2014-11-12 07:25:06 ----A---- C:\Windows\SYSWOW64\inetcomm.dll

2014-11-12 07:25:04 ----A---- C:\Windows\SYSWOW64\url.dll

2014-11-12 07:25:03 ----A---- C:\Windows\SYSWOW64\msrating.dll

2014-11-12 07:25:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll

2014-11-12 07:25:03 ----A---- C:\Windows\SYSWOW64\inseng.dll

2014-11-12 07:25:03 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2014-11-12 07:25:02 ----A---- C:\Windows\SYSWOW64\wextract.exe

2014-11-12 07:25:02 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe

2014-11-12 07:25:02 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll

2014-11-12 07:25:02 ----A---- C:\Windows\SYSWOW64\licmgr10.dll

2014-11-12 07:25:02 ----A---- C:\Windows\SYSWOW64\imgutil.dll

2014-11-12 07:25:02 ----A---- C:\Windows\SYSWOW64\iexpress.exe

2014-11-12 07:25:02 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll

2014-11-12 07:25:01 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

2014-11-12 07:25:01 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2014-11-12 07:24:59 ----A---- C:\Windows\SYSWOW64\wininet.dll

2014-11-12 07:24:59 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2014-11-12 07:24:59 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll

2014-11-12 07:24:57 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2014-11-12 07:24:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2014-11-12 07:24:57 ----A---- C:\Windows\SYSWOW64\pngfilt.dll

2014-11-12 07:24:57 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

2014-11-12 07:24:57 ----A---- C:\Windows\SYSWOW64\jscript.dll

2014-11-12 07:24:57 ----A---- C:\Windows\SYSWOW64\hlink.dll

2014-11-12 07:24:57 ----A---- C:\Windows\SYSWOW64\actxprxy.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\webcheck.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\occache.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\iesysprep.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\iernonce.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2014-11-12 07:24:56 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll

2014-11-12 07:24:55 ----A---- C:\Windows\SYSWOW64\mshta.exe

2014-11-12 07:24:55 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2014-11-12 07:24:55 ----A---- C:\Windows\SYSWOW64\ieui.dll

2014-11-12 07:24:55 ----A---- C:\Windows\SYSWOW64\iepeers.dll

2014-11-12 07:24:55 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

2014-11-12 07:24:55 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

2014-11-12 07:24:44 ----A---- C:\Windows\system32\vbscript.dll

2014-11-12 07:24:44 ----A---- C:\Windows\system32\jscript9diag.dll

2014-11-12 07:24:44 ----A---- C:\Windows\system32\jscript.dll

2014-11-12 07:24:43 ----A---- C:\Windows\system32\jscript9.dll

2014-11-12 07:24:43 ----A---- C:\Windows\system32\inetcomm.dll

2014-11-12 07:24:42 ----A---- C:\Windows\system32\ieframe.dll

2014-11-12 07:24:40 ----A---- C:\Windows\system32\url.dll

2014-11-12 07:24:40 ----A---- C:\Windows\system32\inseng.dll

2014-11-12 07:24:40 ----A---- C:\Windows\system32\iesysprep.dll

2014-11-12 07:24:40 ----A---- C:\Windows\system32\iesetup.dll

2014-11-12 07:24:40 ----A---- C:\Windows\system32\iertutil.dll

2014-11-12 07:24:40 ----A---- C:\Windows\system32\iernonce.dll

2014-11-12 07:24:40 ----A---- C:\Windows\system32\ie4uinit.exe

2014-11-12 07:24:39 ----A---- C:\Windows\system32\webcheck.dll

2014-11-12 07:24:39 ----A---- C:\Windows\system32\occache.dll

2014-11-12 07:24:39 ----A---- C:\Windows\system32\msrating.dll

2014-11-12 07:24:39 ----A---- C:\Windows\system32\MshtmlDac.dll

2014-11-12 07:24:39 ----A---- C:\Windows\system32\ieUnatt.exe

2014-11-12 07:24:38 ----A---- C:\Windows\system32\wextract.exe

2014-11-12 07:24:38 ----A---- C:\Windows\system32\mshtmled.dll

2014-11-12 07:24:38 ----A---- C:\Windows\system32\mshtml.dll

2014-11-12 07:24:38 ----A---- C:\Windows\system32\imgutil.dll

2014-11-12 07:24:38 ----A---- C:\Windows\system32\iexpress.exe

2014-11-12 07:24:38 ----A---- C:\Windows\system32\ieetwproxystub.dll

2014-11-12 07:24:38 ----A---- C:\Windows\system32\ieetwcollector.exe

2014-11-12 07:24:38 ----A---- C:\Windows\system32\IEAdvpack.dll

2014-11-12 07:24:37 ----A---- C:\Windows\system32\mshta.exe

2014-11-12 07:24:37 ----A---- C:\Windows\system32\msfeedssync.exe

2014-11-12 07:24:37 ----A---- C:\Windows\system32\msfeedsbs.dll

2014-11-12 07:24:37 ----A---- C:\Windows\system32\msfeeds.dll

2014-11-12 07:24:35 ----A---- C:\Windows\system32\dxtrans.dll

2014-11-12 07:24:35 ----A---- C:\Windows\system32\dxtmsft.dll

2014-11-12 07:24:34 ----A---- C:\Windows\system32\licmgr10.dll

2014-11-12 07:24:34 ----A---- C:\Windows\system32\ieui.dll

2014-11-12 07:24:34 ----A---- C:\Windows\system32\iepeers.dll

2014-11-12 07:24:34 ----A---- C:\Windows\system32\iedkcs32.dll

2014-11-12 07:24:34 ----A---- C:\Windows\system32\ieapfltr.dll

2014-11-12 07:24:32 ----A---- C:\Windows\system32\wininet.dll

2014-11-12 07:24:32 ----A---- C:\Windows\system32\jsproxy.dll

2014-11-12 07:24:32 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll

2014-11-12 07:24:28 ----A---- C:\Windows\system32\urlmon.dll

2014-11-12 07:24:28 ----A---- C:\Windows\system32\pngfilt.dll

2014-11-12 07:24:28 ----A---- C:\Windows\system32\hlink.dll

2014-11-12 07:24:27 ----A---- C:\Windows\system32\actxprxy.dll

2014-11-12 07:22:49 ----A---- C:\Windows\SYSWOW64\schannel.dll

2014-11-12 07:22:48 ----A---- C:\Windows\system32\schannel.dll

2014-11-12 07:22:47 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll

2014-11-12 07:22:47 ----A---- C:\Windows\system32\ncryptsslp.dll

2014-11-12 07:22:47 ----A---- C:\Windows\system32\dpapisrv.dll

2014-11-12 07:22:04 ----A---- C:\Windows\SYSWOW64\msi.dll

2014-11-12 07:22:04 ----A---- C:\Windows\system32\msi.dll

2014-11-12 07:22:04 ----A---- C:\Windows\system32\authui.dll

2014-11-12 07:22:03 ----A---- C:\Windows\SYSWOW64\msihnd.dll

2014-11-12 07:22:03 ----A---- C:\Windows\SYSWOW64\authui.dll

2014-11-12 07:22:03 ----A---- C:\Windows\system32\msihnd.dll

2014-11-12 07:22:03 ----A---- C:\Windows\system32\consent.exe

2014-11-12 07:22:03 ----A---- C:\Windows\system32\appinfo.dll

2014-11-12 07:21:58 ----A---- C:\Windows\system32\user32.dll

2014-11-12 07:21:57 ----A---- C:\Windows\SYSWOW64\user32.dll

2014-11-12 07:21:56 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys

2014-11-12 07:21:56 ----A---- C:\Windows\system32\drivers\WdFilter.sys

2014-11-12 07:21:55 ----A---- C:\Windows\system32\drivers\WdBoot.sys

2014-11-12 07:21:54 ----A---- C:\Windows\SYSWOW64\winshfhc.dll

2014-11-12 07:21:54 ----A---- C:\Windows\system32\winshfhc.dll

2014-11-12 07:21:15 ----A---- C:\Windows\SYSWOW64\msxml3.dll

2014-11-12 07:21:15 ----A---- C:\Windows\system32\msxml3.dll

2014-11-12 07:21:13 ----A---- C:\Windows\SYSWOW64\AudioSes.dll

2014-11-12 07:21:13 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll

2014-11-12 07:21:13 ----A---- C:\Windows\SYSWOW64\AudioEng.dll

2014-11-12 07:21:13 ----A---- C:\Windows\system32\audiosrv.dll

2014-11-12 07:21:13 ----A---- C:\Windows\system32\AudioSes.dll

2014-11-12 07:21:13 ----A---- C:\Windows\system32\AUDIOKSE.dll

2014-11-12 07:21:13 ----A---- C:\Windows\system32\audiodg.exe

2014-11-12 07:21:12 ----A---- C:\Windows\system32\AudioEng.dll

2014-11-12 07:21:12 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll

2014-11-12 07:21:09 ----A---- C:\Windows\system32\EncDump.dll

2014-11-12 07:18:54 ----A---- C:\Windows\system32\win32k.sys

2014-11-12 07:18:53 ----A---- C:\Windows\SYSWOW64\packager.dll

2014-11-12 07:18:53 ----A---- C:\Windows\system32\packager.dll

2014-11-12 07:18:47 ----A---- C:\Windows\SYSWOW64\certcli.dll

2014-11-12 07:18:47 ----A---- C:\Windows\system32\lsasrv.dll

2014-11-12 07:18:47 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2014-11-12 07:18:47 ----A---- C:\Windows\system32\drivers\cng.sys

2014-11-12 07:18:47 ----A---- C:\Windows\system32\certcli.dll

2014-11-12 07:18:46 ----A---- C:\Windows\SYSWOW64\msaudite.dll

2014-11-12 07:18:46 ----A---- C:\Windows\SYSWOW64\adtschema.dll

2014-11-12 07:18:46 ----A---- C:\Windows\system32\rfxvmt.dll

2014-11-12 07:18:46 ----A---- C:\Windows\system32\rdpudd.dll

2014-11-12 07:18:46 ----A---- C:\Windows\system32\rdpcorets.dll

2014-11-12 07:18:46 ----A---- C:\Windows\system32\msaudite.dll

2014-11-12 07:18:46 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys

2014-11-12 07:18:46 ----A---- C:\Windows\system32\adtschema.dll

2014-11-12 07:18:45 ----A---- C:\Windows\SYSWOW64\oleaut32.dll

2014-11-12 07:18:45 ----A---- C:\Windows\system32\oleaut32.dll

2014-11-12 07:18:44 ----A---- C:\Windows\system32\generaltel.dll

2014-11-12 07:18:44 ----A---- C:\Windows\system32\devinv.dll

2014-11-12 07:18:44 ----A---- C:\Windows\system32\aepdu.dll

2014-11-12 07:18:44 ----A---- C:\Windows\system32\aeinv.dll

2014-11-12 07:18:43 ----A---- C:\Windows\system32\aepic.dll

2014-11-12 07:18:41 ----A---- C:\Windows\system32\wuaueng.dll

2014-11-12 07:18:40 ----A---- C:\Windows\SYSWOW64\wuwebv.dll

2014-11-12 07:18:40 ----A---- C:\Windows\SYSWOW64\wups.dll

2014-11-12 07:18:40 ----A---- C:\Windows\SYSWOW64\wudriver.dll

2014-11-12 07:18:40 ----A---- C:\Windows\SYSWOW64\wuapp.exe

2014-11-12 07:18:40 ----A---- C:\Windows\SYSWOW64\wuapi.dll

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wuwebv.dll

2014-11-12 07:18:40 ----A---- C:\Windows\system32\WUSettingsProvider.dll

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wups2.dll

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wups.dll

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wudriver.dll

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wucltux.dll

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wuauclt.exe

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wuapp.exe

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wuapi.dll

2014-11-12 07:18:40 ----A---- C:\Windows\system32\wuaext.dll

2014-11-11 15:14:28 ----D---- C:\Users\Disk\AppData\Roaming\uTorrent

======List of files/folders modified in the last 1 month======

2014-12-01 11:29:38 ----RD---- C:\Program Files

2014-12-01 11:29:38 ----D---- C:\Windows\Temp

2014-12-01 11:00:00 ----D---- C:\Windows\system32\sru

2014-12-01 10:55:26 ----D---- C:\Windows\Prefetch

2014-12-01 05:34:54 ----D---- C:\Windows\Microsoft.NET

2014-12-01 03:26:20 ----D---- C:\Windows\Inf

2014-12-01 02:29:00 ----D---- C:\Windows\SysWOW64

2014-11-30 04:47:23 ----D---- C:\Windows\SoftwareDistribution

2014-11-30 03:43:54 ----D---- C:\Windows\debug

2014-11-29 17:47:47 ----RD---- C:\Windows\System32

2014-11-29 17:47:47 ----A---- C:\Windows\system32\PerfStringBackup.INI

2014-11-29 15:22:28 ----D---- C:\Users\Disk\AppData\Roaming\DAEMON Tools Lite

2014-11-29 15:22:13 ----D---- C:\Windows\Logs

2014-11-29 15:22:13 ----D---- C:\Windows

2014-11-29 13:11:31 ----D---- C:\Windows\Tasks

2014-11-29 13:11:31 ----D---- C:\Windows\system32\drivers

2014-11-29 13:08:58 ----HD---- C:\ProgramData

2014-11-28 10:52:37 ----SHD---- C:\Recovery

2014-11-28 08:50:11 ----SHD---- C:\System Volume Information

2014-11-27 07:46:41 ----D---- C:\Windows\system32\config

2014-11-27 07:29:30 ----D---- C:\Windows\AppReadiness

2014-11-26 18:01:34 ----D---- C:\Windows\CbsTemp

2014-11-26 18:01:33 ----D---- C:\Windows\WinSxS

2014-11-25 07:37:40 ----HD---- C:\Program Files\WindowsApps

2014-11-24 23:21:18 ----D---- C:\Users\Disk\AppData\Roaming\vlc

2014-11-24 20:04:54 ----D---- C:\ProgramData\Orbit

2014-11-24 20:01:26 ----SHD---- C:\Windows\Installer

2014-11-24 20:00:01 ----RSD---- C:\Windows\assembly

2014-11-24 19:45:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2014-11-24 19:44:03 ----D---- C:\ProgramData\DAEMON Tools Lite

2014-11-24 19:42:57 ----D---- C:\Windows\system32\catroot

2014-11-24 19:42:56 ----D---- C:\Windows\system32\DriverStore

2014-11-20 21:51:37 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2014-11-17 17:14:42 ----D---- C:\Users\Disk\AppData\Roaming\Spotify

2014-11-14 14:33:23 ----D---- C:\ProgramData\Microsoft Help

2014-11-14 06:41:09 ----D---- C:\Windows\rescache

2014-11-13 14:07:39 ----RD---- C:\Program Files (x86)

2014-11-13 04:47:46 ----D---- C:\Windows\system32\catroot2

2014-11-12 16:24:58 ----D---- C:\Users\Disk\AppData\Roaming\ZoomBrowser EX

2014-11-12 16:24:30 ----D---- C:\Users\Disk\AppData\Roaming\CameraWindowDC

2014-11-12 15:24:29 ----D---- C:\Windows\SYSWOW64\nl-NL

2014-11-12 15:24:29 ----D---- C:\Windows\system32\nl-NL

2014-11-12 15:24:28 ----D---- C:\Program Files (x86)\Internet Explorer

2014-11-12 15:24:27 ----D---- C:\Windows\SYSWOW64\migration

2014-11-12 15:24:26 ----D---- C:\Windows\system32\migration

2014-11-12 15:24:25 ----D---- C:\Program Files\Internet Explorer

2014-11-12 15:24:24 ----SD---- C:\Windows\system32\CompatTel

2014-11-12 15:24:23 ----D---- C:\Program Files\Windows Defender

2014-11-12 15:24:23 ----D---- C:\Program Files (x86)\Windows Defender

2014-11-12 08:10:23 ----D---- C:\Windows\system32\wbem

2014-11-12 08:04:09 ----A---- C:\Windows\win.ini

2014-11-12 08:00:42 ----D---- C:\Windows\system32\MRT

2014-11-12 07:56:29 ----A---- C:\Windows\system32\MRT.exe

2014-11-11 11:58:23 ----D---- C:\Windows\registration

2014-11-10 19:48:10 ----D---- C:\ProgramData\boost_interprocess

2014-11-10 19:43:39 ----D---- C:\ProgramData\Citrix

2014-11-08 16:47:00 ----D---- C:\VueScan

2014-11-07 22:31:59 ----D---- C:\ProgramData\Package Cache

2014-11-07 22:31:50 ----D---- C:\Program Files (x86)\Avira

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 BTOWSVF;BTOWSVF; C:\Windows\System32\Drivers\BTOWSVF.sys [2014-10-05 52480]

R0 KSafeDISK;KSafeDISK; C:\Windows\System32\Drivers\KSafeDISK.sys [2014-10-05 52992]

R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]

R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2014-10-09 131608]

R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-08-15 28600]

R1 BTOWSFF;BTOWSFF; \??\C:\Windows\System32\Drivers\BTOWSFF.sys [2014-10-05 33024]

R1 dtsoftbus01;@oem5.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-11-24 283200]

R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-03-15 85424]

R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2014-10-09 119272]

R2 ntk_PowerDVD;ntk_PowerDVD; \??\D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [2011-05-19 75248]

R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-06-19 11926016]

R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-06-19 360448]

R3 azvusb;@oem54.inf,%SvcDesc%;Virtual USB Hub; C:\Windows\System32\drivers\azvusb.sys [2009-08-24 54784]

R3 RRNetCapMP;RRNetCapMP; C:\Windows\system32\DRIVERS\rrnetcap.sys [2013-03-20 37480]

R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT-stuurprogramma; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]

R3 tbhsd;@oem56.inf,%tbhsd.SvcDesc%;Audials Sound Capturing; C:\Windows\system32\drivers\tbhsd.sys [2013-03-20 47240]

R3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]

R3 WMP300Nv2;@oem2.inf,%WMP300Nv2.Service.DispName%;Linksys Wireless-N PCI Adapter WMP300Nv2 Service; C:\Windows\system32\DRIVERS\WMP300Nv2.sys [2007-07-31 930816]

S1 SASDIFSV;SASDIFSV; \??\D:\downloads\superantispyware\installatie\SASDIFSV.SYS [2011-07-22 12880]

S1 SAS***IL;SAS***IL; \??\D:\downloads\superantispyware\installatie\SAS***IL.SYS [2011-07-12 67664]

S3 dg_ssudbus;@oem35.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]

S3 RRNetCap;@oem57.inf,%RRNetCapService_Desc%;RRNetCap Service; C:\Windows\system32\DRIVERS\rrnetcap.sys [2013-03-20 37480]

S3 ssudmdm;@oem38.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]

S3 WinDivert1.1;WinDivert1.1; \??\D:\downloads\Office and Windows Activators\KMSpico v9.2.3 Final Activator For Windows and Office Full\installatie\KMSpico\WinDivert.sys [2014-10-23 35376]

S3 WinUsb;@oem34.inf,%WinUSB_SvcDesc%;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; D:\downloads\superantispyware\installatie\SASCORE.EXE [2011-08-12 116608]

R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2014-11-18 432888]

R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2014-11-18 432888]

R2 Avira.OE.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [2014-10-22 164656]

R2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD; D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [2011-05-19 83240]

R2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service; D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [2011-05-12 70952]

R2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service; D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSServer.exe [2011-05-12 312616]

R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-11-24 76888]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-30 116648]

S2 Service KMSELDI;Service KMSELDI; D:\downloads\Office and Windows Activators\KMSpico v9.2.3 Final Activator For Windows and Office Full\installatie\KMSpico\Service_KMS.exe [2014-03-02 977088]

S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-30 116648]

S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-04-15 194032]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-15 119408]

S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]

S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]

S3 SwitchBoard;Adobe SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  C:\Windows\tasks\ParetoLogic Registration3.job;f
 C:\Program Files (x86)\Common Files\ParetoLogic;fs
 C:\found.009;f
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Deep Scan

  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites

Hier is de zoek log.

Zoek.exe v5.0.0.0 Updated 29-11-2014

Tool run by Disk on ma 01-12-2014 at 21:46:00,92.

Microsoft Windows 8.1 6.3.9600 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Disk\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

1-12-2014 21:49:37 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~3\boost_interprocess deleted successfully

C:\PROGRA~3\Pinnacle deleted successfully

C:\PROGRA~3\Systweak deleted successfully

C:\PROGRA~3\ZoomBrowser deleted successfully

C:\Users\Disk\AppData\Roaming\CameraWindowDC deleted successfully

C:\Users\Disk\AppData\Roaming\Malwarebytes deleted successfully

C:\Users\Disk\AppData\Roaming\Systweak deleted successfully

C:\Users\Disk\AppData\Roaming\XnView deleted successfully

C:\Users\Disk\AppData\Local\Secunia PSI deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Running Processes ======================

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

D:\downloads\superantispyware\installatie\SASCORE.EXE

C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe

D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe

D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSServer.exe

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe

D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe

D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizTools.exe

C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE

C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Users\Disk\AppData\Roaming\uTorrent\uTorrent.exe

C:\Windows\SysWOW64\DllHost.exe

D:\downloads\secuna personal software inspector\installatie\PSI\psia.exe

C:\Users\Disk\Desktop\zoek.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\SysWOW64\cmd.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

==== Deleting Services ======================

==== FireFox Fix ======================

ProfilePath: C:\Users\Disk\AppData\Roaming\Mozilla\Firefox\Profiles\uxflsrki.default

---- Lines Jotzey removed from prefs.js ----

user_pref("extensions.Jotzey.asul", "1397458702624");

user_pref("extensions.Jotzey.aul", "1397458671726");

user_pref("extensions.Jotzey.irl", true);

user_pref("extensions.Jotzey.is", "cbslugp5");

user_pref("extensions.Jotzey.ug", "D5A37C9C-3E40-4A55-A234-BA627C4926F8");

---- Lines conduit removed from prefs.js ----

user_pref("browser.search.defaultenginename", "Conduit Search");

user_pref("browser.search.selectedEngine", "Conduit Search");

---- FireFox user.js and prefs.js backups ----

user_01-12-2014_2158_.backup

prefs_01-12-2014_2158_.backup

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Common Files\ParetoLogic deleted

C:\PROGRA~2\Photo Notifier and Animation Creator deleted

C:\found.000 deleted

C:\found.001 deleted

C:\found.002 deleted

C:\found.003 deleted

C:\found.004 deleted

C:\found.005 deleted

C:\found.006 deleted

C:\found.007 deleted

C:\found.008 deleted

C:\Users\Disk\AppData\Roaming\ZoomBrowser EX deleted

C:\Users\Disk\AppData\Roaming\337Games deleted

C:\Users\Disk\AppData\Roaming\ParetoLogic deleted

C:\Users\Disk\AppData\Roaming\DriverCure deleted

C:\Users\Disk\AppData\Roaming\iWin deleted

C:\PROGRA~3\ParetoLogic deleted

C:\PROGRA~3\Package Cache deleted

C:\Users\Disk\AppData\Local\CrashRpt deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted

C:\Users\Disk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic deleted

C:\Windows\tasks\ParetoLogic Registration3.job deleted

C:\windows\SysNative\drivers\wStLibG64.sys deleted

C:\Windows\SysNative\config\systemprofile\Searches deleted

C:\Windows\SysWow64\AI_RecycleBin deleted

"C:\Windows\Installer\47048.msi" deleted

"C:\found.009" deleted

"C:\found.009\dir0000.chk" deleted

"C:\found.009\dir0005.chk" deleted

"C:\found.009\dir0008.chk" deleted

"C:\found.009\dir0009.chk" deleted

"C:\found.009\dir0010.chk" deleted

"C:\found.009\dir0011.chk" deleted

"C:\found.009\dir0012.chk" deleted

"C:\found.009\dir0013.chk" deleted

"C:\found.009\dir0014.chk" deleted

"C:\found.009\dir_0000000F.chk" deleted

"C:\found.009\dir0000.chk\microsoft.system.package.metadata" deleted

"C:\found.009\dir0005.chk\1366x768" deleted

"C:\found.009\dir0005.chk\160x600" deleted

"C:\found.009\dir0005.chk\250x250" deleted

"C:\found.009\dir0005.chk\250x510" deleted

"C:\found.009\dir0005.chk\300x250" deleted

"C:\found.009\dir0005.chk\300x600" deleted

"C:\found.009\dir0005.chk\728x90" deleted

"C:\found.009\dir0008.chk\landscape" deleted

"C:\found.009\dir0011.chk\1366x768" deleted

"C:\found.009\dir0011.chk\160x600" deleted

"C:\found.009\dir0011.chk\250x250" deleted

"C:\found.009\dir0011.chk\250x510" deleted

"C:\found.009\dir0011.chk\300x250" deleted

"C:\found.009\dir0011.chk\300x600" deleted

"C:\found.009\dir0011.chk\728x90" deleted

"C:\found.009" deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)

Memory (RAM): 8190 MB

CPU Info: AMD Phenom II X4 810 Processor

CPU Speed: 2616,7 MHz

Sound Card: Luidsprekers (High Definition A |

Audials Sound Capturing (Audial |

Digitale audio (S/PDIF) (High D |

Display Adapters: ATI Radeon HD 4800 Series (Microsoft Corporation - WDDM v1.1) | ATI Radeon HD 4800 Series (Microsoft Corporation - WDDM v1.1)

Monitors: 1x; Generic PnP Monitor |

Screen Resolution: 1280 X 1024 - 32 bit

Network: Network Present

Network Adapters: Linksys Wireless-N PCI Adapter WMP300Nv2 | Realtek PCIe GBE Family-controller

CD / DVD Drives: 3x (G: | K: | N: | ) G: | K: HL-DT-STDVDRAM GH22NS40 | N: DTSOFT BDROM

Ports: COM1 | COM5 LPT Port NOT Present.

Mouse: 3 Button Wheel Mouse Present

Hard Disks: C: 100,0GB | D: 831,5GB | E: 482,3GB | F: 449,2GB | M: 596,2GB | P: 298,0GB

Hard Disks - Free: C: 33,3GB | D: 146,1GB | E: 57,3GB | F: 252,5GB | M: 101,9GB | P: 45,6GB

Manufacturer *: Award Software International, Inc.

BIOS Info: AT/AT COMPATIBLE | 09/08/11 | GBT - 42302e31

Time Zone: West-Europa (standaardtijd)

Motherboard *: Gigabyte Technology Co., Ltd. GA-MA790XT-UD4P

Country: Nederland

Language: NLD

==== System Specs (Software) ======================

Anti-Virus: Avira Desktop On-access scanning disabled (Outdated)

Anti-Virus: Windows Defender On-access scanning disabled (Outdated)

Anti-Spyware: Avira Desktop disabled (Outdated)

Anti-Spyware: Windows Defender disabled (Outdated)

Internet Explorer Version: 11.0.9600.17416

Mozilla Firefox version: 28.0 (x86 nl)

Google Chrome version: 39.0.2171.71

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Disk\AppData\Local\Temp ====

2014-11-29 15:02:39 B52313754EE7ACB4A381D4778336B3CC 273800768 ----a-w- C:\Users\Disk\AppData\Local\Temp\ubi4E1B.tmp.exe

====== Java Cache =====

====== C:\Windows\SysWOW64 =====

2014-11-24 19:05:18 5564EE004708EBB76086F6D66ACF60FF 281688 ----a-w- C:\Windows\SysWOW64\PnkBstrB.xtr

2014-11-24 19:01:31 5564EE004708EBB76086F6D66ACF60FF 281688 ----a-w- C:\Windows\SysWOW64\PnkBstrB.exe

2014-11-24 19:01:31 5564EE004708EBB76086F6D66ACF60FF 281688 ----a-w- C:\Windows\SysWOW64\PnkBstrB.ex0

2014-11-24 19:01:29 3A2E85F7D90D15460C337CE80C2E3B29 76888 ----a-w- C:\Windows\SysWOW64\PnkBstrA.exe

2014-11-24 19:00:57 8A4CEBF34370D689E198E6673C1F2C40 74072 ----a-w- C:\Windows\SysWOW64\XAPOFX1_5.dll

2014-11-24 19:00:57 81DFDDFB401D663BA7E6AD1C80364216 527192 ----a-w- C:\Windows\SysWOW64\XAudio2_7.dll

2014-11-24 19:00:56 4FD7BCB9D8AF6A165E9BA0C2EB702E7C 239960 ----a-w- C:\Windows\SysWOW64\xactengine3_7.dll

2014-11-24 19:00:55 1C9B45E87528B8BB8CFA884EA0099A85 2106216 ----a-w- C:\Windows\SysWOW64\D3DCompiler_43.dll

2014-11-24 19:00:54 8E0BB968FF41D80E5F2C747C04DB79AE 248672 ----a-w- C:\Windows\SysWOW64\d3dx11_43.dll

2014-11-24 19:00:54 83EBA442F07AAB8D6375D2EEC945C46C 1868128 ----a-w- C:\Windows\SysWOW64\d3dcsx_43.dll

2014-11-24 19:00:54 20C835843FCEC4DEDFCD7BFFA3B91641 470880 ----a-w- C:\Windows\SysWOW64\d3dx10_43.dll

2014-11-24 19:00:53 86E39E9161C3D930D93822F1563C280D 1998168 ----a-w- C:\Windows\SysWOW64\D3DX9_43.dll

2014-11-24 19:00:52 E4CE2AF32F501A7F7DDDD908704A0EE6 74072 ----a-w- C:\Windows\SysWOW64\XAPOFX1_4.dll

2014-11-24 19:00:52 4976243BD70FAE3D1D24E49739AB2710 528216 ----a-w- C:\Windows\SysWOW64\XAudio2_6.dll

2014-11-24 19:00:51 F81C4678A55FFEE585AC75825FAF5582 238936 ----a-w- C:\Windows\SysWOW64\xactengine3_6.dll

2014-11-24 19:00:51 C811E70C8804CFFF719038250A43B464 22360 ----a-w- C:\Windows\SysWOW64\X3DAudio1_7.dll

2014-11-24 19:00:50 8B01FB723F3B30AB3DEBDDBF97CFE577 515416 ----a-w- C:\Windows\SysWOW64\XAudio2_5.dll

2014-11-24 19:00:49 DB3C93E87452B8DAB4F58ED1FD2B1998 238936 ----a-w- C:\Windows\SysWOW64\xactengine3_5.dll

2014-11-24 19:00:49 B33B21DB610116262D906305CE65C354 1974616 ----a-w- C:\Windows\SysWOW64\D3DCompiler_42.dll

2014-11-24 19:00:47 B337306DFB508A1BCEF1974BFBB8D924 5501792 ----a-w- C:\Windows\SysWOW64\d3dcsx_42.dll

2014-11-24 19:00:46 D09AC80A4B5312239852836C84DF3392 235344 ----a-w- C:\Windows\SysWOW64\d3dx11_42.dll

2014-11-24 19:00:45 501AC862517C5445742BEE8A2B88414E 453456 ----a-w- C:\Windows\SysWOW64\d3dx10_42.dll

2014-11-24 19:00:44 C6A44FC3CF2F5801561804272217B14D 1892184 ----a-w- C:\Windows\SysWOW64\D3DX9_42.dll

2014-11-24 19:00:42 781E8B5B6FDB3C9B4E4A4A9FB019960D 1846632 ----a-w- C:\Windows\SysWOW64\D3DCompiler_41.dll

2014-11-24 19:00:42 1AA571774936717EE776DBED51E9EDF4 453456 ----a-w- C:\Windows\SysWOW64\d3dx10_41.dll

2014-11-24 19:00:41 3FA06CF5079B84155D18B05C08F7131B 4178264 ----a-w- C:\Windows\SysWOW64\D3DX9_41.dll

2014-11-24 19:00:40 E684C5FA18ADF9EA14737757413BF727 517448 ----a-w- C:\Windows\SysWOW64\XAudio2_4.dll

2014-11-24 19:00:40 686F8D1B4926D48227A06ACD4D41CD1E 235352 ----a-w- C:\Windows\SysWOW64\xactengine3_4.dll

2014-11-24 19:00:40 30686ECE80545E06D78D156EB9F7D463 69464 ----a-w- C:\Windows\SysWOW64\XAPOFX1_3.dll

2014-11-24 19:00:39 E763798CAD2A90B6AB61854F50CD47DD 22360 ----a-w- C:\Windows\SysWOW64\X3DAudio1_6.dll

2014-11-24 19:00:38 91B4AAD4412BB223B466F3DFB43E86DA 452440 ----a-w- C:\Windows\SysWOW64\d3dx10_40.dll

2014-11-24 19:00:38 3384134EEB8F223178C2EB8323003EC0 2036576 ----a-w- C:\Windows\SysWOW64\D3DCompiler_40.dll

2014-11-24 19:00:37 EEA5E428CE63804F9B12D21C97B5968F 4379984 ----a-w- C:\Windows\SysWOW64\D3DX9_40.dll

2014-11-24 19:00:36 8BA296419AF3417D1E9806B83166E472 235856 ----a-w- C:\Windows\SysWOW64\xactengine3_3.dll

2014-11-24 19:00:36 47ED15DC87AE334C13C4DACD1BE2CCED 514384 ----a-w- C:\Windows\SysWOW64\XAudio2_3.dll

2014-11-24 19:00:36 295E47A75F278580F9441041EAAEA3D2 70992 ----a-w- C:\Windows\SysWOW64\XAPOFX1_2.dll

2014-11-24 19:00:35 D95EAABF5D277EF91D9CA70151209E56 68616 ----a-w- C:\Windows\SysWOW64\XAPOFX1_1.dll

2014-11-24 19:00:35 50F4A0D5E6A0BAFEFA78F353533B8E06 509448 ----a-w- C:\Windows\SysWOW64\XAudio2_2.dll

2014-11-24 19:00:35 350FEFE18B86BD4D9AB2A96D00215A49 23376 ----a-w- C:\Windows\SysWOW64\X3DAudio1_5.dll

2014-11-24 19:00:34 F3C6BE26949CAADB11DBF0086082FAC9 238088 ----a-w- C:\Windows\SysWOW64\xactengine3_2.dll

2014-11-24 19:00:33 E6C2F1D8B667DDC04CB55B9F0159EF97 467984 ----a-w- C:\Windows\SysWOW64\d3dx10_39.dll

2014-11-24 19:00:33 C4F1972497FE2CEB7D900938C97FCF91 1493528 ----a-w- C:\Windows\SysWOW64\D3DCompiler_39.dll

2014-11-24 19:00:32 8CB3DEFB8887C4F0846DB1FC1304D6D2 3851784 ----a-w- C:\Windows\SysWOW64\D3DX9_39.dll

2014-11-24 19:00:31 E34FF0115B1EE3B4E03D22AE9840EE03 507400 ----a-w- C:\Windows\SysWOW64\XAudio2_1.dll

2014-11-24 19:00:31 DD165760F1B95200A3DA2D9DFDB84234 65032 ----a-w- C:\Windows\SysWOW64\XAPOFX1_0.dll

2014-11-24 19:00:31 2E0E25252E1D41752876E9FE12ADE175 238088 ----a-w- C:\Windows\SysWOW64\xactengine3_1.dll

2014-11-24 19:00:30 E3832514BD21236067B7227F6165EF95 25608 ----a-w- C:\Windows\SysWOW64\X3DAudio1_4.dll

2014-11-24 19:00:29 A2650B27472C21CDD817EEEDE65648E1 467984 ----a-w- C:\Windows\SysWOW64\d3dx10_38.dll

2014-11-24 19:00:29 103CBFC5591008AD33046E20E8E1EEBE 1491992 ----a-w- C:\Windows\SysWOW64\D3DCompiler_38.dll

2014-11-24 19:00:28 8F3EB548AC4ED90252394F60C77E3196 3850760 ----a-w- C:\Windows\SysWOW64\D3DX9_38.dll

2014-11-24 19:00:27 8A83673F0AB001870583FDE2B004FA59 238088 ----a-w- C:\Windows\SysWOW64\xactengine3_0.dll

2014-11-24 19:00:27 418CDC57E55EE79C3F86C13A19B3D5E3 479752 ----a-w- C:\Windows\SysWOW64\XAudio2_0.dll

2014-11-24 19:00:26 C593FD0A96EE4B6390B653C4C641313F 25608 ----a-w- C:\Windows\SysWOW64\X3DAudio1_3.dll

2014-11-24 19:00:25 EA752DBCE35045D3C830DC16578CC8AB 1420824 ----a-w- C:\Windows\SysWOW64\D3DCompiler_37.dll

2014-11-24 19:00:25 4A43E9A2B17E4CAFA9CB5FEC0B5B686B 462864 ----a-w- C:\Windows\SysWOW64\d3dx10_37.dll

2014-11-24 19:00:24 AC3C517FB0FBBE45FE44007BCD3625A7 3786760 ----a-w- C:\Windows\SysWOW64\D3DX9_37.dll

2014-11-24 19:00:23 73E055AF78A64F9B2779D44407CA2AB6 267272 ----a-w- C:\Windows\SysWOW64\xactengine2_10.dll

2014-11-24 19:00:22 FB4299688A0D3A37687C015AC2B9922D 1374232 ----a-w- C:\Windows\SysWOW64\D3DCompiler_36.dll

2014-11-24 19:00:22 D9158E78A368B08D9133043EB3058C12 444776 ----a-w- C:\Windows\SysWOW64\d3dx10_36.dll

2014-11-24 19:00:21 44BFEC5C9C82A2EE9871D88FD3B9A0E2 3734536 ----a-w- C:\Windows\SysWOW64\d3dx9_36.dll

2014-11-24 19:00:20 46EE68F04A75A1CCF40235EA6F1CBA05 267112 ----a-w- C:\Windows\SysWOW64\xactengine2_9.dll

2014-11-24 19:00:19 F3764552E45880DC49B82F38699AA87C 444776 ----a-w- C:\Windows\SysWOW64\d3dx10_35.dll

2014-11-24 19:00:19 5B441670A4F5F8BCCE76741902B8AF56 1358192 ----a-w- C:\Windows\SysWOW64\D3DCompiler_35.dll

2014-11-24 19:00:18 3EF18B78D17C962F2B71AC1CB7757684 3727720 ----a-w- C:\Windows\SysWOW64\d3dx9_35.dll

2014-11-24 19:00:17 F6A9FC2AD2F9111372B5AB3BBA3707EC 17928 ----a-w- C:\Windows\SysWOW64\X3DAudio1_2.dll

2014-11-24 19:00:17 499210C45AFEAADEE8CF4DCF7D5E570B 266088 ----a-w- C:\Windows\SysWOW64\xactengine2_8.dll

2014-11-24 19:00:15 75F206C195BBACA6EF28565B1C0CD75C 1124720 ----a-w- C:\Windows\SysWOW64\D3DCompiler_34.dll

2014-11-24 19:00:15 5AA9987F2E62B56D7661B6901901F927 443752 ----a-w- C:\Windows\SysWOW64\d3dx10_34.dll

2014-11-24 19:00:14 1CA939918ED1B930059B3A882DE6F648 3497832 ----a-w- C:\Windows\SysWOW64\d3dx9_34.dll

2014-11-24 19:00:13 7FEBB8CE2233CBAE738B16D42ED29674 261480 ----a-w- C:\Windows\SysWOW64\xactengine2_7.dll

2014-11-24 19:00:13 77F595DEE5FFACEA72B135B1FCE1312E 81768 ----a-w- C:\Windows\SysWOW64\xinput1_3.dll

2014-11-24 19:00:12 FAE7E1D578C42A7C3D9D61A99D178BD5 1123696 ----a-w- C:\Windows\SysWOW64\D3DCompiler_33.dll

2014-11-24 19:00:12 37A8171ACCF46A9C196054066C28827F 443752 ----a-w- C:\Windows\SysWOW64\d3dx10_33.dll

2014-11-24 19:00:11 CDB1CD22BAFF21F48606B3C1A18B000B 3495784 ----a-w- C:\Windows\SysWOW64\d3dx9_33.dll

2014-11-24 19:00:10 39000E033D39D19CCCE21AEAFCCE2476 255848 ----a-w- C:\Windows\SysWOW64\xactengine2_6.dll

2014-11-24 19:00:09 86C93789E9006F1AC47ED9DD47D4C8A1 251672 ----a-w- C:\Windows\SysWOW64\xactengine2_5.dll

2014-11-24 19:00:08 6F34F7405807DCBF0B9BF6811C94C6D9 440080 ----a-w- C:\Windows\SysWOW64\d3dx10.dll

2014-11-24 19:00:07 6550E1A0A7BE611592C31222FCB981FB 237848 ----a-w- C:\Windows\SysWOW64\xactengine2_4.dll

2014-11-24 19:00:07 26AF232140C88B42D92A88F2198EDF6A 3426072 ----a-w- C:\Windows\SysWOW64\d3dx9_32.dll

2014-11-24 19:00:07 121B131EAA369D8F58DACC5C39A77D80 15128 ----a-w- C:\Windows\SysWOW64\x3daudio1_1.dll

2014-11-24 19:00:05 797E24743937D67D69F28F2CF5052EE8 2414360 ----a-w- C:\Windows\SysWOW64\d3dx9_31.dll

2014-11-24 19:00:04 69D841744B2BAE38FBB2D40A230A549C 236824 ----a-w- C:\Windows\SysWOW64\xactengine2_3.dll

2014-11-24 19:00:04 33B62BE226934E1B01F5043870C70427 62744 ----a-w- C:\Windows\SysWOW64\xinput1_2.dll

2014-11-24 19:00:03 5C4D3843B491C047B7A619901FBD2EC1 230168 ----a-w- C:\Windows\SysWOW64\xactengine2_2.dll

2014-11-24 19:00:02 F1726346E583442541FE73429F8E9C10 62672 ----a-w- C:\Windows\SysWOW64\xinput1_1.dll

2014-11-24 19:00:01 7C9952111F4C743B9F0D8B68B6ED93C9 229584 ----a-w- C:\Windows\SysWOW64\xactengine2_1.dll

2014-11-24 18:59:54 E415862612E65F10D7D888443ECD7594 2388176 ----a-w- C:\Windows\SysWOW64\d3dx9_30.dll

2014-11-24 18:59:53 4E961525CC7FF0E5D7DA19E170B7C14C 14032 ----a-w- C:\Windows\SysWOW64\x3daudio1_0.dll

2014-11-24 18:59:53 2112FE0C46662D429347A7D7B49E3ECE 230096 ----a-w- C:\Windows\SysWOW64\xactengine2_0.dll

2014-11-24 18:59:52 99F4FC172A5ACE36CF00AA7038D23F2C 2332368 ----a-w- C:\Windows\SysWOW64\d3dx9_29.dll

2014-11-24 18:59:50 BE19B603DFBAA829EE5B7749B3BA97DB 2323664 ----a-w- C:\Windows\SysWOW64\d3dx9_28.dll

2014-11-24 18:59:49 852EDC778A7A50077694F84D8E601234 2319568 ----a-w- C:\Windows\SysWOW64\d3dx9_27.dll

2014-11-24 18:59:48 523AB607EEF81CC4D909E7FEBD8A788E 2297552 ----a-w- C:\Windows\SysWOW64\d3dx9_26.dll

2014-11-24 18:59:46 5B48FE9D6686F0D54B26A005ACE24D1D 2337488 ----a-w- C:\Windows\SysWOW64\d3dx9_25.dll

2014-11-24 18:59:45 BC831661963763AC4D504C5CABB1FDD9 2222800 ----a-w- C:\Windows\SysWOW64\d3dx9_24.dll

2014-11-19 03:16:56 66F97677CC13F7B9E2408CC75750A389 208896 ----a-w- C:\Windows\SysWOW64\pku2u.dll

2014-11-19 03:16:56 4CD4C8D34213975444643A5F9594E363 806400 ----a-w- C:\Windows\SysWOW64\kerberos.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2014-11-24 19:00:57 E9739AE8B2FA28DCD6F2EF5525DA8827 77656 ----a-w- C:\Windows\Sysnative\XAPOFX1_5.dll

2014-11-24 19:00:57 4F7513FF4DE6303088DB28DCBCEF372C 518488 ----a-w- C:\Windows\Sysnative\XAudio2_7.dll

2014-11-24 19:00:56 BDEC09A032DB44D9CDB3A0D97224D64E 176984 ----a-w- C:\Windows\Sysnative\xactengine3_7.dll

2014-11-24 19:00:55 ADA0C39D4EACDC81FD84163A95D62079 2526056 ----a-w- C:\Windows\Sysnative\D3DCompiler_43.dll

2014-11-24 19:00:54 AD7FA9485059F4DC53C98B49CAB13F0B 511328 ----a-w- C:\Windows\Sysnative\d3dx10_43.dll

2014-11-24 19:00:54 9D6429F410597750B2DC2579B2347303 276832 ----a-w- C:\Windows\Sysnative\d3dx11_43.dll

2014-11-24 19:00:54 5F1DA86286A2DFB01C4FED55C2DD1D61 1907552 ----a-w- C:\Windows\Sysnative\d3dcsx_43.dll

2014-11-24 19:00:53 7160FC226391C0B50C85571FA1A546E5 2401112 ----a-w- C:\Windows\Sysnative\D3DX9_43.dll

2014-11-24 19:00:52 A9724EB3D6CC032D0C4ECAFF4AD8C17F 78680 ----a-w- C:\Windows\Sysnative\XAPOFX1_4.dll

2014-11-24 19:00:52 05E88C8D8E652DFF03B469331F474CCE 530776 ----a-w- C:\Windows\Sysnative\XAudio2_6.dll

2014-11-24 19:00:51 B4FF2A39685C1A6D43F0E56EB350AF3A 24920 ----a-w- C:\Windows\Sysnative\X3DAudio1_7.dll

2014-11-24 19:00:51 936DCC640B2991905D909395E03B64F9 176984 ----a-w- C:\Windows\Sysnative\xactengine3_6.dll

2014-11-24 19:00:50 C291AEFD47A587FF5F509E2F96613F7D 517960 ----a-w- C:\Windows\Sysnative\XAudio2_5.dll

2014-11-24 19:00:49 E92D2E4AFA43CD39A8C1C2C2DB59667E 2582888 ----a-w- C:\Windows\Sysnative\D3DCompiler_42.dll

2014-11-24 19:00:49 51D65BE2F794B944CADAF287B34EF603 176968 ----a-w- C:\Windows\Sysnative\xactengine3_5.dll

2014-11-24 19:00:47 F13B90F5090EBA9041558BC6AAED79B8 5554512 ----a-w- C:\Windows\Sysnative\d3dcsx_42.dll

2014-11-24 19:00:46 522749761B6CC69F8630F4B472DCA623 285024 ----a-w- C:\Windows\Sysnative\d3dx11_42.dll

2014-11-24 19:00:45 B739C423276AE62D7AC91773226EC13B 523088 ----a-w- C:\Windows\Sysnative\d3dx10_42.dll

2014-11-24 19:00:44 1AF7AE1FDE027A30B9097280819A0A86 2475352 ----a-w- C:\Windows\Sysnative\D3DX9_42.dll

2014-11-24 19:00:42 E730967811E3702499446FFC8A432607 520544 ----a-w- C:\Windows\Sysnative\d3dx10_41.dll

2014-11-24 19:00:42 A59A5BADE4AF200C720D99EAE6E04E0E 2430312 ----a-w- C:\Windows\Sysnative\D3DCompiler_41.dll

2014-11-24 19:00:41 ECDDB13BC805B9F3EF3A855E6FD85C69 5425496 ----a-w- C:\Windows\Sysnative\D3DX9_41.dll

2014-11-24 19:00:40 B94F08069EFE2F8151DEF350E526E063 521560 ----a-w- C:\Windows\Sysnative\XAudio2_4.dll

2014-11-24 19:00:40 37B348A79C4C9B8AB925B18FFD241E96 73544 ----a-w- C:\Windows\Sysnative\XAPOFX1_3.dll

2014-11-24 19:00:40 1BA01062450BD1F052C54C01C12248F6 174936 ----a-w- C:\Windows\Sysnative\xactengine3_4.dll

2014-11-24 19:00:39 EEE871CC4F5563FF8B3C8385B32B0C5F 24920 ----a-w- C:\Windows\Sysnative\X3DAudio1_6.dll

2014-11-24 19:00:38 862586AD4B1355F7DCDE111EE0AAF350 519000 ----a-w- C:\Windows\Sysnative\d3dx10_40.dll

2014-11-24 19:00:38 37309B833480DC69FDE7DB68F9B8BC20 2605920 ----a-w- C:\Windows\Sysnative\D3DCompiler_40.dll

2014-11-24 19:00:37 29A79F0B607FAF5722D7BAF2485F632A 5631312 ----a-w- C:\Windows\Sysnative\D3DX9_40.dll

2014-11-24 19:00:36 84B41FD03CAFC5048346B3B2AB92D199 175440 ----a-w- C:\Windows\Sysnative\xactengine3_3.dll

2014-11-24 19:00:36 758139A39AECC1B512576275A27C1177 518480 ----a-w- C:\Windows\Sysnative\XAudio2_3.dll

2014-11-24 19:00:36 2F8F9B707FED2405A787380230CC6FA9 74576 ----a-w- C:\Windows\Sysnative\XAPOFX1_2.dll

2014-11-24 19:00:35 E335DF094836EE7030F1B9CE7429E884 513544 ----a-w- C:\Windows\Sysnative\XAudio2_2.dll

2014-11-24 19:00:35 CFF1C1F7B9F855DDEE431D7B5DCACDF8 25936 ----a-w- C:\Windows\Sysnative\X3DAudio1_5.dll

2014-11-24 19:00:35 0F2DB378FBE2D124E4D3631B329688AE 72200 ----a-w- C:\Windows\Sysnative\XAPOFX1_1.dll

2014-11-24 19:00:34 CC8399A9E51B2AF1C2C20A26D85EB60E 177672 ----a-w- C:\Windows\Sysnative\xactengine3_2.dll

2014-11-24 19:00:33 EAA692FDC990ED0407DF957316DA33C2 540688 ----a-w- C:\Windows\Sysnative\d3dx10_39.dll

2014-11-24 19:00:33 7741A0A6CED6C441B97D625B730D6075 1942552 ----a-w- C:\Windows\Sysnative\D3DCompiler_39.dll

2014-11-24 19:00:32 7505C133FC704B40CFDDFD38777BAAC3 4992520 ----a-w- C:\Windows\Sysnative\D3DX9_39.dll

2014-11-24 19:00:31 E9C0F926D7C9082A805F4FEF81DEEB30 511496 ----a-w- C:\Windows\Sysnative\XAudio2_1.dll

2014-11-24 19:00:31 A2A098BF5A8C255A0090818AD8E87B0F 177672 ----a-w- C:\Windows\Sysnative\xactengine3_1.dll

2014-11-24 19:00:31 0E92D8C0ECA74B6D0A55ABAD53226113 68104 ----a-w- C:\Windows\Sysnative\XAPOFX1_0.dll

2014-11-24 19:00:30 DE6004D16DBACD781ED4596C4FEA7D14 28168 ----a-w- C:\Windows\Sysnative\X3DAudio1_4.dll

2014-11-24 19:00:29 A7E59BB6FAC119FABB83F18BD72AA1D7 1941528 ----a-w- C:\Windows\Sysnative\D3DCompiler_38.dll

2014-11-24 19:00:29 72CB653CECF4EA670E7F5A8D74358423 540688 ----a-w- C:\Windows\Sysnative\d3dx10_38.dll

2014-11-24 19:00:28 E5EC2AB7156A752F9614CDA4BE66EFE8 4991496 ----a-w- C:\Windows\Sysnative\D3DX9_38.dll

2014-11-24 19:00:27 A8B5370B7B61D3777D840DA1C64A1C2D 177672 ----a-w- C:\Windows\Sysnative\xactengine3_0.dll

2014-11-24 19:00:27 29AF48F6C894328A58DEFDC560A70CF3 489480 ----a-w- C:\Windows\Sysnative\XAudio2_0.dll

2014-11-24 19:00:26 C4C2ED69B18EE1C60026877FCC470FA7 28168 ----a-w- C:\Windows\Sysnative\X3DAudio1_3.dll

2014-11-24 19:00:25 A8C5688BBA00C1630550F26260AB5CAE 529424 ----a-w- C:\Windows\Sysnative\d3dx10_37.dll

2014-11-24 19:00:25 31026CEA5AFA2798292179102C06FE40 1860120 ----a-w- C:\Windows\Sysnative\D3DCompiler_37.dll

2014-11-24 19:00:24 8A10974DC6E1E42BDC635C2C2AFBD2CC 4910088 ----a-w- C:\Windows\Sysnative\D3DX9_37.dll

2014-11-24 19:00:23 E8932AF24786765859558CB79E385AC2 411656 ----a-w- C:\Windows\Sysnative\xactengine2_10.dll

2014-11-24 19:00:22 7299DF5CF81135934740211D9A946737 2006552 ----a-w- C:\Windows\Sysnative\D3DCompiler_36.dll

2014-11-24 19:00:22 570FDAE7041775DE0C67747BB7081939 508264 ----a-w- C:\Windows\Sysnative\d3dx10_36.dll

2014-11-24 19:00:21 BBB6C6833C30E323B41860D6DF61972D 5081608 ----a-w- C:\Windows\Sysnative\d3dx9_36.dll

2014-11-24 19:00:20 A69C32C2BD01522A088D254342826866 411496 ----a-w- C:\Windows\Sysnative\xactengine2_9.dll

2014-11-24 19:00:19 B21427EDF0449E92000FF497DAAF89C9 1985904 ----a-w- C:\Windows\Sysnative\D3DCompiler_35.dll

2014-11-24 19:00:19 84116AA94672D623B95217648AE5B5B9 508264 ----a-w- C:\Windows\Sysnative\d3dx10_35.dll

2014-11-24 19:00:18 1B3AF16A27D390096925576202A64037 5073256 ----a-w- C:\Windows\Sysnative\d3dx9_35.dll

2014-11-24 19:00:17 FA485E76F94B7457767E372F47757733 409960 ----a-w- C:\Windows\Sysnative\xactengine2_8.dll

2014-11-24 19:00:17 BC78D5328541410510DDE06B9FA92024 21000 ----a-w- C:\Windows\Sysnative\X3DAudio1_2.dll

2014-11-24 19:00:15 9D9407F52B8E24E99358D9944B0D5FA3 1401200 ----a-w- C:\Windows\Sysnative\D3DCompiler_34.dll

2014-11-24 19:00:15 1ED4E7A82BD5C7DEED082F00E63BB7A0 506728 ----a-w- C:\Windows\Sysnative\d3dx10_34.dll

2014-11-24 19:00:14 AE5D5439525B4A4CBF206058D493685D 4496232 ----a-w- C:\Windows\Sysnative\d3dx9_34.dll

2014-11-24 19:00:13 BFB3091B167550EC6E6454813D3DB244 107368 ----a-w- C:\Windows\Sysnative\xinput1_3.dll

2014-11-24 19:00:13 8C970509E0AE10061E3ED6D51E34FEB9 403304 ----a-w- C:\Windows\Sysnative\xactengine2_7.dll

2014-11-24 19:00:12 839C3921005BB41D441E3752C74F2292 506728 ----a-w- C:\Windows\Sysnative\d3dx10_33.dll

2014-11-24 19:00:12 3EBF620536A13CA343E52ECA4F0DE7F8 1400176 ----a-w- C:\Windows\Sysnative\D3DCompiler_33.dll

2014-11-24 19:00:11 3172C3CAC8EA7CA1B5D5AF6699C037D6 4494184 ----a-w- C:\Windows\Sysnative\d3dx9_33.dll

2014-11-24 19:00:10 4837A54574A6105D404A8560984B93DD 393576 ----a-w- C:\Windows\Sysnative\xactengine2_6.dll

2014-11-24 19:00:09 398FF46FF7354FED2F0F1AECDB546866 390424 ----a-w- C:\Windows\Sysnative\xactengine2_5.dll

2014-11-24 19:00:08 8251826F04BA0822D08AD9B92C65A3D5 469264 ----a-w- C:\Windows\Sysnative\d3dx10.dll

2014-11-24 19:00:07 A4DDFE5DC4E73D1FED9B1B3A3D885612 4398360 ----a-w- C:\Windows\Sysnative\d3dx9_32.dll

2014-11-24 19:00:07 58BB51253427A834A8807B9245CC5965 364824 ----a-w- C:\Windows\Sysnative\xactengine2_4.dll

2014-11-24 19:00:07 489E5B8BB1BD1028FF1C798EAAEC65E4 17688 ----a-w- C:\Windows\Sysnative\x3daudio1_1.dll

2014-11-24 19:00:05 FAAA0BB9CD2905B25334132E5BA093EB 3977496 ----a-w- C:\Windows\Sysnative\d3dx9_31.dll

2014-11-24 19:00:04 06F15D3CB1AE0EAFA50F595B3FF8D9F5 83736 ----a-w- C:\Windows\Sysnative\xinput1_2.dll

2014-11-24 19:00:04 0396D2A98B0CCD4419B572EBF618E81E 363288 ----a-w- C:\Windows\Sysnative\xactengine2_3.dll

2014-11-24 19:00:03 DC5A914C34EB12056531777D4DD0F44E 354072 ----a-w- C:\Windows\Sysnative\xactengine2_2.dll

2014-11-24 19:00:02 6F9D3289D8B166E478AFFF9EFA92C42C 83664 ----a-w- C:\Windows\Sysnative\xinput1_1.dll

2014-11-24 19:00:01 0CC809422AB40974DFF8078392E4D507 352464 ----a-w- C:\Windows\Sysnative\xactengine2_1.dll

2014-11-24 18:59:54 E09A9CF383ACF4A28038561E62277377 3927248 ----a-w- C:\Windows\Sysnative\d3dx9_30.dll

2014-11-24 18:59:53 F77D5AB654881E683CFF6650916C424E 16592 ----a-w- C:\Windows\Sysnative\x3daudio1_0.dll

2014-11-24 18:59:53 CE5753F9A27837259EB52F3F47F39593 355536 ----a-w- C:\Windows\Sysnative\xactengine2_0.dll

2014-11-24 18:59:52 68B35CBDB4A8CC424718BBCC894FEEEA 3830992 ----a-w- C:\Windows\Sysnative\d3dx9_29.dll

2014-11-24 18:59:50 88BAC8306D4EC79A82B1FFA17DC8CF4A 3815120 ----a-w- C:\Windows\Sysnative\d3dx9_28.dll

2014-11-24 18:59:49 914C3237E4D145A18DCD1D0D4C8659E1 3807440 ----a-w- C:\Windows\Sysnative\d3dx9_27.dll

2014-11-24 18:59:48 44F5C5E27D6825E4E62420BC29B8B533 3767504 ----a-w- C:\Windows\Sysnative\d3dx9_26.dll

2014-11-24 18:59:46 4C56E7C5B2A61353E534C7D15D05856D 3823312 ----a-w- C:\Windows\Sysnative\d3dx9_25.dll

2014-11-24 18:59:45 B165DF72E13E6AF74D47013504319921 3544272 ----a-w- C:\Windows\Sysnative\d3dx9_24.dll

2014-11-19 03:16:56 E87F8EC00FEEF700E61F6989D88A8BC2 991232 ----a-w- C:\Windows\Sysnative\kerberos.dll

2014-11-19 03:16:55 788C7D910267DDCD675DF4AB01961265 259584 ----a-w- C:\Windows\Sysnative\pku2u.dll

====== C:\Windows\Sysnative\drivers =====

2014-11-24 18:42:55 46571ED73AE84469DCA53081D33CF3C8 283200 ----a-w- C:\Windows\Sysnative\drivers\dtsoftbus01.sys

2014-11-12 06:21:56 DE8D12B4C3F55FA2C5E9774314F6C58A 258368 ----a-w- C:\Windows\Sysnative\drivers\WdFilter.sys

2014-11-12 06:21:56 4AD874CDC812EC156265E451B6B09DAB 114496 ----a-w- C:\Windows\Sysnative\drivers\WdNisDrv.sys

2014-11-12 06:21:55 0359607177E5E9F6041136CC0A5CB0B6 35320 ----a-w- C:\Windows\Sysnative\drivers\WdBoot.sys

2014-11-12 06:18:47 6D2EE96150E35B9EA49F2B481DE0369A 177472 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys

2014-11-12 06:18:47 4E1207CE16E615B0B7A70DC889F4500E 563976 ----a-w- C:\Windows\Sysnative\drivers\cng.sys

2014-11-12 06:18:46 9F08A6608F98B5407E7DDBCF306573EF 27456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys

====== C:\Windows\Tasks ======

2014-11-11 13:53:35 -------- d-----w- C:\Windows\Sysnative\Tasks\GenericSettingsHandler

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-12-01 10:29:38 -------- d-----w- C:\Program Files\trend micro

======= C:\PROGRA~2 =====

======= C: =====

====== C:\Users\Disk\AppData\Roaming ======

2014-11-30 12:03:09 -------- d-----w- C:\Users\Disk\AppData\Local\ElevatedDiagnostics

2014-11-24 19:05:12 -------- d-----w- C:\Users\Disk\AppData\Local\PunkBuster

2014-11-21 14:11:54 -------- d-----w- C:\Users\Disk\AppData\Local\Ezr8

2014-11-19 19:02:22 -------- d-----w- C:\Users\Disk\AppData\Roaming\AIMP3

2014-11-19 16:21:07 -------- d-----w- C:\Users\Disk\AppData\Roaming\cYo

2014-11-19 16:21:07 -------- d-----w- C:\Users\Disk\AppData\Local\cYo

2014-11-12 15:13:58 -------- d-sh--w- C:\Users\Disk\AppData\Local\EmieBrowserModeList

2014-11-12 14:33:38 -------- d-sh--w- C:\Users\Disk\AppData\Locallow\EmieBrowserModeList

2014-11-11 14:14:28 -------- d-----w- C:\Users\Disk\AppData\Roaming\uTorrent

====== C:\Users\Disk ======

2014-12-01 10:29:18 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Disk\Desktop\RSITx64.exe

2014-11-11 13:56:51 -------- d-----w- C:\Windows\serviceprofiles\Localservice\winhttp

====== C: exe-files ==

2014-12-01 10:29:38 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Disk.exe

2014-12-01 10:29:18 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Disk\Desktop\RSITx64.exe

2014-11-30 13:48:56 A0844C730F1091B491A8737404F4C914 347816 ----a-w- C:\Users\Disk\AppData\Local\Microsoft\Windows\INetCache\IE\IUIUW47F\MicrosoftFixit.IEPerformance.FISC.146340782464288293.1.2.Run.exe

2014-11-30 13:48:37 A0844C730F1091B491A8737404F4C914 347816 ----a-w- C:\Users\Disk\AppData\Local\Microsoft\Windows\INetCache\IE\763O7IVO\MicrosoftFixit.IEAddon.FISC.146340782464288293.1.1.Run.exe

2014-11-30 12:02:24 A0844C730F1091B491A8737404F4C914 347816 ----a-w- C:\Users\Disk\AppData\Local\Microsoft\Windows\INetCache\IE\9OLP1DP6\MicrosoftFixit.IEPerformance.FISC.199340776078259763.1.1.Run.exe

2014-11-29 15:02:39 B52313754EE7ACB4A381D4778336B3CC 273800768 ----a-w- C:\Users\Disk\AppData\Local\Temp\ubi4E1B.tmp.exe

2014-11-26 07:12:03 9D83E2859AC027E8C505CB4D1931AF47 1117264 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\39.0.2171.71\39.0.2171.71_39.0.2171.65_chrome_updater.exe

=== C: other files ==

2014-11-27 13:31:07 FE10F685102306D250D9D1FB860C7BD6 554993 ----a-w- C:\Users\Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki\14.5_0\src.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-476776748-143487406-171064425-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"IncrediMail"="C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c"

"Spotify Web Helper"="C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020"

"SUPERAntiSpyware"="D:\downloads\superantispyware\installatie\SUPERAntiSpyware.exe"

"KiesPreload"="D:\downloads\samsung kies\installatie\Kies\Kies.exe /preload"

"GoogleChromeAutoLaunch_01946C57B66348E906C45ECFFD7F19BC"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

"Google Update"="C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"ToolwizCareFree"="D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe -autorun"

"DAEMON Tools Lite"="D:\downloads\deamon tools\installatie\DAEMON Tools Lite\DTLite.exe -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"PWRISOVM.EXE"="D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE"

"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"

"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"

"SSBkgdUpdate"="C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot"

"PaperPort PTD"="C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe"

"IndexSearch"="C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe"

"PPort11reminder"="C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe -r C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"

"BrMfcWnd"="C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN"

"ControlCenter3"="C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun"

"RemoteControl11"="D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe"

"KiesTrayAgent"="D:\downloads\samsung kies\installatie\Kies\KiesTrayAgent.exe"

"avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min"

"Avira Systray"="C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"IncrediMail"="C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c"

"Spotify Web Helper"="C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020"

"SUPERAntiSpyware"="D:\downloads\superantispyware\installatie\SUPERAntiSpyware.exe"

"KiesPreload"="D:\downloads\samsung kies\installatie\Kies\Kies.exe /preload"

"GoogleChromeAutoLaunch_01946C57B66348E906C45ECFFD7F19BC"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

"Google Update"="C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"ToolwizCareFree"="D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe -autorun"

"DAEMON Tools Lite"="D:\downloads\deamon tools\installatie\DAEMON Tools Lite\DTLite.exe -autorun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30-03-2014 16:42]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30-03-2014 16:42]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-476776748-143487406-171064425-1001Core.job --a-------- C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe [23-06-2014 15:57]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-476776748-143487406-171064425-1001UA.job --a-------- C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe [23-06-2014 15:57]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\AutoPico Daily Restart" ["D:\downloads\Office and Windows Activators\KMSpico v9.2.3 Final Activator For Windows and Office Full\installatie\KMSpico\AutoPico.exe"]

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["D:\downloads\ccleaner\installatie\CCleaner.exe"]

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-476776748-143487406-171064425-1001Core" [C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-476776748-143487406-171064425-1001UA" [C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\ToolwizCareFree" [D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe]

"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{C81DA3FC-6786-4C24-A1EA-DAFF82BA1B3E}" [C:\Windows\system32\msfeedssync.exe]

"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions ======================

==== Firefox Plugins ======================

Profilepath: C:\Users\Disk\AppData\Roaming\Mozilla\Firefox\Profiles\uxflsrki.default

D2377C9458EFEB094E38B8C874AA214C - C:\Users\Disk\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll - Google Update

0CA4180B21C6B728578F3B0433BB740E - D:\downloads\vlcplayer\installatie\VLC\npvlc.dll - VLC Web Plugin

4A270804DC8AB72DCB4F694D050A3517 - C:\Users\Disk\AppData\Roaming\IDM\bin\npWidevineMediaOptimizer.dll - Widevine Media Optimizer

65C1D9F74004E775F9A8598476ABE5EE - C:\Users\Disk\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player

==== Chromium Look ======================

Google Docs - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Webpage Screenshot - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki

Google Search - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Calendar - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn

Website - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\kddckpmlbneidbekmajhmhikeegjdgcd

Google Maps - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh

Google Wallet - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - Disk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="msn"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{012E1000-F331-11DB-8314-0800200C9A66} Google Url="{searchTerms - Google Search}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\358CA8E5BB5699C40AE9918B81151EC4 deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5E8AC853-65BB-4C99-A09E-19B81851E14C} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\358CA8E5BB5699C40AE9918B81151EC4 deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\downloads\power iso\installatie\PowerISO\PWRISOVM.EXE

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe"

O4 - HKLM\..\Run: [indexSearch] "C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe"

O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"

O4 - HKLM\..\Run: [brMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN

O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun

O4 - HKLM\..\Run: [RemoteControl11] D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\PDVD11Serv.exe

O4 - HKLM\..\Run: [KiesTrayAgent] D:\downloads\samsung kies\installatie\Kies\KiesTrayAgent.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe

O4 - HKCU\..\Run: [incrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Disk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020

O4 - HKCU\..\Run: [sUPERAntiSpyware] D:\downloads\superantispyware\installatie\SUPERAntiSpyware.exe

O4 - HKCU\..\Run: [KiesPreload] D:\downloads\samsung kies\installatie\Kies\Kies.exe /preload

O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_01946C57B66348E906C45ECFFD7F19BC] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

O4 - HKCU\..\Run: [Google Update] "C:\Users\Disk\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [ToolwizCareFree] "D:\downloads\toolwiz care\installatie\ToolwizCareFree\ToolwizCares.exe" -autorun

O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\downloads\deamon tools\installatie\DAEMON Tools Lite\DTLite.exe" -autorun

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab

O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL

O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - D:\downloads\superantispyware\installatie\SASCORE.EXE

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe

O23 - Service: CLHNServiceForPowerDVD - Unknown owner - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe

O23 - Service: CyberLink PowerDVD 11.0 Monitor Service - CyberLink - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe

O23 - Service: CyberLink PowerDVD 11.0 Service - CyberLink - D:\downloads\PowerDVD 11 Ultra v11.0.1719.51 PreActivated\installatie\PowerDVD11\Common\MediaServer\CLMSServer.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Secunia PSI Agent - Secunia - D:\downloads\secuna personal software inspector\installatie\PSI\psia.exe

O23 - Service: Service KMSELDI - Unknown owner - D:\downloads\Office and Windows Activators\KMSpico v9.2.3 Final Activator For Windows and Office Full\installatie\KMSpico\Service_KMS.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Disk\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

C:\Users\Disk\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

C:\Users\Disk\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

C:\Users\Disk\AppData\Local\Microsoft\Windows\INetCache\IE\9OLP1DP6 will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Disk\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=844 folders=100 40635224 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\Disk\AppData\Local\Temp will be emptied at reboot

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Disk\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Disk\AppData\Local\Microsoft\Windows\INetCache\IE\9OLP1DP6" not found

==== EOF on ma 01-12-2014 at 23:30:12,40 ======================

Link naar reactie
Delen op andere sites

Download adwcleaner.pngAdwCleaner by Xplode naar het bureaublad (verwijder eerst eventuele aanwezige oudere versies van deze tool op je PC, zodat je nu de meest recente database van AdwCleaner kan gebruiken).

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op Scan.
  • Klik vervolgens op Clean (Engelse versie)of Verwijderen (Nederlandse versie).
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\\AdwCleaner\\AdwCleaner[s0].txt.

Logbestand plaatsen

  • Voeg het logbestand met de naam C:\\AdwCleaner\\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites

Hier is de adwcleaner log.

# AdwCleaner v4.103 - Rapport aangemaakt 02/12/2014 op 14:13:33

# Laatste Update 01/12/2014 door Xplode

# Database : 2014-12-01.2 [Live]

# Besturingssysteem : Windows 8.1 (64 bits)

# Gebruikersnaam : Disk - HARRY

# Gestart vanuit : C:\Users\Disk\Desktop\adwcleaner_4.103.exe

# Optie : Verwijderen

***** [ Services ] *****

***** [ Bestanden / Mappen ] *****

Bestand Verwijderd : C:\Users\Disk\AppData\Roaming\Mozilla\Firefox\Profiles\uxflsrki.default\user.js

***** [ Taken ] *****

***** [ Snelkoppelingen ] *****

***** [ Register ] *****

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\secman.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}

Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}

Sleutel Verwijderd : HKCU\Software\IM

Sleutel Verwijderd : HKCU\Software\ImInstaller

Sleutel Verwijderd : HKCU\Software\Myfree Codec

Sleutel Verwijderd : HKCU\Software\ParetoLogic

Sleutel Verwijderd : HKLM\SOFTWARE\ImInstaller

Sleutel Verwijderd : HKLM\SOFTWARE\Myfree Codec

Sleutel Verwijderd : HKLM\SOFTWARE\ParetoLogic

Sleutel Verwijderd : HKLM\SOFTWARE\systweak

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Mozilla Firefox v28.0 (nl)

-\\ Google Chrome v39.0.2171.71

*************************

AdwCleaner[R0].txt - [2457 octets] - [02/12/2014 13:29:08]

AdwCleaner[R1].txt - [2517 octets] - [02/12/2014 14:10:28]

AdwCleaner[s0].txt - [2275 octets] - [02/12/2014 14:13:33]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2335 octets] ##########

Link naar reactie
Delen op andere sites

Dan lijkt het eerder een hardware- dan een softwareprobleem te zijn ?

Download en installeer Speccy.

Speccy is er ook in Nederlandstalige versie, bij de installatie (of update) kan je de taal wijzigen van Engels naar Nederlands ... als je op het driehoekje klikt, krijg je een uitrolmenu waarin je Nederlands kan selecteren.

Wanneer, tijdens het installeren van Speccy, de optie aangeboden wordt om Google Chrome of Google Toolbar "gratis" mee te installeren dien je de vinkjes weg te halen, tenzij dit een bewuste keuze is.

525a111b37ea3-Speccy.PNG

Start nu het programma en er zal een overzicht gemaakt worden van je hardware.

Als dit gereed is selecteer je bovenaan "Bestand - Publiceer Snapshot" en vervolgens bevestig je die keuze met " Ja ".

In het venster dat nu opent krijg je een link te zien, kopieer nu die link en plak die in je volgende bericht. Zo krijgen we een gedetailleerd overzicht van je hardware.

Meer info over deze procedure lees je HIER.

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.