Nieuwe pc, alles nakijken voor zekerheid

Johnny

27-02-2014 19:53

Logfile of random's system information tool 1.09 (written by random/random)
Run by Johnny at 2014-02-27 19:48:23
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 96 GB (84%) free of 114 GB
Total RAM: 4095 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:48:24, on 27-2-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal
Running processes:
D:\Program Files (x86)\uTorrent\uTorrent.exe
D:\Program Files (x86)\SABnzbd\SABnzbd.exe
D:\Program Files (x86)\Thermaltake\Tt eSPORTS BLACK Element\BlackElement.exe
D:\xampp\xampp-control.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
d:\xampp\apache\bin\httpd.exe
D:\xampp\apache\bin\httpd.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\Program Files (x86)\Steam\steam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\Downloads Chrome\HijackThis.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\trend micro\Johnny.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: “D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe” MSRun
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: “D:\Program Files (x86)\Thermaltake\Tt eSPORTS BLACK Element\BlackElement.exe” /Automation
O4 - HKLM\..\Run: “D:\xampp\xampp-control.exe”
O4 - HKCU\..\Run: “D:\Program Files (x86)\uTorrent\uTorrent.exe”
O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-20\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘NETWORK SERVICE’)
O4 - Startup: SABnzbd.lnk = D:\Program Files (x86)\SABnzbd\SABnzbd.exe
O4 - Global Startup: UltraMon.lnk = ?
O11 - Options group: Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - D:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000 (c2wts) - Unknown owner - C:\Program Files (x86)\Windows Identity Foundation\v3.5\c2wtshost.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - D:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: OpenVPN Service (OpenVPNService) - The OpenVPN Project - D:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
–
End of file - 8217 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
atieclxx
“C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe”
“D:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe” /launchService
“C:\Program Files (x86)\DirectAccess Connectivity Assistant\DcaSvc.exe”
“D:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe”
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
“D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe”
“D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe”
C:\Windows\system32\viakaraokesrv.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
“C:\Windows\System32\WUDFHost.exe” -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-21df5032-364e-4dc6-bb95-cdd1738a6845 -SystemEventPortName:HostProcess-590affbc-61fb-4cd1-8a9c-e2ac7df2b6b5 -IoCancelEventPortName:HostProcess-79a66f8c-c3a1-42a9-9d27-9300baf1cbc6 -NonStateChangingEventPortName:HostProcess-7997ed72-2c91-4fbc-9b01-edf508d2e0ff -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:058a2264-1dcc-4e11-95bf-b8d4aa259116 -DeviceGroupId:WpdFsGroup
“C:\Windows\system32\Dwm.exe”
C:\Windows\Explorer.EXE
“taskhost.exe”
“D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe” /hide /waitservice
“C:\Program Files\Logitech\Gaming Software\LWEMon.exe” /noui
“C:\Program Files\Logitech Gaming Software\LCore.exe” /minimized
“D:\Program Files (x86)\uTorrent\uTorrent.exe”
“C:\Program Files\UltraMon\UltraMon.exe” /auto
“D:\Program Files (x86)\SABnzbd\SABnzbd.exe” -b0
“D:\Program Files (x86)\Thermaltake\Tt eSPORTS BLACK Element\BlackElement.exe” /Automation
“D:\xampp\xampp-control.exe”
“D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM” PriorityLow
“C:\Program Files\UltraMon\UltraMonTaskbar.exe”
“D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe” 0
“C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe” -Embedding
d:\xampp\apache\bin\httpd.exe
\??\C:\Windows\system32\conhost.exe "759208226-1200327636-1198555326-130317506-2139054823-178089865998845874-881130497
D:\xampp\apache\bin\httpd.exe -d D:/xampp/apache
“C:\Program Files\Windows Media Player\wmpnetwk.exe”
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe”
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –type=gpu-process –channel=“5496.0.1507642620\1112749935” –disable-image-transport-surface –supports-dual-gpus=false –gpu-driver-bug-workarounds=0,1,14,27 –gpu-vendor-id=0x1002 –gpu-device-id=0x6719 –gpu-driver-vendor=“Advanced Micro Devices, Inc.” –gpu-driver-version=13.251.0.0 –ignored=“ –type=renderer ” /prefetch:822062411
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –type=renderer –lang=nl –force-fieldtrials=“AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/” –enable-threaded-compositing –enable-delegated-renderer –enable-deadline-scheduling –extension-process –renderer-print-preview –enable-software-compositing –channel=“5496.2.731201112\1552727237” /prefetch:673131151
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –type=renderer –lang=nl –force-fieldtrials=“AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/” –enable-threaded-compositing –enable-delegated-renderer –enable-deadline-scheduling –extension-process –renderer-print-preview –enable-software-compositing –channel=“5496.3.1614707730\1169967839” /prefetch:673131151
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –type=renderer –lang=nl –force-fieldtrials=“AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/” –enable-threaded-compositing –enable-delegated-renderer –enable-deadline-scheduling –extension-process –renderer-print-preview –enable-software-compositing –channel=“5496.4.2021791819\1268602521” /prefetch:673131151
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –type=renderer –lang=nl –force-fieldtrials=“AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/” –enable-threaded-compositing –enable-delegated-renderer –enable-deadline-scheduling –renderer-print-preview –enable-software-compositing –channel=“5496.27.1651972581\659212669” /prefetch:673131151
“D:\Program Files (x86)\Steam\steam.exe” “steam://rungameid/227300”
“taskhost.exe”
C:\Windows\system32\sppsvc.exe
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –type=renderer –lang=nl –force-fieldtrials=“AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/” –enable-threaded-compositing –enable-delegated-renderer –enable-deadline-scheduling –renderer-print-preview –enable-software-compositing –channel=“5496.35.1759674666\1628032381” /prefetch:673131151
“D:\Downloads Chrome\HijackThis.exe”
“C:\Windows\system32\NOTEPAD.EXE” D:\Downloads Chrome\hijackthis.log
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –type=renderer –lang=nl –force-fieldtrials=“AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/” –enable-threaded-compositing –enable-delegated-renderer –enable-deadline-scheduling –renderer-print-preview –enable-software-compositing –channel=“5496.43.1541760582\1472133214” /prefetch:673131151
“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –type=renderer –lang=nl –force-fieldtrials=“AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/” –enable-threaded-compositing –enable-delegated-renderer –enable-deadline-scheduling –renderer-print-preview –enable-software-compositing –channel=“5496.44.740527191\544683666” /prefetch:673131151
“D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe”
“D:\Downloads Chrome\RSITx64.exe”
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\DriverEasy Scheduled Scan.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
“egui”=D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
“Start WingMan Profiler”=C:\Program Files\Logitech\Gaming Software\LWEMon.exe
“Launch LCore”=C:\Program Files\Logitech Gaming Software\LCore.exe
“uTorrent”=D:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\DirectAccess Connectivity Assistant\DcaTray.exe
D:\PROGRA~2\Samsung\SAMSUN~1\SAMSUN~1.EXE
“StartCCC”=D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
“Adobe ARM”=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
“Tt eSPORTS BLACK Element Gaming Mouse”=D:\Program Files (x86)\Thermaltake\Tt eSPORTS BLACK Element\BlackElement.exe
“xampp”=D:\xampp\xampp-control.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
UltraMon.lnk - C:\Windows\Installer\{9069EE0A-7615-4D86-AD80-CA263E936DA6}\IcoUltraMon.ico
C:\Users\Johnny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
SABnzbd.lnk - D:\Program Files (x86)\SABnzbd\SABnzbd.exe
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
“SecurityProviders”=credssp.dll
“ConsentPromptBehaviorAdmin”=0
“ConsentPromptBehaviorUser”=3
“EnableLUA”=0
“EnableUIADesktopToggle”=0
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“NoDriveTypeAutoRun”=145
“NoActiveDesktop”=1
“NoActiveDesktopChanges”=1
“ForceActiveDesktopOn”=0
“vidc.mrle”=msrle32.dll
“vidc.msvc”=msvidc32.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msg711”=msg711.acm
“msacm.msgsm610”=msgsm32.acm
“msacm.msadpcm”=msadp32.acm
“midimapper”=midimap.dll
“wavemapper”=msacm32.drv
“VIDC.UYVY”=msyuv.dll
“VIDC.YUY2”=msyuv.dll
“VIDC.YVYU”=msyuv.dll
“VIDC.IYUV”=iyuv_32.dll
“vidc.i420”=iyuv_32.dll
“VIDC.YVU9”=tsbyuv.dll
“msacm.l3acm”=C:\Windows\System32\l3codeca.acm
“MSVideo8”=VfWWDM32.dll
“wave2”=wdmaud.drv
“mixer2”=wdmaud.drv
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
“wave1”=wdmaud.drv
“midi1”=wdmaud.drv
“mixer1”=wdmaud.drv
“aux1”=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe “%1” %*
======List of files/folders created in the last 1 month======
2014-02-27 19:48:24 —-D—- C:\Program Files\trend micro
2014-02-27 19:48:23 —-D—- C:\rsit
2014-02-27 14:22:00 —-D—- C:\Users\Johnny\AppData\Roaming\FileZilla
2014-02-27 10:27:34 —-D—- C:\ProgramData\Bohemia Interactive
2014-02-27 10:27:33 —-A—- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-02-27 10:27:33 —-A—- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-02-27 10:27:33 —-A—- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-02-27 10:27:33 —-A—- C:\Windows\system32\XAudio2_7.dll
2014-02-27 10:27:33 —-A—- C:\Windows\system32\XAPOFX1_5.dll
2014-02-27 10:27:33 —-A—- C:\Windows\system32\xactengine3_7.dll
2014-02-27 10:27:32 —-A—- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\system32\D3DX9_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\system32\d3dx11_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\system32\d3dx10_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\system32\d3dcsx_43.dll
2014-02-27 10:27:32 —-A—- C:\Windows\system32\D3DCompiler_43.dll
2014-02-27 10:27:31 —-A—- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-02-27 10:27:31 —-A—- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-02-27 10:27:31 —-A—- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-02-27 10:27:31 —-A—- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-02-27 10:27:31 —-A—- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-02-27 10:27:31 —-A—- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-02-27 10:27:31 —-A—- C:\Windows\system32\XAudio2_6.dll
2014-02-27 10:27:31 —-A—- C:\Windows\system32\XAudio2_5.dll
2014-02-27 10:27:31 —-A—- C:\Windows\system32\XAPOFX1_4.dll
2014-02-27 10:27:31 —-A—- C:\Windows\system32\xactengine3_6.dll
2014-02-27 10:27:31 —-A—- C:\Windows\system32\xactengine3_5.dll
2014-02-27 10:27:31 —-A—- C:\Windows\system32\X3DAudio1_7.dll
2014-02-27 10:27:30 —-A—- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-02-27 10:27:30 —-A—- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-02-27 10:27:30 —-A—- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-02-27 10:27:30 —-A—- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-02-27 10:27:30 —-A—- C:\Windows\system32\d3dx11_42.dll
2014-02-27 10:27:30 —-A—- C:\Windows\system32\d3dx10_42.dll
2014-02-27 10:27:30 —-A—- C:\Windows\system32\d3dcsx_42.dll
2014-02-27 10:27:30 —-A—- C:\Windows\system32\D3DCompiler_42.dll
2014-02-27 10:27:29 —-A—- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-02-27 10:27:29 —-A—- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-02-27 10:27:29 —-A—- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-02-27 10:27:29 —-A—- C:\Windows\system32\D3DX9_42.dll
2014-02-27 10:27:29 —-A—- C:\Windows\system32\d3dx10_41.dll
2014-02-27 10:27:29 —-A—- C:\Windows\system32\D3DCompiler_41.dll
2014-02-27 10:27:28 —-A—- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-02-27 10:27:28 —-A—- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-02-27 10:27:28 —-A—- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-02-27 10:27:28 —-A—- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-02-27 10:27:28 —-A—- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-02-27 10:27:28 —-A—- C:\Windows\system32\XAudio2_4.dll
2014-02-27 10:27:28 —-A—- C:\Windows\system32\XAPOFX1_3.dll
2014-02-27 10:27:28 —-A—- C:\Windows\system32\xactengine3_4.dll
2014-02-27 10:27:28 —-A—- C:\Windows\system32\X3DAudio1_6.dll
2014-02-27 10:27:28 —-A—- C:\Windows\system32\D3DX9_41.dll
2014-02-27 10:27:27 —-A—- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-02-27 10:27:27 —-A—- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-02-27 10:27:27 —-A—- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-02-27 10:27:27 —-A—- C:\Windows\system32\D3DX9_40.dll
2014-02-27 10:27:27 —-A—- C:\Windows\system32\d3dx10_40.dll
2014-02-27 10:27:27 —-A—- C:\Windows\system32\D3DCompiler_40.dll
2014-02-27 10:27:26 —-A—- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-02-27 10:27:26 —-A—- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-02-27 10:27:26 —-A—- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-02-27 10:27:26 —-A—- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-02-27 10:27:26 —-A—- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-02-27 10:27:26 —-A—- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-02-27 10:27:26 —-A—- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-02-27 10:27:26 —-A—- C:\Windows\system32\XAudio2_3.dll
2014-02-27 10:27:26 —-A—- C:\Windows\system32\XAudio2_2.dll
2014-02-27 10:27:26 —-A—- C:\Windows\system32\XAPOFX1_2.dll
2014-02-27 10:27:26 —-A—- C:\Windows\system32\XAPOFX1_1.dll
2014-02-27 10:27:26 —-A—- C:\Windows\system32\xactengine3_3.dll
2014-02-27 10:27:26 —-A—- C:\Windows\system32\xactengine3_2.dll
2014-02-27 10:27:26 —-A—- C:\Windows\system32\X3DAudio1_5.dll
2014-02-27 10:27:25 —-A—- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-02-27 10:27:25 —-A—- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-02-27 10:27:25 —-A—- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-02-27 10:27:25 —-A—- C:\Windows\system32\D3DX9_39.dll
2014-02-27 10:27:25 —-A—- C:\Windows\system32\d3dx10_39.dll
2014-02-27 10:27:25 —-A—- C:\Windows\system32\D3DCompiler_39.dll
2014-02-27 10:27:24 —-A—- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-02-27 10:27:24 —-A—- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-02-27 10:27:24 —-A—- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-02-27 10:27:24 —-A—- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-02-27 10:27:24 —-A—- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-02-27 10:27:24 —-A—- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-02-27 10:27:24 —-A—- C:\Windows\system32\XAudio2_1.dll
2014-02-27 10:27:24 —-A—- C:\Windows\system32\XAPOFX1_0.dll
2014-02-27 10:27:24 —-A—- C:\Windows\system32\xactengine3_1.dll
2014-02-27 10:27:24 —-A—- C:\Windows\system32\X3DAudio1_4.dll
2014-02-27 10:27:24 —-A—- C:\Windows\system32\d3dx10_38.dll
2014-02-27 10:27:24 —-A—- C:\Windows\system32\D3DCompiler_38.dll
2014-02-27 10:27:23 —-A—- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-02-27 10:27:23 —-A—- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-02-27 10:27:23 —-A—- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-02-27 10:27:23 —-A—- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-02-27 10:27:23 —-A—- C:\Windows\system32\XAudio2_0.dll
2014-02-27 10:27:23 —-A—- C:\Windows\system32\xactengine3_0.dll
2014-02-27 10:27:23 —-A—- C:\Windows\system32\X3DAudio1_3.dll
2014-02-27 10:27:23 —-A—- C:\Windows\system32\D3DX9_38.dll
2014-02-27 10:27:22 —-A—- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-02-27 10:27:22 —-A—- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-02-27 10:27:22 —-A—- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-02-27 10:27:22 —-A—- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-02-27 10:27:22 —-A—- C:\Windows\system32\xactengine2_10.dll
2014-02-27 10:27:22 —-A—- C:\Windows\system32\D3DX9_37.dll
2014-02-27 10:27:22 —-A—- C:\Windows\system32\d3dx10_37.dll
2014-02-27 10:27:22 —-A—- C:\Windows\system32\D3DCompiler_37.dll
2014-02-27 10:27:21 —-A—- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-02-27 10:27:21 —-A—- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-02-27 10:27:21 —-A—- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-02-27 10:27:21 —-A—- C:\Windows\system32\d3dx9_36.dll
2014-02-27 10:27:21 —-A—- C:\Windows\system32\d3dx10_36.dll
2014-02-27 10:27:21 —-A—- C:\Windows\system32\D3DCompiler_36.dll
2014-02-27 10:27:20 —-A—- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-02-27 10:27:20 —-A—- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-02-27 10:27:20 —-A—- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-02-27 10:27:20 —-A—- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-02-27 10:27:20 —-A—- C:\Windows\system32\xactengine2_9.dll
2014-02-27 10:27:20 —-A—- C:\Windows\system32\d3dx9_35.dll
2014-02-27 10:27:20 —-A—- C:\Windows\system32\d3dx10_35.dll
2014-02-27 10:27:20 —-A—- C:\Windows\system32\D3DCompiler_35.dll
2014-02-27 10:27:19 —-A—- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-02-27 10:27:19 —-A—- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-02-27 10:27:19 —-A—- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-02-27 10:27:19 —-A—- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-02-27 10:27:19 —-A—- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-02-27 10:27:19 —-A—- C:\Windows\system32\xactengine2_8.dll
2014-02-27 10:27:19 —-A—- C:\Windows\system32\X3DAudio1_2.dll
2014-02-27 10:27:19 —-A—- C:\Windows\system32\d3dx9_34.dll
2014-02-27 10:27:19 —-A—- C:\Windows\system32\d3dx10_34.dll
2014-02-27 10:27:19 —-A—- C:\Windows\system32\D3DCompiler_34.dll
2014-02-27 10:27:18 —-A—- C:\Windows\SYSWOW64\xinput1_3.dll
2014-02-27 10:27:18 —-A—- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-02-27 10:27:18 —-A—- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-02-27 10:27:18 —-A—- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-02-27 10:27:18 —-A—- C:\Windows\system32\xinput1_3.dll
2014-02-27 10:27:18 —-A—- C:\Windows\system32\xactengine2_7.dll
2014-02-27 10:27:18 —-A—- C:\Windows\system32\d3dx10_33.dll
2014-02-27 10:27:18 —-A—- C:\Windows\system32\D3DCompiler_33.dll
2014-02-27 10:27:17 —-A—- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-02-27 10:27:17 —-A—- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-02-27 10:27:17 —-A—- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-02-27 10:27:17 —-A—- C:\Windows\system32\xactengine2_6.dll
2014-02-27 10:27:17 —-A—- C:\Windows\system32\xactengine2_5.dll
2014-02-27 10:27:17 —-A—- C:\Windows\system32\d3dx9_33.dll
2014-02-27 10:27:16 —-A—- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-02-27 10:27:16 —-A—- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-02-27 10:27:16 —-A—- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-02-27 10:27:16 —-A—- C:\Windows\SYSWOW64\d3dx10.dll
2014-02-27 10:27:16 —-A—- C:\Windows\system32\xactengine2_4.dll
2014-02-27 10:27:16 —-A—- C:\Windows\system32\x3daudio1_1.dll
2014-02-27 10:27:16 —-A—- C:\Windows\system32\d3dx9_32.dll
2014-02-27 10:27:16 —-A—- C:\Windows\system32\d3dx10.dll
2014-02-27 10:27:15 —-A—- C:\Windows\SYSWOW64\xinput1_2.dll
2014-02-27 10:27:15 —-A—- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-02-27 10:27:15 —-A—- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-02-27 10:27:15 —-A—- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-02-27 10:27:15 —-A—- C:\Windows\system32\xinput1_2.dll
2014-02-27 10:27:15 —-A—- C:\Windows\system32\xactengine2_3.dll
2014-02-27 10:27:15 —-A—- C:\Windows\system32\xactengine2_2.dll
2014-02-27 10:27:15 —-A—- C:\Windows\system32\d3dx9_31.dll
2014-02-27 10:27:14 —-A—- C:\Windows\SYSWOW64\xinput1_1.dll
2014-02-27 10:27:14 —-A—- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-02-27 10:27:14 —-A—- C:\Windows\system32\xinput1_1.dll
2014-02-27 10:27:14 —-A—- C:\Windows\system32\xactengine2_1.dll
2014-02-27 10:27:13 —-A—- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-02-27 10:27:13 —-A—- C:\Windows\system32\d3dx9_30.dll
2014-02-27 10:27:12 —-A—- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-02-27 10:27:12 —-A—- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-02-27 10:27:12 —-A—- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-02-27 10:27:12 —-A—- C:\Windows\system32\xactengine2_0.dll
2014-02-27 10:27:12 —-A—- C:\Windows\system32\x3daudio1_0.dll
2014-02-27 10:27:12 —-A—- C:\Windows\system32\d3dx9_29.dll
2014-02-27 10:27:11 —-A—- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-02-27 10:27:11 —-A—- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-02-27 10:27:11 —-A—- C:\Windows\SYSWOW64\d3dx9_26.dll
Johnny

27-02-2014 19:54

2014-02-27 10:27:11 —-A—- C:\Windows\system32\d3dx9_28.dll
2014-02-27 10:27:11 —-A—- C:\Windows\system32\d3dx9_27.dll
2014-02-27 10:27:11 —-A—- C:\Windows\system32\d3dx9_26.dll
2014-02-27 10:27:10 —-A—- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-02-27 10:27:10 —-A—- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-02-27 10:27:10 —-A—- C:\Windows\system32\d3dx9_25.dll
2014-02-27 10:27:10 —-A—- C:\Windows\system32\d3dx9_24.dll
2014-02-27 10:15:40 —-D—- C:\Users\Johnny\AppData\Roaming\Hard Disk Sentinel
2014-02-27 10:13:51 —-D—- C:\Program Files (x86)\hdsentinel_pro_setup
2014-02-27 02:34:18 —-D—- C:\Black Element
2014-02-26 22:58:46 —-D—- C:\Program Files\TAP-Windows
2014-02-26 22:58:16 —-D—- C:\Windows\system32\appmgmt
2014-02-26 22:55:55 —-D—- C:\Program Files\OpenVPN
2014-02-26 22:53:17 —-D—- C:\Users\Johnny\AppData\Roaming\PrivateTunnel
2014-02-26 22:53:09 —-D—- C:\Program Files (x86)\OpenVPN Technologies
2014-02-26 22:28:02 —-D—- C:\Users\Johnny\AppData\Roaming\globalip
2014-02-26 21:43:45 —-A—- C:\Windows\SYSWOW64\devcon_x64.exe
2014-02-26 21:35:47 —-D—- C:\Users\Johnny\AppData\Roaming\Realtime Soft
2014-02-26 21:35:45 —-D—- C:\ProgramData\Realtime Soft
2014-02-26 21:35:45 —-D—- C:\Program Files\UltraMon
2014-02-26 20:18:47 —-D—- C:\ProgramData\Spotnet
2014-02-26 20:18:47 —-D—- C:\Program Files (x86)\Spotnet
2014-02-26 20:07:36 —-A—- C:\Windows\system32\drivers\MS2Filter.sys
2014-02-26 20:07:35 —-A—- C:\Windows\SYSWOW64\drivers\MS2Filter.sys
2014-02-26 20:07:26 —-HD—- C:\Program Files (x86)\InstallShield Installation Information
2014-02-26 20:05:17 —-D—- C:\ProgramData\LogiShrd
2014-02-26 20:04:42 —-D—- C:\Program Files\Logitech Gaming Software
2014-02-26 20:02:49 —-D—- C:\Program Files\Logitech
2014-02-26 20:02:49 —-D—- C:\Program Files\Common Files\Logitech
2014-02-26 20:02:30 —-D—- C:\Users\Johnny\AppData\Roaming\Logitech
2014-02-26 20:02:30 —-D—- C:\Users\Johnny\AppData\Roaming\Logishrd
2014-02-26 19:38:54 —-A—- C:\autoexec.bat
2014-02-26 19:38:38 —-D—- C:\Program Files (x86)\Enigma Software Group
2014-02-26 19:38:29 —-D—- C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2014-02-26 19:33:18 —-A—- C:\Windows\SYSWOW64\vbscript.dll
2014-02-26 19:33:18 —-A—- C:\Windows\system32\vbscript.dll
2014-02-26 19:32:43 —-A—- C:\Windows\SYSWOW64\msrating.dll
2014-02-26 19:32:42 —-A—- C:\Windows\SYSWOW64\ieui.dll
2014-02-26 19:32:42 —-A—- C:\Windows\system32\msrating.dll
2014-02-26 19:32:42 —-A—- C:\Windows\system32\ieui.dll
2014-02-26 19:32:42 —-A—- C:\Windows\system32\iernonce.dll
2014-02-26 19:32:42 —-A—- C:\Windows\system32\ieetwcollectorres.dll
2014-02-26 19:32:42 —-A—- C:\Windows\system32\ie4uinit.exe
2014-02-26 19:32:41 —-A—- C:\Windows\SYSWOW64\msfeeds.dll
2014-02-26 19:32:41 —-A—- C:\Windows\SYSWOW64\jsproxy.dll
2014-02-26 19:32:41 —-A—- C:\Windows\SYSWOW64\ieUnatt.exe
2014-02-26 19:32:41 —-A—- C:\Windows\SYSWOW64\iesetup.dll
2014-02-26 19:32:41 —-A—- C:\Windows\SYSWOW64\iernonce.dll
2014-02-26 19:32:41 —-A—- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-02-26 19:32:41 —-A—- C:\Windows\system32\msfeeds.dll
2014-02-26 19:32:41 —-A—- C:\Windows\system32\jsproxy.dll
2014-02-26 19:32:41 —-A—- C:\Windows\system32\ieUnatt.exe
2014-02-26 19:32:41 —-A—- C:\Windows\system32\iesetup.dll
2014-02-26 19:32:41 —-A—- C:\Windows\system32\ieetwproxystub.dll
2014-02-26 19:32:41 —-A—- C:\Windows\system32\ieetwcollector.exe
2014-02-26 19:32:40 —-A—- C:\Windows\SYSWOW64\wininet.dll
2014-02-26 19:32:40 —-A—- C:\Windows\SYSWOW64\jscript9diag.dll
2014-02-26 19:32:40 —-A—- C:\Windows\SYSWOW64\iertutil.dll
2014-02-26 19:32:40 —-A—- C:\Windows\SYSWOW64\ieapfltr.dll
2014-02-26 19:32:40 —-A—- C:\Windows\system32\mshtml.dll
2014-02-26 19:32:40 —-A—- C:\Windows\system32\jscript9diag.dll
2014-02-26 19:32:40 —-A—- C:\Windows\system32\iertutil.dll
2014-02-26 19:32:40 —-A—- C:\Windows\system32\ieapfltr.dll
2014-02-26 19:32:39 —-A—- C:\Windows\SYSWOW64\urlmon.dll
2014-02-26 19:32:39 —-A—- C:\Windows\system32\wininet.dll
2014-02-26 19:32:39 —-A—- C:\Windows\system32\urlmon.dll
2014-02-26 19:32:39 —-A—- C:\Windows\system32\ieframe.dll
2014-02-26 19:32:38 —-A—- C:\Windows\SYSWOW64\mshtml.dll
2014-02-26 19:32:38 —-A—- C:\Windows\SYSWOW64\ieframe.dll
2014-02-26 19:32:37 —-A—- C:\Windows\SYSWOW64\jscript9.dll
2014-02-26 19:32:37 —-A—- C:\Windows\system32\jscript9.dll
2014-02-26 19:32:35 —-D—- C:\Program Files (x86)\Adobe
2014-02-26 19:32:29 —-D—- C:\ProgramData\Adobe
2014-02-26 19:30:44 —-D—- C:\Windows\pss
2014-02-26 19:12:37 —-D—- C:\ProgramData\Samsung
2014-02-26 19:10:03 —-D—- C:\Users\Johnny\AppData\Roaming\Malwarebytes
2014-02-26 19:09:54 —-D—- C:\ProgramData\Malwarebytes
2014-02-26 19:09:48 —-A—- C:\Windows\system32\drivers\mbam.sys
2014-02-26 18:29:59 —-D—- C:\eset
2014-02-26 18:29:51 —-D—- C:\ProgramData\ESET
2014-02-26 18:22:08 —-D—- C:\Users\Johnny\AppData\Roaming\uTorrent
2014-02-26 18:14:46 —-D—- C:\Windows\Minidump
2014-02-26 18:13:49 —-D—- C:\Users\Johnny\AppData\Roaming\ATI
2014-02-26 18:13:49 —-D—- C:\ProgramData\ATI
2014-02-26 18:12:23 —-D—- C:\Program Files (x86)\AMD AVT
2014-02-26 18:12:06 —-D—- C:\ProgramData\AMD
2014-02-26 18:11:41 —-D—- C:\ProgramData\Package Cache
2014-02-26 18:11:41 —-D—- C:\Program Files\ATI
2014-02-26 18:11:21 —-D—- C:\Program Files\Common Files\ATI Technologies
2014-02-26 18:11:21 —-D—- C:\Program Files\AMD
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\OVDecode.dll
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\OpenVideo.dll
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\ativvsvl.dat
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\ativvsva.dat
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\atiuxpag.dll
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\atiumdva.dll
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\atiumdag.dll
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\atiu9pag.dll
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\atipblag.dat
2014-02-26 18:11:14 —-A—- C:\Windows\SYSWOW64\atioglxx.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\OVDecode64.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\OpenVideo64.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\coinst_13.251.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\clinfo.exe
2014-02-26 18:11:14 —-A—- C:\Windows\system32\ativvsvl.dat
2014-02-26 18:11:14 —-A—- C:\Windows\system32\ativvsva.dat
2014-02-26 18:11:14 —-A—- C:\Windows\system32\ativvaxy_cik_nd.dat
2014-02-26 18:11:14 —-A—- C:\Windows\system32\ativvaxy_cik.dat
2014-02-26 18:11:14 —-A—- C:\Windows\system32\ativce02.dat
2014-02-26 18:11:14 —-A—- C:\Windows\system32\atiuxp64.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\atiumd6a.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\atiumd64.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\atiu9p64.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\atitmm64.dll
2014-02-26 18:11:14 —-A—- C:\Windows\system32\atipblag.dat
2014-02-26 18:11:14 —-A—- C:\Windows\system32\ATIODE.exe
2014-02-26 18:11:14 —-A—- C:\Windows\system32\ATIODCLI.exe
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\OpenCL.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\atimpc32.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\atiglpxx.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\atigktxx.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\atidxx32.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\aticfx32.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\aticalrt.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\aticaldd.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\aticalcl.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\atiadlxy.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\amdpcom32.dll
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\amdocl_ld32.exe
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\amdocl_as32.exe
2014-02-26 18:11:13 —-A—- C:\Windows\SYSWOW64\amdocl.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\OpenCL.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\drivers\atikmpag.sys
2014-02-26 18:11:13 —-A—- C:\Windows\system32\drivers\atikmdag.sys
2014-02-26 18:11:13 —-A—- C:\Windows\system32\drivers\ati2erec.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atio6axx.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atimuixx.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atimpc64.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atiicdxx.dat
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atiglpxx.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atig6txx.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atig6pxx.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atiesrxx.exe
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atieclxx.exe
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atidxx64.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atidemgy.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\aticfx64.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\aticalrt64.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\aticaldd64.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\aticalcl64.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atibtmon.exe
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atiapfxx.exe
2014-02-26 18:11:13 —-A—- C:\Windows\system32\atiadlxx.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\amdpcom64.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\amdocl64.dll
2014-02-26 18:11:13 —-A—- C:\Windows\system32\amdocl_ld64.exe
2014-02-26 18:11:13 —-A—- C:\Windows\system32\amdocl_as64.exe
2014-02-26 18:10:56 —-A—- C:\Windows\system32\rusb3co2.dll
2014-02-26 18:10:56 —-A—- C:\Windows\system32\drivers\rusb3xhc.sys
2014-02-26 18:10:32 —-D—- C:\Windows\system32\SRSLabs
2014-02-26 18:10:32 —-D—- C:\Program Files\VIA
2014-02-26 18:10:29 —-A—- C:\Windows\SYSWOW64\VMTHX32.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\SYSWOW64\VMAPO32.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\SYSWOW64\VMAPO232.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\system32\WavesGUILib64.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VtSrdAPO.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VMWRP64.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VMTHX64.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VMPPLD64.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VMPPCN64.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VMAPO64.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VMAPO264.DLL
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VIASysFx.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\VIAPropPageExt.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\ViaMicArrayPropPageExt.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\ViaMicArrayAPO.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\ViakaraokeSrv.exe
2014-02-26 18:10:29 —-A—- C:\Windows\system32\ViaKaraokePropPageExt.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\ViaKaraokeApo.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\PropPageExt.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\nQPropPageExt.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\nQAPO.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\MaxxAudioVnA64.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\MaxxAudioAPO30.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EEP64H.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EEP64A.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EEL64H.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EEL64A.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EEG64H.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EEG64A.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EED64H.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EED64A.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EEA64H.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\EEA64A.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\Dts2PropPageExt.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\Dts2APO.dll
2014-02-26 18:10:29 —-A—- C:\Windows\system32\drivers\VMfilt64.sys
2014-02-26 18:10:29 —-A—- C:\Windows\system32\drivers\viahduaa.sys
2014-02-26 18:09:59 —-A—- C:\Windows\system32\RTNUninst64.dll
2014-02-26 18:09:59 —-A—- C:\Windows\system32\RtNicProp64.dll
2014-02-26 18:09:59 —-A—- C:\Windows\system32\drivers\Rt64win7.sys
2014-02-26 18:09:59 —-A—- C:\log.txt
2014-02-26 18:09:34 —-D—- C:\Users\Johnny\AppData\Roaming\library_dir
2014-02-26 18:09:28 —-D—- C:\Users\Johnny\AppData\Roaming\Raptr
2014-02-26 18:08:31 —-D—- C:\Users\Johnny\AppData\Roaming\Obnovi Soft
2014-02-26 18:08:14 —-D—- C:\Users\Johnny\AppData\Roaming\IObit
2014-02-26 18:08:14 —-D—- C:\ProgramData\IObit
2014-02-26 17:59:11 —-D—- C:\Program Files (x86)\Google
2014-02-26 17:56:25 —-D—- C:\Program Files\Google
2014-02-26 17:22:45 —-D—- C:\ProgramData\DriverGenius
2014-02-26 17:21:06 —-D—- C:\Users\Johnny\AppData\Roaming\Easeware
2014-02-26 17:16:49 —-D—- C:\Windows\SYSWOW64\Wat
2014-02-26 17:16:49 —-D—- C:\Windows\system32\Wat
2014-02-26 17:16:43 —-A—- C:\Windows\SYSWOW64\mstscax.dll
2014-02-26 17:16:43 —-A—- C:\Windows\system32\mstscax.dll
2014-02-26 17:14:21 —-D—- C:\Users\Johnny\AppData\Roaming\Identities
2014-02-26 17:14:17 —-SD—- C:\Users\Johnny\AppData\Roaming\Microsoft
2014-02-26 17:14:17 —-D—- C:\Users\Johnny\AppData\Roaming\Media Center Programs
2014-02-26 17:06:12 —-D—- C:\9e9a0705f40bff7b6097d8a2c91595
2014-02-26 17:05:51 —-A—- C:\Windows\system32\win32k.sys
2014-02-26 16:49:02 —-A—- C:\Windows\system32\drivers\afd.sys
2014-02-26 16:40:38 —-A—- C:\Windows\system32\drivers\usbport.sys
2014-02-26 16:40:38 —-A—- C:\Windows\system32\drivers\usbohci.sys
2014-02-26 16:40:38 —-A—- C:\Windows\system32\drivers\usbhub.sys
2014-02-26 16:40:38 —-A—- C:\Windows\system32\drivers\usbehci.sys
2014-02-26 16:40:38 —-A—- C:\Windows\system32\drivers\usbd.sys
2014-02-26 16:40:38 —-A—- C:\Windows\system32\drivers\usbccgp.sys
2014-02-26 16:32:13 —-A—- C:\Windows\system32\IEUDINIT.EXE
2014-02-26 16:30:30 —-A—- C:\Windows\SYSWOW64\elshyph.dll
2014-02-26 16:30:30 —-A—- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\wextract.exe
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\webcheck.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\url.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\pngfilt.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\occache.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\msls31.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\mshtmler.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\mshtmled.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\mshta.exe
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\msfeedssync.exe
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\licmgr10.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\jsIntl.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\jscript.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\inseng.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\imgutil.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\iexpress.exe
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\iesysprep.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\iepeers.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\iedkcs32.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\ieapfltr.dat
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\icardie.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\dxtrans.dll
2014-02-26 16:30:28 —-A—- C:\Windows\SYSWOW64\dxtmsft.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\wextract.exe
2014-02-26 16:30:28 —-A—- C:\Windows\system32\webcheck.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\url.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\SetIEInstalledDate.exe
2014-02-26 16:30:28 —-A—- C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-26 16:30:28 —-A—- C:\Windows\system32\pngfilt.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\occache.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\msls31.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\mshtmlmedia.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\mshtmler.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\mshtmled.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\MshtmlDac.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\mshta.exe
2014-02-26 16:30:28 —-A—- C:\Windows\system32\msfeedssync.exe
2014-02-26 16:30:28 —-A—- C:\Windows\system32\msfeedsbs.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\licmgr10.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\jsIntl.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\jscript.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\inseng.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\imgutil.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\iexpress.exe
2014-02-26 16:30:28 —-A—- C:\Windows\system32\iesysprep.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\iepeers.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\iedkcs32.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\ieapfltr.dat
2014-02-26 16:30:28 —-A—- C:\Windows\system32\IEAdvpack.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\icardie.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\elshyph.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\dxtrans.dll
2014-02-26 16:30:28 —-A—- C:\Windows\system32\dxtmsft.dll
2014-02-26 16:29:49 —-D—- C:\Program Files\KMSpico
2014-02-26 16:25:07 —-A—- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-26 16:24:30 —-D—- C:\Windows\Migration
2014-02-26 16:24:30 —-D—- C:\Program Files (x86)\Microsoft.NET
2014-02-26 16:24:26 —-SHD—- C:\Windows\Installer
2014-02-26 16:23:34 —-A—- C:\Windows\system32\MRT.exe
2014-02-26 16:23:30 —-A—- C:\Windows\SYSWOW64\poqexec.exe
2014-02-26 16:23:30 —-A—- C:\Windows\system32\poqexec.exe
2014-02-26 16:23:23 —-A—- C:\Windows\system32\wups.dll
2014-02-26 16:23:23 —-A—- C:\Windows\system32\wudriver.dll
2014-02-26 16:23:23 —-A—- C:\Windows\system32\wuapi.dll
2014-02-26 16:23:21 —-A—- C:\Windows\system32\wuwebv.dll
2014-02-26 16:23:21 —-A—- C:\Windows\system32\wuapp.exe
2014-02-26 16:23:18 —-A—- C:\Windows\system32\wups2.dll
2014-02-26 16:23:18 —-A—- C:\Windows\system32\wucltux.dll
2014-02-26 16:23:18 —-A—- C:\Windows\system32\wuaueng.dll
2014-02-26 16:23:18 —-A—- C:\Windows\system32\wuauclt.exe
2014-02-26 16:23:05 —-SHD—- C:\Recovery
2014-02-26 16:23:05 —-SHD—- C:\ProgramData\Sjablonen
2014-02-26 16:23:05 —-SHD—- C:\ProgramData\Menu Start
2014-02-26 16:23:05 —-SHD—- C:\ProgramData\Favorieten
2014-02-26 16:23:05 —-SHD—- C:\ProgramData\Documenten
2014-02-26 16:23:05 —-SHD—- C:\ProgramData\Bureaublad
2014-02-26 16:18:49 —-D—- C:\Windows\SoftwareDistribution
2014-02-26 16:14:44 —-D—- C:\Windows\Prefetch
2014-02-26 16:14:35 —-SHD—- C:\System Volume Information
2014-02-26 16:14:35 —-ASH—- C:\pagefile.sys
2014-02-26 16:13:13 —-D—- C:\Windows\Panther
2014-02-19 15:13:41 —-A—- C:\Windows\SYSWOW64\msxml3r.dll
2014-02-19 15:13:41 —-A—- C:\Windows\SYSWOW64\msxml3.dll
2014-02-19 15:13:41 —-A—- C:\Windows\system32\msxml3r.dll
2014-02-19 15:13:41 —-A—- C:\Windows\system32\msxml3.dll
2014-02-19 15:13:31 —-A—- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-19 15:13:31 —-A—- C:\Windows\SYSWOW64\d2d1.dll
2014-02-19 15:13:31 —-A—- C:\Windows\system32\d3d10warp.dll
2014-02-19 15:13:31 —-A—- C:\Windows\system32\d2d1.dll
2014-02-19 15:12:55 —-D—- C:\Windows\system32\drivers\en-US
2014-02-19 15:12:40 —-A—- C:\Windows\SYSWOW64\wksprtPS.dll
2014-02-19 15:12:40 —-A—- C:\Windows\SYSWOW64\tsgqec.dll
2014-02-19 15:12:40 —-A—- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-02-19 15:12:40 —-A—- C:\Windows\SYSWOW64\mstsc.exe
2014-02-19 15:12:40 —-A—- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-02-19 15:12:40 —-A—- C:\Windows\system32\wksprtPS.dll
2014-02-19 15:12:40 —-A—- C:\Windows\system32\wksprt.exe
2014-02-19 15:12:40 —-A—- C:\Windows\system32\TSWbPrxy.exe
2014-02-19 15:12:40 —-A—- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-19 15:12:40 —-A—- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-19 15:12:40 —-A—- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-19 15:12:40 —-A—- C:\Windows\system32\tsgqec.dll
2014-02-19 15:12:40 —-A—- C:\Windows\system32\rdvidcrl.dll
2014-02-19 15:12:40 —-A—- C:\Windows\system32\mstsc.exe
2014-02-19 15:12:40 —-A—- C:\Windows\system32\MsRdpWebAccess.dll
2014-02-19 15:12:40 —-A—- C:\Windows\system32\drivers\TsUsbGD.sys
2014-02-19 15:12:40 —-A—- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\secproc_isv.dll
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\secproc.dll
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\RMActivate.exe
2014-02-19 15:12:29 —-A—- C:\Windows\SYSWOW64\msdrm.dll
2014-02-19 15:12:29 —-A—- C:\Windows\system32\secproc_ssp_isv.dll
2014-02-19 15:12:29 —-A—- C:\Windows\system32\secproc_ssp.dll
2014-02-19 15:12:29 —-A—- C:\Windows\system32\secproc.dll
2014-02-19 15:12:29 —-A—- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-19 15:12:29 —-A—- C:\Windows\system32\RMActivate_ssp.exe
2014-02-19 15:12:29 —-A—- C:\Windows\system32\RMActivate_isv.exe
2014-02-19 15:12:29 —-A—- C:\Windows\system32\RMActivate.exe
2014-02-19 15:12:29 —-A—- C:\Windows\system32\msdrm.dll
2014-02-19 15:12:28 —-A—- C:\Windows\system32\secproc_isv.dll
2014-02-19 15:12:06 —-A—- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-02-19 15:12:06 —-A—- C:\Windows\system32\TSWorkspace.dll
2014-02-19 14:59:52 —-A—- C:\Windows\system32\browserchoice.exe
2014-02-19 14:57:31 —-A—- C:\Windows\system32\drivers\usbcir.sys
2014-02-19 14:57:10 —-A—- C:\Windows\system32\ntdsatq.dll
2014-02-19 14:57:00 —-A—- C:\Windows\system32\ntdsai.dll
======List of files/folders modified in the last 1 month======
2014-02-27 19:48:24 —-RD—- C:\Program Files
2014-02-27 19:47:42 —-D—- C:\Windows\Temp
2014-02-27 13:35:58 —-D—- C:\Windows\system32\config
2014-02-27 11:20:51 —-D—- C:\Windows\System32
2014-02-27 11:20:51 —-A—- C:\Windows\system32\PerfStringBackup.INI
2014-02-27 11:16:26 —-D—- C:\Windows
2014-02-27 11:05:53 —-D—- C:\Windows\inf
2014-02-27 10:57:47 —-SD—- C:\ProgramData\Microsoft
2014-02-27 10:50:46 —-D—- C:\Windows\Logs
2014-02-27 10:47:33 —-D—- C:\Windows\system32\Tasks
2014-02-27 10:27:34 —-HD—- C:\ProgramData
2014-02-27 10:27:33 —-D—- C:\Windows\SysWOW64
2014-02-27 10:27:14 —-RSD—- C:\Windows\assembly
2014-02-27 10:27:13 —-D—- C:\Windows\Microsoft.NET
2014-02-27 10:13:51 —-RD—- C:\Program Files (x86)
2014-02-27 03:26:55 —-D—- C:\Windows\rescache
2014-02-27 02:31:57 —-D—- C:\Windows\SYSWOW64\drivers
2014-02-26 22:53:13 —-D—- C:\Windows\system32\DriverStore
2014-02-26 22:53:13 —-D—- C:\Windows\system32\drivers
2014-02-26 22:53:13 —-D—- C:\Windows\system32\catroot
2014-02-26 21:47:17 —-D—- C:\Windows\Tasks
2014-02-26 21:46:50 —-D—- C:\Windows\winsxs
2014-02-26 21:45:58 —-D—- C:\Program Files (x86)\Internet Explorer
2014-02-26 21:45:57 —-D—- C:\Program Files\Internet Explorer
2014-02-26 21:35:46 —-D—- C:\Program Files (x86)\Common Files
2014-02-26 20:15:09 —-RSD—- C:\Windows\Fonts
2014-02-26 20:04:15 —-D—- C:\Program Files\Common Files\Microsoft Shared
2014-02-26 20:02:56 —-D—- C:\Windows\system32\catroot2
2014-02-26 20:02:49 —-D—- C:\Program Files\Common Files
2014-02-26 19:27:33 —-D—- C:\Windows\system32\wdi
2014-02-26 18:58:31 —-D—- C:\Windows\debug
2014-02-26 17:51:42 —-A—- C:\Windows\system32\junction.exe
2014-02-26 17:16:51 —-D—- C:\Windows\SYSWOW64\nl-NL
2014-02-26 17:16:51 —-D—- C:\Windows\system32\nl-NL
2014-02-26 17:14:20 —-SHD—- C:\$Recycle.Bin
2014-02-26 17:14:17 —-D—- C:\Users
2014-02-26 17:10:10 —-D—- C:\Windows\SYSWOW64\migration
2014-02-26 17:10:10 —-D—- C:\Windows\SYSWOW64\en-US
2014-02-26 17:10:10 —-D—- C:\Windows\system32\migration
2014-02-26 17:10:10 —-D—- C:\Windows\system32\en-US
2014-02-26 17:10:10 —-D—- C:\Windows\PolicyDefinitions
2014-02-26 16:30:04 —-D—- C:\Windows\system32\CodeIntegrity
2014-02-26 16:23:05 —-D—- C:\Windows\system32\Recovery
2014-02-26 16:23:05 —-D—- C:\Program Files\Windows NT
2014-02-26 16:18:47 —-D—- C:\Windows\system32\sysprep
2014-02-26 16:16:13 —-D—- C:\Windows\system32\drivers\UMDF
2014-02-26 16:14:43 —-D—- C:\Windows\CSC
2014-02-19 15:14:04 —-A—- C:\Windows\system32\WinToolkitRunOnce.exe.config
2014-02-19 15:14:04 —-A—- C:\Windows\system32\WinToolkitRunOnce.exe
2014-02-19 15:12:55 —-D—- C:\Windows\SYSWOW64\wbem
2014-02-19 15:12:55 —-D—- C:\Windows\system32\wbem
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 mvs91xx;mvs91xx; C:\Windows\system32\DRIVERS\mvs91xx.sys
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys
R2 AODDriver4.2.0;AODDriver4.2.0; \??\D:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
R2 UltraMonUtility;UltraMon Utility Driver; \??\C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys
R3 3xHybr64;SAA713x TV Card Service; C:\Windows\system32\DRIVERS\3xHybr64.sys
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys
R3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys
R3 Thermnaltake MS2 Filter;Thermnaltake MS2 Filter; C:\Windows\System32\Drivers\MS2Filter.sys
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys
R3 WmHidLo;Logitech Gaming USB Filter Driver; C:\Windows\system32\drivers\WmHidLo.sys
R3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys
S3 esgiguard;esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys
S3 tapoas;TAP-Win32 Adapter OAS; C:\Windows\system32\DRIVERS\tapoas.sys
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys
S4 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe
R2 AMD FUEL Service;AMD FUEL Service; D:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe
R2 DcaSvc;@%ProgramFiles(x86)%\DirectAccess Connectivity Assistant\DcaSvc.exe,-3036; C:\Program Files (x86)\DirectAccess Connectivity Assistant\DcaSvc.exe
R2 ekrn;ESET Service; D:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
R2 MBAMScheduler;MBAMScheduler; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
R2 SpyHunter 4 Service;SpyHunter 4 Service; C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
R2 TeamViewer9;TeamViewer 9; D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
S2 MBAMService;MBAMService; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe
S3 OpenVPNService;OpenVPN Service; D:\Program Files\OpenVPN\bin\openvpnserv.exe
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
—————–EOF—————–
Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org
Databaseversie: v2014.02.26.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Johnny :: WINDOWS-3JCO54A
Bescherming: Uitgeschakeld
27-2-2014 19:48:05
mbam-log-2014-02-27 (19-48-05).txt
Scan type: Snelle scan
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 208557
Verstreken tijd: 1 minuut/minuten, 48 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)
fazantje

27-02-2014 20:29

Hoi Johnny,
Gezien dit een nieuwe PC is laat ik je geen zoek exe doen omdat zoek exe ook voor een deel een schoonmaakprogramma is.
Doe daarom het volgende:
Download AdwCleaner by Xplodenaar het bureaublad.
Sluit alle openstaande vensters.
Klik met de rechtermuisknop op het icoontje en kies voor Als Administrator uitvoeren.
Klik vervolgens op Scan.
Klik daarna op Clean als er items zijn gevonden.
Klik indien nodig bij herstarten op OK.
Nadat de PC opnieuw is opgestart, opent een logfile.
Plaats de inhoud van dit logje in je volgende bericht.
Mocht je geen logje krijgen, dan is het terug te vinden bij: C:\AdwCleaner\AdwCleaner.txt
Succes,
Huib;)
Johnny

27-02-2014 21:04

# AdwCleaner v3.020 - Report created 27/02/2014 at 21:03:01
# Updated 27/02/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Johnny - WINDOWS-3JCO54A
# Running from : D:\Downloads Chrome\adwcleaner.exe
# Option : Clean
***** *****
***** *****
***** *****
***** *****
Key Deleted : HKLM\Software\Driver-Soft
***** *****
-\\ Internet Explorer v11.0.9600.16518
-\\ Google Chrome v33.0.1750.117
*************************
AdwCleaner.txt - -
AdwCleaner.txt - -
########## EOF - C:\AdwCleaner\AdwCleaner.txt - ##########
fazantje

27-02-2014 21:21

Hoi Johnny,
Dit ziet er goed uit(tu)
Veel plezier met jou nieuwe pc.
Houd wel ff goed in de gaten heh met jou torrents sites.
MBAM kun je houden.
1x in de week updaten en een snelle scan mee uitvoeren.
ADW cleaner verwijder je door weer met jou rechtermuisknop te klikken en te kiezen voor: als administrator uitvoeren en klik op uninstal.
Groetjes Huib;)
Johnny

27-02-2014 23:28

Ik gebruik alleen maar torrent site's om linux snel vanaf te trekken
Bedankt voor de check
fazantje

27-02-2014 23:33

Graag gedaan;)
Groetjes Huib;)
fazantje

07-03-2014 20:05

Omdat dit topic is opgelost word het gesloten.
Wilt U Uw topic als nog weer openen, stuur dan een privé bericht naar Ben of Huib (fazantje).
Zij zullen dan het “slotje” er van af halen en het topic is weer open.
Het AV team.

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

Nieuwe pc, alles nakijken voor zekerheid

Johnny

Johnny

fazantje

Johnny

fazantje

Johnny

fazantje

fazantje