• Hulpvragenden in dit forumonderdeel worden enkel geholpen door daartoe bevoegde teamleden.
    Dit is belangrijk, zodat de hulpvragende goed geholpen kan worden zonder (goedbedoelde) aanvullende berichten van andere leden.
    Reageren op andermans discussie is daarom uitgeschakeld.
  • De afgelopen dagen zijn er meerdere fora waarop bestaande accounts worden overgenomen door spammers. De gebruikersnamen en wachtwoorden zijn via een hack of een lek via andere sites buitgemaakt. Via have i been pwned? kan je controleren of jouw gegeven ook zijn buitgemaakt. Wijzig bij twijfel jouw wachtwoord of schakel de twee-staps-verificatie in.

Problemen met mijn PC

Status
Niet open voor verdere reacties.

brentman123

Bekend gezicht
Lid geworden
29 jul 2012
Berichten
186
Waarderingsscore
0
Hallo iedereen,

sinds eind vorige week heb ik wat problemen met mijn pc. Ik begon te merken dat mijn pc Battlefield 4 niet goed meer aankon; normaal +- 60 FPS op medium, nu rond 28 op low. Met andere spellen heb ik dat ook (BF3, Red Orchestra 2). Ik mijn videokaart eruit halen, schoonmaken en er terug in. Loste het probleem helaas niet op dus ben ik verder gaan zoeken. Kwam ik tot de ontdekking dat programma's zoals speccy en coretemp aangeven dat mijn CPU idle rond de 85 graden is en als ik game 120 graden. Hij voelt totaal niet warm aan, maar er klopt dus iets niet. Ook nog maar even mijn HDD gecheckt, kijken wat de schrijfsnelheid was. Die was van 100 mb/s gedaald naar 35 mb/s... Avast antivirus kan trouwens geen virus vinden!

Ik weet niet meer wat ik moet doen en ik heb geen zin om een nieuwe pc te moeten kopen, aangezien deze nog geen 2 jaar oud is...

SPECS:
Operating System
Windows 7 Home Premium 64-bit SP1
CPU
Intel Core i5 3570K @ 3.40GHz 79 C
Ivy Bridge 22nm Technology
RAM
8,00GB Dual-Channel DDR3 @ 686MHz (9-9-9-24)
Motherboard
ASUSTeK COMPUTER INC. P8H77-V LE (LGA1155) 28 C
Graphics
PL2473H (1920x1080@60Hz)
AL1916W (1440x900@60Hz)
1279MB NVIDIA GeForce GTX 570 (MSI) 45 C
Hard Drives
932GB Seagate ST31000524AS ATA Device (SATA) 31 C
Optical Drives
DTSOFT Virtual CdRom Device
TSSTcorp CDDVDW SH-222BB ATA Device

Alvast bedankt!

P.S.
Mijn headset heeft het van de week ook begeven, dus misschien gaat alles wel gewoon kapot als ik het aanraak :/
 
Laatst bewerkt door een moderator:
Wat geeft Taakbeheer aan wat betreft het aantal processen en cpu-gebruik?
 
Processen: 75
Processorgebruik: rond 20% maar schommelt heeeel erg
Screen:
taakbeheer.png


Misschien dat dit ook bruikbaar kan zijn:
http://speccy.piriform.com/results/SYUgJZGdKtiugyH3kOjcrxZ
 
Laatst bewerkt door een moderator:
Ik heb jouw discussie voorlopig verplaatst.

Download
51a5f5d096dae-icon_RSIT.png
RSIT van de onderstaande locaties en sla deze op het bureablad op.
Hier staat een beschrijving hoe u kunt kijken of u een 32 of 64 bit versie van Windows heeft.

RSIT Downloaden
RSIT Uitvoeren
  • Dubbelklik op RSIT.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Als u RSIT de eerste keer uitvoert zal HijackThis gedownload worden als deze niet aanwezig is, sta dit vervolgens toe.
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" geopend.
RSIT Logbestanden plaatsen
  • Post de inhoud van het logbestand met de naam Log.txt toe in uw volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map "C:\rsit")"
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
 
Logs niet uitwendig beschikbaar maken, daar doe ik niks mee.

De komplete inhoud kopiren van het log en dat in je volgende antwoord erbij plakken!
 
info.txt logfile of random's system information tool 1.10 2014-07-30 13:55:00

======MBR======

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

======Uninstall list======

-->MsiExec /X{80407BA7-7763-4395-AB98-5233F1B34E65}
Ace of Spades-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/224540
Adobe Flash Player 14 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_Plugin.exe -maintain plugin
Adobe Photoshop CS6-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}"
Adobe Reader 9.1-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A91000000001}
Arma 2: Operation Arrowhead-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/33930
Arma 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/33910
avast! Free Antivirus-->C:\Program Files\AVAST Software\Avast\Setup\Instup.exe /control_panel /instop:uninstall
AwesomiumSetup-->MsiExec.exe /I{19EF99D1-7EE6-4B5E-ABEE-0B3825F703B0}
Battlefield 3-->"C:\Program Files (x86)\Common Files\EAInstaller\Battlefield 3\Cleanup.exe" uninstall_game -autologging
Battlefield 4 CTE-->"C:\Program Files (x86)\Common Files\EAInstaller\Battlefield 4 CTE\Cleanup.exe" uninstall_game -autologging
Battlefield 4-->"C:\Program Files (x86)\Common Files\EAInstaller\Battlefield 4\Cleanup.exe" uninstall_game -autologging
Battlefield: Bad Company 2-->"C:\Program Files (x86)\Common Files\EAInstaller\Battlefield - Bad Company 2\Cleanup.exe" uninstall_game -autologging
Battlelog Web Plugins-->C:\Program Files (x86)\Battlelog Web Plugins\uninstall.exe
BattlEye for OA Uninstall-->C:\Program Files (x86)\Steam\steamapps\common\Arma 2 Operation Arrowhead\Expansion\BattlEye\UnInstallBE.exe
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Chunky-->"C:\Program Files (x86)\Chunky\uninstall.exe"
Cisco EAP-FAST Module-->MsiExec.exe /I{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
Cisco LEAP Module-->MsiExec.exe /I{51C7AD07-C3F6-4635-8E8A-231306D810FE}
Cisco PEAP Module-->MsiExec.exe /I{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
Core Temp 1.0 RC6-->"C:\Program Files\Core Temp\unins000.exe"
Counter-Strike: Global Offensive-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/730
DAEMON Tools Pro-->C:\Program Files (x86)\DAEMON Tools Pro\uninst.exe
DayZ Commander-->MsiExec.exe /I{B3653588-3AC0-4A1D-950F-D96531E84374}
DayZ-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/221100
Dead Space 3-->"C:\Program Files (x86)\Common Files\EAInstaller\Dead Space 3\Cleanup.exe" uninstall_game -autologging
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{5C78021E-3C8E-4EDF-97EA-E9B8D808FD6D}" "1033" "0"
Dxtory version 2.0.127-->"C:\Program Files (x86)\ExKode\Dxtory2.0\unins000.exe"
ESN Sonar-->C:\Program Files (x86)\Battlelog Web Plugins\Sonar\esnsonar_uninstall.exe
FileZilla Client 3.8.1-->C:\Program Files (x86)\FileZilla FTP Client\uninstall.exe
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Heroes & Generals-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/227940
Intel(R) USB 3.0 eXtensible Host Controller Driver-->C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Uninstall\setup.exe -uninstall
Java 7 Update 60 (64-bit)-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F06417060FF}
Lagarith Lossless Codec (1.3.27)-->"C:\Windows\unins000.exe"
Malwarebytes Anti-Malware versie 2.0.2.1012-->"C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"
Microsoft .NET Framework 4.5.1 (Nederlands)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\NLD\\Setup.exe /repair /x86 /x64 /lcid 1043
Microsoft .NET Framework 4.5.1 (NLD)-->MsiExec.exe /X{9EBB0AF2-4AD2-3ABA-95EF-977EBEA1CB09}
Microsoft .NET Framework 4.5.1-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\\Setup.exe /repair /x86 /x64
Microsoft .NET Framework 4.5.1-->MsiExec.exe /X{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)-->MsiExec.exe /X{41785C66-90F2-40CE-8CB5-1C94BFC97280}
Microsoft Office Access MUI (English) 2010-->MsiExec.exe /X{90140000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2010-->MsiExec.exe /X{90140000-0117-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2010-->MsiExec.exe /X{90140000-0016-0409-0000-0000000FF1CE}
Microsoft Office Groove MUI (English) 2010-->MsiExec.exe /X{90140000-00BA-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2010-->MsiExec.exe /X{90140000-0044-0409-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2010-->MsiExec.exe /X{90140000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2010-->MsiExec.exe /X{90140000-00A1-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2010-->MsiExec.exe /X{90140000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2010-->MsiExec.exe /X{90140000-0018-0409-0000-0000000FF1CE}
Microsoft Office Professional Plus 2010-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2010-->MsiExec.exe /X{90140000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (English) 2010-->MsiExec.exe /X{90140000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2010-->MsiExec.exe /X{90140000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2010-->MsiExec.exe /X{90140000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2010-->MsiExec.exe /X{90140000-002C-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2010-->MsiExec.exe /X{90140000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (English) 2010-->MsiExec.exe /X{90140000-002A-0409-1000-0000000FF1CE}
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010-->MsiExec.exe /X{90140000-0116-0409-1000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2010-->MsiExec.exe /X{90140000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2010-->MsiExec.exe /X{90140000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2010-->MsiExec.exe /X{90140000-001B-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610-->"C:\ProgramData\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610-->"C:\ProgramData\Package Cache\{95716cce-fc71-413f-8ad5-56c2892d4b3a}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610-->MsiExec.exe /X{764384C5-BCA9-307C-9AAC-FD443662686A}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610-->MsiExec.exe /X{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610-->MsiExec.exe /X{3D6AD258-61EA-35F5-812C-B7A02152996E}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610-->MsiExec.exe /X{E7D4E834-93EB-351F-B8FB-82CDAE623003}
Microsoft_VC80_CRT_x86-->MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC90_CRT_x86-->MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Notepad++-->C:\Program Files (x86)\Notepad++\uninstall.exe
NVIDIA 3D Vision controllerstuurprogramma 340.50-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{14D02B5F-2CE0-4157-AD2F-EF5A1F516E12}\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA 3D Vision stuurprogramma 340.52-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{14D02B5F-2CE0-4157-AD2F-EF5A1F516E12}\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA GeForce Experience 2.1.1-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{14D02B5F-2CE0-4157-AD2F-EF5A1F516E12}\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Grafisch stuurprogramma 340.52-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{14D02B5F-2CE0-4157-AD2F-EF5A1F516E12}\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA HD Audio-stuurprogramma 1.3.30.1-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{14D02B5F-2CE0-4157-AD2F-EF5A1F516E12}\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA PhysX systeemsoftware 9.13.1220-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{52F7E52D-497A-46DA-815B-6657EB3DCC0C}\NVI2.DLL",UninstallPackage Display.PhysX
NVIDIA PhysX-->MsiExec.exe /I{80407BA7-7763-4395-AB98-5233F1B34E65}
NVIDIA Stereoscopic 3D Driver-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
Open Broadcaster Software-->C:\Program Files (x86)\OBS\uninstall.exe
Origin-->C:\Program Files (x86)\Origin\OriginUninstall.exe
PDF Settings CS6-->MsiExec.exe /I{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
PunkBuster Services-->C:\Program Files (x86)\Origin Games\Battlefield 4 CTE\pbsvc.exe -u
Razer Core-->"C:\Windows\Razer Core\uninstall.exe" "/U:C:\ProgramData\Razer\CoreUninstall\uninstall.xml"
Razer Megalodon Firmware Updater-->MsiExec.exe /I{C67A3F9D-E55D-4288-B4EC-1B9863EFB288}
Razer Surround-->"C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\Razer Surround\Razer Surround_Uninstaller.exe" /S
Razer Synapse 2.0-->MsiExec.exe /I{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
Rising Storm/Red Orchestra 2 Multiplayer-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/35450
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {BD0F9F7E-62B2-3971-9E2E-B87B832CE89D}
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {513BC47F-0560-33C2-A029-C5387642233A}
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {599EC629-2679-30CE-B28B-7432EF5FC126}
Sitecom Wireless Network 300N Adapter-->C:\Program Files (x86)\InstallShield Installation Information\{F912EF57-65C8-48E8-911F-7FCAF8ADD62E}\setup.exe -runfromtemp -l0x0009 -removeonly
Skype 6.16-->MsiExec.exe /X{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
Speccy-->"C:\Program Files\Speccy\uninst.exe"
Steam-->C:\Program Files (x86)\Steam\uninstall.exe
Streamtip Alerter-->MsiExec.exe /X{D3E50127-DBBE-4689-9EEB-E157463248B5}
TeamSpeak 3 Client-->"C:\Program Files\TeamSpeak 3 Client\uninstall.exe"
TeamViewer 9-->C:\Program Files (x86)\TeamViewer\Version9\uninstall.exe
The Forest-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/242760
Unturned-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/304930
Update for Microsoft Office 2010 (KB2494150)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}" "1033" "0"
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{35698CB7-AAA2-4577-B505-DBFF504AEF23}" "1033" "0"
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{BA610006-2C39-4419-9834-CF61AB24810A}" "1033" "0"
Uplay-->C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe
Verdun-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/242860
Watch_Dogs-->"C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" uplay://uninstall/274
WinRAR 5.01 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe
WorldPainter 1.8.5-->C:\Program Files\WorldPainter\uninstall.exe

======System event log======

Computer Name: 37L4247F27-25
Event Code: 7036
Message: De Windows Event Log-service heeft nu de status stopped.
Record Number: 5
Source Name: Service Control Manager
Time Written: 20101121035831.093172-000
Event Type: Informatie
User:

Computer Name: 37L4247F27-25
Event Code: 7036
Message: De Diagnostic Policy Service-service heeft nu de status stopped.
Record Number: 4
Source Name: Service Control Manager
Time Written: 20101121035831.093172-000
Event Type: Informatie
User:

Computer Name: 37L4247F27-25
Event Code: 6005
Message: De Event Log-service is gestart.
Record Number: 3
Source Name: EventLog
Time Written: 20140601012522.000000-000
Event Type: Informatie
User:

Computer Name: 37L4247F27-25
Event Code: 6009
Message: Microsoft (R) Windows (R) 6.01. 7601 Service Pack 1 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20140601012522.000000-000
Event Type: Informatie
User:

Computer Name: 37L4247F27-25
Event Code: 6011
Message: De NetBIOS-naam en de DNS-hostnaam van deze computer zijn veranderd van 37L4247F27-25 in WIN-6NU1LQE8GDE.
Record Number: 1
Source Name: EventLog
Time Written: 20140601012522.000000-000
Event Type: Informatie
User:

=====Application event log=====

Computer Name: 37L4247F27-25
Event Code: 5617
Message: Subsystemen van Windows Management Instrumentation-service zijn genitialiseerd
Record Number: 5
Source Name: Microsoft-Windows-WMI
Time Written: 20140601012536.000000-000
Event Type: Informatie
User:

Computer Name: 37L4247F27-25
Event Code: 5615
Message: De Windows Management Instrumentation-service is gestart
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20140601012531.000000-000
Event Type: Informatie
User:

Computer Name: 37L4247F27-25
Event Code: 4625
Message: Het EventSystem-subsysteem onderdrukt gedurende 86400 seconden dubbele vermeldingen in het gebeurtenislogboek. De time-out voor onderdrukking kan worden ingesteld met de REG_DWORD-waarde SuppressDuplicateDuration in de volgende registersleutel: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 3
Source Name: Microsoft-Windows-EventSystem
Time Written: 20140601012524.000000-000
Event Type: Informatie
User:

Computer Name: 37L4247F27-25
Event Code: 1531
Message: De User Profile-service is gestart.


Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20140601012524.604160-000
Event Type: Informatie
User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247F27-25
Event Code: 1532
Message: De User Profile-service is gestopt.


Record Number: 1
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20101121035831.124372-000
Event Type: Informatie
User: NT AUTHORITY\SYSTEM

=====Security event log=====

Computer Name: 37L4247F27-25
Event Code: 4672
Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding.

Onderwerp:
Beveiligings-id: S-1-5-18
Accountnaam: SYSTEM
Accountdomein: NT AUTHORITY
Aanmeldings-id: 0x3e7

Bevoegdheden: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140601012452.904904-000
Event Type: Controle geslaagd
User:

Computer Name: 37L4247F27-25
Event Code: 4624
Message: Er is een account aangemeld.

Onderwerp:
Beveiligings-id: S-1-5-18
Accountnaam: 37L4247F27-25$
Accountdomein: WORKGROUP
Aanmeldings-id: 0x3e7

Aanmeldingstype: 5

Nieuwe aanmelding:
Beveiligings-id: S-1-5-18
Accountnaam: SYSTEM
Accountdomein: NT AUTHORITY
Aanmeldings-id: 0x3e7
Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Procesgegevens:
Proces-id: 0x1f4
Naam proces: C:\Windows\System32\services.exe

Netwerkgegevens:
Naam van werkstation:
Netwerkadres van bron: -
Poort van bron: -

Gedetailleerde verificatiegegevens:
Aanmeldingsproces: Advapi
Verificatiepakket: Negotiate
Doorgezette services: -
Pakketnaam (alleen NTLM): -
Sleutellengte: 0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.
- Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.
- In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.
- Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.
- Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140601012452.904904-000
Event Type: Controle geslaagd
User:

Computer Name: 37L4247F27-25
Event Code: 4902
Message: De tabel voor controlebeleid per gebruiker is gemaakt.

Aantal elementen: 0
Beleids-id: 0x316d8
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140601012446.290492-000
Event Type: Controle geslaagd
User:

Computer Name: 37L4247F27-25
Event Code: 4624
Message: Er is een account aangemeld.

Onderwerp:
Beveiligings-id: S-1-0-0
Accountnaam: -
Accountdomein: -
Aanmeldings-id: 0x0

Aanmeldingstype: 0

Nieuwe aanmelding:
Beveiligings-id: S-1-5-18
Accountnaam: SYSTEM
Accountdomein: NT AUTHORITY
Aanmeldings-id: 0x3e7
Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Procesgegevens:
Proces-id: 0x4
Naam proces:

Netwerkgegevens:
Naam van werkstation: -
Netwerkadres van bron: -
Poort van bron: -

Gedetailleerde verificatiegegevens:
Aanmeldingsproces: -
Verificatiepakket: -
Doorgezette services: -
Pakketnaam (alleen NTLM): -
Sleutellengte: 0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.
- Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.
- In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.
- Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.
- Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140601012442.437285-000
Event Type: Controle geslaagd
User:

Computer Name: 37L4247F27-25
Event Code: 4608
Message: Windows wordt opgestart.

Deze gebeurtenis wordt in het logboek geregistreerd wanneer LSASS.EXE wordt gestart en het subsysteem voor controle wordt genitialiseerd.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140601012442.250085-000
Event Type: Controle geslaagd
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3

-----------------EOF-----------------


Is het zo goed?
 
Laatst bewerkt door een moderator:
Wat is het voor jou toch moeilijk om je aan het gevraagde te houden.
Als ik een log binnen Quots gepost wil hebben, dan staat dat in d handleiding erbij, maar het staat er dus niet en hoef jij dat ook niet te doen.
Bovendien heb je nu het log gepost wat niet gepost hoefde te worden.
Ik wil nu graag dat jij het hoofdlog post in je volgende antwoord.
 
Wat is het voor jou toch moeilijk om klantvriendelijk te reageren...
Snap sws niet dat je niet gewoon de eerste pastebin link gebruikt... Dan was mijn probleem misschien al wel opgelost

Alstublieft:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Brent at 2014-07-30 13:54:31
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 651 GB (68%) free of 954 GB
Total RAM: 8146 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:54:58, on 30-7-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17207)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files (x86)\Sitecom\Common\RaUI.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Brent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware"
O4 - HKCU\..\Run: [Dxtory Update Checker 2.0] C:\Program Files (x86)\ExKode\Dxtory2.0\UpdateChecker.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Sitecom Wireless Utility.lnk = C:\Program Files (x86)\Sitecom\Common\RaUI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe
O23 - Service: Ralink Registry Writer 64 (RalinkRegistryWriter64) - Ralink Technology, Corp. - C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Razer Surround Audio Service (RzMaelstromVADStreamingService) - Unknown owner - C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10975 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\PnkBstrA.exe
"C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe"
"C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe"
"C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e4846450-1607-4da6-a01b-edc3f1be3ef9 -SystemEventPortName:HostProcess-b0b26a91-69d9-4757-a2ab-c493773bab99 -IoCancelEventPortName:HostProcess-27f14ca9-1585-4a2e-881c-2f3f2d01aea2 -NonStateChangingEventPortName:HostProcess-d9795397-b942-4a54-a7e7-f9957728a8a2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:addf3c16-7f2a-464f-8ad9-bc8c29fe6b36 -DeviceGroupId:WpdFsGroup
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss a97b2125-5b99-461d-893e-361282eb09df 1
\??\C:\Windows\system32\conhost.exe "1163000478-736051155-3617274471909721232-436423165-2450249881360843896915819617
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1285763491-192947673920212394033082002821884932016-4471674578985074732100819667
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Sitecom\Common\RaUI.exe" -s
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe"
"C:\Program Files (x86)\Origin\Origin.exe" "origin://LaunchGame/70619,71067,DGR01609244,DGR01609245?Title=Battlefield%u00203%u2122&ProductId=DR:225064100&CommandParams="
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="136852.0.2006403118\1845065294" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16,43 --gpu-vendor-id=0x10de --gpu-device-id=0x1086 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_17/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="136852.2.1519389487\2077567104" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_17/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="136852.4.1033855952\133776725" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="136852.5.648428132\554577311" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_17/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="136852.10.909326285\1327274003" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_17/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="136852.29.6021683\1278666194" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_17/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="136852.39.1550246978\1143726655" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe15_ Global\UsGthrCtrlFltPipeMssGthrPipe15 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Users\Brent\Downloads\RSITx64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_17/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="136852.44.551898857\473428779" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_17/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="136852.45.739595527\1439555138" /prefetch:673131151

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-01-21 6723984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-06-02 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-06-01 581824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-01-16 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-06-02 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-01-21 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-06-01 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-01-16 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-07-25 2403104]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-07-25 1283136]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-03-20 6468712]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Dxtory Update Checker 2.0"=C:\Program Files (x86)\ExKode\Dxtory2.0\UpdateChecker.exe [2010-10-17 93696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2012-10-23 3108480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\Brent\AppData\Roaming\Spotify\Spotify.exe [2014-07-27 6162488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\Brent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-07-27 1178168]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-09 3890208]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2014-06-23 585560]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-02-26 291608]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-01-21 91520]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware (cleanup)"=C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [2014-05-12 54072]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Sitecom Wireless Utility.lnk - C:\Program Files (x86)\Sitecom\Common\RaUI.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-01-21 6723984]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-01-21 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux8"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.xtor"=DxtoryCodec.dll
"VIDC.LAGS"=lagarith.dll
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-07-30 13:54:32 ----D---- C:\Program Files\trend micro
2014-07-30 13:54:31 ----D---- C:\rsit
2014-07-30 13:02:00 ----A---- C:\Windows\system32\drivers\vitr.sys
2014-07-30 12:53:22 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-07-30 12:51:56 ----D---- C:\ProgramData\Malwarebytes
2014-07-30 12:51:56 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-30 12:51:56 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-07-30 12:51:56 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-07-30 12:51:56 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-07-30 01:46:52 ----D---- C:\Windows\system32\drivers\en-US
2014-07-29 23:40:17 ----D---- C:\Program Files\Core Temp
2014-07-29 23:24:48 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-07-29 23:24:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-07-29 23:24:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-07-29 23:24:44 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-07-29 23:24:43 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-07-29 23:24:43 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-07-29 23:24:43 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-07-29 23:24:43 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-07-29 23:24:43 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-07-29 23:24:43 ----A---- C:\Windows\system32\wksprtPS.dll
2014-07-29 23:24:43 ----A---- C:\Windows\system32\wksprt.exe
2014-07-29 23:24:43 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-07-29 23:24:43 ----A---- C:\Windows\system32\tsgqec.dll
2014-07-29 23:24:43 ----A---- C:\Windows\system32\mstsc.exe
2014-07-29 23:24:43 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-07-29 23:24:42 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-07-29 23:24:42 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-07-29 23:24:42 ----A---- C:\Windows\system32\mstscax.dll
2014-07-29 23:24:15 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-07-29 23:24:12 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2014-07-29 23:24:12 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-07-29 23:24:11 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-07-29 23:24:10 ----A---- C:\Windows\system32\rdpudd.dll
2014-07-29 23:24:10 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-07-29 23:24:10 ----A---- C:\Windows\system32\rdpcorets.dll
2014-07-29 23:22:29 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-07-29 23:22:29 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-07-29 23:22:25 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-07-29 23:22:25 ----A---- C:\Windows\system32\qdvd.dll
2014-07-29 16:21:07 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-07-29 16:18:38 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-07-29 16:18:38 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-07-29 16:18:38 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-07-29 16:18:38 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-07-29 16:18:38 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-07-29 16:18:38 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-07-29 16:18:38 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-07-29 16:18:38 ----A---- C:\Windows\system32\nvopencl.dll
2014-07-29 16:18:38 ----A---- C:\Windows\system32\nvoglv64.dll
2014-07-29 16:18:38 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-07-29 16:18:38 ----A---- C:\Windows\system32\nvinitx.dll
2014-07-29 16:18:38 ----A---- C:\Windows\system32\NvIFR64.dll
2014-07-29 16:18:38 ----A---- C:\Windows\system32\NvFBC64.dll
2014-07-29 16:18:38 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-07-29 16:18:37 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-07-29 16:18:37 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-07-29 16:18:37 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-07-29 16:18:37 ----A---- C:\Windows\system32\nvdispgenco6434052.dll
2014-07-29 16:18:37 ----A---- C:\Windows\system32\nvdispco6434052.dll
2014-07-29 16:18:37 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-07-29 16:18:37 ----A---- C:\Windows\system32\nvcuvid.dll
2014-07-29 16:18:37 ----A---- C:\Windows\system32\nvcuda.dll
2014-07-29 16:18:37 ----A---- C:\Windows\system32\nvcompiler.dll
2014-07-29 12:06:03 ----A---- C:\Windows\system32\cpbo.exe
2014-07-28 22:54:50 ----D---- C:\Users\Brent\AppData\Roaming\RenPy
2014-07-28 22:42:33 ----D---- C:\Windows\SYSWOW64\directx
2014-07-26 15:36:28 ----D---- C:\ProgramData\RzMaelstromVAD_1.1.58.1854
2014-07-26 15:36:24 ----A---- C:\Windows\SYSWOW64\RzMaelstromVADAudioDeviceManager_log.txt
2014-07-26 15:36:24 ----A---- C:\Windows\system32\RzMaelstromVADAudioDeviceManager_log.txt
2014-07-23 23:40:14 ----D---- C:\Program Files\Adobe
2014-07-23 23:35:32 ----D---- C:\Program Files\Common Files\Adobe
2014-07-23 21:02:50 ----D---- C:\Users\Brent\AppData\Roaming\Apple Computer
2014-07-23 21:02:48 ----D---- C:\Users\Brent\AppData\Roaming\TideSDK
2014-07-23 21:02:31 ----D---- C:\Program Files (x86)\Streamtip Alerter
2014-07-22 01:52:04 ----D---- C:\Users\Brent\AppData\Roaming\Notepad++
2014-07-22 01:52:04 ----D---- C:\Program Files (x86)\Notepad++
2014-07-22 01:49:55 ----D---- C:\Users\Brent\AppData\Roaming\TeamViewer
2014-07-22 01:49:48 ----D---- C:\Program Files (x86)\TeamViewer
2014-07-21 17:04:18 ----D---- C:\Users\Brent\AppData\Roaming\HeroesAndGeneralsDesktop
2014-07-14 01:46:32 ----D---- C:\Program Files\Speccy
2014-07-14 00:06:05 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2014-07-14 00:06:05 ----A---- C:\Windows\system32\nvspbridge64.dll
2014-07-12 14:50:45 ----A---- C:\Windows\system32\PnkBstrA.exe
2014-07-12 00:56:45 ----D---- C:\Program Files (x86)\Microsoft Chart Controls
2014-07-09 21:08:26 ----A---- C:\Windows\system32\aepdu.dll
2014-07-09 21:08:26 ----A---- C:\Windows\system32\aeinv.dll
2014-07-09 21:08:21 ----A---- C:\Windows\system32\win32k.sys
2014-07-09 21:08:20 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-07-09 21:08:20 ----A---- C:\Windows\system32\osk.exe
2014-07-09 21:08:19 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-07-09 21:08:19 ----A---- C:\Windows\system32\qedit.dll
2014-07-09 21:08:18 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-09 21:08:17 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-07-09 21:08:17 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-07-09 21:08:17 ----A---- C:\Windows\system32\schannel.dll
2014-07-09 21:08:17 ----A---- C:\Windows\system32\kerberos.dll
2014-07-09 21:08:16 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-07-09 21:08:16 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-07-09 21:08:16 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-07-09 21:08:16 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-07-09 21:08:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-07-09 21:08:16 ----A---- C:\Windows\system32\wdigest.dll
2014-07-09 21:08:16 ----A---- C:\Windows\system32\TSpkg.dll
2014-07-09 21:08:16 ----A---- C:\Windows\system32\ncrypt.dll
2014-07-09 21:08:16 ----A---- C:\Windows\system32\msv1_0.dll
2014-07-09 21:08:16 ----A---- C:\Windows\system32\credssp.dll
2014-07-09 21:08:11 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-07-09 21:08:11 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-07-09 21:08:11 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-07-09 21:08:11 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-07-09 21:08:11 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-07-09 21:08:11 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-07-09 21:08:11 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-07-09 21:08:11 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-07-09 21:08:11 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 21:08:11 ----A---- C:\Windows\system32\iernonce.dll
2014-07-09 21:08:11 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-07-09 21:08:11 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-09 21:08:10 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-07-09 21:08:10 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-07-09 21:08:10 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-07-09 21:08:10 ----A---- C:\Windows\system32\urlmon.dll
2014-07-09 21:08:09 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-07-09 21:08:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-07-09 21:08:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-07-09 21:08:09 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-07-09 21:08:09 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-07-09 21:08:09 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-09 21:08:09 ----A---- C:\Windows\system32\iesetup.dll
2014-07-09 21:08:09 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-07-09 21:08:09 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-07-09 21:08:09 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-09 21:08:09 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-09 21:08:08 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-07-09 21:08:08 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-07-09 21:08:08 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-07-09 21:08:08 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-07-09 21:08:08 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-07-09 21:08:08 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-07-09 21:08:08 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-07-09 21:08:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-07-09 21:08:08 ----A---- C:\Windows\system32\jsproxy.dll
2014-07-09 21:08:08 ----A---- C:\Windows\system32\iertutil.dll
2014-07-09 21:08:07 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-07-09 21:08:07 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-09 21:08:07 ----A---- C:\Windows\system32\jscript9diag.dll
2014-07-09 21:08:07 ----A---- C:\Windows\system32\jscript9.dll
2014-07-09 21:08:07 ----A---- C:\Windows\system32\ieUnatt.exe
2014-07-09 21:08:07 ----A---- C:\Windows\system32\ieui.dll
2014-07-09 21:08:07 ----A---- C:\Windows\system32\ieframe.dll
2014-07-09 21:08:07 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-09 21:08:06 ----A---- C:\Windows\system32\wininet.dll
2014-07-09 21:08:06 ----A---- C:\Windows\system32\vbscript.dll
2014-07-09 21:08:06 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-09 21:08:06 ----A---- C:\Windows\system32\msrating.dll
2014-07-09 21:08:06 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-07-09 21:08:06 ----A---- C:\Windows\system32\mshtml.dll
2014-07-09 21:08:06 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-09 21:07:57 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-07-09 21:07:57 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-07-09 21:07:57 ----A---- C:\Windows\system32\lsasrv.dll

======List of files/folders modified in the last 1 month======

2014-07-30 13:54:34 ----D---- C:\Windows\Temp
2014-07-30 13:54:32 ----RD---- C:\Program Files
2014-07-30 13:02:00 ----D---- C:\Windows\system32\drivers
2014-07-30 13:02:00 ----D---- C:\Windows\Resources
2014-07-30 12:54:01 ----D---- C:\Program Files (x86)\Steam
2014-07-30 12:51:56 ----RD---- C:\Program Files (x86)
2014-07-30 12:51:56 ----HD---- C:\ProgramData
2014-07-30 12:35:52 ----D---- C:\Windows\Prefetch
2014-07-30 12:27:10 ----D---- C:\Windows\SysWOW64
2014-07-30 12:27:06 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-07-30 12:17:09 ----D---- C:\ProgramData\Origin
2014-07-30 12:17:01 ----D---- C:\Program Files (x86)\Origin
2014-07-30 12:12:15 ----D---- C:\Users\Brent\AppData\Roaming\TS3Client
2014-07-30 11:32:32 ----D---- C:\Windows\system32\config
2014-07-30 11:22:28 ----D---- C:\Windows\system32\catroot2
2014-07-30 11:22:28 ----D---- C:\Windows\system32\catroot
2014-07-30 11:22:27 ----D---- C:\Windows\winsxs
2014-07-30 11:22:17 ----D---- C:\Windows\System32
2014-07-30 11:22:17 ----D---- C:\Windows\inf
2014-07-30 11:22:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-07-30 11:16:12 ----D---- C:\ProgramData\NVIDIA
2014-07-30 01:46:52 ----D---- C:\Windows\SYSWOW64\wbem
2014-07-30 01:46:52 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-07-30 01:46:52 ----D---- C:\Windows\system32\wbem
2014-07-30 01:46:52 ----D---- C:\Windows\system32\nl-NL
2014-07-30 01:46:52 ----D---- C:\Windows\system32\drivers\nl-NL
2014-07-30 01:46:52 ----D---- C:\Windows\PolicyDefinitions
2014-07-30 01:46:51 ----D---- C:\Windows\system32\DriverStore
2014-07-30 00:01:44 ----SHD---- C:\Windows\Installer
2014-07-29 23:23:43 ----D---- C:\Program Files (x86)\Razer
2014-07-29 23:23:22 ----SHD---- C:\System Volume Information
2014-07-29 23:13:39 ----D---- C:\Windows
2014-07-29 23:08:40 ----D---- C:\Users\Brent\AppData\Roaming\uTorrent
2014-07-29 23:08:39 ----D---- C:\Users\Brent\AppData\Roaming\FileZilla
2014-07-29 23:07:44 ----D---- C:\Windows\Logs
2014-07-29 23:07:04 ----D---- C:\Program Files\CCleaner
2014-07-29 16:21:13 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-07-29 16:19:43 ----D---- C:\Program Files\NVIDIA Corporation
2014-07-28 01:37:54 ----D---- C:\Users\Brent\AppData\Roaming\Skype
2014-07-27 21:43:06 ----D---- C:\Users\Brent\AppData\Roaming\Spotify
2014-07-27 20:05:57 ----RSD---- C:\Windows\assembly
2014-07-26 15:34:28 ----SHD---- C:\Config.Msi
2014-07-26 15:12:27 ----D---- C:\ProgramData\Razer
2014-07-26 12:53:01 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-07-26 11:33:53 ----D---- C:\Program Files (x86)\Origin Games
2014-07-25 16:01:55 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-07-25 16:01:32 ----A---- C:\Windows\system32\nvspcap64.dll
2014-07-24 21:20:02 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-24 21:20:02 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-24 15:37:23 ----D---- C:\Windows\system32\LogFiles
2014-07-24 15:33:28 ----SD---- C:\ProgramData\Microsoft
2014-07-24 02:19:07 ----SD---- C:\Users\Brent\AppData\Roaming\Microsoft
2014-07-24 00:46:58 ----D---- C:\ProgramData\Adobe
2014-07-23 23:48:20 ----RSD---- C:\Windows\Fonts
2014-07-23 23:44:26 ----D---- C:\Program Files (x86)\Adobe
2014-07-23 23:35:32 ----D---- C:\Program Files\Common Files
2014-07-22 01:50:14 ----D---- C:\Windows\system32\Tasks
2014-07-19 13:38:17 ----D---- C:\Windows\debug
2014-07-14 00:07:42 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-07-10 17:26:54 ----D---- C:\Windows\rescache
2014-07-10 12:59:39 ----D---- C:\Users\Brent\AppData\Roaming\.minecraft
2014-07-10 12:04:22 ----SD---- C:\Windows\system32\CompatTel
2014-07-10 12:04:22 ----D---- C:\Windows\SYSWOW64\Dism
2014-07-10 12:04:22 ----D---- C:\Program Files\Windows Journal
2014-07-10 12:04:21 ----D---- C:\Windows\system32\Dism
2014-07-10 12:04:21 ----D---- C:\Windows\ehome
2014-07-10 12:04:20 ----D---- C:\Program Files\Internet Explorer
2014-07-10 12:04:19 ----D---- C:\Windows\SYSWOW64\en-US
2014-07-10 12:04:19 ----D---- C:\Windows\system32\en-US
2014-07-10 12:04:19 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-10 01:43:29 ----D---- C:\Windows\system32\MRT
2014-07-10 01:42:19 ----A---- C:\Windows\system32\MRT.exe
2014-07-10 01:42:11 ----D---- C:\ProgramData\Microsoft Help
2014-07-10 00:59:47 ----D---- C:\Users\Brent\AppData\Roaming\Adobe
2014-07-09 16:06:56 ----D---- C:\Users\Brent\AppData\Roaming\ftblauncher
2014-07-09 16:01:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-07-02 22:48:32 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-07-02 22:48:32 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-07-02 22:48:32 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-07-02 22:48:32 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-07-02 22:48:32 ----A---- C:\Windows\system32\OpenCL.dll
2014-07-02 22:48:32 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-07-02 22:48:32 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-07-02 22:48:32 ----A---- C:\Windows\system32\nvapi64.dll
2014-07-02 20:55:43 ----A---- C:\Windows\system32\nvsvc64.dll
2014-07-02 20:55:43 ----A---- C:\Windows\system32\nvcpl.dll
2014-07-02 20:55:41 ----A---- C:\Windows\system32\nvvsvc.exe
2014-07-02 20:55:41 ----A---- C:\Windows\system32\nvshext.dll
2014-07-02 20:55:41 ----A---- C:\Windows\system32\nvmctray.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-06-01 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-06-01 208416]
R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-02-26 16152]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-06-01 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-06-01 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-06-01 423240]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-06-05 283200]
R1 RzFilter;RzFilter; \??\C:\Windows\system32\drivers\RzFilter.sys [2014-04-18 74432]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-06-01 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-06-01 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-06-01 85328]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-03-27 4015592]
R3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-02-26 356120]
R3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-02-26 788760]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-05-12 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-07-30 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-05-12 63704]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-05-20 197408]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 20256]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-02-03 677480]
R3 RzDxgk;RzDxgk; \??\C:\Windows\system32\drivers\RzDxgk.sys [2014-04-18 129472]
R3 rzendpt;rzendpt; C:\Windows\system32\DRIVERS\rzendpt.sys [2014-05-19 39080]
R3 RZMAELSTROMVADService;Razer Surround Audio Enhancer Service; C:\Windows\system32\drivers\RzMaelstromVAD.sys [2014-06-09 32768]
R3 rzudd;Razer Mouse Driver; C:\Windows\system32\DRIVERS\rzudd.sys [2014-05-19 155816]
S0 juoobyqf;juoobyqf; C:\Windows\System32\drivers\vitr.sys [2014-07-30 79064]
S3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2010-12-28 1547616]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-06-01 50344]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 18956064]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-07-26 76152]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2014-07-30 280792]
R2 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe [2009-10-20 185632]
R2 RalinkRegistryWriter64;Ralink Registry Writer 64; C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe [2009-10-20 212256]
R2 RzMaelstromVADStreamingService;Razer Surround Audio Service; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe [2014-06-09 4250624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-07-02 5037888]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-01 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2014-07-16 345984]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-01 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-06-19 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-01-21 30963576]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-07-16 542912]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-06-02 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------
 
Laatst bewerkt door een moderator:
Hij kan je toch ook gewoon niet helpen?

Hij vraagt of jij iets wilt doen, maar jij doet het 3 keer verkeerd.

Wees blij dat hij je helpt. In zijn vrije tijd had hij ook wat anders kunnen gaan doen maar hij kiest ervoor om jou en andere te helpen.
 
Hij kan je toch ook gewoon niet helpen?

Hij vraagt of jij iets wilt doen, maar jij doet het 3 keer verkeerd.

Wees blij dat hij je helpt. In zijn vrije tijd had hij ook wat anders kunnen gaan doen maar hij kiest ervoor om jou en andere te helpen.

Idd en vind het ook top dat hij mij helpt, maar omdat ik drie keer iets fout doe (waarvan de 1e 2 in principe geen probleem hadden hoeven zijn) hoeft hij niet zo bot te reageren. Zeker niet als moderator zijnde. En mocht hij me niet meer willen helpen, dan zoek ik wel een ander forum op ;)
 
Jij schrijft: "Wat is het voor jou toch moeilijk om klantvriendelijk te reageren...
Snap sws niet dat je niet gewoon de eerste pastebin link gebruikt... Dan was mijn probleem misschien al wel opgelost".

Ik wordt een beetje heel moe van jou, want doordat je gewoon niet datgene doet wat gevraagd wordt, zorg je voor onnodig extra werk!
 
Jij schrijft: "Wat is het voor jou toch moeilijk om klantvriendelijk te reageren...
Snap sws niet dat je niet gewoon de eerste pastebin link gebruikt... Dan was mijn probleem misschien al wel opgelost".

Ik wordt een beetje heel moe van jou, want doordat je gewoon niet datgene doet wat gevraagd wordt, zorg je voor onnodig extra werk!

Ik begreep je inderdaad verkeerd, en probeerde het ook op te lossen. Klopt dat ik niet deed wat me gevraagd werd, maar die pastebin link was best te gebruiken toch? Snap alleen de botte reactie niet. Maar wil je nog verdergaan op het onderwerp of zal ik maar een ander forum zoeken?
 
Laatst bewerkt door een moderator:
Ik ben benieuwd of jij nu het juiste doet.
Overigens, doe je op een ander securityforum hetzelfde, krijg je ook commentaar.


Download
51c590ce361e7-ComboFix_resized_2.png
ComboFix via n van deze locaties:
Downloadlokatie: Dit programma absoluut naar het bureaublad downloaden of anders naar het bureaublad verplaatsen!

Antivirusprogramma en actieve malwarescanners dienen al voor je ComboFix start gedeaktiveert zijn!
Hier en hier vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

Opmerkingen:
  • Alle openstaande programma's en webpagina's dienen afgesloten te zijn.
ComboFix opstarten:
  • Windows Vista, Windows 7 en Windows 8: via rechtsklik op ComboFix.exe en kies voor "Als Administrator uitvoeren".
ComboFix is opgestart:
  • Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"!
  • Combofix sluit tijdens de scan de internet verbinding probeer deze tussentijds niet te herstellen!
  • Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal.
  • Wanneer ComboFix gereed is, zal het het een logbestand voor je maken.
  • Post de inhoud van dit logbestand via DDRMMR's kleurcodeerder in je volgende bericht.
  • Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt
Belangrijke opmerking:
  • Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:
  • Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.
  • Start dan de computer opnieuw op.
 
Goed ik ga er nier verder op in,

Excuses voor mijn late reactie, ik was gaan werken.


[hjt]
combofix 14-07-29.01 - brent 30-07-2014 15:58:27.1.4 - x64
microsoft windows 7 home premium 6.1.7601.1.1252.31.1043.18.8146.3402 [gmt 2:00]
gestart vanuit: c:\users\brent\desktop\combofix.exe
av: avast! antivirus *disabled/updated* {17ad7d40-ba12-9c46-7131-94903a54ad8b}
sp: avast! antivirus *disabled/updated* {accc9ca4-9c28-93c8-4b81-afe241d3e736}
sp: windows defender *enabled/updated* {d68ddc3a-831f-4fae-9e44-da132c1acf46}
.
.
(((((((((((((((((((((((((((((((((( andere verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\brent\appdata\local\assembly\tmp
.
.
(((((((((((((((((((( bestanden gemaakt van 2014-06-28 to 2014-07-30 ))))))))))))))))))))))))))))))
.
.
2014-07-30 18:35 . 2014-07-30 18:35 -------- d-----w- c:\users\default\appdata\local\temp
2014-07-30 12:33 . 2014-07-30 12:33 -------- d-----w- c:\programdata\western digital
2014-07-30 12:24 . 2014-07-30 12:24 75888 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{f3c4c83c-6616-4058-8c46-ec691c7b1484}\offreg.dll
2014-07-30 12:23 . 2014-07-30 12:23 -------- d-----w- c:\users\brent\appdata\local\innovative solutions
2014-07-30 12:18 . 2014-07-30 12:18 21712 ----a-w- c:\windows\syswow64\drivers\drvagent64.sys
2014-07-30 12:18 . 2014-07-30 12:18 -------- d-----w- c:\users\brent\appdata\local\esupport.com
2014-07-30 11:54 . 2014-07-30 11:54 -------- d-----w- c:\program files\trend micro
2014-07-30 11:54 . 2014-07-30 11:55 -------- d-----w- c:\rsit
2014-07-30 11:02 . 2014-07-30 11:02 79064 ----a-w- c:\windows\system32\drivers\vitr.sys
2014-07-30 10:53 . 2014-07-30 10:54 122584 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2014-07-30 10:51 . 2014-07-30 10:51 -------- d-----w- c:\program files (x86)\malwarebytes anti-malware
2014-07-30 10:51 . 2014-07-30 10:51 -------- d-----w- c:\programdata\malwarebytes
2014-07-30 10:51 . 2014-05-12 05:26 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-07-30 10:51 . 2014-05-12 05:26 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-07-30 10:51 . 2014-05-12 05:25 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-07-29 23:46 . 2014-07-29 23:46 -------- d-----w- c:\windows\system32\drivers\en-us
2014-07-29 21:40 . 2014-07-29 21:40 -------- d-----w- c:\program files\core temp
2014-07-29 21:22 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\tsworkspace.dll
2014-07-29 21:22 . 2013-09-25 01:57 792576 ----a-w- c:\windows\syswow64\tsworkspace.dll
2014-07-29 21:22 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2014-07-29 21:22 . 2012-05-04 09:59 514560 ----a-w- c:\windows\syswow64\qdvd.dll
2014-07-29 14:21 . 2014-07-02 17:44 609240 ----a-w- c:\windows\syswow64\nvstreaming.exe
2014-07-29 10:06 . 2010-07-07 08:53 98304 ----a-w- c:\windows\system32\cpbo.exe
2014-07-29 08:57 . 2014-07-02 03:09 10924376 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{f3c4c83c-6616-4058-8c46-ec691c7b1484}\mpengine.dll
2014-07-28 20:54 . 2014-07-28 20:54 -------- d-----w- c:\users\brent\appdata\roaming\renpy
2014-07-26 13:36 . 2014-07-26 13:36 -------- d-----w- c:\programdata\rzmaelstromvad_1.1.58.1854
2014-07-25 20:56 . 2014-07-25 20:56 -------- d-----w- c:\users\brent\appdata\local\ea games
2014-07-23 21:40 . 2014-07-23 21:44 -------- d-----w- c:\program files\adobe
2014-07-23 21:35 . 2014-07-23 21:42 -------- d-----w- c:\program files\common files\adobe
2014-07-23 19:02 . 2014-07-23 19:02 -------- d-----w- c:\users\brent\appdata\roaming\apple computer
2014-07-23 19:02 . 2014-07-23 19:02 -------- d-----w- c:\users\brent\appdata\local\apple computer
2014-07-23 19:02 . 2014-07-23 19:02 -------- d-----w- c:\users\brent\appdata\roaming\tidesdk
2014-07-23 19:02 . 2014-07-23 19:02 -------- d-----w- c:\program files (x86)\streamtip alerter
2014-07-21 23:52 . 2014-07-22 19:33 -------- d-----w- c:\users\brent\appdata\roaming\notepad++
2014-07-21 23:52 . 2014-07-21 23:52 -------- d-----w- c:\program files (x86)\notepad++
2014-07-21 23:49 . 2014-07-22 01:19 -------- d-----w- c:\users\brent\appdata\roaming\teamviewer
2014-07-21 23:49 . 2014-07-21 23:49 -------- d-----w- c:\program files (x86)\teamviewer
2014-07-21 15:04 . 2014-07-21 15:04 -------- d-----w- c:\users\brent\appdata\roaming\heroesandgeneralsdesktop
2014-07-20 23:16 . 2014-07-20 23:16 -------- d-sh--w- c:\users\brent\appdata\local\emieuserlist
2014-07-20 23:16 . 2014-07-20 23:16 -------- d-sh--w- c:\users\brent\appdata\local\emiesitelist
2014-07-13 23:46 . 2014-07-13 23:46 -------- d-----w- c:\program files\speccy
2014-07-13 22:06 . 2014-07-25 14:01 1291280 ----a-w- c:\windows\syswow64\nvspbridge.dll
2014-07-13 22:06 . 2014-07-25 14:01 1715224 ----a-w- c:\windows\system32\nvspbridge64.dll
2014-07-12 12:50 . 2014-07-26 10:57 76152 ----a-w- c:\windows\system32\pnkbstra.exe
2014-07-11 22:56 . 2014-07-11 22:56 -------- d-----w- c:\program files (x86)\microsoft chart controls
2014-07-10 22:15 . 2014-07-10 22:15 -------- d-----w- c:\users\brent\appdata\local\crashrpt
2014-07-09 19:07 . 2014-06-05 14:45 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-07-09 19:07 . 2014-06-05 14:26 22016 ----a-w- c:\windows\syswow64\secur32.dll
2014-07-09 19:07 . 2014-06-05 14:25 96768 ----a-w- c:\windows\syswow64\sspicli.dll
.
.
.
((((((((((((((((((((((((((((((((((((((( find3m rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-30 10:27 . 2014-06-28 22:16 280792 ----a-w- c:\windows\syswow64\pnkbstrb.xtr
2014-07-30 10:27 . 2014-06-06 14:47 280792 ----a-w- c:\windows\syswow64\pnkbstrb.exe
2014-07-30 10:25 . 2014-06-06 14:47 281032 ----a-w- c:\windows\syswow64\pnkbstrb.ex0
2014-07-26 10:53 . 2014-06-06 14:47 76888 ----a-w- c:\windows\syswow64\pnkbstra.exe
2014-07-25 14:01 . 2014-06-01 12:23 1126480 ----a-w- c:\windows\syswow64\nvspcap.dll
2014-07-25 14:01 . 2014-06-01 12:23 1283136 ----a-w- c:\windows\system32\nvspcap64.dll
2014-07-09 23:42 . 2014-06-08 09:12 96441528 ----a-w- c:\windows\system32\mrt.exe
2014-07-09 14:01 . 2014-06-01 22:32 71344 ----a-w- c:\windows\syswow64\flashplayercplapp.cpl
2014-07-09 14:01 . 2014-06-01 22:32 699056 ----a-w- c:\windows\syswow64\flashplayerapp.exe
2014-07-02 20:48 . 2014-06-01 12:35 75040 ----a-w- c:\windows\system32\opencl.dll
2014-07-02 20:48 . 2014-06-01 12:35 61912 ----a-w- c:\windows\syswow64\opencl.dll
2014-07-02 20:48 . 2014-06-01 12:32 965312 ----a-w- c:\windows\system32\nvumdshimx.dll
2014-07-02 20:48 . 2014-06-01 12:32 3196816 ----a-w- c:\windows\system32\nvapi64.dll
2014-07-02 20:48 . 2014-06-01 12:32 2814656 ----a-w- c:\windows\syswow64\nvapi.dll
2014-07-02 20:48 . 2014-06-01 12:32 18626304 ----a-w- c:\windows\system32\nvwgf2umx.dll
2014-07-02 20:48 . 2014-06-01 12:32 16122344 ----a-w- c:\windows\syswow64\nvwgf2um.dll
2014-07-02 20:48 . 2014-06-01 12:32 14498552 ----a-w- c:\windows\syswow64\nvd3dum.dll
2014-07-02 18:55 . 2014-06-01 12:36 6783776 ----a-w- c:\windows\system32\nvcpl.dll
2014-07-02 18:55 . 2014-06-01 12:36 3522392 ----a-w- c:\windows\system32\nvsvc64.dll
2014-07-02 18:55 . 2014-06-01 12:36 935368 ----a-w- c:\windows\system32\nvvsvc.exe
2014-07-02 18:55 . 2014-06-01 12:36 62808 ----a-w- c:\windows\system32\nvshext.dll
2014-07-02 18:55 . 2014-06-01 12:36 386520 ----a-w- c:\windows\system32\nvmctray.dll
2014-07-02 10:14 . 2014-06-01 12:36 3826628 ----a-w- c:\windows\system32\nvcoproc.bin
2014-06-09 09:49 . 2014-06-09 09:49 69632 ----a-w- c:\windows\system32\driverinstallca.dll
2014-06-09 09:49 . 2014-06-09 09:49 32768 ----a-w- c:\windows\system32\drivers\rzmaelstromvad.sys
2014-06-09 09:49 . 2014-06-09 09:49 245760 ----a-w- c:\windows\system32\driverinstallcacmd.exe
2014-06-09 09:49 . 2014-06-09 09:49 136704 ----a-w- c:\windows\syswow64\rzvad.dll
2014-06-08 20:14 . 2014-06-05 12:46 2508336 ----a-w- c:\windows\syswow64\dxtorycodec.dll
2014-06-08 20:14 . 2014-06-05 12:46 2610736 ----a-w- c:\windows\system32\dxtorycodec.dll
2014-06-06 12:30 . 2014-06-06 12:30 715038 ----a-w- c:\windows\unins000.exe
2014-06-05 11:52 . 2014-06-05 11:52 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-06-02 19:06 . 2014-06-02 19:06 111016 ----a-w- c:\windows\system32\windowsaccessbridge-64.dll
2014-06-02 19:06 . 2014-06-02 19:06 313256 ----a-w- c:\windows\system32\javaws.exe
2014-06-02 19:06 . 2014-06-02 19:06 189352 ----a-w- c:\windows\system32\javaw.exe
2014-06-02 19:06 . 2014-06-02 19:06 189352 ----a-w- c:\windows\system32\java.exe
2014-06-01 23:07 . 2014-06-01 23:07 194048 ----a-w- c:\windows\syswow64\elshyph.dll
2014-06-01 23:06 . 2014-06-01 23:06 942592 ----a-w- c:\windows\system32\jsintl.dll
2014-06-01 23:06 . 2014-06-01 23:06 90112 ----a-w- c:\windows\system32\setieinstalleddate.exe
2014-06-01 23:06 . 2014-06-01 23:06 86016 ----a-w- c:\windows\syswow64\iesysprep.dll
2014-06-01 23:06 . 2014-06-01 23:06 86016 ----a-w- c:\windows\system32\registeriepkeys.exe
2014-06-01 23:06 . 2014-06-01 23:06 81408 ----a-w- c:\windows\system32\icardie.dll
2014-06-01 23:06 . 2014-06-01 23:06 774144 ----a-w- c:\windows\system32\jscript.dll
2014-06-01 23:06 . 2014-06-01 23:06 77312 ----a-w- c:\windows\system32\tdc.ocx
2014-06-01 23:06 . 2014-06-01 23:06 74240 ----a-w- c:\windows\syswow64\setieinstalleddate.exe
2014-06-01 23:06 . 2014-06-01 23:06 71680 ----a-w- c:\windows\syswow64\registeriepkeys.exe
2014-06-01 23:06 . 2014-06-01 23:06 645120 ----a-w- c:\windows\syswow64\jsintl.dll
2014-06-01 23:06 . 2014-06-01 23:06 62464 ----a-w- c:\windows\syswow64\tdc.ocx
2014-06-01 23:06 . 2014-06-01 23:06 62464 ----a-w- c:\windows\system32\pngfilt.dll
2014-06-01 23:06 . 2014-06-01 23:06 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2014-06-01 23:06 . 2014-06-01 23:06 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2014-06-01 23:06 . 2014-06-01 23:06 48640 ----a-w- c:\windows\syswow64\mshtmler.dll
2014-06-01 23:06 . 2014-06-01 23:06 48640 ----a-w- c:\windows\system32\mshtmler.dll
2014-06-01 23:06 . 2014-06-01 23:06 48128 ----a-w- c:\windows\system32\imgutil.dll
2014-06-01 23:06 . 2014-06-01 23:06 413696 ----a-w- c:\windows\system32\html.iec
2014-06-01 23:06 . 2014-06-01 23:06 36352 ----a-w- c:\windows\syswow64\imgutil.dll
2014-06-01 23:06 . 2014-06-01 23:06 337408 ----a-w- c:\windows\syswow64\html.iec
2014-06-01 23:06 . 2014-06-01 23:06 30208 ----a-w- c:\windows\system32\licmgr10.dll
2014-06-01 23:06 . 2014-06-01 23:06 247808 ----a-w- c:\windows\system32\msls31.dll
2014-06-01 23:06 . 2014-06-01 23:06 24576 ----a-w- c:\windows\syswow64\licmgr10.dll
2014-06-01 23:06 . 2014-06-01 23:06 243200 ----a-w- c:\windows\system32\webcheck.dll
2014-06-01 23:06 . 2014-06-01 23:06 235520 ----a-w- c:\windows\system32\url.dll
2014-06-01 23:06 . 2014-06-01 23:06 235008 ----a-w- c:\windows\system32\elshyph.dll
2014-06-01 23:06 . 2014-06-01 23:06 182272 ----a-w- c:\windows\syswow64\msls31.dll
2014-06-01 23:06 . 2014-06-01 23:06 167424 ----a-w- c:\windows\system32\iexpress.exe
2014-06-01 23:06 . 2014-06-01 23:06 151552 ----a-w- c:\windows\syswow64\iexpress.exe
2014-06-01 23:06 . 2014-06-01 23:06 147968 ----a-w- c:\windows\system32\occache.dll
2014-06-01 23:06 . 2014-06-01 23:06 143872 ----a-w- c:\windows\system32\wextract.exe
2014-06-01 23:06 . 2014-06-01 23:06 139264 ----a-w- c:\windows\syswow64\wextract.exe
2014-06-01 23:06 . 2014-06-01 23:06 13824 ----a-w- c:\windows\system32\mshta.exe
2014-06-01 23:06 . 2014-06-01 23:06 135680 ----a-w- c:\windows\system32\iepeers.dll
2014-06-01 23:06 . 2014-06-01 23:06 13312 ----a-w- c:\windows\syswow64\mshta.exe
2014-06-01 23:06 . 2014-06-01 23:06 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2014-06-01 23:06 . 2014-06-01 23:06 131072 ----a-w- c:\windows\system32\ieadvpack.dll
2014-06-01 23:06 . 2014-06-01 23:06 111616 ----a-w- c:\windows\syswow64\ieadvpack.dll
2014-06-01 23:06 . 2014-06-01 23:06 105984 ----a-w- c:\windows\system32\iesysprep.dll
2014-06-01 23:06 . 2014-06-01 23:06 101376 ----a-w- c:\windows\system32\inseng.dll
2014-06-01 23:03 . 2014-06-01 23:03 9728 ---ha-w- c:\windows\syswow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2014-06-01 23:03 . 2014-06-01 23:03 604160 ----a-w- c:\windows\syswow64\d3d10level9.dll
2014-06-01 23:03 . 2014-06-01 23:03 5632 ---ha-w- c:\windows\syswow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 5632 ---ha-w- c:\windows\syswow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 522752 ----a-w- c:\windows\system32\xpsgdiconverter.dll
2014-06-01 23:03 . 2014-06-01 23:03 4096 ---ha-w- c:\windows\syswow64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 364544 ----a-w- c:\windows\syswow64\xpsgdiconverter.dll
2014-06-01 23:03 . 2014-06-01 23:03 363008 ----a-w- c:\windows\system32\dxgi.dll
2014-06-01 23:03 . 2014-06-01 23:03 3584 ---ha-w- c:\windows\syswow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2014-06-01 23:03 . 2014-06-01 23:03 3072 ---ha-w- c:\windows\syswow64\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 3072 ---ha-w- c:\windows\syswow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-01 23:03 . 2014-06-01 23:03 296960 ----a-w- c:\windows\system32\d3d10core.dll
2014-06-01 23:03 . 2014-06-01 23:03 293376 ----a-w- c:\windows\syswow64\dxgi.dll
2014-06-01 23:03 . 2014-06-01 23:03 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2014-06-01 23:03 . 2014-06-01 23:03 2560 ---ha-w- c:\windows\syswow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
.
.
((((((((((((((((((((((((((((((((((((( reg opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
regedit4
.
[hkey_local_machine\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\dropboxext1]
@="{fb314ed9-a251-47b7-93e1-cdd82e34af8b}"
[hkey_classes_root\clsid\{fb314ed9-a251-47b7-93e1-cdd82e34af8b}]
2013-09-11 02:09 131248 ----a-w- c:\users\brent\appdata\roaming\dropbox\bin\dropboxext.22.dll
.
[hkey_local_machine\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\dropboxext2]
@="{fb314eda-a251-47b7-93e1-cdd82e34af8b}"
[hkey_classes_root\clsid\{fb314eda-a251-47b7-93e1-cdd82e34af8b}]
2013-09-11 02:09 131248 ----a-w- c:\users\brent\appdata\roaming\dropbox\bin\dropboxext.22.dll
.
[hkey_local_machine\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\dropboxext3]
@="{fb314edb-a251-47b7-93e1-cdd82e34af8b}"
[hkey_classes_root\clsid\{fb314edb-a251-47b7-93e1-cdd82e34af8b}]
2013-09-11 02:09 131248 ----a-w- c:\users\brent\appdata\roaming\dropbox\bin\dropboxext.22.dll
.
[hkey_current_user\software\microsoft\windows\currentversion\run]
"dxtory update checker 2.0"=c:\program files (x86)\exkode\dxtory2.0\updatechecker.exe [2010-10-17 93696]
.
[hkey_local_machine\software\wow6432node\microsoft\windows\currentversion\run]
"adobe reader speed launcher"=c:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe [2009-02-27 35696]
"avastui.exe"=c:\program files\avast software\avast\avastui.exe [2014-07-09 3890208]
"razer synapse"=c:\program files (x86)\razer\synapse\rzsynapse.exe [2014-06-23 585560]
"usb3mon"=c:\program files (x86)\intel\intel(r) usb 3.0 extensible host controller driver\application\iusb3mon.exe [2012-02-26 291608]
"bcssync"=c:\program files (x86)\microsoft office\office14\bcssync.exe [2010-01-21 91520]
"switchboard"=c:\program files (x86)\common files\adobe\switchboard\switchboard.exe [2010-02-19 517096]
"adobecs6servicemanager"=c:\program files (x86)\common files\adobe\cs6servicemanager\cs6servicemanager.exe [2012-03-09 1073312]
.
c:\programdata\microsoft\windows\start menu\programs\startup\
sitecom wireless utility.lnk - c:\program files (x86)\sitecom\common\raui.exe -s [2014-6-1 1642496]
.
[hkey_local_machine\software\microsoft\windows\currentversion\policies\system]
"consentpromptbehavioradmin"= 5 (0x5)
"consentpromptbehavioruser"= 3 (0x3)
"enableuiadesktoptoggle"= 0 (0x0)
.
r2 clr_optimization_v4.0.30319_64;microsoft .net framework ngen v4.0.30319_x64;c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe;c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe [x]
r2 mbamscheduler;mbamscheduler;c:\program files (x86)\malwarebytes anti-malware\mbamscheduler.exe;c:\program files (x86)\malwarebytes anti-malware\mbamscheduler.exe [x]
r2 mbamservice;mbamservice;c:\program files (x86)\malwarebytes anti-malware\mbamservice.exe;c:\program files (x86)\malwarebytes anti-malware\mbamservice.exe [x]
r2 skypeupdate;skype updater;c:\program files (x86)\skype\updater\updater.exe;c:\program files (x86)\skype\updater\updater.exe [x]
r3 beservice;battleye service;c:\program files (x86)\common files\battleye\beservice.exe;c:\program files (x86)\common files\battleye\beservice.exe [x]
r3 ieetwcollectorservice;internet explorer etw collector service;c:\windows\system32\ieetwcollector.exe;c:\windows\sysnative\ieetwcollector.exe [x]
r3 mbamprotector;mbamprotector;c:\windows\system32\drivers\mbam.sys;c:\windows\sysnative\drivers\mbam.sys [x]
r3 mbamwebaccesscontrol;mbamwebaccesscontrol;c:\windows\system32\drivers\mwac.sys;c:\windows\sysnative\drivers\mwac.sys [x]
r3 rdpvideominiport;remote desktop video miniport driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\sysnative\drivers\rdpvideominiport.sys [x]
r3 switchboard;switchboard;c:\program files (x86)\common files\adobe\switchboard\switchboard.exe;c:\program files (x86)\common files\adobe\switchboard\switchboard.exe [x]
r3 tsusbflt;tsusbflt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\sysnative\drivers\tsusbflt.sys [x]
r3 tsusbgd;remote desktop generic usb device;c:\windows\system32\drivers\tsusbgd.sys;c:\windows\sysnative\drivers\tsusbgd.sys [x]
r3 watadminsvc;windows activation technologies-service;c:\windows\system32\wat\watadminsvc.exe;c:\windows\sysnative\wat\watadminsvc.exe [x]
s0 aswrvrt;avast! revert; [x]
s0 aswvmm;avast! vm monitor; [x]
s0 iusb3hcs;intel(r) usb 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\drivers\iusb3hcs.sys;c:\windows\sysnative\drivers\iusb3hcs.sys [x]
s1 aswsnx;aswsnx;c:\windows\system32\drivers\aswsnx.sys;c:\windows\sysnative\drivers\aswsnx.sys [x]
s1 aswsp;aswsp;c:\windows\system32\drivers\aswsp.sys;c:\windows\sysnative\drivers\aswsp.sys [x]
s1 dtsoftbus01;daemon tools virtual bus driver;c:\windows\system32\drivers\dtsoftbus01.sys;c:\windows\sysnative\drivers\dtsoftbus01.sys [x]
s1 rzfilter;rzfilter;c:\windows\system32\drivers\rzfilter.sys;c:\windows\sysnative\drivers\rzfilter.sys [x]
s2 aswhwid;avast! hardwareid;c:\windows\system32\drivers\aswhwid.sys;c:\windows\sysnative\drivers\aswhwid.sys [x]
s2 aswmonflt;aswmonflt;c:\windows\system32\drivers\aswmonflt.sys;c:\windows\sysnative\drivers\aswmonflt.sys [x]
s2 aswstm;aswstm;c:\windows\system32\drivers\aswstm.sys;c:\windows\sysnative\drivers\aswstm.sys [x]
s2 nvnetworkservice;nvidia network service;c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe;c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe [x]
s2 nvstreamsvc;nvidia streamer service;c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe;c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe [x]
s2 ralinkregistrywriter64;ralink registry writer 64;c:\program files (x86)\sitecom\common\raregistry64.exe;c:\program files (x86)\sitecom\common\raregistry64.exe [x]
s2 rzmaelstromvadstreamingservice;razer surround audio service;c:\programdata\razer\synapse\devices\razer surround\driver\rzmaelstromvadstreamingservice.exe;c:\programdata\razer\synapse\devices\razer surround\driver\rzmaelstromvadstreamingservice.exe [x]
s2 stereo service;nvidia stereoscopic 3d driver service;c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe;c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe [x]
s2 teamviewer9;teamviewer 9;c:\program files (x86)\teamviewer\version9\teamviewer_service.exe;c:\program files (x86)\teamviewer\version9\teamviewer_service.exe [x]
s3 drvagent64;drvagent64;c:\windows\syswow64\drivers\drvagent64.sys;c:\windows\syswow64\drivers\drvagent64.sys [x]
s3 iusb3hub;intel(r) usb 3.0 hub-stuurprogramma;c:\windows\system32\drivers\iusb3hub.sys;c:\windows\sysnative\drivers\iusb3hub.sys [x]
s3 iusb3xhc;intel(r) usb 3.0 uitbreidbare hostcontroller-stuurprogramma;c:\windows\system32\drivers\iusb3xhc.sys;c:\windows\sysnative\drivers\iusb3xhc.sys [x]
s3 nvstreamkms;nvstreamkms;c:\program files\nvidia corporation\nvstreamsrv\nvstreamkms.sys;c:\program files\nvidia corporation\nvstreamsrv\nvstreamkms.sys [x]
s3 nvvad_waveextensible;nvidia virtual audio device (wave extensible) (wdm);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\sysnative\drivers\nvvad64v.sys [x]
s3 rtl8167;realtek 8167 nt driver;c:\windows\system32\drivers\rt64win7.sys;c:\windows\sysnative\drivers\rt64win7.sys [x]
s3 rzdxgk;rzdxgk;c:\windows\system32\drivers\rzdxgk.sys;c:\windows\sysnative\drivers\rzdxgk.sys [x]
s3 rzendpt;rzendpt;c:\windows\system32\drivers\rzendpt.sys;c:\windows\sysnative\drivers\rzendpt.sys [x]
s3 rzmaelstromvadservice;razer surround audio enhancer service;c:\windows\system32\drivers\rzmaelstromvad.sys;c:\windows\sysnative\drivers\rzmaelstromvad.sys [x]
s3 rzudd;razer mouse driver;c:\windows\system32\drivers\rzudd.sys;c:\windows\sysnative\drivers\rzudd.sys [x]
.
.
--- andere services/drivers in geheugen ---
.
*newlycreated* - cpuz136
*newlycreated* - drvagent64
*newlycreated* - mbamprotector
*newlycreated* - mbamwebaccesscontrol
*deregistered* - cpuz136
.
[hkey_local_machine\software\wow6432node\microsoft\active setup\installed components\{8a69d345-d564-463c-aff1-a69d9e530f96}]
2014-07-20 15:25 1104200 ----a-w- c:\program files (x86)\google\chrome\application\36.0.1985.125\installer\chrmstp.exe
.
inhoud van de 'gedeelde taken' map
.
2014-07-30 c:\windows\tasks\adobe flash player updater.job
- c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe [2014-06-01 14:01]
.
2014-07-30 c:\windows\tasks\googleupdatetaskmachinecore.job
- c:\program files (x86)\google\update\googleupdate.exe [2014-06-01 12:11]
.
2014-07-30 c:\windows\tasks\googleupdatetaskmachineua.job
- c:\program files (x86)\google\update\googleupdate.exe [2014-06-01 12:11]
.
.
--------- x64 entries -----------
.
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083b0-c522-11cf-8763-00608cc02f24}"
[hkey_classes_root\clsid\{472083b0-c522-11cf-8763-00608cc02f24}]
2014-06-01 12:15 290888 ----a-w- c:\program files\avast software\avast\ashsha64.dll
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\dropboxext1]
@="{fb314ed9-a251-47b7-93e1-cdd82e34af8b}"
[hkey_classes_root\clsid\{fb314ed9-a251-47b7-93e1-cdd82e34af8b}]
2013-09-11 02:09 164016 ----a-w- c:\users\brent\appdata\roaming\dropbox\bin\dropboxext64.22.dll
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\dropboxext2]
@="{fb314eda-a251-47b7-93e1-cdd82e34af8b}"
[hkey_classes_root\clsid\{fb314eda-a251-47b7-93e1-cdd82e34af8b}]
2013-09-11 02:09 164016 ----a-w- c:\users\brent\appdata\roaming\dropbox\bin\dropboxext64.22.dll
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\dropboxext3]
@="{fb314edb-a251-47b7-93e1-cdd82e34af8b}"
[hkey_classes_root\clsid\{fb314edb-a251-47b7-93e1-cdd82e34af8b}]
2013-09-11 02:09 164016 ----a-w- c:\users\brent\appdata\roaming\dropbox\bin\dropboxext64.22.dll
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\dropboxext4]
@="{fb314edc-a251-47b7-93e1-cdd82e34af8b}"
[hkey_classes_root\clsid\{fb314edc-a251-47b7-93e1-cdd82e34af8b}]
2013-09-11 02:09 164016 ----a-w- c:\users\brent\appdata\roaming\dropbox\bin\dropboxext64.22.dll
.
[hkey_local_machine\software\microsoft\windows\currentversion\run]
"nvbackend"=c:\program files (x86)\nvidia corporation\update core\nvbackend.exe [2014-07-25 2403104]
"shadowplay"=c:\windows\system32\nvspcap64.dll [2014-07-25 1283136]
"rthdvcpl"=c:\program files\realtek\audio\hda\rtkngui64.exe [2012-03-20 6468712]
"adobeaamupdater-1.0"=c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe [2012-04-04 446392]
.
------- bijkomende scan -------
.
ulocal page = c:\windows\system32\blank.htm
mlocal page = c:\windows\syswow64\blank.htm
ie: e&xport to microsoft excel - c:\progra~2\micros~1\office14\excel.exe/3000
ie: se&nd to onenote - c:\progra~2\micros~1\office14\onbttnie.dll/105
tcp: dhcpnameserver = 192.168.0.1
.
- - - - orphans verwijderd - - - -
.
wow6432node-hklm-run-<no name> - (no file)
.
.
.
--------------------- vergrendelde register sleutels ---------------------
.
[hkey_local_machine\software\wow6432node\microsoft\office\common\smart tag\actions\{b7eff951-e52f-45cc-9ef7-57124f2177cc}]
@denied: (a) (everyone)
"solution"="{15727de6-f92d-4e46-acb4-0e2c58b31a18}"
.
[hkey_local_machine\software\wow6432node\microsoft\schema library\actionspane3]
@denied: (a) (everyone)
.
[hkey_local_machine\software\wow6432node\microsoft\schema library\actionspane3\0]
"key"="actionspane3"
"location"="c:\\program files (x86)\\common files\\microsoft shared\\vsto\\actionspane3.xsd"
.
[hkey_local_machine\system\controlset001\control\pcw\security]
@denied: (full) (everyone)
.
voltooingstijd: 2014-07-30 20:38:03
combofix-quarantined-files.txt 2014-07-30 18:38
.
pre-run: 682.020.327.424 bytes beschikbaar
post-run: 681.688.993.792 bytes beschikbaar
.
- - end of file - - beb11966e68cea13ede60026a3a65702
a36c5e4f47e84449ff07ed3517b43a31

[/hjt]
 
Laatst bewerkt door een moderator:
Waarom Qute jij nog steeds de logs.
Dat is niet nodig en bezorgd weer extra werk,
Ik ben hier net zo veel vrijwilliger als jij dat bent, dus hou nu eens op met de Quoten en bezie het vorige bericht, waar ik de Quotes weer verwijderd hebt, waardoor de loginhooud meer ruimte krijgt en dus ook overzichtelijker is!
Ik hoop dat je dit nu eindelijk eens gaat begrijpen, dat dit initiatief van jou niet op prijs wordt gesteld.

De BZOD's in jouw Windows kan veroorzaakt worden door de Razor software die jij genstalleerd hebt.
 
Waarom ik quote? Geen idee, soort automatisme denk ik... doe het eigenlijk altijd zo.
Waarom maakt u van alles zo'n mega probleem? Tis maar een quote hoor... iig laatste keer dat ik dit forum bezoek ;) zal vooral jou een hoop ergenis schelen, h! :')

Desalniettemin,
Bedankt, zal razersoftware uninstallen en berichten of mijn pc naar behoren werkt ;)
 
Status
Niet open voor verdere reacties.
Steun Ons

Nieuwste berichten

Terug
Bovenaan