Misschien ben ik wat onduidelijk geweest het gaat om een Midi - Keyboard, een toetsenbord hen ik nimmer problemen mee gehad.
Ik krijg hier de volgende melding en zal ze 1 voor 1 overzenden.
*******************************
OTL logfile created on: 10-5-2014 19:08:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pieters\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17041)
Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy
2,99 Gb Total Physical Memory | 2,02 Gb Available Physical Memory | 67,47% Memory free
5,98 Gb Paging File | 4,90 Gb Available in Paging File | 81,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 482,29 Gb Total Space | 413,89 Gb Free Space | 85,82% Space Free | Partition Type: NTFS
Drive D: | 449,22 Gb Total Space | 401,90 Gb Free Space | 89,47% Space Free | Partition Type: NTFS
Drive G: | 298,09 Gb Total Space | 278,56 Gb Free Space | 93,45% Space Free | Partition Type: NTFS
Drive K: | 14,91 Gb Total Space | 7,64 Gb Free Space | 51,25% Space Free | Partition Type: FAT32
Computer Name: PIETERS-PC | User Name: Pieters | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014-05-10 19:04:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Pieters\Desktop\OTL.exe
PRC - [2014-04-18 03:29:40 | 000,491,520 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2014-04-18 03:29:16 | 000,208,896 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2014-04-03 09:49:12 | 001,809,720 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014-04-03 09:49:12 | 000,857,912 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2014-04-03 09:49:06 | 006,963,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
PRC - [2014-03-17 15:59:50 | 000,162,800 | ---- | M] (MSI) -- C:\Program Files\MSI\Super Charger\ChargeService.exe
PRC - [2014-03-11 11:13:24 | 000,279,776 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2014-03-11 11:13:24 | 000,022,216 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2014-03-11 11:13:14 | 000,951,576 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2014-01-28 12:20:28 | 001,927,480 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
PRC - [2014-01-28 12:20:26 | 001,731,896 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
PRC - [2013-11-24 09:17:20 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012-03-28 14:49:11 | 000,140,456 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe
PRC - [2011-09-14 23:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2011-02-25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2013-09-02 15:40:30 | 001,430,488 | ---- | M] () -- C:\Program Files\WOT\WOT.dll
MOD - [2010-07-04 23:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll
MOD - [2009-06-16 13:56:14 | 000,633,184 | ---- | M] () -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\ContextHandler.dll
MOD - [2005-10-07 16:05:32 | 000,125,440 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
========== Services (SafeList) ==========
SRV - [2014-04-29 21:19:17 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014-04-18 03:29:16 | 000,208,896 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2014-04-03 09:49:12 | 001,809,720 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014-04-03 09:49:12 | 000,857,912 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014-03-17 15:59:50 | 000,162,800 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files\MSI\Super Charger\ChargeService.exe -- (MSI_SuperCharger)
SRV - [2014-03-15 10:40:31 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014-03-11 11:13:24 | 000,279,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2014-03-11 11:13:24 | 000,022,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2014-03-06 09:38:10 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014-01-28 12:20:26 | 001,731,896 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2014-01-28 12:20:22 | 000,030,520 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2013-11-23 17:06:46 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013-05-27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012-03-28 14:49:11 | 000,140,456 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2011-09-14 23:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-01-09 13:46:24 | 000,410,976 | ---- | M] (mst software GmbH, Germany) [Disabled | Stopped] -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\DfSdkS.exe -- (DfSdkS)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (MSICDSetup)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (MSI_MSIBIOS_010507)
DRV - [2014-05-10 19:01:03 | 000,107,736 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV - [2014-05-10 19:00:53 | 000,039,464 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4EEE2F95-1D9F-4007-8F94-1212B2431078}\MpKsl65a2a76d.sys -- (MpKsl65a2a76d)
DRV - [2014-04-18 04:35:20 | 013,515,264 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2014-04-18 03:06:30 | 000,512,000 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2014-04-03 09:51:14 | 000,051,416 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV - [2014-04-03 09:50:56 | 000,023,256 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2014-03-11 10:52:30 | 000,104,264 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2013-12-19 18:44:40 | 000,077,824 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2013-10-02 02:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013-02-06 15:52:48 | 000,129,720 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\ammntdrv.sys -- (ammntdrv)
DRV - [2013-02-06 15:52:48 | 000,026,424 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\ambakdrv.sys -- (ambakdrv)
DRV - [2013-02-06 15:52:48 | 000,014,392 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\amwrtdrv.sys -- (amwrtdrv)
DRV - [2012-10-26 09:59:46 | 000,014,392 | ---- | M] (MSI) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\Super Charger\NTIOLib.sys -- (NTIOLib_1_0_3)
DRV - [2012-09-19 11:50:50 | 000,010,088 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2012-08-23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2011-01-06 12:04:00 | 000,007,680 | ---- | M] (MSI) [Kernel | On_Demand | Stopped] -- C:\Program Files\Setup Files\Ms7586v1B0\NTIOLib.sys -- (NTIOLib_1_0_6)
DRV - [2010-10-20 15:43:08 | 000,007,680 | ---- | M] (MSI) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\Live Update 5\NTIOLib.sys -- (NTIOLib_1_0_4)
DRV - [2010-07-04 21:51:26 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\Pieters\Desktop
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Program Files\Finale 2010\Help Files\Skin\Blank.htm
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
http://www.bing.com
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
https://www.google.nl/
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://nl.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nl-NL
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 8E 5B 34 EB 5D E8 CE 01 [binary data]
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://search.v9.com/web/?q={searchTerms}
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "
https://www.google.nl/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:28.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}: C:\Users\Pieters\AppData\Local\Mozilla\Firefox [2014-04-26 07:39:01 | 000,000,000 | ---D | M]
[2014-04-24 13:50:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pieters\AppData\Roaming\mozilla\Extensions
[2014-04-27 16:30:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pieters\AppData\Roaming\mozilla\Firefox\Profiles\5qsfz2tp.default\extensions
[2014-04-26 07:38:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014-04-26 07:38:45 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
http://www.bing.nl/
CHR - plugin: Error reading preferences file
CHR - Extension: WOT = C:\Users\Pieters\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\2.5.14_0\
CHR - Extension: avast! Online Security = C:\Users\Pieters\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2018.95_0\
CHR - Extension: Google Wallet = C:\Users\Pieters\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
O1 HOSTS File: ([2009-06-10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (WOT Helper) - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (WOT) - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
O3 - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\..\Toolbar\WebBrowser: (WOT) - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
O4 - HKLM..\Run: [AML Registry Cleaner] C:\Program Files\AML Products\Registry Cleaner\regclean.exe (AML Software - AMLSOFT.COM)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2730209986-486958140-2380715772-1000\..Trusted Domains: snsbank.nl ([www] https in Vertrouwde websites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 195.241.77.55 195.241.77.58
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{171725E5-C96F-47B9-B51F-73056D650CB0}: DhcpNameServer = 192.168.1.254 195.241.77.55 195.241.77.58
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{171725E5-C96F-47B9-B51F-73056D650CB0}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
O18 - Protocol\Handler\wot {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O27 - HKLM IFEO\sysrep32.exe: Debugger - C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\unins000.exe: Debugger - C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\uninst.exe: Debugger - C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\unlocker.exe: Debugger - C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\unlockerassistant.exe: Debugger - C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe (TuneUp Software)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{7976dd0b-bca7-11e3-92f2-4061862f0e1d}\Shell - "" = AutoRun
O33 - MountPoints2\{f95e13a3-7351-11e3-b5cc-4061862f0e1d}\Shell - "" = AutoRun
O33 - MountPoints2\{fb54766c-8c22-11e3-bf94-4061862f0e1d}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (sdnclean.exe)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
MsConfig - StartUpReg:
AML Registry Cleaner - hkey= - key= - C:\Program Files\AML Products\Registry Cleaner\regclean.exe (AML Software - AMLSOFT.COM)
========== Files/Folders - Created Within 30 Days ==========
[2014-05-10 19:04:32 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Pieters\Desktop\OTL.exe
[2014-05-10 01:06:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Driver Whiz
[2014-05-06 14:12:21 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KlavarScript
[2014-05-02 14:54:17 | 000,000,000 | --SD | C] -- C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
[2014-05-02 08:21:49 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014-05-01 08:47:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCCalc
[2014-05-01 08:47:32 | 000,000,000 | ---D | C] -- C:\Program Files\CCCalc
[2014-04-30 18:47:33 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2014-04-30 14:01:41 | 000,000,000 | ---D | C] -- C:\Users\Pieters\Desktop\GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
[2014-04-28 10:37:17 | 000,000,000 | ---D | C] -- C:\Users\Pieters\Desktop\Serial en meer--En de rest
[2014-04-28 10:36:07 | 000,000,000 | ---D | C] -- C:\Users\Pieters\Desktop\Programma's,Spel, Enz
[2014-04-27 16:46:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
[2014-04-27 16:46:12 | 000,000,000 | ---D | C] -- C:\Program Files\AOMEI Backupper
[2014-04-27 09:40:14 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2014-04-27 09:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\AMD AVT
[2014-04-27 09:39:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
[2014-04-27 09:36:22 | 000,616,960 | ---- | C] (AMD) -- C:\Windows\System32\coinst_14.100.dll
[2014-04-27 09:36:22 | 000,113,664 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\mantle32.dll
[2014-04-27 09:36:22 | 000,085,504 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\mantleaxl32.dll
[2014-04-27 09:36:22 | 000,083,456 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\OpenVideo.dll
[2014-04-27 09:36:22 | 000,073,216 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\OVDecode.dll
[2014-04-27 09:36:21 | 023,409,152 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atioglxx.dll
[2014-04-27 09:36:21 | 006,799,688 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiumdag.dll
[2014-04-27 09:36:21 | 006,796,592 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiumdva.dll
[2014-04-27 09:36:21 | 000,512,000 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\drivers\atikmpag.sys
[2014-04-27 09:36:21 | 000,164,352 | ---- | C] (AMD) -- C:\Windows\System32\atitmmxx.dll
[2014-04-27 09:36:21 | 000,099,520 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiu9pag.dll
[2014-04-27 09:36:21 | 000,080,896 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atisamu32.dll
[2014-04-27 09:36:21 | 000,071,704 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atimpc32.dll
[2014-04-27 09:36:21 | 000,071,704 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdpcom32.dll
[2014-04-27 09:36:21 | 000,030,720 | ---- | C] (AMD) -- C:\Windows\System32\atimuixx.dll
[2014-04-27 09:36:20 | 013,515,264 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\drivers\atikmdag.sys
[2014-04-27 09:36:20 | 000,491,520 | ---- | C] (AMD) -- C:\Windows\System32\atieclxx.exe
[2014-04-27 09:36:20 | 000,442,368 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atidemgy.dll
[2014-04-27 09:36:20 | 000,208,896 | ---- | C] (AMD) -- C:\Windows\System32\atiesrxx.exe
[2014-04-27 09:36:20 | 000,133,632 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atigktxx.dll
[2014-04-27 09:36:20 | 000,069,632 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiglpxx.dll
[2014-04-27 09:36:20 | 000,052,224 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticalrt.dll
[2014-04-27 09:36:19 | 024,107,520 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\amdocl.dll
[2014-04-27 09:36:19 | 014,302,208 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticaldd.dll
[2014-04-27 09:36:19 | 000,848,896 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atiadlxx.dll
[2014-04-27 09:36:19 | 000,368,128 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atiapfxx.exe
[2014-04-27 09:36:19 | 000,058,880 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2014-04-27 09:36:19 | 000,049,152 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticalcl.dll
[2014-04-27 09:36:19 | 000,043,520 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\drivers\ati2erec.dll
[2014-04-27 09:36:19 | 000,037,888 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdmmcl.dll
[2014-04-27 09:36:18 | 004,358,656 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdmantle32.dll
[2014-04-27 09:36:18 | 000,247,520 | ---- | C] (Advanced Micro Devices) -- C:\Windows\System32\drivers\amdacpksd.sys
[2014-04-27 09:36:18 | 000,117,560 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\amdhcp32.dll
[2014-04-27 09:36:18 | 000,090,112 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdave32.dll
[2014-04-27 07:49:29 | 000,000,000 | ---D | C] -- C:\ProgramData\F-Secure
[2014-04-26 17:11:29 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp
[2014-04-26 17:04:55 | 000,000,000 | ---D | C] -- C:\Users\Pieters\OneDrive
[2014-04-26 17:04:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive
[2014-04-26 13:19:59 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Roaming\ATI
[2014-04-26 13:13:17 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Roaming\library_dir
[2014-04-24 17:50:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2014-04-24 17:50:44 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
[2014-04-24 17:35:25 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2014-04-24 17:35:25 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2014-04-24 13:50:12 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Roaming\Mozilla
[2014-04-24 07:37:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Licenses
[2014-04-24 07:37:29 | 000,000,000 | ---D | C] -- C:\Program Files\ClearApps
[2014-04-23 12:12:38 | 000,000,000 | --SD | C] -- C:\Windows\System32\CompatTel
[2014-04-23 12:12:25 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014-04-23 12:12:25 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014-04-21 10:07:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2014-04-21 10:07:06 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2014-04-21 10:07:05 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2014-04-21 10:07:05 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2014-04-21 10:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014-04-21 10:07:04 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2014-04-19 12:06:07 | 000,107,736 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\48230029.sys
[2014-04-16 15:40:00 | 000,000,000 | -H-D | C] -- C:\SuperChargerProfile
[2014-04-16 12:33:00 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2014-04-15 22:12:44 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Roaming\SideSlide
[2014-04-15 22:12:33 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Local\Programs
[2014-04-14 17:54:49 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Roaming\JGoodies
[2014-04-14 17:54:40 | 000,000,000 | ---D | C] -- C:\Program Files\JGoodies
[2014-04-14 17:54:40 | 000,000,000 | ---D | C] -- C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDiskReport 1.4.1
[2014-04-14 17:54:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDiskReport 1.4.1
[2014-04-13 16:16:10 | 000,000,000 | R--D | C] -- C:\Users\Pieters\Videos
[2014-04-11 11:11:13 | 000,000,000 | -HSD | C] -- C:\Users\Pieters\AppData\Local\EmieUserList
[2014-04-11 11:11:13 | 000,000,000 | -HSD | C] -- C:\Users\Pieters\AppData\Local\EmieSiteList
[2014-04-11 09:28:06 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014-04-11 09:28:02 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014-04-11 09:28:02 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014-04-11 09:28:01 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014-04-11 09:28:00 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014-04-11 09:28:00 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014-04-11 09:27:59 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014-04-11 09:27:59 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014-04-11 09:27:58 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014-04-11 09:27:58 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014-04-11 09:27:58 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014-04-11 09:27:58 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014-04-11 09:27:57 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014-04-11 09:27:57 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014-04-11 09:27:57 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014-04-11 09:27:57 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014-04-11 09:27:56 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014-04-11 09:27:51 | 001,967,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014-04-11 09:27:48 | 004,254,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014-05-10 19:07:45 | 000,023,392 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014-05-10 19:07:45 | 000,023,392 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014-05-10 19:04:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Pieters\Desktop\OTL.exe
[2014-05-10 19:01:03 | 000,107,736 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014-05-10 19:00:44 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014-05-10 19:00:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-05-10 19:00:23 | 2408,931,328 | -HS- | M] () -- C:\hiberfil.sys
[2014-05-10 17:19:00 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014-05-10 16:41:39 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014-05-10 16:22:22 | 000,745,424 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2014-05-10 16:22:22 | 000,653,930 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014-05-10 16:22:22 | 000,153,376 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2014-05-10 16:22:22 | 000,121,802 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014-05-04 08:05:41 | 000,483,250 | ---- | M] () -- C:\Users\Pieters\Desktop\08842 piano catalogus compleet.pdf
[2014-05-02 15:18:35 | 000,390,496 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014-04-30 18:48:07 | 000,002,068 | ---- | M] () -- C:\Users\Pieters\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk
[2014-04-30 13:53:39 | 000,107,736 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\48230029.sys
[2014-04-29 21:19:17 | 000,692,400 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014-04-29 21:19:17 | 000,070,832 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014-04-29 18:48:43 | 000,000,193 | ---- | M] () -- C:\Users\Pieters\Desktop\≥ Marktplaats - De plek om nieuwe en tweedehands spullen te kopen en verkopen.url
[2014-04-29 14:34:22 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014-04-27 16:46:56 | 000,001,024 | -H-- | M] () -- C:\SYSTAG.BIN
[2014-04-26 13:08:17 | 000,000,362 | ---- | M] () -- C:\Users\Pieters\Desktop\Aanmelden.url
[2014-04-18 04:43:06 | 000,117,560 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\amdhcp32.dll
[2014-04-18 04:43:04 | 000,071,704 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atimpc32.dll
[2014-04-18 04:43:04 | 000,071,704 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdpcom32.dll
[2014-04-18 04:42:58 | 000,126,336 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiuxpag.dll
[2014-04-18 04:42:56 | 000,099,520 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiu9pag.dll
[2014-04-18 04:42:52 | 001,117,184 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\aticfx32.dll
[2014-04-18 04:42:42 | 008,866,928 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atidxx32.dll
[2014-04-18 04:42:38 | 006,796,592 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiumdva.dll
[2014-04-18 04:42:34 | 006,799,688 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiumdag.dll
[2014-04-18 04:39:04 | 000,247,520 | ---- | M] (Advanced Micro Devices) -- C:\Windows\System32\drivers\amdacpksd.sys
[2014-04-18 04:35:20 | 013,515,264 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\drivers\atikmdag.sys
[2014-04-18 04:23:02 | 000,200,704 | ---- | M] () -- C:\Windows\System32\clinfo.exe
[2014-04-18 04:22:48 | 000,083,456 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\System32\OpenVideo.dll
[2014-04-18 04:22:38 | 000,073,216 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\System32\OVDecode.dll
[2014-04-18 04:19:54 | 024,107,520 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\System32\amdocl.dll
[2014-04-18 04:17:24 | 000,058,880 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2014-04-18 04:13:10 | 000,113,664 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\mantle32.dll
[2014-04-18 03:58:32 | 004,358,656 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdmantle32.dll
[2014-04-18 03:51:44 | 023,409,152 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atioglxx.dll
[2014-04-18 03:46:56 | 000,580,816 | ---- | M] () -- C:\Windows\System32\atiapfxx.blb
[2014-04-18 03:46:34 | 000,368,128 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atiapfxx.exe
[2014-04-18 03:46:24 | 000,052,224 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticalrt.dll
[2014-04-18 03:46:18 | 000,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticalcl.dll
[2014-04-18 03:45:46 | 000,085,504 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\mantleaxl32.dll
[2014-04-18 03:42:52 | 014,302,208 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticaldd.dll
[2014-04-18 03:33:02 | 000,037,888 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdmmcl.dll
[2014-04-18 03:30:14 | 000,442,368 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atidemgy.dll
[2014-04-18 03:29:58 | 000,030,720 | ---- | M] (AMD) -- C:\Windows\System32\atimuixx.dll
[2014-04-18 03:29:40 | 000,491,520 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
[2014-04-18 03:29:16 | 000,208,896 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
[2014-04-18 03:28:24 | 000,164,352 | ---- | M] (AMD) -- C:\Windows\System32\atitmmxx.dll
[2014-04-18 03:21:26 | 000,616,960 | ---- | M] (AMD) -- C:\Windows\System32\coinst_14.100.dll
[2014-04-18 03:17:36 | 003,471,376 | ---- | M] () -- C:\Windows\System32\atiumdva.cap
[2014-04-18 03:08:56 | 000,848,896 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atiadlxx.dll
[2014-04-18 03:08:44 | 000,090,112 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdave32.dll
[2014-04-18 03:08:28 | 000,080,896 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atisamu32.dll
[2014-04-18 03:07:46 | 000,069,632 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiglpxx.dll
[2014-04-18 03:07:20 | 000,133,632 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atigktxx.dll
[2014-04-18 03:06:30 | 000,512,000 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\drivers\atikmpag.sys
[2014-04-18 03:04:24 | 000,043,520 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\drivers\ati2erec.dll
[2014-04-17 22:28:30 | 000,038,912 | ---- | M] () -- C:\Windows\System32\kdbsdk32.dll
[2014-04-17 20:49:10 | 3305,701,376 | ---- | M] () -- C:\Users\Pieters\Documents\DVD_VR.ISO
[2014-04-14 20:13:52 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2014-04-14 20:05:11 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2014-04-14 20:05:06 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2014-04-14 20:04:29 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2014-04-14 17:29:59 | 000,001,362 | ---- | M] () -- C:\Users\Pieters\Desktop\Temp - Snelkoppeling.lnk
[2014-04-14 10:24:28 | 000,002,562 | ---- | M] () -- C:\Windows\diagwrn.xml
[2014-04-14 10:24:28 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
[2014-04-14 10:11:12 | 2390,310,912 | ---- | M] () -- C:\Users\Pieters\Documents\GRMCHPFREO_NL_DVD.ISO
[2014-04-14 04:58:51 | 000,010,120 | ---- | M] () -- C:\bootsqm.dat
[2014-04-14 04:11:39 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014-04-14 04:07:19 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014-04-10 19:58:46 | 000,082,128 | ---- | M] () -- C:\Windows\System32\ativce02.dat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014-05-09 12:31:43 | 000,000,606 | ---- | C] () -- C:\Users\Pieters\Desktop\Readme_NL.htm
[2014-05-04 08:05:41 | 000,483,250 | ---- | C] () -- C:\Users\Pieters\Desktop\08842 piano catalogus compleet.pdf
[2014-04-29 18:48:43 | 000,000,193 | ---- | C] () -- C:\Users\Pieters\Desktop\≥ Marktplaats - De plek om nieuwe en tweedehands spullen te kopen en verkopen.url
[2014-04-28 10:37:23 | 000,001,362 | ---- | C] () -- C:\Users\Pieters\Desktop\Temp - Snelkoppeling.lnk
[2014-04-28 10:37:23 | 000,000,362 | ---- | C] () -- C:\Users\Pieters\Desktop\Aanmelden.url
[2014-04-28 10:37:23 | 000,000,319 | ---- | C] () -- C:\Users\Pieters\Desktop\Gmail e-mail van Google.url
[2014-04-27 09:36:22 | 000,275,124 | ---- | C] () -- C:\Windows\System32\ativvaxy_vi.dat
[2014-04-27 09:36:22 | 000,273,712 | ---- | C] () -- C:\Windows\System32\ativvaxy_vi_nd.dat
[2014-04-27 09:36:22 | 000,234,804 | ---- | C] () -- C:\Windows\System32\ativvaxy_cik.dat
[2014-04-27 09:36:22 | 000,233,008 | ---- | C] () -- C:\Windows\System32\ativvaxy_cik_nd.dat
[2014-04-27 09:36:22 | 000,200,704 | ---- | C] () -- C:\Windows\System32\clinfo.exe
[2014-04-27 09:36:22 | 000,134,192 | ---- | C] () -- C:\Windows\System32\ativce03.dat
[2014-04-27 09:36:22 | 000,082,128 | ---- | C] () -- C:\Windows\System32\ativce02.dat
[2014-04-27 09:36:22 | 000,042,544 | ---- | C] () -- C:\Windows\System32\kapp_ci.sbin
[2014-04-27 09:36:21 | 003,471,376 | ---- | C] () -- C:\Windows\System32\atiumdva.cap
[2014-04-27 09:36:19 | 000,580,816 | ---- | C] () -- C:\Windows\System32\atiapfxx.blb
[2014-04-26 07:38:54 | 000,001,123 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014-04-17 22:28:30 | 000,038,912 | ---- | C] () -- C:\Windows\System32\kdbsdk32.dll
[2014-04-17 20:45:14 | 3305,701,376 | ---- | C] () -- C:\Users\Pieters\Documents\DVD_VR.ISO
[2014-04-14 10:23:53 | 000,002,562 | ---- | C] () -- C:\Windows\diagwrn.xml
[2014-04-14 10:23:53 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
[2014-04-14 10:08:06 | 2390,310,912 | ---- | C] () -- C:\Users\Pieters\Documents\GRMCHPFREO_NL_DVD.ISO
[2014-04-14 04:58:51 | 000,010,120 | ---- | C] () -- C:\bootsqm.dat
[2014-03-27 18:47:47 | 000,000,218 | ---- | C] () -- C:\Users\Pieters\AppData\Local\recently-used.xbel
[2014-03-23 07:32:57 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014-03-23 07:31:57 | 005,681,196 | ---- | C] () -- C:\Windows\System32\drivers\rtvienna.dat
[2014-03-23 07:31:55 | 000,693,385 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2014-03-23 07:31:51 | 000,502,584 | ---- | C] () -- C:\Windows\System32\audioLibVc.dll
[2014-03-23 07:31:51 | 000,188,696 | ---- | C] () -- C:\Windows\System32\AcpiServiceVnA.dll
[2014-03-23 07:31:16 | 000,217,088 | ---- | C] () -- C:\Windows\NVGfxOgl.dll
[2014-02-01 18:24:41 | 000,129,720 | ---- | C] () -- C:\Windows\System32\ammntdrv.sys
[2014-02-01 18:24:41 | 000,026,424 | ---- | C] () -- C:\Windows\System32\ambakdrv.sys
[2014-02-01 18:24:41 | 000,014,392 | ---- | C] () -- C:\Windows\System32\amwrtdrv.sys
[2014-01-23 12:43:19 | 000,004,608 | ---- | C] () -- C:\Users\Pieters\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014-01-17 09:08:00 | 000,000,175 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
[2014-01-16 10:34:52 | 000,723,841 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2014-01-03 09:01:05 | 000,000,079 | ---- | C] () -- C:\Windows\wininit.ini
[2013-12-25 10:07:47 | 000,000,022 | -HS- | C] () -- C:\Users\Pieters\AppData\Roaming\Windows1569_SettingsRepository.bin
[2013-12-25 10:07:47 | 000,000,022 | -HS- | C] () -- C:\Windows\90C7D912BE2316.sys
[2013-12-24 12:08:09 | 000,000,191 | ---- | C] () -- C:\Users\Pieters\AppData\Roaming\burnaware.ini
[2013-11-24 08:07:44 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013-11-23 19:08:46 | 000,007,597 | ---- | C] () -- C:\Users\Pieters\AppData\Local\resmon.resmoncfg
[2013-09-12 04:26:10 | 000,995,342 | ---- | C] () -- C:\Windows\System32\amdocl_as32.exe
[2013-09-12 04:26:10 | 000,798,734 | ---- | C] () -- C:\Windows\System32\amdocl_ld32.exe
[2013-09-12 03:16:08 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
[2013-09-12 03:16:08 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
========== ZeroAccess Check ==========
[2009-07-14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013-07-26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== Purity Check ==========
========== Custom Scans ==========
< services.* >
< explorer.exe >
< winlogon.exe >
< Userinit.exe >
< svchost.exe >
========== Base Services ==========
SRV - [2009-07-14 03:14:53 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2013-02-27 06:49:16 | 000,047,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2009-07-14 03:14:11 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2010-11-20 14:20:58 | 000,585,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2010-11-20 14:18:06 | 000,494,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2013-09-25 02:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009-07-14 03:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2012-07-04 23:14:34 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2013-07-09 06:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2010-11-20 14:21:03 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2010-11-20 14:18:30 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2011-03-03 07:38:01 | 000,132,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2009-07-14 03:15:13 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009-07-14 03:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2009-07-14 03:15:33 | 000,300,544 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2010-11-20 14:19:23 | 000,350,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
SRV - [2014-03-11 11:13:24 | 000,022,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2014-03-11 11:13:24 | 000,279,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2009-07-14 03:16:15 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2009-07-14 03:15:41 | 000,049,664 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2009-07-14 03:16:03 | 000,280,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2009-07-14 03:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2012-10-03 18:42:26 | 000,242,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2009-07-14 03:16:11 | 000,019,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2011-05-24 12:44:59 | 000,293,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2012-02-11 07:37:49 | 000,317,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2013-09-25 02:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV - [2009-07-14 03:16:12 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2010-11-20 14:21:00 | 000,286,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2010-11-20 14:21:03 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2009-07-14 03:16:13 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2013-09-25 02:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009-07-14 03:16:20 | 000,073,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010-11-20 14:21:26 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2010-11-20 14:21:19 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV - [2010-11-20 14:21:05 | 000,750,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2010-11-20 14:21:28 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009-07-14 03:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2012-05-01 06:44:12 | 000,164,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2010-11-20 14:17:51 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2010-11-20 14:18:05 | 000,473,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2010-11-20 14:18:05 | 000,473,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2010-11-20 14:21:06 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2013-05-27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010-11-20 14:21:35 | 001,086,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (eventlog)
SRV - [2010-11-20 14:19:40 | 000,566,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2010-11-20 14:21:35 | 000,463,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wiaservc.dll -- (StiSvc)
SRV - [2010-11-20 14:17:22 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009-07-14 03:16:19 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012-06-03 00:19:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2010-11-20 14:18:34 | 000,214,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009-07-14 03:16:19 | 000,829,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2010-11-20 14:21:36 | 000,084,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)
========== Drive Information ==========
Physical Drives
---------------
Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: SAMSUNG HD103UJ ATA Device
Partitions: 2
Status: OK
Status Info: 0
Drive: \\\\.\\PHYSICALDRIVE1 - External hard disk media
Interface type: USB
Media Type: External hard disk media
Model: ST332082 0AS USB Device
Partitions: 1
Status: OK
Status Info: 0
Drive: \\\\.\\PHYSICALDRIVE2 - Removable Media
Interface type: USB
Media Type: Removable Media
Model: UFD 2.0 Silicon-Power16G USB Device
Partitions: 1
Status: OK
Status Info: 0
Drive: \\\\.\\PHYSICALDRIVE3 -
Interface type: USB
Media Type:
Model: Generic- Compact Flash USB Device
Partitions: 0
Status: OK
Status Info: 0
Drive: \\\\.\\PHYSICALDRIVE4 -
Interface type: USB
Media Type:
Model: Generic- SM/xD-Picture USB Device
Partitions: 0
Status: OK
Status Info: 0
Drive: \\\\.\\PHYSICALDRIVE5 -
Interface type: USB
Media Type:
Model: Generic- SD/MMC USB Device
Partitions: 0
Status: OK
Status Info: 0
Drive: \\\\.\\PHYSICALDRIVE6 -
Interface type: USB
Media Type:
Model: Generic- MS/MS-Pro USB Device
Partitions: 0
Status: OK
Status Info: 0
Partitions
---------------
DeviceID: Disk #0, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 482,00GB
Starting Offset: 1048576
Hidden sectors: 0
DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 449,00GB
Starting Offset: 517857083392
Hidden sectors: 0
DeviceID: Disk #1, Partition #0
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 298,00GB
Starting Offset: 1048576
Hidden sectors: 0
DeviceID: Disk #2, Partition #0
PartitionType: 16-bit FAT
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 15,00GB
Starting Offset: 0
Hidden sectors: 0
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\system32\*.exe /lockedfiles >
< %PROGRAMFILES%\* >
[2009-07-14 06:41:57 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
========== Alternate Data Streams ==========
@Alternate Data Stream - 164 bytes -> C:\ProgramData\TEMP:F8B88761
< End of report >
Niet te weten is geen schande, maar niet te willen leren.