Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Steamhelper.exe


  • Please log in to reply
15 replies to this topic

#1 Rikcey

Rikcey

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 15 March 2016 - 05:54 PM

Hello good people on the internet ;)

I am new here, so please correct me if I'm posting stuff on wrong boards and stuff.

I have been experiencing this problem for quite a while now. After startup, my ESET asks me to allow or deny this steamhelper (sometimes accompanied by skype-soft) access to to another pc.
It's a lot like this thread here: http://www.bleepingcomputer.com/forums/t/597721/steamhelperexe-suspicious-behavior/.

I don't know if it is causing it or not, but my sleeptimer keeps resetting to "30 minutes" instead of "never".

I am running Windows 10 pro.

Can someone help me please?
Thanks in Advance!
Rik(cey) 


Edited by Rikcey, 15 March 2016 - 05:54 PM.


BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:24 PM

Posted 15 March 2016 - 08:44 PM

Welcome aboard p22002758.gif

 

Do you have Steam installed?

Do you use it?


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#3 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 15 March 2016 - 08:55 PM

Hey, thanks!

Yes, I have it installed, and I use it somewhat regularly.
Definitely not every boot. And the Steam Client Service shows as inactive during and after booting.
It doesn't make a difference when I start Steam itself if I deny (or allow for that matter) the connection during booting. And starting Steam does not ask me to allow it if I denied.
If Steamhelper was Valve's program, shouldn't ESET list it as being from "Valve" in the prompt? (instead of listing it as Skype-soft, or nothing at all)



#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:24 PM

Posted 15 March 2016 - 09:04 PM

Download Autoruns for Windows: http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
No installation required.
Simply unzip Autoruns.zip file, and double click on autoruns.exe file to run the program.
Go File>Save, and save it as Autoruns.txt file to know location.
You must select Text from drop-down menu as a file type:

p4436801.gif

Paste content of Autoruns.txt file into your next reply.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#5 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 15 March 2016 - 09:13 PM

That's an awful lot  :o 


"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "29-1-2016 21:09" ""
+ "BCSSync" "Microsoft Office 2010 component" "Microsoft Corporation" "c:\program files\microsoft office\office14\bcssync.exe" "5-11-2012 16:25" ""
+ "egui" "ESET Main GUI" "ESET" "c:\program files\eset\eset smart security\egui.exe" "8-7-2015 14:18" ""
+ "NvBackend" "NVIDIA Backend" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\update core\nvbackend.exe" "1-2-2016 11:06" ""
+ "SamsungRapidApp" "Samsung RAPID Mode Notification Utility" "Samsung Electronics Co., Ltd." "c:\program files (x86)\samsung\rapid\cachefilter\samsungrapidapp.exe" "16-9-2014 9:58" ""
+ "ShadowPlay" "NVIDIA Capture Server Proxy" "NVIDIA Corporation" "c:\windows\system32\nvspcap64.dll" "16-2-2016 10:46" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "7-3-2016 13:08" ""
+ "Corsair Gaming Headset Software" "Corsair Vengeance Headset" "Corsair Components, Inc." "c:\program files (x86)\corsair\corsair gaming headset software\headsetcontrolpanel.exe" "18-8-2014 11:12" ""
+ "Corsair Utility Engine" "Corsair Utility Engine" "Corsair Components, Inc." "c:\program files (x86)\corsair\corsair utility engine\corsairhid.exe" "30-9-2015 15:13" ""
+ "DivXMediaServer" "" "" "File not found: C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe.exe" "" ""
+ "EEventManager" "EEventManager Application" "SEIKO EPSON CORPORATION" "c:\program files (x86)\epson software\event manager\eeventmanager.exe" "12-2-2015 5:13" ""
+ "RoccatKoneXTDOptical" "Kone XTD Optical Monitor Application" "ROCCAT GmbH" "c:\program files (x86)\roccat\kone xtd optical mouse\konextdopticalmonitor.exe" "14-4-2014 9:20" ""
+ "SunJavaUpdateSched" "Java Update Scheduler" "Oracle Corporation" "c:\program files (x86)\common files\java\java update\jusched.exe" "30-1-2016 3:57" ""
+ "USB3MON" "iusb3mon" "Intel Corporation" "c:\program files (x86)\intel\intel® usb 3.0 extensible host controller driver\application\iusb3mon.exe" "8-8-2014 14:11" ""
+ "VirtualCloneDrive" "Virtual CloneDrive Daemon" "Elaborate Bytes AG" "c:\program files (x86)\elaborate bytes\virtualclonedrive\vcddaemon.exe" "10-3-2013 18:08" ""
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "15-3-2016 23:29" ""
+ "BingSvc" "Microsoft Bing Service" "© 2015 Microsoft Corporation" "c:\users\rik adriaansen\appdata\local\microsoft\bingsvc\bingsvc.exe" "5-11-2015 10:37" ""
+ "Dropbox Update" "Dropbox Update" "Dropbox, Inc." "c:\users\rik adriaansen\appdata\local\dropbox\update\dropboxupdate.exe" "30-4-2015 21:41" ""
+ "EADM" "Origin" "Electronic Arts" "c:\program files (x86)\origin\origin.exe" "29-1-2016 22:17" ""
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce" "" "" "" "15-2-2016 14:45" ""
+ "Uninstall C:\Users\Rik Adriaansen\AppData\Local\Microsoft\OneDrive\17.3.5892.0626" "" "" "File not found: rmdir" "" ""
+ "Uninstall C:\Users\Rik Adriaansen\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" "" "" "File not found: rmdir" "" ""
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "21-9-2015 21:28" ""
+ "AirStream-Suite.lnk" "" "" "c:\windows\installer\{734d87ee-15dc-49c9-943e-605e9b55a5d8}\_7a184e116278b0ed1edd31.exe" "8-9-2015 23:20" ""
"C:\Users\Rik Adriaansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "13-3-2016 15:29" ""
+ "Dropbox.lnk" "Dropbox" "Dropbox, Inc." "c:\users\rik adriaansen\appdata\roaming\dropbox\bin\dropbox.exe" "12-1-2016 19:33" ""
+ "Touchpad Server.lnk" "Touchpad Server" "Things & Stuff" "c:\program files (x86)\things & stuff\touchpad server\touchpadserver.exe" "24-4-2012 7:21" ""
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "21-9-2015 21:24" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe" "10-7-2015 4:20" ""
+ "Microsoft Windows Media Player" "" "" "File not found: C:\WINDOWS\inf\unregmp2.exe /ShowWMP.exe" "" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "21-9-2015 21:30" ""
+ "Google Chrome" "Google Chrome Installer" "Google Inc." "c:\program files (x86)\google\chrome\application\49.0.2623.87\installer\chrmstp.exe" "8-3-2016 0:41" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe" "10-7-2015 4:31" ""
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" "" "21-9-2015 21:26" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll" "28-2-2010 10:24" ""
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" "" "20-2-2016 12:09" ""
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll" "7-11-2012 13:17" ""
+ "skypec2c" "Skype Click to Call IE Add-on" "Microsoft Corporation" "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll" "8-1-2016 11:38" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" "" "21-9-2015 21:26" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" "" "21-9-2015 21:27" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "15-11-2015 18:03" ""
+ "ESET Smart Security - Context Menu Shell Extension" "ESET Shell Extension" "ESET" "c:\program files\eset\eset smart security\shellext.dll" "8-7-2015 14:19" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\x64\neroshellext.dll" "10-8-2012 9:12" ""
+ "VirtualCloneDrive" "CloseTray" "Elaborate Bytes AG" "c:\program files (x86)\elaborate bytes\virtualclonedrive\elbyvcdshell1.dll" "14-12-2009 18:16" ""
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22-8-2013 14:01" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "15-11-2015 18:03" ""
+ "ESET Smart Security - Context Menu Shell Extension" "ESET Shell Extension" "ESET" "c:\program files\eset\eset smart security\x86\shellext.dll" "8-7-2015 14:18" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\neroshellext.dll" "10-8-2012 9:43" ""
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22-8-2013 14:01" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "15-11-2015 18:03" ""
+ "ESET Smart Security - Context Menu Shell Extension" "ESET Shell Extension" "ESET" "c:\program files\eset\eset smart security\shellext.dll" "8-7-2015 14:19" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\x64\neroshellext.dll" "10-8-2012 9:12" ""
+ "VirtualCloneDrive" "CloseTray" "Elaborate Bytes AG" "c:\program files (x86)\elaborate bytes\virtualclonedrive\elbyvcdshell1.dll" "14-12-2009 18:16" ""
"HKLM\Software\Wow6432Node\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "15-11-2015 18:03" ""
+ "ESET Smart Security - Context Menu Shell Extension" "ESET Shell Extension" "ESET" "c:\program files\eset\eset smart security\x86\shellext.dll" "8-7-2015 14:18" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\neroshellext.dll" "10-8-2012 9:43" ""
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "27-9-2015 21:52" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "27-9-2015 21:52" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "27-9-2015 21:52" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\x64\neroshellext.dll" "10-8-2012 9:12" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "27-9-2015 21:52" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\neroshellext.dll" "10-8-2012 9:43" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "21-9-2015 21:26" ""
+ "NvCplDesktopContext" "NVIDIA Display Shell Extension" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll" "23-2-2016 21:16" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "21-9-2015 21:26" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "27-9-2015 21:47" ""
+ "ESET Smart Security - Context Menu Shell Extension" "ESET Shell Extension" "ESET" "c:\program files\eset\eset smart security\shellext.dll" "8-7-2015 14:19" ""
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22-8-2013 14:01" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "27-9-2015 21:47" ""
+ "ESET Smart Security - Context Menu Shell Extension" "ESET Shell Extension" "ESET" "c:\program files\eset\eset smart security\x86\shellext.dll" "8-7-2015 14:18" ""
+ "NBShellHook Class" "Nero BackItUp" "Nero AG" "g:\nero\nero 12\nero backitup\nbshell.dll" "13-8-2012 3:15" ""
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22-8-2013 14:01" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "21-9-2015 21:26" ""
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22-8-2013 14:01" ""
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "21-9-2015 21:26" ""
+ "NBShellHook.6.0" "Nero BackItUp" "Nero AG" "g:\nero\nero 12\nero backitup\nbshell.dll" "13-8-2012 3:15" ""
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22-8-2013 14:01" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "20-2-2016 3:20" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "20-2-2016 3:20" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "20-2-2016 12:09" ""
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll" "6-3-2013 8:39" ""
+ "Skype Click to Call for Internet Explorer" "Skype Click to Call IE Add-on" "Microsoft Corporation" "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll" "8-1-2016 11:38" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "15-2-2016 14:44" ""
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre1.8.0_73\bin\jp2ssv.dll" "30-1-2016 3:07" ""
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre1.8.0_73\bin\ssv.dll" "30-1-2016 3:06" ""
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll" "6-3-2013 8:38" ""
+ "Skype Click to Call for Internet Explorer" "Skype Click to Call IE Add-on" "Microsoft Corporation" "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll" "8-1-2016 11:31" ""
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" "" "20-2-2016 12:09" ""
+ "&Gekoppelde notities van OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll" "13-10-2015 12:48" ""
+ "&Verzenden naar OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll" "27-10-2015 20:30" ""
+ "Skype Click to Call settings" "Skype Click to Call IE Add-on" "Microsoft Corporation" "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll" "8-1-2016 11:38" ""
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" "" "15-2-2016 14:44" ""
+ "&Gekoppelde notities van OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll" "27-10-2015 20:28" ""
+ "&Verzenden naar OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll" "27-10-2015 20:28" ""
+ "Skype Click to Call settings" "Skype Click to Call IE Add-on" "Microsoft Corporation" "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll" "8-1-2016 11:31" ""
"Task Scheduler" "" "" "" "" ""
+ "\Adobe Acrobat Update Task" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe" "14-12-2015 8:38" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 21.0 r0" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe" "7-3-2016 23:45" ""
+ "\AutoKMS" "AutoKMS" "" "c:\autokms\autokms.exe" "29-7-2011 19:08" ""
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe" "18-6-2013 20:20" ""
+ "\DropboxUpdateTaskUserS-1-5-21-166707901-1440818094-2286925676-1000Core1d0c278be00653c" "Dropbox Update" "Dropbox, Inc." "c:\users\rik adriaansen\appdata\local\dropbox\update\dropboxupdate.exe" "30-4-2015 21:41" ""
+ "\DropboxUpdateTaskUserS-1-5-21-166707901-1440818094-2286925676-1000UA1d0c278be106b08" "Dropbox Update" "Dropbox, Inc." "c:\users\rik adriaansen\appdata\local\dropbox\update\dropboxupdate.exe" "30-4-2015 21:41" ""
+ "\EPSON XP-225 Series Update {345FB5E6-4C89-40EE-9BCD-9B3EAF2A12CA}" "E_DTSKSD.EXE" "SEIKO EPSON CORPORATION" "c:\windows\system32\spool\drivers\x64\3\e_ytsnfe.exe" "22-11-2013 5:36" ""
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "\GoogleUpdateTaskMachineCore1d09183a7eb7386" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "\GoogleUpdateTaskMachineCore1d0bf411b3441e2" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "\GoogleUpdateTaskMachineCore1d0e2cfdb74f3ca" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "\GoogleUpdateTaskMachineCore1d0eff9621db340" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "\GoogleUpdateTaskMachineUA1d041a7544dfed7" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "\GoogleUpdateTaskMachineUA1d0eff96238b5b5" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "\Intel\Intel Telemetry 2 (x86)" "LRIO" "Intel Corporation" "c:\program files (x86)\intel\telemetry 2.0\lrio.exe" "6-5-2015 2:20" ""
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe" "10-7-2015 4:19" ""
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll" "1-4-2014 5:28" ""
+ "\Microsoft\Windows\Media Center\ActivateWindowsSearch" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\ConfigureInternetTimeService" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\DispatchRecoveryTasks" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\ehDRMInit" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\InstallPlayReady" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\mcupdate" "" "" "File not found: C:\WINDOWS\ehome\mcupdate" "" ""
+ "\Microsoft\Windows\Media Center\mcupdate_scheduled" "" "" "File not found: C:\WINDOWS\ehome\mcupdate" "" ""
+ "\Microsoft\Windows\Media Center\MediaCenterRecoveryTask" "" "" "File not found: C:\WINDOWS\ehome\mcupdate.exe" "" ""
+ "\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask" "" "" "File not found: C:\WINDOWS\ehome\mcupdate.exe" "" ""
+ "\Microsoft\Windows\Media Center\OCURActivate" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\OCURDiscovery" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\PBDADiscovery" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\PBDADiscoveryW1" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\PBDADiscoveryW2" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
X "\Microsoft\Windows\Media Center\PeriodicScanRetry" "" "" "File not found: C:\WINDOWS\ehome\MCUpdate.exe" "" ""
+ "\Microsoft\Windows\Media Center\PvrRecoveryTask" "" "" "File not found: C:\WINDOWS\ehome\mcupdate.exe" "" ""
+ "\Microsoft\Windows\Media Center\PvrScheduleTask" "" "" "File not found: C:\WINDOWS\ehome\mcupdate.exe" "" ""
X "\Microsoft\Windows\Media Center\RecordingRestart" "" "" "File not found: C:\WINDOWS\ehome\ehrec" "" ""
+ "\Microsoft\Windows\Media Center\RegisterSearch" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\ReindexSearchRoot" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\Media Center\SqlLiteRecoveryTask" "" "" "File not found: C:\WINDOWS\ehome\mcupdate.exe" "" ""
+ "\Microsoft\Windows\Media Center\StartRecording" "" "" "File not found: C:\WINDOWS\ehome\ehrec" "" ""
+ "\Microsoft\Windows\Media Center\UpdateRecordPath" "" "" "File not found: C:\WINDOWS\ehome\ehPrivJob.exe" "" ""
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs" "18-6-2015 2:06" ""
X "\Microsoft\Windows\Shell\WindowsParentalControls" "" "" "File not found: C:\Windows\SysWOW64\wpcumi.dll" "" ""
X "\Microsoft\Windows\Shell\WindowsParentalControlsMigration" "" "" "File not found: C:\Windows\SysWOW64\wpcmig.dll" "" ""
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Toepassing voor configuratie van Windows Media Connect" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe" "10-7-2015 4:13" ""
+ "\Microsoft_Hardware_Launch_IType_exe" "" "" "File not found: C:\Program Files\Microsoft IntelliType Pro\IType.exe" "" ""
+ "\Origin" "" "" "File not found: C:\Users\Rik" "" ""
+ "\Overwolf Updater Task" "OverwolfUpdater" "Overwolf LTD" "c:\program files (x86)\overwolf\overwolfupdater.exe" "11-2-2016 14:42" ""
+ "\SamsungMagician" "Samsung Magician Application" "Samsung Electronics." "c:\program files (x86)\samsung\samsung magician\samsung magician.exe" "28-9-2014 13:36" ""
X "\Start Corsair Link" "CorsairLINK" "" "c:\program files (x86)\corsair\corsair link\corsairlink.exe" "5-8-2015 19:27" ""
+ "\SteamClient" "SteamHelper                                       " "Valve Corporation                                           " "c:\users\rik adriaansen\appdata\roaming\steam\steamhelper.exe" "19-6-1992 23:22" ""
+ "\WinTaske" "" "" "c:\program files (x86)\wintaske\wintaske\wintaske.exe" "25-2-2016 9:07" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "15-3-2016 23:48" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe" "14-12-2015 8:38" ""
+ "AdobeFlashPlayerUpdateSvc" "Deze service zorgt ervoor dat uw installatie van Adobe Flash Player up-to-date blijft met de nieuwste correcties en beveiligingsverbeteringen." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe" "7-3-2016 23:45" ""
+ "asComSvc" "" "" "c:\program files (x86)\asus\axsp\1.02.00\atkexcomsvc.exe" "7-5-2013 3:17" ""
+ "ASGT" "" "" "c:\windows\syswow64\asgt.exe" "17-1-2012 4:24" ""
+ "asHmComSvc" "" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\aahm\1.00.22\aahmsvc.exe" "13-6-2013 9:15" ""
+ "AsSysCtrlService" "" "" "c:\program files (x86)\asus\assysctrlservice\1.00.22\assysctrlservice.exe" "21-3-2014 9:31" ""
+ "AsusFanControlService" "ASUS Motherboard Fan Control Service" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\asusfancontrolservice\1.06.13\asusfancontrolservice.exe" "24-7-2014 2:59" ""
+ "c2cautoupdatesvc" "Downloads and installs product updates." "Microsoft Corporation" "c:\program files (x86)\skype\toolbars\autoupdate\skypec2cautoupdatesvc.exe" "8-1-2016 11:31" ""
+ "c2cpnrsvc" "Provides phone number recognition services." "Microsoft Corporation" "c:\program files (x86)\skype\toolbars\pnrsvc\skypec2cpnrsvc.exe" "8-1-2016 11:31" ""
+ "ekrn" "ESET Service" "ESET" "c:\program files\eset\eset smart security\x86\ekrn.exe" "8-7-2015 14:16" ""
+ "EpsonCustomerResearchParticipation" "Epson Customer Research Participation" "SEIKO EPSON CORPORATION" "c:\program files\epson\epsoncustomerresearchparticipation\epcp.exe" "25-6-2015 5:13" ""
+ "EpsonScanSvc" "Epson Scanner Service (64bit)" "Seiko Epson Corporation" "c:\windows\system32\escsvc64.exe" "17-5-2012 12:12" ""
+ "GfExperienceService" "NVIDIA GeForce Experience Service" "NVIDIA Corporation" "c:\program files\nvidia corporation\geforce experience service\gfexperienceservice.exe" "16-2-2016 11:19" ""
+ "ggbugreport" "the Server is report of bug,don't change." "" "c:\program files (x86)\searchestoyesbnd\bugreport.exe" "25-2-2016 9:08" ""
+ "gupdate" "Zorgt ervoor dat u altijd beschikt over de nieuwste Google-software. Als deze service wordt uitgeschakeld of afgebroken, wordt uw Google-software niet bijgewerkt. Hierdoor kunnen beveiligingsrisico's mogelijk niet worden verholpen of kunnen bepaalde functies niet werken. Deze service verwijdert zichzelf wanneer er geen Google-software is waarvoor de service wordt gebruikt." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "gupdatem" "Zorgt ervoor dat u altijd beschikt over de nieuwste Google-software. Als deze service wordt uitgeschakeld of afgebroken, wordt uw Google-software niet bijgewerkt. Hierdoor kunnen beveiligingsrisico's mogelijk niet worden verholpen of kunnen bepaalde functies niet werken. Deze service verwijdert zichzelf wanneer er geen Google-software is waarvoor de service wordt gebruikt." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22-8-2015 3:13" ""
+ "ICCS" "Intel® Integrated Clock Controller Service - Intel® ICCS" "Intel Corporation" "c:\program files (x86)\intel\intel® integrated clock controller service\iccproxy.exe" "24-6-2014 23:11" ""
+ "Intel® PROSet Monitoring Service" "The Intel® PROSet Monitoring Service actively monitors changes to the system and updates affected network devices to keep them running in optimal condition.  Stopping this service may negatively affect the performance of the network devices on the system." "Intel Corporation" "c:\windows\system32\iprosetmonitor.exe" "12-3-2014 0:31" ""
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files\microsoft office\office14\groove.exe" "19-12-2013 1:35" ""
+ "MozillaMaintenance" "De Mozilla Maintenance Service zorgt ervoor dat u de nieuwste en meest veilige versie van Mozilla Firefox op uw computer hebt. Het actueel houden van Firefox is zeer belangrijk voor uw online-veiligheid, en Mozilla raadt ten zeerste aan deze service ingeschakeld te houden." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe" "26-8-2015 12:17" ""
+ "NAUpdate" "Biedt toegang tot de updates van Nero-toepassingen en beheert deze toepassingen." "Nero AG" "c:\program files (x86)\nero\update\nasvc.exe" "13-7-2012 15:05" ""
+ "NvNetworkService" "NVIDIA Network Service" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe" "22-12-2015 22:46" ""
+ "NvStreamNetworkSvc" "Network Service for SHIELD Streaming" "NVIDIA Corporation" "c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe" "17-2-2016 7:13" ""
+ "NvStreamSvc" "Service for SHIELD Streaming" "NVIDIA Corporation" "c:\program files\nvidia corporation\nvstreamsrv\nvstreamservice.exe" "17-2-2016 7:11" ""
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe" "23-2-2016 21:16" ""
+ "Origin Client Service" "OriginClientService" "Electronic Arts" "c:\program files (x86)\origin\originclientservice.exe" "29-1-2016 22:07" ""
+ "ose64" "Hiermee worden de installatiebestanden opgeslagen die worden gebruikt voor het bijwerken en herstellen. Dit is vereist voor het downloaden van updates van Setup en van Watson-foutrapporten." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe" "10-1-2010 5:19" ""
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe" "12-8-2009 3:00" ""
+ "OverwolfUpdater" "OverwolfUpdater" "Overwolf LTD" "c:\program files (x86)\overwolf\overwolfupdater.exe" "11-2-2016 14:42" ""
+ "PassThru Service" "Detect HTC Android device for internet pass-through function." "" "c:\program files (x86)\htc\internet pass-through\passthrusvr.exe" "7-12-2012 10:26" ""
+ "PnkBstrA" "PunkBuster Service Component [v1041] http://www.evenbalance.com" "" "c:\windows\syswow64\pnkbstra.exe" "2-6-2014 23:51" ""
+ "SamsungRapidSvc" "RAPID Mode increases the overall performance of your computer by pairing the industry's fastest SSD with the most advanced storage management techniques to deliver the fastest and most reliable user experience. If this service is disabled RAPID Mode will not operate properly." "Samsung Electronics Co., Ltd." "c:\windows\system32\rapid\samsungrapidsvc.exe" "16-9-2014 9:58" ""
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe" "9-7-2015 13:12" ""
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe" "10-3-2016 19:37" ""
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe" "23-2-2016 20:55" ""
+ "WdNisSvc" "Biedt bescherming tegen inbraakpogingen die gericht zijn op bekende en recentelijk gevonden zwakke plekken in netwerkprotocollen" "Microsoft Corporation" "c:\program files\windows defender\nissrv.exe" "10-7-2015 4:19" ""
+ "WinDefend" "Beschermt gebruikers tegen malware en andere mogelijk ongewenste software" "Microsoft Corporation" "c:\program files\windows defender\msmpeng.exe" "10-7-2015 4:18" ""
+ "Winsere" "Hiermee wordt de mogelijkheid om updates voor Winsere en andere programma's te zoeken, te downloaden en te installeren ingeschakeld. Als deze service is uitgeschakeld, kunnen gebruikers van deze computer Winsere Update of de functie voor het automatisch bijwerken niet gebruiken, en programma's kunnen de API Winsere Update Agent (WUA) niet gebruiken." "" "c:\program files (x86)\winsere\winsere\winsere.exe" "25-2-2016 9:07" ""
+ "WMPNetworkSvc" "Hiermee worden media-bestanden met behulp van UPnP (Universal Plug and Play) op media-apparaten beschikbaar gemaakt" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe" "23-2-2016 11:43" ""
+ "XTU3SERVICE" "The XTU Service allows client access to overclocking functionality" "Intel® Corporation" "c:\program files (x86)\intel\intel® extreme tuning utility\xtuservice.exe" "30-9-2015 10:40" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "15-3-2016 23:48" ""
+ "3ware" "LSI 3ware SCSI Storport Driver" "LSI" "c:\windows\system32\drivers\3ware.sys" "18-5-2015 23:28" ""
+ "ADP80XX" "PMC-Sierra Storport  Driver For SPC8x6G SAS/SATA controller" "PMC-Sierra" "c:\windows\system32\drivers\adp80xx.sys" "9-4-2015 21:49" ""
+ "AiCharger" "ASUS Charger driver" "ASUSTek Computer Inc." "c:\windows\syswow64\drivers\aicharger.sys" "22-3-2012 9:07" ""
+ "amdhub30" "AMD USB 3.0 Hub Driver" "Advanced Micro Devices, INC." "c:\windows\system32\drivers\amdhub30.sys" "16-8-2012 7:14" ""
+ "amdsata" "AHCI 1.3 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys" "14-5-2015 13:14" ""
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys" "11-12-2012 22:21" ""
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys" "1-5-2015 1:55" ""
+ "amdxhc" "AMD USB 3.0 Host Controller Driver" "Advanced Micro Devices, INC." "c:\windows\system32\drivers\amdxhc.sys" "16-8-2012 7:14" ""
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "PMC-Sierra, Inc." "c:\windows\system32\drivers\arcsas.sys" "9-4-2015 20:12" ""
+ "AsIO" "" "" "c:\windows\syswow64\drivers\asio.sys" "22-8-2012 10:54" ""
+ "asmthub3" "ASMedia USB3 Hub Driver" "ASMedia Technology Inc" "c:\windows\system32\drivers\asmthub3.sys" "20-8-2012 13:28" ""
+ "asmtxhci" "ASMEDIA XHCI Host Controller Driver" "ASMedia Technology Inc" "c:\windows\system32\drivers\asmtxhci.sys" "20-8-2012 13:28" ""
+ "AsUpIO" "" "" "c:\windows\syswow64\drivers\asupio.sys" "3-8-2010 3:47" ""
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys" "4-2-2013 20:47" ""
+ "b06diag" "Broadcom NetXtreme II Diagnostic Driver" "Broadcom Corporation" "c:\windows\system32\drivers\bxdiaga.sys" "8-3-2012 19:01" ""
+ "bcmfn2" "BCM Function 2  Device Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\bcmfn2.sys" "16-3-2014 11:07" ""
+ "BFN7x64" "Bigfoot Networks Killer™ PCI-E Gaming Adapter" "Bigfoot Networks, Inc." "c:\windows\system32\drivers\xeno7x64.sys" "18-5-2011 23:55" ""
+ "bxfcoe" "FCoE offload x64 FREE" "Broadcom Corporation" "c:\windows\system32\drivers\bxfcoe.sys" "23-2-2012 1:57" ""
+ "bxois" "iSCSI offload x64 FREE" "Broadcom Corporation" "c:\windows\system32\drivers\bxois.sys" "23-2-2012 2:33" ""
+ "cbaf" "Wireless USB Cable Association 64-bit Device Driver" "Intel Corp." "c:\windows\system32\drivers\cbaf.sys" "10-1-2008 5:06" ""
+ "CorsairAudioFilter" "Corsair Vengeance Headset Driver" "Corsair Components, Inc." "c:\windows\system32\drivers\corsveng2kamd64.sys" "14-8-2014 15:08" ""
+ "CorsairVBusDriver" "Corsair virtual bus driver" "Corsair" "c:\windows\system32\drivers\corsairvbusdriver.sys" "6-5-2015 14:10" ""
+ "CorsairVHidDriver" "Corsair virtual device driver" "Corsair" "c:\windows\system32\drivers\corsairvhiddriver.sys" "6-5-2015 14:10" ""
+ "cpuz138" "" "" "File not found: C:\Users\RIKADR~1\AppData\Local\Temp\cpuz138\cpuz138_x64.sys" "" ""
+ "dfuuwb" "UWBDFU 64-bit Device Driver" "Intel Corp." "c:\windows\system32\drivers\dfuuwb.sys" "12-9-2008 1:56" ""
+ "dg_ssudbus" "SAMSUNG USB Composite Device Driver (MSS Ver.3)" "DEVGURU Co., LTD.(www.devguru.co.kr)" "c:\windows\system32\drivers\ssudbus.sys" "2-12-2015 3:04" ""
+ "e1iexpress" "Intel® Gigabit Adapter NDIS 6.x driver" "Intel Corporation" "c:\windows\system32\drivers\e1i63x64.sys" "26-3-2015 21:24" ""
+ "eamonm" "Eset file on-access scanner" "ESET" "c:\windows\system32\drivers\eamonm.sys" "6-7-2015 15:33" ""
+ "ebdrv" "QLogic 10 GigE VBD" "QLogic Corporation" "c:\windows\system32\drivers\evbda.sys" "12-1-2015 11:29" ""
+ "edevmon" "Eset device blocker" "ESET" "c:\windows\system32\drivers\edevmon.sys" "6-7-2015 15:33" ""
+ "ehdrv" "Eset Helper driver" "ESET" "c:\windows\system32\drivers\ehdrv.sys" "6-7-2015 15:33" ""
+ "ElbyCDIO" "ElbyCD Windows x64 I/O driver" "Elaborate Bytes AG" "c:\windows\system32\drivers\elbycdio.sys" "4-3-2013 10:21" ""
+ "epfw" "EPFW Filter Driver" "ESET" "c:\windows\system32\drivers\epfw.sys" "6-7-2015 15:35" ""
+ "EpfwLWF" "@oem341.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter" "ESET" "c:\windows\system32\drivers\epfwlwf.sys" "6-7-2015 15:35" ""
+ "epfwwfp" "EPFW Filter Driver" "ESET" "c:\windows\system32\drivers\epfwwfp.sys" "6-7-2015 15:35" ""
+ "EtronHub3" "Etron eXtensible Hub Driver." "Etron Technology Inc" "c:\windows\system32\drivers\etronhub3.sys" "20-7-2012 8:15" ""
+ "EtronSTOR" "Etron Enhance USB Mass Storage Driver." "Etron Technology Inc" "c:\windows\system32\drivers\etronstor.sys" "13-6-2012 12:25" ""
+ "EtronXHCI" "Etron eXtensible Host Controller Driver." "Etron Technology Inc" "c:\windows\system32\drivers\etronxhci.sys" "20-7-2012 8:15" ""
+ "FLxHCIc" "Fresco Logic xHCI (USB3) Bus Driver" "Fresco Logic" "c:\windows\system32\drivers\flxhcic.sys" "2-11-2012 10:01" ""
+ "FLxHCIh" "Fresco Logic xHCI (USB3) Hub Driver" "Fresco Logic" "c:\windows\system32\drivers\flxhcih.sys" "2-11-2012 10:01" ""
+ "FTDIBUS" "FTDIBUS USB Driver" "FTDI Ltd." "c:\windows\system32\drivers\ftdibus.sys" "13-4-2012 11:05" ""
+ "FTSER2K" "FTDIBUS Serial Device Driver" "FTDI Ltd." "c:\windows\system32\drivers\ftser2k.sys" "13-4-2012 11:04" ""
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys" "13-7-2012 3:18" ""
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys" "26-3-2013 22:36" ""
+ "HTCAND64" "ADB Interface" "HTC, Corporation" "c:\windows\system32\drivers\androidusb.sys" "26-10-2009 9:54" ""
+ "htcnprot" "@oem54.inf,%NDISPROT_Desc%;HTC NDIS Protocol Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\htcnprot.sys" "23-6-2010 3:27" ""
+ "HWA" "WUSB Host Wire Adapter 64-bit Function Driver" "Intel Corp." "c:\windows\system32\drivers\hwa.sys" "29-9-2008 21:31" ""
+ "iaLPSSi_GPIO" "Intel® Serial IO GPIO Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\ialpssi_gpio.sys" "2-2-2015 10:00" ""
+ "iaLPSSi_I2C" "Intel® Serial IO I2C Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\ialpssi_i2c.sys" "2-2-2015 10:00" ""
+ "IAMTVE" "Intel® Active Management Technology – KCS" "Intel Corporation" "c:\windows\system32\drivers\iamtve.sys" "12-4-2007 7:29" ""
+ "iaStorAV" "Intel® Rapid Storage Technology driver (inbox) - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorav.sys" "19-2-2015 13:08" ""
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys" "11-4-2011 19:48" ""
+ "ibbus" "InfiniBand Fabric Bus Driver" "Mellanox" "c:\windows\system32\drivers\ibbus.sys" "29-3-2015 15:28" ""
+ "ICCWDT" "Intel® Watchdog Timer Driver (Intel® WDT)" "Intel Corporation" "c:\windows\system32\drivers\iccwdt.sys" "20-9-2015 8:59" ""
+ "IFCoEMP" "Intel® Ethernet FCoE SAN Driver" "Intel® Corporation" "c:\windows\system32\drivers\ifm60x64.sys" "21-4-2012 0:15" ""
+ "IFCoEVB" "Intel® Ethernet FCoE Protocol NDIS(6.2) Driver" "Intel® Corporation" "c:\windows\system32\drivers\ifp60x64.sys" "21-4-2012 0:14" ""
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys" "29-7-2015 12:59" ""
+ "ioatdma1" "Intel® 5000 Series Chipsets Integrated Device - 1A38" "Intel Corporation" "c:\windows\system32\drivers\qd162x64.sys" "16-11-2009 15:43" ""
+ "ioatdma2" "Intel® 5000 Series Chipsets Integrated Device - 1A38" "Intel Corporation" "c:\windows\system32\drivers\qd262x64.sys" "16-11-2009 15:43" ""
+ "iocbios2" "Intel® Overclocking Device Driver" "Intel Corporation" "c:\program files (x86)\intel\intel® extreme tuning utility\drivers\iocdriver\64bit\iocbios2.sys" "28-5-2015 21:42" ""
+ "IOMap" "ASUS Kernel Mode Driver for NT " "ASUSTeK Computer Inc." "c:\windows\system32\drivers\iomap64.sys" "2-7-2013 9:27" ""
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys" "25-3-2015 20:36" ""
+ "LSI_SAS2i" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2i.sys" "8-4-2015 21:58" ""
+ "LSI_SAS3i" "Avago SAS Gen3 Driver (StorPort)" "Avago Technologies" "c:\windows\system32\drivers\lsi_sas3i.sys" "9-4-2015 19:07" ""
+ "LSI_SSS" "LSI SSS PCIe/Flash Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sss.sys" "16-3-2013 0:39" ""
+ "megasas" "MEGASAS RAID Controller Driver for Windows" "Avago Technologies" "c:\windows\system32\drivers\megasas.sys" "5-3-2015 3:36" ""
+ "megasr" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys" "3-6-2013 23:02" ""
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\teedriverw8x64.sys" "12-6-2015 2:52" ""
+ "mlx4_bus" "MLX4 Bus Driver" "Mellanox" "c:\windows\system32\drivers\mlx4_bus.sys" "29-3-2015 15:36" ""
+ "mt7612US" "MT7612U Phoenix Driver" "MediaTek Inc." "c:\windows\system32\drivers\mt7612us.sys" "9-12-2015 7:44" ""
+ "mvumis" "Marvell Flash Controller Driver" "Marvell Semiconductor, Inc." "c:\windows\system32\drivers\mvumis.sys" "23-5-2014 21:39" ""
+ "ndfltr" "NetworkDirect Support Filter Driver" "Mellanox" "c:\windows\system32\drivers\ndfltr.sys" "29-3-2015 15:27" ""
+ "Neo_VPN" "@oem49.inf,%Neo.Service.Desc%;VPN Client Adapter - VPN" "SoftEther VPN Project at University of Tsukuba, Japan." "c:\windows\system32\drivers\neo_0015.sys" "5-2-2015 10:57" ""
+ "nusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys" "21-8-2012 5:12" ""
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys" "21-8-2012 5:12" ""
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys" "21-9-2015 10:44" ""
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 362.00 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys" "23-2-2016 20:31" ""
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys" "21-4-2014 19:28" ""
+ "nvsmu" "NVIDIA nForce™ SMU Microcontroller Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvsmu.sys" "23-3-2010 2:29" ""
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys" "21-4-2014 19:34" ""
+ "NvStreamKms" "Nvidia Streaming Kernel Service" "NVIDIA Corporation" "c:\program files\nvidia corporation\nvstreamsrv\nvstreamkms.sys" "22-12-2015 21:54" ""
+ "nvvad_WaveExtensible" "NVIDIA Virtual Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvvad64v.sys" "17-12-2015 13:47" ""
+ "percsas2i" "MEGASAS RAID Controller Driver for Windows" "LSI Corporation" "c:\windows\system32\drivers\percsas2i.sys" "5-2-2015 23:51" ""
+ "percsas3i" "MEGASAS RAID Controller Driver for Windows" "Avago Technologies" "c:\windows\system32\drivers\percsas3i.sys" "4-2-2015 23:52" ""
+ "rusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\rusb3hub.sys" "21-8-2012 5:14" ""
+ "rusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\rusb3xhc.sys" "21-8-2012 5:14" ""
+ "SaiMini" "Saitek Magic Mini Driver" "Saitek" "c:\windows\system32\drivers\saimini.sys" "16-4-2013 18:17" ""
+ "SaiNtBus" "Smart Technology Helpers" "Saitek" "c:\windows\system32\drivers\saibus.sys" "16-4-2013 18:17" ""
+ "SamsungRapidDiskFltr" "Samsung RAPID Mode Disk Filter Driver" "Samsung Electronics Co., Ltd." "c:\windows\system32\drivers\samsungrapiddiskfltr.sys" "16-9-2014 9:53" ""
+ "SamsungRapidFSFltr" "SAMSUNG RAPID Mode File Mini-Filter Driver" "Samsung Electronics Co., Ltd." "c:\windows\system32\drivers\samsungrapidfsfltr.sys" "16-9-2014 9:53" ""
+ "Ser2pl" "USB-to-Serial Cable Driver" "Prolific Technology Inc." "c:\windows\system32\drivers\ser2pl64.sys" "26-7-2012 9:49" ""
+ "silabenm" "Silicon Labs VCP Serial Enumerator" "Silicon Laboratories" "c:\windows\system32\drivers\silabenm.sys" "27-5-2010 23:13" ""
+ "silabser" "Silicon Labs CP210x USB to UART Bridge Driver" "Silicon Laboratories" "c:\windows\system32\drivers\silabser.sys" "15-11-2012 7:10" ""
+ "SISAGP" "SiS AGPv3.5 Filter" "Silicon Integrated Systems Corporation" "c:\windows\system32\drivers\sisagpx.sys" "24-1-2007 7:57" ""
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys" "24-9-2008 19:28" ""
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys" "1-10-2008 22:56" ""
+ "SIUSBXP" "SiUSBXp.sys" "Silicon Laboratories" "c:\windows\system32\drivers\siusbxp.sys" "15-7-2010 23:27" ""
+ "ssudmdm" "@oem382.inf,%ssud.Service.Desc%;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.)" "DEVGURU Co., LTD.(www.devguru.co.kr)" "c:\windows\system32\drivers\ssudmdm.sys" "2-12-2015 3:04" ""
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows x64" "Promise Technology, Inc." "c:\windows\system32\drivers\stexstor.sys" "27-11-2012 1:02" ""
+ "teamviewervpn" "TeamViewerVPN Network Adapter" "TeamViewer GmbH" "c:\windows\system32\drivers\teamviewervpn.sys" "13-12-2007 10:22" ""
+ "tihub3" "TI USB3 Hub Driver" "Texas Instruments Incorporated" "c:\windows\system32\drivers\tihub3.sys" "26-11-2012 22:16" ""
+ "tixhci" "TI XHCI Host Controller Driver" "Texas Instruments Incorporated" "c:\windows\system32\drivers\tixhci.sys" "26-11-2012 22:16" ""
+ "UdeCx" "" "" "c:\windows\system32\drivers\udecx.sys" "10-7-2015 4:21" ""
+ "uwbusb" "UWB MiniPort 64-bit Device Driver" "Intel Corp." "c:\windows\system32\drivers\usbuwbmini.sys" "15-9-2008 19:51" ""
+ "VClone" "Virtual CloneDrive storage miniport" "Elaborate Bytes AG" "c:\windows\system32\drivers\vclone.sys" "24-7-2013 16:02" ""
+ "VHidXInput" "Virtual Hid Device" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\vxinput.sys" "13-8-2014 5:04" ""
+ "viaagp1" "VIA NT AGP Filter" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaagp1.sys" "23-9-2005 1:52" ""
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys" "22-4-2014 20:21" ""
+ "VSTXRAID" "VIA StorX RAID Controller Driver" "VIA Corporation" "c:\windows\system32\drivers\vstxraid.sys" "21-1-2013 20:00" ""
+ "VUSB3HUB" "Framework Version of ViaHub3 Dynamic Bus Enumerator" "VIA Technologies, Inc." "c:\windows\system32\drivers\viahub3.sys" "30-5-2012 10:29" ""
+ "wfpcapture" "@wfpcapture.inf,%WfpCapture_Desc%;Microsoft WFP Message Capture" "" "File not found: C:\WINDOWS\System32\drivers\wfpcapture.sys" "" ""
+ "WinMad" "Kernel WinMad" "Mellanox" "c:\windows\system32\drivers\winmad.sys" "29-3-2015 15:27" ""
+ "WinVerbs" "Kernel WinVerbs" "Mellanox" "c:\windows\system32\drivers\winverbs.sys" "29-3-2015 15:27" ""
+ "xhcdrv" "WDF Driver for VIA eXtensible Host Controller" "VIA Technologies, Inc." "c:\windows\system32\drivers\xhcdrv.sys" "30-5-2012 10:29" ""
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Font Drivers" "" "" "" "21-9-2015 21:24" ""
+ "Adobe Type Manager" "Windows NT OpenType/Type 1 Font Driver" "Adobe Systems Incorporated" "c:\windows\system32\atmfd.dll" "23-2-2016 13:35" ""
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "2-3-2016 16:51" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "10-7-2015 4:13" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "2-3-2016 16:51" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm" "10-7-2015 4:24" ""
+ "vidc.cvid" "Cinepak®-codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll" "10-7-2015 4:32" ""
"HKLM\Software\Classes\Filter" "" "" "" "7-3-2016 13:08" ""
+ "MainConcept MP4 Demultiplexer" "" "" "File not found: C:\Program Files (x86)\DivX\Codecs\mc_demux_mp4_ds.ax" "" ""
+ "MainConcept MPEG Demultiplexer" "" "" "File not found: C:\Program Files (x86)\DivX\Codecs\mc_demux_mp2_ds.ax" "" ""
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "7-3-2016 13:11" ""
+ "Capture File Writer" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "1-4-2014 5:27" ""
+ "MainConcept MP4 Demultiplexer" "" "" "File not found: C:\Program Files (x86)\DivX\Codecs\mc_demux_mp4_ds.ax" "" ""
+ "MainConcept MP4 Push Demultiplexer" "" "" "File not found: C:\Program Files (x86)\DivX\Codecs\mc_demux_mp4_ds.ax" "" ""
+ "MainConcept MPEG Demultiplexer" "" "" "File not found: C:\Program Files (x86)\DivX\Codecs\mc_demux_mp2_ds.ax" "" ""
+ "MainConcept Stream Parser" "" "" "File not found: C:\Program Files (x86)\DivX\Codecs\mc_demux_mp2_ds.ax" "" ""
+ "Memory Buffered Filter" "" "" "c:\program files (x86)\team 17\worms ultimate mayhem - deluxe edition\memorybufferedfilter.dll" "2-5-2013 11:56" ""
+ "Record Queue" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "1-4-2014 5:27" ""
+ "WM VIH2 Fix" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "1-4-2014 5:27" ""
+ "WMT DV Extract Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "1-4-2014 5:27" ""
+ "WMT Sample Info Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "1-4-2014 5:27" ""
+ "WMT Switch Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "1-4-2014 5:27" ""
+ "WMT Virtual Renderer" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "1-4-2014 5:27" ""
+ "WMT Virtual Source" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "1-4-2014 5:27" ""
"HKLM\SOFTWARE\Classes\Htmlfile\Shell\Open\Command\(Default)" "" "" "" "21-9-2015 21:29" ""
+ "C:\Program Files\Internet Explorer\IEXPLORE.EXE" "Internet Explorer" "Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe" "25-11-2015 5:27" ""
"HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls" "" "" "" "21-9-2015 21:26" ""
+ "_Wow64" "" "" "File not found: C:\WINDOWS\SysWOW64\Wow64.dll" "" ""
+ "_Wow64cpu" "" "" "File not found: C:\WINDOWS\SysWOW64\Wow64cpu.dll" "" ""
+ "_Wow64win" "" "" "File not found: C:\WINDOWS\SysWOW64\Wow64win.dll" "" ""
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" "" "21-9-2015 21:29" ""
+ "FaceCredentialProvider" "" "" "c:\windows\system32\facecredentialprovider.dll" "18-8-2015 7:54" ""
+ "IrisCredentialProvider" "" "" "c:\windows\system32\facecredentialprovider.dll" "18-8-2015 7:54" ""
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GpExtensions" "" "" "" "21-9-2015 21:27" ""
+ "{6cfb9c5c-138e-4bb3-8a3d-d5383e910e57}" "" "" "File not found: C:\WINDOWS\System32\RdpGroupPolicyExtension.dll" "" ""
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "21-9-2015 21:27" ""
+ "EPSON XP-225 Series 64MonitorBE" "EPSON Bi-directional Monitor AMD64" "SEIKO EPSON CORPORATION" "c:\windows\system32\e_ylmbnfe.dll" "6-12-2013 8:24" ""
+ "EpsonNet Print Port" "EpsonNet Print Component" "SEIKO EPSON CORPORATION" "c:\windows\system32\enppmon.dll" "16-12-2014 7:50" ""
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Security Packages" "" "" "" "15-3-2016 23:35" ""
+ "livessp" "" "" "File not found: livessp" "" ""
"WMI Database Entries" "" "" "" "" ""
+ "BVTConsumer" "" "" "File not found: KernCap.vbs" "" ""
"HKLM\Software\Microsoft\Office\Outlook\Addins" "" "" "" "27-9-2015 21:47" ""
+ "BCSAddin Connect class" "Microsoft Office 2010 component" "Microsoft Corporation" "c:\program files\microsoft office\office14\addins\bcsaddin.dll" "5-11-2012 16:24" ""
+ "Connect Class" "Microsoft Outlook Social Connector" "Microsoft Corporation" "c:\program files\microsoft office\office14\socialconnector.dll" "13-5-2015 2:23" ""
+ "FormRegionAddin Class" "" "" "c:\program files\microsoft office\office14\addins\umoutlookaddin.dll" "11-11-2015 3:48" ""
+ "Groove OutlookProxyAddIn" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll" "19-12-2013 1:41" ""
+ "Microsoft VBA for Outlook Addin" "Outlook VBA Integration Add-In" "Microsoft Corporation" "c:\program files\microsoft office\office14\addins\outlvba.dll" "15-2-2013 4:33" ""
+ "OneNote Notes about Outlook Items" "Microsoft OneNote Outlook Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnol.dll" "31-10-2015 5:22" ""
+ "{F43F5136-AA90-4005-9368-F91F5C120D69}" "ESET Plugin for Microsoft Outlook" "ESET" "c:\program files\eset\eset smart security\eplgoutlook.dll" "8-7-2015 14:18" ""
"HKCU\Software\Microsoft\Office\Outlook\Addins" "" "" "" "21-9-2015 21:26" ""
+ "Access COM Addin for Outlook" "Access Outlook Data Collection Addin" "Microsoft Corporation" "c:\program files\microsoft office\office14\addins\accolk.dll" "14-10-2015 15:37" ""
+ "ColleagueImportAddIn Class" "Microsoft Office 2010 component" "Microsoft Corporation" "c:\program files\microsoft office\office14\addins\colleagueimport.dll" "15-2-2013 4:32" ""
"HKLM\Software\Wow6432Node\Microsoft\Office\Outlook\Addins" "" "" "" "27-9-2015 21:47" ""
+ "Groove OutlookProxyAddIn" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll" "19-12-2013 1:37" ""
+ "{F43F5136-AA90-4005-9368-F91F5C120D69}" "ESET Plugin for Microsoft Outlook" "ESET" "c:\program files\eset\eset smart security\x86\eplgoutlook.dll" "8-7-2015 14:18" ""
"HKCU\Software\Microsoft\Office\PowerPoint\Addins" "" "" "" "21-9-2015 21:26" ""
X "OneNote PowerPoint Add-In Take Notes Content Service Class" "Microsoft OneNote PowerPoint Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onpptaddin.dll" "13-10-2015 12:49" ""
"HKCU\Software\Microsoft\Office\Word\Addins" "" "" "" "21-9-2015 21:26" ""
X "OneNote Word Add-In Take Notes Content Service Class" "Microsoft OneNote Word Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onwordaddin.dll" "13-10-2015 12:49" ""


#6 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 16 March 2016 - 11:56 PM

Can someone shed some light on what's going on here?



#7 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 17 March 2016 - 09:38 AM

I've made some screenshots from booting.
This is what I get prompted. It does not even imply the "Steamhelper", it appears to be an installer..com
Only when I click the "Setup/Uninstall", and it opens the folder, it's in temp, and not an executable. And it refers to the publisher as "unknown" and the remote PC it wants to connect to, as Skype-Soft.com (77.81.105.188).

Link to the screenshots: http://imgur.com/a/9I0Cl

Yours,
Rik(cey)



#8 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:24 PM

Posted 17 March 2016 - 05:43 PM

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.


NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size
  • List Restore Points

Click Go and post the result.

p22002970.gif Please download Malwarebytes Anti-Malware (MBAM) to your desktop.
NOTE. If you already have MBAM 2.0 installed scroll down.

  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:

    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.

  • Click Finish.
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.



If you already have MBAM 2.0 installed:

  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.


How to get logs:
(Export log to save as txt)


  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the Scan Log which shows the Date and time of the scan just performed.
  • Click 'Export'.
  • Click 'Text file (*.txt)'
  • In the Save File dialog box which appears, click on Desktop.
  • In the File name: box type a name for your scan log.
  • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
  • Click Ok
  • Attach that saved log to your next reply.



(Copy to clipboard for pasting into forum replies or tickets)

  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the Scan Log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.


p22002970.gifDownload 51a5f31352b88-icon_MBAR.pngMalwarebytes Anti-Rootkit (MBAR) to your desktop.
  • Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
  • Double click on downloaded file. OK self extracting prompt.
  • MBAR will start. Click "Next" to continue.
  • Click in the following screen "Update" to obtain the latest malware definitions.
  • Once the update is complete select "Next" and click "Scan".
  • When the scan is finished and no malware has been found select "Exit".
  • If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
  • Open the MBAR folder located on your Desktop and paste the content of the following files in your next reply:
  • "mbar-log-{date} (xx-xx-xx).txt"
  • "system-log.txt"


NOTE. If you see This version requires you to completely exit the Anti Malware application message right click on the Malwarebytes Anti-Malware icon in the system tray and click on Exit.

p22002970.gif Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Windows Vista, 7 or 8 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

NOTE Do NOT wrap your logs in "quote" or "code" brackets.
Do NOT use spoilers.
Do NOT edit your reply to post additional logs. Create new reply. I'll not get any email notifications about edits so I won't know you posted something new.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#9 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 17 March 2016 - 05:55 PM

 Results of screen317's Security Check version 1.014 --- 12/23/15  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
ESET Smart Security 8.0   
Windows Defender          
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Call of Duty: Ghosts  
 Java 8 Update 73  
 Java version 32-bit out of Date! 
 Adobe Flash Player 21.0.0.182  
 Mozilla Firefox 40.0.3 Firefox out of Date!  
 Google Chrome (48.0.2564.116) 
 Google Chrome (49.0.2623.87) 
````````Process Check: objlist.exe by Laurent````````  
 ESET NOD32 Antivirus egui.exe  
 ESET NOD32 Antivirus ekrn.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log`````````````````````` 


#10 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 17 March 2016 - 05:56 PM

Farbar Service Scanner Version: 27-01-2016
Ran by Rik Adriaansen (administrator) on 17-03-2016 at 23:55:51
Running from "C:\Users\Rik Adriaansen\Downloads"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is set to Disabled. The default start type is 3.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.
 
 
System Restore Policy: 
========================
 
 
Security Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
 
 
**** End of log ****


#11 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 17 March 2016 - 05:58 PM

MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by Rik Adriaansen (administrator) on 17-03-2016 at 23:57:49
Running from "C:\Users\Rik Adriaansen\Downloads"
Microsoft Windows 10 Pro  (X64)
Model: All Series Manufacturer: ASUS
Boot Mode: Normal
***************************************************************************
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
========================= FF Proxy Settings: ============================== 
 
========================= Hosts content: =================================
127.0.0.1 choice.microsoft.com
127.0.0.1 choice.microsoft.com.nstac.net
127.0.0.1 df.telemetry.microsoft.com
127.0.0.1 oca.telemetry.microsoft.com
127.0.0.1 oca.telemetry.microsoft.com.nsatc.net
127.0.0.1 redir.metaservices.microsoft.com
127.0.0.1 reports.wes.df.telemetry.microsoft.com
127.0.0.1 services.wes.df.telemetry.microsoft.com
127.0.0.1 settings-sandbox.data.microsoft.com
127.0.0.1 settings-win.data.microsoft.com
127.0.0.1 sqm.df.telemetry.microsoft.com
127.0.0.1 sqm.telemetry.microsoft.com
127.0.0.1 sqm.telemetry.microsoft.com.nsatc.net
127.0.0.1 telecommand.telemetry.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com.nsatc.net
127.0.0.1 telemetry.appex.bing.net
127.0.0.1 telemetry.microsoft.com
127.0.0.1 telemetry.urs.microsoft.com
127.0.0.1 vortex-sandbox.data.microsoft.com
127.0.0.1 vortex-win.data.microsoft.com
127.0.0.1 vortex.data.microsoft.com
127.0.0.1 watson.telemetry.microsoft.com
127.0.0.1 watson.telemetry.microsoft.com.nsatc.net
127.0.0.1 watson.ppe.telemetry.microsoft.com
127.0.0.1 wes.df.telemetry.microsoft.com
========================= IP Configuration: ================================
 
Intel® Ethernet Connection (2) I218-V = LAN-verbinding (Connected)
Xbox Wireless Adapter for Windows = Ethernet (Connected)
VPN Client Adapter - VPN = VPN - VPN Client (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global taskoffload=disabled
set interface interface="VPN - VPN Client" forwarding=disabled advertise=disabled metric=1 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled ecncapability=ecndisabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : CustomTrooper
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : dynamic.ziggo.nl
 
Ethernet adapter VPN - VPN Client:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : VPN Client Adapter - VPN
   Physical Address. . . . . . . . . : 00-AC-E8-0F-F1-F5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter LAN-verbinding:
 
   Connection-specific DNS Suffix  . : dynamic.ziggo.nl
   Description . . . . . . . . . . . : Intel® Ethernet Connection (2) I218-V
   Physical Address. . . . . . . . . : AC-9E-17-4D-38-7E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::8143:7ac6:bf92:5453%7(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.178.17(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : donderdag 17 maart 2016 22:05:08
   Lease Expires . . . . . . . . . . : vrijdag 18 maart 2016 0:35:08
   Default Gateway . . . . . . . . . : 192.168.178.1
   DHCP Server . . . . . . . . . . . : 192.168.178.1
   DHCPv6 IAID . . . . . . . . . . . : 262970903
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1C-39-9C-9C-AC-9E-17-4D-38-7E
   DNS Servers . . . . . . . . . . . : 8.8.8.8
   NetBIOS over Tcpip. . . . . . . . : Enabled
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  8.8.8.8
 
DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Addresses:  2a00:1450:4013:c01::66
 74.125.136.138
 74.125.136.102
 74.125.136.101
 74.125.136.139
 74.125.136.113
 74.125.136.100
 
 
Pinging google.com [74.125.136.101] with 32 bytes of data:
Reply from 74.125.136.101: bytes=32 time=11ms TTL=49
Reply from 74.125.136.101: bytes=32 time=16ms TTL=49
 
Ping statistics for 74.125.136.101:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 11ms, Maximum = 16ms, Average = 13ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8
 
Name:    yahoo.com
Addresses:  2001:4998:44:204::a7
 2001:4998:58:c02::a9
 2001:4998:c:a06::2:4008
 98.138.253.109
 206.190.36.45
 98.139.183.24
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=145ms TTL=51
Reply from 98.138.253.109: bytes=32 time=144ms TTL=51
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 144ms, Maximum = 145ms, Average = 144ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...00 ac e8 0f f1 f5 ......VPN Client Adapter - VPN
  7...ac 9e 17 4d 38 7e ......Intel® Ethernet Connection (2) I218-V
  1...........................Software Loopback Interface 1
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.178.1   192.168.178.17     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
    192.168.178.0    255.255.255.0         On-link    192.168.178.17    266
   192.168.178.17  255.255.255.255         On-link    192.168.178.17    266
  192.168.178.255  255.255.255.255         On-link    192.168.178.17    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link    192.168.178.17    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link    192.168.178.17    266
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  7    266 fe80::/64                On-link
  7    266 fe80::8143:7ac6:bf92:5453/128
                                    On-link
  1    306 ff00::/8                 On-link
  7    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\napinsp.dll [54784] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [79872] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [67072] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (03/17/2016 10:07:12 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Kan geen nieuw logboekbestand maken, omdat de database niet naar het logboekstation kan schrijven. Het station heeft mogelijk te weinig schijfruimte of is alleen-lezen, is onjuist geconfigureerd of beschadigd. Fout -1032.
 
Error: (03/17/2016 10:07:12 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Een poging het bestand C:\WINDOWS\system32\edbtmp.log te maken is mislukt. Systeemfout 5 (0x00000005): Toegang geweigerd. . Tijdens het maken van het bestand treedt fout -1032 (0xfffffbf8) op.
 
Error: (03/17/2016 10:07:01 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Kan geen nieuw logboekbestand maken, omdat de database niet naar het logboekstation kan schrijven. Het station heeft mogelijk te weinig schijfruimte of is alleen-lezen, is onjuist geconfigureerd of beschadigd. Fout -1032.
 
Error: (03/17/2016 10:07:01 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Een poging het bestand C:\WINDOWS\system32\edbtmp.log te maken is mislukt. Systeemfout 5 (0x00000005): Toegang geweigerd. . Tijdens het maken van het bestand treedt fout -1032 (0xfffffbf8) op.
 
Error: (03/17/2016 10:06:51 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Kan geen nieuw logboekbestand maken, omdat de database niet naar het logboekstation kan schrijven. Het station heeft mogelijk te weinig schijfruimte of is alleen-lezen, is onjuist geconfigureerd of beschadigd. Fout -1032.
 
Error: (03/17/2016 10:06:51 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Een poging het bestand C:\WINDOWS\system32\edbtmp.log te maken is mislukt. Systeemfout 5 (0x00000005): Toegang geweigerd. . Tijdens het maken van het bestand treedt fout -1032 (0xfffffbf8) op.
 
Error: (03/17/2016 10:06:41 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Kan geen nieuw logboekbestand maken, omdat de database niet naar het logboekstation kan schrijven. Het station heeft mogelijk te weinig schijfruimte of is alleen-lezen, is onjuist geconfigureerd of beschadigd. Fout -1032.
 
Error: (03/17/2016 10:06:41 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Een poging het bestand C:\WINDOWS\system32\edbtmp.log te maken is mislukt. Systeemfout 5 (0x00000005): Toegang geweigerd. . Tijdens het maken van het bestand treedt fout -1032 (0xfffffbf8) op.
 
Error: (03/17/2016 10:06:31 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Kan geen nieuw logboekbestand maken, omdat de database niet naar het logboekstation kan schrijven. Het station heeft mogelijk te weinig schijfruimte of is alleen-lezen, is onjuist geconfigureerd of beschadigd. Fout -1032.
 
Error: (03/17/2016 10:06:31 PM) (Source: ESENT) (User: )
Description: SettingSyncHost (7888) Een poging het bestand C:\WINDOWS\system32\edbtmp.log te maken is mislukt. Systeemfout 5 (0x00000005): Toegang geweigerd. . Tijdens het maken van het bestand treedt fout -1032 (0xfffffbf8) op.
 
 
System errors:
=============
Error: (03/17/2016 05:51:16 PM) (Source: Service Control Manager) (User: )
Description: De User Data Access_Session1-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.
 
Error: (03/17/2016 05:51:16 PM) (Source: Service Control Manager) (User: )
Description: De User Data Storage_Session1-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.
 
Error: (03/17/2016 05:51:16 PM) (Source: Service Control Manager) (User: )
Description: De Contact Data_Session1-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.
 
Error: (03/17/2016 05:51:16 PM) (Source: Service Control Manager) (User: )
Description: De Host synchroniseren_Session1-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.
 
Error: (03/17/2016 03:24:40 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalActiveren{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (via LRPC)Niet beschikbaarNiet beschikbaar
 
Error: (03/17/2016 03:23:38 PM) (Source: Service Control Manager) (User: )
Description: De Net.Tcp Listener Adapter-service is afhankelijk van de Net.Tcp Port Sharing Service-service, die vanwege de volgende fout niet kan worden gestart: 
%%1058
 
Error: (03/17/2016 03:23:38 PM) (Source: Service Control Manager) (User: )
Description: De Network Connectivity Assistant-service is afhankelijk van de IP Helper-service, die vanwege de volgende fout niet kan worden gestart: 
%%1058
 
Error: (03/17/2016 03:22:39 PM) (Source: Service Control Manager) (User: )
Description: De User Data Access_Session2-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.
 
Error: (03/17/2016 03:22:39 PM) (Source: Service Control Manager) (User: )
Description: De User Data Storage_Session2-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.
 
Error: (03/17/2016 03:22:39 PM) (Source: Service Control Manager) (User: )
Description: De Contact Data_Session2-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.
 
 
Microsoft Office Sessions:
=========================
Error: (03/17/2016 10:07:12 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888-1032
 
Error: (03/17/2016 10:07:12 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Toegang geweigerd.
 
Error: (03/17/2016 10:07:01 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888-1032
 
Error: (03/17/2016 10:07:01 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Toegang geweigerd.
 
Error: (03/17/2016 10:06:51 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888-1032
 
Error: (03/17/2016 10:06:51 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Toegang geweigerd.
 
Error: (03/17/2016 10:06:41 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888-1032
 
Error: (03/17/2016 10:06:41 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Toegang geweigerd.
 
Error: (03/17/2016 10:06:31 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888-1032
 
Error: (03/17/2016 10:06:31 PM) (Source: ESENT)(User: )
Description: SettingSyncHost7888C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Toegang geweigerd.
 
 
CodeIntegrity Errors:
===================================
  Date: 2016-03-14 12:07:17.702
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:07:17.673
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:07:17.643
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:07:17.600
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:07:17.581
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:07:17.563
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:07:17.034
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:07:16.951
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:05:13.216
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-03-14 12:05:13.189
  Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume8\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
 
=========================== Installed Programs ============================
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\{9A3AB849-5758-4C2D-88FD-92FC880AE9F6}) (Version: 12.0.6.147 - Adobe Systems, Inc)
AirStream-Suite (HKLM-x32\...\{734D87EE-15DC-49C9-943E-605E9B55A5D8}) (Version: 5.4.4 -  )
ASUS GPU Tweak (HKLM-x32\...\{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.7.5.0 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.7.5.0 - ASUSTek COMPUTER INC.)
Auslogics BoostSpeed 8 (HKLM-x32\...\{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1) (Version: 8.0.1.0 - Auslogics Labs Pty Ltd)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlefield 4™ CTE (HKLM-x32\...\{551A08D1-B60E-4DED-9B67-C3B38258CCA3}) (Version: 1.0.2.45844 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.4.0.10 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version:  - )
Call of Duty: Ghosts (HKLM-x32\...\Steam App 209160) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version:  - Infinity Ward)
CCleaner (HKLM\...\CCleaner) (Version: 4.03 - Piriform)
Command & Conquer 3 Tiberium Wars™ (HKLM-x32\...\{CAC9DCAF-0EA8-442C-97EA-CA6F5755390A}) (Version: 1.0.0.0 - Electronic Arts)
Command & Conquer™ 3 Kane's Wrath (HKLM-x32\...\{8D37C28B-D1A5-41C0-9E5E-80D01355FEBC}) (Version: 1.0.0.0 - Electronic Arts)
Command & Conquer™ 4 Tiberian Twilight (HKLM-x32\...\{82696435-8572-4D8B-A230-D1AA567D0F0F}) (Version: 1.0.0.0 - Electronic Arts)
Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Red Alert™ 3 Uprising (HKLM-x32\...\{DDE59617-F59A-473B-BC4E-C2B81F6CD38D}) (Version: 1.0.1.0 - Electronic Arts)
Corsair Gaming Headset Software (HKLM-x32\...\{6118E939-08B6-4180-8B5B-97836617813B}) (Version: 2.0.35 - Corsair)
Corsair Hydro Series 7289 USB Device (Driver Removal) (HKLM-x32\...\HYDROS7289&1B1C&0C02) (Version:  - Corsair Components, Inc.)
Corsair Link (HKLM-x32\...\{658EFB3F-8606-4576-8FEC-B0CED48F1E68}) (Version: 3.2.5695 - Corsair)
Corsair Link™ USB Dongle (Driver Removal) (HKLM-x32\...\SIUSBXP&1B1C&1C00) (Version:  - Corsair Memory, Inc.)
Corsair Utility Engine (HKLM-x32\...\{AFC4638C-C29C-4595-B24E-944D80ADC765}) (Version: 1.11.85 - Corsair)
CPUID ASUS CPU-Z 1.70 (HKLM\...\CPUID ASUS CPU-Z_is1) (Version: 1.70 - CPUID, Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Island: Epidemic (HKLM-x32\...\Steam App 222900) (Version:  - Stunlock Studios)
DiRT 3 (HKLM-x32\...\{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters) Hidden
DiRT 3 (HKLM-x32\...\GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters)
Dragonball Xenoverse (HKLM-x32\...\Dragonball Xenoverse_is1) (Version:  - )
Dropbox (HKCU\...\Dropbox) (Version: 3.14.7 - Dropbox, Inc.)
Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.70.0000 - EPSON)
Epson Event Manager (HKLM-x32\...\{17FA0444-A025-43B9-862C-81AE6307C2F2}) (Version: 3.10.0050 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON-handleidingen (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.50.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM\...\{98D772A5-CDB0-48E7-9DBA-794EA0F68B5C}) (Version: 3.1.0.0 - SEIKO EPSON Corporation)
Eragon (HKLM-x32\...\{322F75E0-71A3-4125-8EB3-761834EDC166}) (Version: 1.00.0000 - Sierra)
ESET Smart Security (HKLM\...\{92172C3C-7BCF-4DA3-8263-6617B13E897F}) (Version: 8.0.319.0 - ESET, spol s r. o.)
Game of Thrones - A Telltale Games Series v1.0 / RePack by Azaq (HKLM-x32\...\Game of Thrones - A Telltale Games Series_is1) (Version:  - )
Geeks3D FurMark 1.15.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - Geeks3D)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.87 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GRID Autosport (HKLM-x32\...\R1JJREF1dG9zcG9ydA==_is1) (Version: 1 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Intel Extreme Tuning Utility (HKLM-x32\...\{4E53939F-5A1D-4D2D-9173-D0C7D0D0F87E}) (Version: 6.0.2.8 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{e3931098-f44a-4c70-bf9c-f48d24bdd066}) (Version: 6.0.2.8 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.25.1036 - Intel Corporation)
Intel® Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.1.41 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
KaM - The Peasants Rebellion (HKLM-x32\...\KaM - The Peasants Rebellion) (Version:  - )
KaM Remake Full r6720 (HKLM-x32\...\{FDE049C8-E4B2-4EB5-A534-CF5C581F5D32}_is1) (Version:  - )
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Medal of Honor ™ (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor™ Warfighter (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}) (Version: 1.0.0.3 - Electronic Arts)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 40.0.3 (x86 nl) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 nl)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla)
MPC-HC 1.7.1 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.1.0 - MPC-HC Team)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
Nero 12 (HKLM-x32\...\{560FC78C-A4B2-461D-9B47-820C1EEF87B8}) (Version: 12.0.02000 - Nero AG)
NVIDIA 3D Vision controllerstuurprogramma 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision stuurprogramma 362.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 362.00 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.10.2.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.10.2.40 - NVIDIA Corporation)
NVIDIA Grafisch stuurprogramma 362.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 362.00 - NVIDIA Corporation)
NVIDIA HD Audio-stuurprogramma 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX Systeem Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.3.636 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.92.21.0 - Overwolf Ltd.)
Pinball FX2 (HKLM-x32\...\{3E1CB194-3FC0-49C9-84A3-ECFA747E469E}_is1) (Version: 1.0 - Microsoft Studios)
Pinball FX2 (HKLM-x32\...\Pinball FX2_is1) (Version:  - )
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version:  - Ndemic Creations)
Port Forward Network Utilities 2.0.16c (HKLM-x32\...\Port Forward Network Utilities) (Version: 2.0.16c - Portforward.com)
Prerequisite installer (HKLM-x32\...\{3AAB08A3-F129-4BD5-B409-AE674F93759D}) (Version: 12.0.0002 - Nero AG) Hidden
Printer EPSON XP-225 Series verwijderen (HKLM\...\EPSON XP-225 Series) (Version:  - SEIKO EPSON Corporation)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
RAPID Mode (HKLM\...\{34EF1328-6F71-4077-99AA-E44690F42043}) (Version: 1.0.1.81 - Samsung Electronics Co., Ltd.) Hidden
Rapture3D 2.4.8 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7572 - Realtek Semiconductor Corp.)
RIDE (HKLM-x32\...\UklERQ==_is1) (Version: 1 - )
Rise of the Tomb Raider (HKLM-x32\...\Steam App 391220) (Version:  - Crystal Dynamics)
ROCCAT Kone XTD Optical Mouse Driver (HKLM-x32\...\{AD43B296-FE63-42C0-AA39-D8759B905420}) (Version:  - Roccat GmbH)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0014 - Roccat GmbH)
Roller coaster 3 (HKLM-x32\...\Roller coaster 3 pack all pathed_is1) (Version:  - )
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C281A20E-A7DE-4950-8656-13E31F2DF194}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0413-1000-0000000FF1CE}_Office14.PROPLUS_{8601DE11-B4B1-47B6-BA5F-C98AF303A1DD}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0413-1000-0000000FF1CE}_Office14.PROPLUS_{040AFD12-179F-4557-8412-017A830C60A3}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0413-1000-0000000FF1CE}_Office14.PROPLUS_{B063C2D2-FD29-44E9-A6EF-19BA4B62381B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0413-1000-0000000FF1CE}_Office14.PROPLUS_{C17E141C-267D-4A15-A903-1AD09D8B0D62}) (Version:  - Microsoft) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 5.1.0270 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.10.2.40 - NVIDIA Corporation) Hidden
Sid Meier's Civilization 5 (HKLM-x32\...\Sid Meier's Civilization 5_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, Panky)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{E1BAD1BA-C0E8-4018-9281-E7D2C6B07474}) (Version: 4.3.6 - SEIKO EPSON CORPORATION)
Software voor Intel® Chipset-apparaten (HKLM-x32\...\{4a87bd28-a855-4a8d-b133-60ca8ccffd30}) (Version: 10.0.17 - Intel® Corporation) Hidden
Sonic Radar II (HKLM\...\{203BCA8D-BC00-4DD5-85DF-2F84DB803B57}) (Version: 2.1.701 - ASUSTeKcomputer.Inc)
Space Farmers (HKLM-x32\...\Steam App 271570) (Version:  - BumpkinBrothers)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
The Walking Dead 400 Days (HKLM-x32\...\VGhlV2Fsa2luZ0RlYWQ=_is1) (Version: 1 - )
The Walking Dead.Gold Edition (HKLM-x32\...\The Walking Dead.Gold Edition_is1) (Version: The Walking Dead.Gold Edition - Repack by Fenixx (30.05.2013))
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft)
Tom Clancy's Rainbow Six Vegas (HKLM-x32\...\Uplay Install 88) (Version:  - Ubisoft)
Tomb Raider Chronicles (HKLM-x32\...\Tomb Raider Chronicles) (Version:  - )
Tomb Raider: Anniversary (HKLM-x32\...\Steam App 8000) (Version:  - Crystal Dynamics)
Touchpad Server (HKLM-x32\...\Touchpad Server_is1) (Version: 1.3 - Things & Stuff)
Uplay (HKLM-x32\...\Uplay) (Version: 10.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Welcome App (Start-up experience) (HKLM-x32\...\{828175FA-7307-4DBF-95AD-9CEE086B6F45}) (Version: 12.0.14000 - Nero AG) Hidden
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Worms Ultimate Mayhem - Deluxe Edition (HKLM-x32\...\Worms Ultimate Mayhem - Deluxe Edition_is1) (Version:  - )
Zumas Revenge (HKLM-x32\...\{0B153CAB-792B-4CA2-B2A5-AB0BBAF2FFA9}) (Version: 1.0.5.600 - PopCap Games)
 
========================= Devices: ================================
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Device ID: ACPI\INT33A0\0
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 48%
Total physical RAM: 16327.08 MB
Available physical RAM: 8461.07 MB
Total Virtual: 32711.08 MB
Available Virtual: 23248.32 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:223.03 GB) (Free:32.95 GB) NTFS
2 Drive d: () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
3 Drive e: (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
4 Drive f: (Data) (Fixed) (Total:244.04 GB) (Free:22.44 GB) NTFS
5 Drive g: () (Fixed) (Total:687.37 GB) (Free:190.74 GB) NTFS
6 Drive h: (TRC_UK_VER2) (CDROM) (Total:0.55 GB) (Free:0 GB) CDFS
7 Drive i: (Rik's Passport) (Fixed) (Total:298.09 GB) (Free:43.36 GB) NTFS
8 Drive j: (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
9 Drive k: () (Fixed) (Total:931.41 GB) (Free:643.55 GB) NTFS
15 Drive q: (Extern) (Fixed) (Total:465.73 GB) (Free:50.08 GB) NTFS
16 Drive r: (RIK DMG) (Removable) (Total:7.49 GB) (Free:6.75 GB) FAT32
 
========================= Users: ========================================
 
Gebruikersaccounts voor \\CUSTOMTROOPER
 
Administrator            DefaultAccount           Gast                     
Rik Adriaansen           
De opdracht is voltooid.
 
========================= Restore Points ==================================
 
09-03-2016 20:32:22 Windows Update
14-03-2016 21:37:17 Removed Sweex Wireless Gamepad Vibration
15-03-2016 22:29:36 Restore Point Created by FRST
 
**** End of log ****


#12 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 17 March 2016 - 06:06 PM

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scandatum: 18-3-2016
Scantijd: 0:02
Logboekbestand: Malware log.txt
Beheerder: Ja
 
Versie: 2.2.0.1024
Malware-database: v2016.03.17.05
Rootkit-database: v2016.03.12.01
Licentie: Proef
Malware-bescherming: Ingeschakeld
Bescherming tegen kwaadaardige websites: Ingeschakeld
Zelfbescherming: Uitgeschakeld
 
Besturingssysteem: Windows 10
Processor: x64
Bestandssysteem: NTFS
Gebruiker: Rik Adriaansen
 
Scantype: Bedreigingsscan
Resultaat: Voltooid
Objecten gescand: 469857
Verstreken tijd: 5 min, 1 sec
 
Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Uitgeschakeld
Heuristiek: Ingeschakeld
POP: Ingeschakeld
POA: Ingeschakeld
 
Processen: 0
(Geen kwaadaardige items gedetecteerd)
 
Modules: 0
(Geen kwaadaardige items gedetecteerd)
 
Registersleutels: 0
(Geen kwaadaardige items gedetecteerd)
 
Registerwaarden: 0
(Geen kwaadaardige items gedetecteerd)
 
Registerdata: 0
(Geen kwaadaardige items gedetecteerd)
 
Mappen: 0
(Geen kwaadaardige items gedetecteerd)
 
Bestanden: 0
(Geen kwaadaardige items gedetecteerd)
 
Fysieke Sectoren: 0
(Geen kwaadaardige items gedetecteerd)
 
 
(end)

Sorry for the dutchness of the file :o



I will run the rest tomorrow. Got to get up early tomorrow, So I'm afraid I don't have time to do the rest.


Edited by Rikcey, 17 March 2016 - 06:14 PM.


#13 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:24 PM

Posted 17 March 2016 - 08:04 PM

OK.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#14 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 18 March 2016 - 01:50 AM

MBAM Solved it I guess. (upon restart I did not get prompted to grant access anymore)
Had to exclude one dll that I was sure was legit though. (false positive?)
But it found 8000+ infections all stating yessearches, (I thought I got rid of that before though, I allowed some friend of mine to use my pc, well, never agin :P)

Thanks a ton!



#15 Rikcey

Rikcey
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:08:24 AM

Posted 18 March 2016 - 01:52 AM

Rkill 2.8.3 by Lawrence Abrams (Grinler)
Copyright 2008-2016 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 03/18/2016 07:51:32 AM in x64 mode.
Windows Version: Windows 10 Pro 
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * C:\Windows\SysWOW64\ASGT.exe (PID: 2676) [WD-HEUR]
 
1 proccess terminated!
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * fcvsc [Missing Service]
 
 * gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * Cannot edit the HOSTS file.
 * Permissions Fixed. Administrators can now edit the HOSTS file.
 
 * HOSTS file entries found: 
 
  127.0.0.1 choice.microsoft.com
  127.0.0.1 choice.microsoft.com.nstac.net
  127.0.0.1 df.telemetry.microsoft.com
  127.0.0.1 oca.telemetry.microsoft.com
  127.0.0.1 oca.telemetry.microsoft.com.nsatc.net
  127.0.0.1 redir.metaservices.microsoft.com
  127.0.0.1 reports.wes.df.telemetry.microsoft.com
  127.0.0.1 services.wes.df.telemetry.microsoft.com
  127.0.0.1 settings-sandbox.data.microsoft.com
  127.0.0.1 settings-win.data.microsoft.com
  127.0.0.1 sqm.df.telemetry.microsoft.com
  127.0.0.1 sqm.telemetry.microsoft.com
  127.0.0.1 sqm.telemetry.microsoft.com.nsatc.net
  127.0.0.1 telecommand.telemetry.microsoft.com
  127.0.0.1 telecommand.telemetry.microsoft.com.nsatc.net
  127.0.0.1 telemetry.appex.bing.net
  127.0.0.1 telemetry.microsoft.com
  127.0.0.1 telemetry.urs.microsoft.com
  127.0.0.1 vortex-sandbox.data.microsoft.com
  127.0.0.1 vortex-win.data.microsoft.com
 
  20 out of 25 HOSTS entries shown.
  Please review HOSTS file for further entries.
 
Program finished at: 03/18/2016 07:51:50 AM
Execution time: 0 hours(s), 0 minute(s), and 17 seconds(s)





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users