Bepaalde knoppen in verschillende programma's functioneren niet meer

Status
Niet open voor verdere reacties.
J

Janosh1950

Gebruiker
Lid geworden
13 apr 2012
Berichten
46
Sinds enige tijd werken met name de "update " en "Help" knoppen in bepaalde programma's niet meer, o.a. bij Adobe Photoshop CC (inclusief pluginns), SSD Toolkit van Intel en Spectraview van NEC. Is daar een simpele verklaring en wat belangrijker is, een oplossing voor?

Groet,

Janosh
 
Download Farbar Service Scanner.

Dubbelkik FSS.exe om de tool te starten.
Vink
Internet Services
Windows Update
Other services aan
Klik op Scan & post het log
 
Hier is het log Dorado:

Code: 
Farbar Service Scanner Version: 05-12-2013
Ran by Jan en Yuul (administrator) on 05-01-2014 at 18:43:10
Running from "E:\Useful programms\Computer"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
 
Laatst bewerkt door een moderator:
Laten we eens in de logboeken kijken.
Download Logboek viewer by Vino Rosso & bewaar het op je bureaublad:

Dubbelklik VEW.exe

Onder 'Select log to query',
selecteer:
  • Application
  • System
Onder 'Select type to list',
selecteer:
  • Error
Selecteer de knop 'Number
of events'

Type 10 in the 1 tot 20 keuzeveld
Klik nu op Run

Kladblok zal openen met een logbestand.
 
Daar is tie dan..:
Code: 
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 05.01.2014 19:35:04

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 05.01.2014 3:19:46
Type: Error Category: 0
Event: 9 Source: SideBySide
Activation context generation failed for "C:\Program Files\WinZip\adxloader.dll.Manifest".Error in manifest or policy file "C:\Program Files\WinZip\adxloader.dll.Manifest" on line 2. The manifest file root element must be assembly.

Log: 'Application' Date/Time: 05.01.2014 2:01:55
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9768.  Message ID: [0x2509].

Log: 'Application' Date/Time: 05.01.2014 1:59:18
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 7640.  Message ID: [0x2509].

Log: 'Application' Date/Time: 05.01.2014 0:51:39
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9560.  Message ID: [0x2509].

Log: 'Application' Date/Time: 05.01.2014 0:30:39
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 4428.  Message ID: [0x2509].

Log: 'Application' Date/Time: 05.01.2014 0:26:57
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 10364.  Message ID: [0x2509].

Log: 'Application' Date/Time: 05.01.2014 0:15:23
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 1216.  Message ID: [0x2509].

Log: 'Application' Date/Time: 05.01.2014 0:11:37
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9840.  Message ID: [0x2509].

Log: 'Application' Date/Time: 04.01.2014 23:36:14
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 6520.  Message ID: [0x2509].

Log: 'Application' Date/Time: 04.01.2014 23:35:41
Type: Error Category: 0
Event: 1022 Source: .NET Runtime
.NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 8384.  Message ID: [0x2509].

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 05.01.2014 18:32:15
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID  {C97FCC79-E628-407D-AE68-A06AD6D8B4D1}  and APPID  {344ED43D-D086-4961-86A6-1106F4ACAD9B}  to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Log: 'System' Date/Time: 05.01.2014 18:31:16
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The PDIHWCTL service failed to start due to the following error:  The system cannot find the file specified.

Log: 'System' Date/Time: 05.01.2014 18:31:15
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The Hardlock service failed to start due to the following error:  Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Log: 'System' Date/Time: 05.01.2014 17:40:31
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID  {C97FCC79-E628-407D-AE68-A06AD6D8B4D1}  and APPID  {344ED43D-D086-4961-86A6-1106F4ACAD9B}  to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Log: 'System' Date/Time: 05.01.2014 17:39:35
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The PDIHWCTL service failed to start due to the following error:  The system cannot find the file specified.

Log: 'System' Date/Time: 05.01.2014 17:39:33
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The Hardlock service failed to start due to the following error:  Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Log: 'System' Date/Time: 04.01.2014 20:17:15
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID  {C97FCC79-E628-407D-AE68-A06AD6D8B4D1}  and APPID  {344ED43D-D086-4961-86A6-1106F4ACAD9B}  to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Log: 'System' Date/Time: 04.01.2014 20:16:10
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The PDIHWCTL service failed to start due to the following error:  The system cannot find the file specified.

Log: 'System' Date/Time: 04.01.2014 20:16:07
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The Hardlock service failed to start due to the following error:  Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Log: 'System' Date/Time: 04.01.2014 3:28:32
Type: Error Category: 0
Event: 36 Source: volsnap
The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
 
Laatst bewerkt door een moderator:
Download
527a67c827eda-FRST.jpg
Farbar Recovery Scan Tool naar je Bureaublad van de onderstaande link.
Farbar Recovery Scan Tool 32 bit of Farbar Recovery Scan Tool 64 bit (x64)


  • Dubbelklik op FRST.exe om de tool te starten.
  • Als het programma is geopend klik Yes (Ja) bij de disclaimer.
  • Vink bij Optional Scan ook List BCD, Drivers MD5 & Additional.txt aan
  • Druk op de Scan knop
  • Er worden twee logbestanden aangemaakt worden(FRST.txt)+ (Additional.txt)op dezelfde plaats vanwaar de 'tool' is gestart.
  • Voeg deze logbestanden toe in je volgende bericht..
 
Laatst bewerkt:
Even een vraagje tussendoor. Vinkjes bij Whitelist (6x) stonden standaard aan, was dat de bedoeling? Het is wel een erg grote log geworden.....
 
Ja, post gewoon alles...
 
"De ingevoerde tekst is te lang (110717). Verkort de tekst tot maximaal 100000 tekens."

Hoe?

Ah een voor een !!
 
Laatst bewerkt door een moderator:
Code: 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by Jan en Yuul (administrator) on FOTO on 06-01-2014 17:35:32
Running from E:\Useful programms\Computer
Windows 7 Professional Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
() C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
() C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Mail.Ru) C:\Users\Jan en Yuul\AppData\Roaming\Mail.Ru\Agent\magent.exe
(Sitecom Europe BV) C:\Program Files (x86)\Sitecom\Common\RaUI.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ABBYY (BIT Software)) C:\Program Files (x86)\ABBYY Lingvo 8.0\LvAgent.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Webshots.com) C:\Program Files (x86)\Webshots\3.1.5.7620\Webshots.scr
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Nikon Corporation) C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-09-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Lingvo Launcher] - C:\Program Files (x86)\ABBYY Lingvo 8.0\LvAgent.exe [102400 2002-12-10] (ABBYY (BIT Software))
HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [591696 2008-05-07] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\0846509f-b144-427f-b784-e79a5cc7635a.exe [180184 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376 2013-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Nikon Message Center 2] - C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [571392 2011-10-30] (Nikon Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-04-30] (Intel Corporation)
HKCU\...\Run: [MAgent] - C:\Users\Jan en Yuul\AppData\Roaming\Mail.Ru\Agent\magent.exe [31477280 2013-11-01] (Mail.Ru)
HKCU\...\Run: [Infium] - C:\Program Files (x86)\QIP 2012\qip.exe [7351760 2012-03-23] (QIP)
Startup: C:\Users\Jan en Yuul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SpectraView II Gamma Loader.lnk
ShortcutTarget: SpectraView II Gamma Loader.lnk -> C:\Program Files (x86)\NEC DISPLAY SOLUTIONS\SpectraView II\SpectraView.exe (NEC Display Solutions, Ltd.)
Startup: C:\Users\Jan en Yuul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Webshots.lnk
ShortcutTarget: Webshots.lnk -> C:\Program Files (x86)\Webshots\3.1.5.7620\Launcher.exe (Webshots.com)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url]http://www.mail.ru/cnt/9514[/url]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [url]http://nl.msn.com/?ocid=iehp[/url]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xA3B895882EBDCC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nl
URLSearchHook: HKCU - agihelper.AGUtils - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
SearchScopes: HKLM-x32 - DefaultScope {0BC6E3FA-78EF-4886-842C-5A1258C4455A} URL = http://search.imgag.com/?appid=wsdt&component=&c=GNWDO59900&sbs=2&sc=2&f=web&vernum=3.1.5.7620&uid=0&did=%7b90422056-c928-482a-8d6c-1929ae8bdb2b%7d&q={searchTerms}
SearchScopes: HKLM-x32 - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} URL = http://search.imgag.com/?appid=wsdt&component=&c=GNWDO59900&sbs=2&sc=2&f=web&vernum=3.1.5.7620&uid=0&did=%7b90422056-c928-482a-8d6c-1929ae8bdb2b%7d&q={searchTerms}
SearchScopes: HKCU - DefaultScope {0BC6E3FA-78EF-4886-842C-5A1258C4455A} URL = http://search.imgag.com/?appid=wsdt&component=&c=GNWDO59900&sbs=2&sc=2&f=web&vernum=3.1.5.7620&uid=0&did=%7b90422056-c928-482a-8d6c-1929ae8bdb2b%7d&q={searchTerms}
SearchScopes: HKCU - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} URL = http://search.imgag.com/?appid=wsdt&component=&c=GNWDO59900&sbs=2&sc=2&f=web&vernum=3.1.5.7620&uid=0&did=%7b90422056-c928-482a-8d6c-1929ae8bdb2b%7d&q={searchTerms}
SearchScopes: HKCU - {5C7A9F85-24AD-4A2D-B392-8EAE0D7B1472} URL = http://websearch.ask.com/redirect?client=ie&tb=ACDS&o=41648003&src=crm&q={searchTerms}&locale=ru_NL&apn_ptnrs=8O&apn_dtid=YYYYYYYYNL&apn_uid=95CAE7E9-8A1B-439A-8998-7B8A013B840A&apn_sauid=6D27E46A-1252-4E45-AA8D-A869D9642C88
SearchScopes: HKCU - {E88E0043-C9D4-4e33-8555-FEE4F5B63060} URL = http://go.mail.ru/search?q={searchTerms}&utf8in=1&fr=ietb
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: agihelper.AGUtils - {0bc6e3fa-78ef-4886-842c-5a1258c4455a} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - No Name - {09900DE8-1DCA-443F-9243-26FF581438AF} -  No File
DPF: HKLM-x32 {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} [url]http://support.dell.com/systemprofiler/DellSystemLite.CAB[/url]
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Winsock: Catalog9 11 C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll [346736] (VMware, Inc.)
Winsock: Catalog9 12 C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll [346736] (VMware, Inc.)
Winsock: Catalog9-x64 11 C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll [446576] (VMware, Inc.)
Winsock: Catalog9-x64 12 C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll [446576] (VMware, Inc.)
Hosts: 127.0.0.1	acdid.acdsystems.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default
FF user.js: detected! => C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\user.js
FF NewTab: yafd:tabs
FF DefaultSearchEngine: mail.ru: Поиск в Интернете
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: mail.ru: Поиск в Интернете
FF Homepage: hxxp://www.yandex.ru/?clid=14003
FF Keyword.URL: hxxp://go.mail.ru/search?utf8in=1&fr=fftbUFix&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: adobe.com/AdobeExManCCDetect32 - C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect32.dll (Adobe Systems)
FF Plugin HKCU: adobe.com/AdobeExManCCDetect64 - C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect64.dll (Adobe Systems)
FF SearchPlugin: C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\searchplugins\mailru---.xml
FF SearchPlugin: C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\searchplugins\ybqs-yandex.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\bolcom-nl.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\marktplaats-nl.xml
FF Extension: British English Dictionary - C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\Extensions\en-GB@dictionaries.addons.mozilla.org
FF Extension: Woordenboek Nederlands - C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\Extensions\nl-NL@dictionaries.addons.mozilla.org
FF Extension: Russian spellchecking dictionary - C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\Extensions\ru@dictionaries.addons.mozilla.org
FF Extension: Візуальныя закладкі - C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\Extensions\vb@yandex.ru
FF Extension: Кампанент "Элементы Яндекса" - C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\Extensions\yasearch@yandex.ru
FF Extension: Yahoo! Toolbar - C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
FF Extension: FxIF - C:\Users\Jan en Yuul\AppData\Roaming\Mozilla\Firefox\Profiles\pcg08kdz.default\Extensions\{11483926-db67-4190-91b1-ef20fcec5f33}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2409272 2013-12-10] (TuneUp Software)
S3 ufad-ws60; C:\Program Files (x86)\VMware\VMware Workstation\vmware-ufad.exe [191024 2010-08-19] (VMware, Inc.)
R2 WDFME; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1066896 2011-03-09] ()
R2 WDSC; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [491920 2011-03-09] ()

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
S3 CisUtMonitor; C:\Windows\System32\DRIVERS\CisUtMonitor.sys [33360 2011-10-30] (CrystalIdea Software)
S3 EyeOneDisplay; C:\Windows\System32\Drivers\i1display_x64.sys [7808 2007-03-28] (GretagMacbeth LLC)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RAMDiskVE; C:\Windows\System32\Drivers\RAMDiskVE.sys [63696 2010-11-21] ()
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-09-19] (TuneUp Software)
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 NDSPCIIO; \??\C:\Windows\system32\DRIVERS\NDSPCIIO64.SYS [x]
S2 PDIHWCTL; \??\C:\Windows\system32\drivers\pdihwctl.sys [x]

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 79059559E89D06E8B80CE2944BE20228
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\atikmdag.sys 7423BE4D8B0DC481186516900629942F
C:\Windows\System32\DRIVERS\atikmpag.sys 97CB83C6A16F41C82D2D99E336D75D3A
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Windows\System32\Drivers\aswFsBlk.sys A83C9C15680BB9E270ACF7172068E287
C:\Windows\system32\drivers\aswMonFlt.sys 5C40B8D77EBEE1DE0E7A8CDD0CD75773
C:\Windows\System32\Drivers\aswrdr2.sys 997F6977294B9ACB7F400431DF8E3A4A
C:\Windows\System32\Drivers\aswRvrt.sys 286193DC28CFB4CEB8D378E20A0850A9
C:\Windows\System32\Drivers\aswSnx.sys 58B93BA20D4693D0800D2B0A62B8059D
C:\Windows\System32\Drivers\aswSP.sys EC7148DB4D126C81426A67602822E62C
C:\Windows\System32\Drivers\aswTdi.sys 0E422E9CB7CD9C0AA6D4DFEAFA086EAA
C:\Windows\System32\Drivers\aswVmm.sys 9FE455C916C656144B004E3EB48507CE
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\athrx.sys A1B725ACD44984A7E181455BABC20168
C:\Windows\System32\drivers\AtihdW76.sys 313AE43445831D393FB6225E80083B0D
C:\Windows\system32\DRIVERS\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CisUtMonitor.sys 887A9970E711232E2C93F0FD343A1C9D
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706
C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ctxusbm.sys BA8E5B2291C01EF71CA80E25F0C79D55
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 88612F1CE3BF42256913BF6E61C70D52
C:\Windows\System32\DRIVERS\e1c62x64.sys EAFCB4551836FF44EE775CEDDFA7A77E
C:\Windows\system32\DRIVERS\evbda.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\i1display_x64.sys A33E0921D0C256E348E0F6D66C77B7F7
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092F
C:\Windows\system32\drivers\hardlock.sys 091582DA724F54830012E3FAAF2F1D1A
C:\Windows\system32\drivers\hcmon.sys BA207B48AA3D9D73FD4856400F852458
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\iaStor.sys 26CF4275034214ECEDD8EC17B0A18A99
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\jraid.sys A577F5DB30F70ECA9708C07C2EACBD9D
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 8F489706472F7E9A06BAAA198703FA64
C:\Windows\System32\Drivers\ksecpkg.sys 868A2CAAB12EFC7A021682BCA0EEC54C
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mbam.sys 0BB97D43299910CBFBA59C461B99B910
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HECIx64.sys A6518DCC42F7A6E999BB3BEA8FD87567
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 1A4F75E63C9FB84B85DFFC6B63FD5404
C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC
C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163
C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C
C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mv91xx.sys 34D08C9C64F657D194961E96C47E9C69
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nusb3hub.sys 158AD24745BD85BA9BE3C51C38F48C32
C:\Windows\System32\DRIVERS\nusb3xhc.sys D40A13B2C0891E218F9523B376955DB6
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\System32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RAMDiskVE.sys 3F53614E2ECAF0893EED2E70ADF55920
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B
C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28
C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legit
C:\Windows\system32\drivers\storvsc.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\DRIVERS\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09
C:\Windows\System32\drivers\tsusbflt.sys 17C6B51CBCCDED95B3CC14E22791F85E
C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys 7BC3381C0713F613B31ACDE38B71CB53
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\system32\drivers\usbaudio.sys B0435098C81D04CAFFF80DDB746CD3A2
C:\Windows\System32\DRIVERS\usbccgp.sys ACCEA6BC68D0C9A78EB97EE159028B4E
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 311C1DD1088E55BEAE15954D17F50646
C:\Windows\System32\DRIVERS\usbhub.sys 280E90CBF4B2DDD169F0728CB44D726F
C:\Windows\system32\drivers\usbohci.sys 9406D801042FAF859CF81B2C886413DC
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6
C:\Windows\system32\drivers\usbuhci.sys A83D0EC9AE4C31704442099D40BA2471
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legit
C:\Windows\system32\drivers\vmci.sys B49CB94DB99519F9DC7F77D2D1F215B5
C:\Windows\system32\drivers\VMkbd.sys 1AF6462718E5AB0ED55014A6EF3790EF
C:\Windows\System32\DRIVERS\vmnetadapter.sys 9D54F1339E78C95BF3D9939EBCB66378
C:\Windows\System32\DRIVERS\vmnetbridge.sys FB54EF3AA613D2832FD3812E7CB2FC75
C:\Windows\system32\drivers\vmnetuserif.sys 163B05050FCD9635242EC5206C19A182
C:\Windows\System32\Drivers\vmusb.sys 415B167695C4B5960A13098622EF3D80
C:\Windows\system32\drivers\vmx86.sys F2A8EE62D7161E1598CDD269BF22A03D
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vpchbus.sys B4A73CA4EF9A02B9738CEA9AD5FE5917
C:\Windows\System32\DRIVERS\vpcnfltr.sys E675FB2B48C54F09895482E2253B289C
C:\Windows\System32\DRIVERS\vpcusb.sys 5FB42082B0D19A0268705F1DD343DF20
C:\Windows\System32\drivers\vpcvmm.sys 207B6539799CC1C112661A9B620DD233
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Program Files (x86)\VMware\VMware Workstation\vstor2-ws60.sys E61C910E2DDF4797C1B1F9239636E894
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifimp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wdcsam64.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWow64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\winusb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WSDPrint.sys 8D918B1DB190A4D9B1753A66FA8C96E8
C:\Windows\system32\drivers\WSDScan.sys 4A2A5C50DD1A63577D3ACA94269FBC7F
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-06 17:34 - 2014-01-06 17:34 - 00000000 ____D C:\FRST
2014-01-03 22:55 - 2014-01-03 22:56 - 182515480 _____ (Phase One A/S                                               ) C:\Users\Jan en Yuul\Downloads\CaptureOne.Win.7.1.6.exe
2013-12-31 00:02 - 2013-12-31 00:02 - 00000981 _____ C:\Users\Jan en Yuul\Desktop\RawDigger Manual.lnk
2013-12-31 00:02 - 2013-12-31 00:02 - 00000946 _____ C:\Users\Public\Desktop\RawDigger.lnk
2013-12-25 17:36 - 2013-12-25 17:36 - 00000000 _____ C:\Windows\EEventManager.INI
2013-12-25 16:55 - 2013-12-25 16:55 - 02394657 _____ C:\Users\Jan en Yuul\Desktop\FixDotNet20131225155503032.cab
2013-12-23 19:23 - 2013-12-23 19:23 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Roaming\Intel Corporation
2013-12-23 19:21 - 2011-04-26 11:07 - 00557848 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys
2013-12-21 02:02 - 2013-12-21 02:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-18 18:20 - 2013-12-18 18:20 - 00000000 _____ C:\ProgramData\Authentication
2013-12-15 22:57 - 2013-12-15 22:57 - 00002062 _____ C:\Users\Public\Desktop\Lightroom 5.3 64-bit.lnk
2013-12-15 22:18 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-15 22:18 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-15 22:18 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-15 22:18 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-15 22:18 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-15 22:18 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-15 22:18 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-15 22:18 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-15 22:18 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-15 22:18 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-15 22:18 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-15 22:18 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-15 22:18 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-15 22:18 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-15 22:18 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-15 22:18 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-15 22:18 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-15 22:18 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-15 22:18 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-15 22:18 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-15 22:18 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-15 22:18 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-15 22:18 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-15 22:18 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-15 22:18 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-15 22:18 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-15 22:18 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-15 22:18 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-15 22:18 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-15 22:18 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-15 22:18 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-15 22:18 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-15 22:18 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-15 22:18 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-15 22:18 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-15 22:17 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-15 22:17 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-15 22:17 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-15 22:17 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-15 22:17 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-15 22:17 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-15 22:17 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-15 22:17 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-15 22:17 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-15 22:17 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-15 22:17 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-15 22:17 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-15 22:17 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-15 22:17 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-15 22:17 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-15 22:17 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-15 22:17 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-15 22:17 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-15 22:17 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-14 23:40 - 2013-12-14 23:40 - 00001790 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Local\Apple Computer
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\Program Files\iTunes
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\Program Files\iPod
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-12-14 23:40 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2013-12-14 23:39 - 2013-12-14 23:40 - 00000000 ____D C:\ProgramData\Apple Computer
2013-12-14 23:39 - 2013-12-14 23:39 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-12-13 02:40 - 2013-12-13 02:40 - 00000000 ____D C:\Program Files\PhotomatixPro5
2013-12-08 03:58 - 2013-12-08 03:58 - 00000000 ____D C:\Program Files\Google
2013-12-08 03:40 - 2013-12-08 03:40 - 00535008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-12-08 02:38 - 2013-12-08 02:38 - 00002026 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-08 02:04 - 2013-12-08 02:04 - 00000000 ____D C:\ProgramData\RIBS
2013-12-08 01:55 - 2013-12-08 01:55 - 00003506 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Foto-Jan en Yuul
2013-12-08 01:41 - 2013-12-21 23:54 - 00001308 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk

==================== One Month Modified Files and Folders =======

2014-01-06 17:34 - 2014-01-06 17:34 - 00000000 ____D C:\FRST
2014-01-06 17:30 - 2012-04-07 12:15 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-06 17:19 - 2009-07-14 05:45 - 00016400 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-06 17:19 - 2009-07-14 05:45 - 00016400 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-06 17:16 - 2009-07-14 06:13 - 00786766 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-06 17:15 - 2011-12-18 01:47 - 01908762 _____ C:\Windows\WindowsUpdate.log
2014-01-06 17:13 - 2012-04-07 12:15 - 00001062 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-06 17:13 - 2011-12-18 13:47 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Local\Adobe
2014-01-06 17:12 - 2012-01-14 02:09 - 00000000 ____D C:\ProgramData\VMware
2014-01-06 17:11 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-06 17:11 - 2009-07-14 05:51 - 00120642 _____ C:\Windows\setupact.log
2014-01-06 04:45 - 2012-04-03 09:53 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-06 03:49 - 2012-10-07 02:05 - 00001456 _____ C:\Users\Jan en Yuul\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-01-06 02:24 - 2011-12-18 18:30 - 00000020 ____H C:\ProgramData\PKP_DLet.DAT
2014-01-06 01:39 - 2012-01-13 01:39 - 00000404 _____ C:\Windows\Tasks\FinalTorrent Update Checker.job
2014-01-05 19:32 - 2011-12-18 01:48 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Local\VirtualStore
2014-01-05 19:31 - 2011-12-18 01:57 - 00109296 _____ C:\Users\Jan en Yuul\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-05 19:31 - 2009-07-14 05:45 - 05106760 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-04 04:39 - 2011-12-19 23:01 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Local\CaptureOne
2014-01-04 02:08 - 2013-10-31 01:18 - 00000304 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2014-01-03 22:58 - 2013-04-22 03:53 - 00001002 _____ C:\Users\Jan en Yuul\Desktop\Capture One 7.lnk
2014-01-03 22:58 - 2011-12-19 22:54 - 00066076 _____ C:\Windows\DPINST.LOG
2014-01-03 22:56 - 2014-01-03 22:55 - 182515480 _____ (Phase One A/S                                               ) C:\Users\Jan en Yuul\Downloads\CaptureOne.Win.7.1.6.exe
2013-12-31 00:02 - 2013-12-31 00:02 - 00000981 _____ C:\Users\Jan en Yuul\Desktop\RawDigger Manual.lnk
2013-12-31 00:02 - 2013-12-31 00:02 - 00000946 _____ C:\Users\Public\Desktop\RawDigger.lnk
2013-12-29 23:47 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-12-28 13:33 - 2011-12-18 16:03 - 00000072 _____ C:\Users\Public\LMDebug.log
2013-12-28 03:44 - 2011-12-18 16:51 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-12-27 02:24 - 2011-12-18 13:15 - 00790996 _____ C:\Windows\PFRO.log
2013-12-25 18:27 - 2011-12-18 18:04 - 00000020 ____H C:\ProgramData\PKP_DLbw.DAT
2013-12-25 18:27 - 2011-12-18 18:03 - 00000020 ____H C:\ProgramData\PKP_DLbz.DAT
2013-12-25 18:27 - 2011-12-18 18:00 - 00000020 ____H C:\ProgramData\PKP_DLbx.DAT
2013-12-25 17:36 - 2013-12-25 17:36 - 00000000 _____ C:\Windows\EEventManager.INI
2013-12-25 16:55 - 2013-12-25 16:55 - 02394657 _____ C:\Users\Jan en Yuul\Desktop\FixDotNet20131225155503032.cab
2013-12-25 16:28 - 2013-03-03 21:32 - 00000000 ___RD C:\Users\Jan en Yuul\YandexDisk
2013-12-25 16:18 - 2012-07-15 12:13 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-23 19:23 - 2013-12-23 19:23 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Roaming\Intel Corporation
2013-12-23 19:22 - 2011-12-18 03:49 - 00000000 ____D C:\Program Files (x86)\Intel
2013-12-22 23:14 - 2012-04-27 14:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-22 02:12 - 2011-12-18 12:45 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Roaming\Adobe
2013-12-21 23:54 - 2013-12-08 01:41 - 00001308 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2013-12-21 02:02 - 2013-12-21 02:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-20 23:30 - 2012-05-16 00:02 - 00000000 ___RD C:\Users\Jan en Yuul\Desktop\PC programms
2013-12-20 18:58 - 2013-12-01 01:11 - 00001956 _____ C:\Users\Public\Desktop\DxO Optics Pro 9.lnk
2013-12-20 18:58 - 2012-09-09 22:48 - 00000000 ____D C:\Program Files\DxO Labs
2013-12-20 18:58 - 2012-06-17 15:42 - 00000000 ____D C:\ProgramData\DxO Labs
2013-12-19 03:43 - 2011-12-18 18:23 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Local\Downloaded Installations
2013-12-18 19:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-18 18:47 - 2011-12-20 00:29 - 00000000 ____D C:\Windows\Downloaded Installations
2013-12-18 18:46 - 2011-12-20 00:30 - 00000000 ____D C:\Program Files\ISL
2013-12-18 18:46 - 2011-12-18 03:43 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-18 18:21 - 2012-02-15 20:23 - 00002056 _____ C:\Users\Public\Desktop\ViewNX 2.lnk
2013-12-18 18:20 - 2013-12-18 18:20 - 00000000 _____ C:\ProgramData\Authentication
2013-12-18 18:20 - 2013-07-13 23:02 - 00000268 ___RH C:\Users\Jan en Yuul\AppData\Roaming\Clips
2013-12-18 18:20 - 2013-07-13 23:02 - 00000020 ____H C:\ProgramData\PKP_DLeo.DAT
2013-12-18 18:20 - 2013-07-13 23:02 - 00000012 ___RH C:\ProgramData\DirectoryService
2013-12-18 18:20 - 2012-02-15 20:23 - 00000268 ___RH C:\ProgramData\Colors
2013-12-18 18:18 - 2011-12-20 14:25 - 00000999 _____ C:\Users\Public\Desktop\Capture NX 2.lnk
2013-12-18 02:09 - 2013-10-31 01:18 - 00000288 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-12-17 23:51 - 2012-11-18 01:36 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2013-12-15 22:57 - 2013-12-15 22:57 - 00002062 _____ C:\Users\Public\Desktop\Lightroom 5.3 64-bit.lnk
2013-12-15 22:57 - 2011-12-18 16:51 - 00000000 ____D C:\Program Files\Adobe
2013-12-15 22:28 - 2012-02-17 13:11 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Roaming\Apple Computer
2013-12-15 22:26 - 2013-10-12 22:19 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-12-15 22:20 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-15 22:18 - 2011-12-18 23:59 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-14 23:40 - 2013-12-14 23:40 - 00001790 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Local\Apple Computer
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\Program Files\iTunes
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\Program Files\iPod
2013-12-14 23:40 - 2013-12-14 23:40 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-12-14 23:40 - 2013-12-14 23:39 - 00000000 ____D C:\ProgramData\Apple Computer
2013-12-14 23:39 - 2013-12-14 23:39 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-12-14 23:39 - 2011-12-19 22:54 - 00000000 ____D C:\ProgramData\Apple
2013-12-14 02:08 - 2013-10-31 01:17 - 00001099 _____ C:\Users\Public\Desktop\Dll-Files Fixer.lnk
2013-12-14 02:08 - 2013-10-31 01:17 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-12-13 02:40 - 2013-12-13 02:40 - 00000000 ____D C:\Program Files\PhotomatixPro5
2013-12-11 20:45 - 2012-04-03 09:53 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 20:45 - 2012-04-03 09:53 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 20:45 - 2011-12-18 12:45 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 19:43 - 2011-12-18 23:53 - 00003694 _____ C:\Windows\System32\Tasks\Adobe online update program
2013-12-10 18:56 - 2012-12-30 23:36 - 00038200 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2013-12-10 18:56 - 2012-12-30 23:36 - 00030520 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2013-12-10 18:56 - 2012-11-18 01:36 - 00035640 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-12-10 18:56 - 2012-11-18 01:36 - 00026936 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-12-10 18:56 - 2012-11-18 01:36 - 00022328 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2013-12-08 03:59 - 2013-12-06 23:27 - 00000000 ____D C:\ProgramData\Google
2013-12-08 03:59 - 2011-12-18 16:42 - 00000000 ____D C:\Users\Jan en Yuul\AppData\Local\Google
2013-12-08 03:58 - 2013-12-08 03:58 - 00000000 ____D C:\Program Files\Google
2013-12-08 03:50 - 2011-12-18 14:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-08 03:40 - 2013-12-08 03:40 - 00535008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-12-08 03:19 - 2012-04-07 12:15 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-08 02:38 - 2013-12-08 02:38 - 00002026 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-08 02:37 - 2013-10-30 20:33 - 00000000 ____D C:\ProgramData\Adobe
2013-12-08 02:04 - 2013-12-08 02:04 - 00000000 ____D C:\ProgramData\RIBS
2013-12-08 01:57 - 2013-10-31 11:23 - 00001727 _____ C:\Users\Jan en Yuul\Desktop\Photoshop - Shortcut.lnk
2013-12-08 01:55 - 2013-12-08 01:55 - 00003506 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Foto-Jan en Yuul
2013-12-08 01:51 - 2011-12-18 16:50 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-07 03:03 - 2013-11-02 04:44 - 00000000 ____D C:\ProgramData\Package Cache
2013-12-07 00:14 - 2013-10-31 00:36 - 00015576 _____ C:\Users\Jan en Yuul\Documents\DxO Logging Name.log

Files to move or delete:
====================
C:\ProgramData\PKP_DLbw.DAT
C:\ProgramData\PKP_DLbx.DAT
C:\ProgramData\PKP_DLbz.DAT
C:\ProgramData\PKP_DLeo.DAT
C:\ProgramData\PKP_DLes.DAT
C:\ProgramData\PKP_DLet.DAT
C:\ProgramData\PKP_DLev.DAT


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== BCD ================================

Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=K:
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {3c2c6fdc-275d-11e1-bb15-5404a66b9eac}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Windows Boot Loader
-------------------
identifier              {3c2c6fd6-275d-11e1-bb15-5404a66b9eac}
device                  ramdisk=[K:]\Recovery\WindowsRE\Winre.wim,{3c2c6fd7-275d-11e1-bb15-5404a66b9eac}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[K:]\Recovery\WindowsRE\Winre.wim,{3c2c6fd7-275d-11e1-bb15-5404a66b9eac}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {3c2c6fda-275d-11e1-bb15-5404a66b9eac}
device                  ramdisk=[C:]\Recovery\3c2c6fda-275d-11e1-bb15-5404a66b9eac\Winre.wim,{3c2c6fdb-275d-11e1-bb15-5404a66b9eac}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\3c2c6fda-275d-11e1-bb15-5404a66b9eac\Winre.wim,{3c2c6fdb-275d-11e1-bb15-5404a66b9eac}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {3c2c6fde-275d-11e1-bb15-5404a66b9eac}
recoveryenabled         Yes
osdevice                partition=C:
systemroot              \Windows
resumeobject            {3c2c6fdc-275d-11e1-bb15-5404a66b9eac}
nx                      OptIn

Windows Boot Loader
-------------------
identifier              {3c2c6fde-275d-11e1-bb15-5404a66b9eac}
device                  ramdisk=[C:]\Recovery\3c2c6fde-275d-11e1-bb15-5404a66b9eac\Winre.wim,{3c2c6fdf-275d-11e1-bb15-5404a66b9eac}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\3c2c6fde-275d-11e1-bb15-5404a66b9eac\Winre.wim,{3c2c6fdf-275d-11e1-bb15-5404a66b9eac}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Resume from Hibernate
---------------------
identifier              {3c2c6fdc-275d-11e1-bb15-5404a66b9eac}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
debugoptionenabled      No

Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=K:
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes

EMS Settings
------------
identifier              {emssettings}
bootems                 Yes

Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

RAM Defects
-----------
identifier              {badmemory}

Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}

Device options
--------------
identifier              {3c2c6fd7-275d-11e1-bb15-5404a66b9eac}
description             Ramdisk Options
ramdisksdidevice        partition=K:
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

Device options
--------------
identifier              {3c2c6fdb-275d-11e1-bb15-5404a66b9eac}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\3c2c6fda-275d-11e1-bb15-5404a66b9eac\boot.sdi

Device options
--------------
identifier              {3c2c6fdf-275d-11e1-bb15-5404a66b9eac}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\3c2c6fde-275d-11e1-bb15-5404a66b9eac\boot.sdi



LastRegBack: 2014-01-02 23:45

==================== End Of Log ============================
 
Laatst bewerkt door een moderator:
Code: 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2014
Ran by Jan en Yuul at 2014-01-06 17:35:58
Running from E:\Useful programms\Computer
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
ABBYY Lingvo 8.0 Multilingual Edition (x32 Version: 8.00.275.2685 - ABBYY Software House)
ACDSee Pro 4 (x32 Version: 4.0.237 - ACD Systems International Inc.)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated) Hidden
Adobe Community Help (x32 Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.5.23 - Adobe Systems Incorporated.) Hidden
Adobe Creative Cloud (x32 Version: 2.3.0.322 - Adobe Systems Incorporated)
Adobe ExtendScript Toolkit CC (x32 Version: 4.0.0.0 - Adobe Systems Incorporated)
Adobe Extension Manager CC (x32 Version: 7.1.1 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Photoshop CC (x32 Version: 14.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.3 64-bit (Version: 5.3.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) (x32 Version: 11.0.05 - Adobe Systems Incorporated)
Advanced Uninstaller PRO - Version 10 (x32 Version: 10 - Innovative Solutions)
AMD APP SDK Runtime (Version: 2.5.709.2 - Advanced Micro Devices Inc.) Hidden
AMD AVIVO64 Codecs (Version: 11.6.0.10906 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (Version: 3.0.838.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
ASUS PC Diagnostics (x32 Version: 1.1.2 - ASUSTeK Computer Inc.)
avast! Free Antivirus (x32 Version: 8.0.1497.0 - AVAST Software)
B/W Styler 1.06 (Plugin) (Version:  - The Plugin Site)
basICColor display 5.0.3 (Version:  - basICColor GmbH)
BatchInpaint 1.1 (x32 Version:  - teorex)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Capture NX 2 (Version: 2.4.5 - NIKON CORPORATION)
Capture One 6.4 (Version: 6.4.56957.132 - Phase One A/S)
Capture One 7.1 (Version: 7.1.6.31 - Phase One A/S)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2011.0906.1656.28523 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0906.1656.28523 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0906.1656.28523 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0906.1656.28523 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Desktop (x32 Version: 2011.0906.1656.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2011.0906.1655.28523 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2011.0906.1656.28523 - Advanced Micro Devices, Inc.) Hidden
Citrix online plug-in - web (x32 Version: 12.1.44.1 - Citrix Systems, Inc.)
Citrix online plug-in (DV) (x32 Version: 12.1.44.1 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (HDX) (x32 Version: 12.1.44.1 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (USB) (x32 Version: 12.1.44.1 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (Web) (x32 Version: 12.1.44.1 - Citrix Systems, Inc.) Hidden
Color Efex Pro 3.0 Complete for Capture NX 2 (x32 Version: 3.0.0 - Nik Software, Inc.)
ColorStyler 1.0 (Plugin) (Version:  - The Plugin Site)
ColorStyler 1.02 (Plugin) (Version:  - The Plugin Site)
ColorWasher 2.06 (Plugin) (Version:  - The Plugin Site)
ContrastMaster 1.06 (Plugin) (Version:  - The Plugin Site)
Curvemeister 3 support files (Version: 3.4.1 - Curvemeister.com)
Curvemeister3-64 (Version: 3.4.1 - Curvemeister.com)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32 Version:  - Microsoft)
Dll-Files Fixer (x32 Version: 3.1.81 - Dll-Files.com)
DNG ProfileManager 1.0 (x32 Version:  - X-Rite)
Driver Genius Professional Edition (x32 Version: 11.0 - Driver-Soft Inc.)
DxO FilmPack 3 (Version: 3.4.94.0 - DxO Labs)
DxO Optics Pro 7 (Version: 7.5.4 - DxO Labs)
DxO Optics Pro 8 (Version: 8.3.1 - DxO Labs)
DxO Optics Pro 9 (Version: 9.1.1 - DxO Labs)
Epson Event Manager (x32 Version: 2.01.00 - SEIKO EPSON Corporation)
EPSON PX700W Series Printer Uninstall (Version:  - SEIKO EPSON Corporation)
EPSON Scan (x32 Version:  - )
EpsonNet Print (x32 Version: 2.4j - SEIKO EPSON CORPORATION)
Eye-One Match 3.6.2 (x32 Version: 3.6.2 - GretagMacbeth)
EyeOneDriverInstaller (x32 Version:  - )
File Type Assistant (x32 Version:  - Trusted Software) <==== ATTENTION
FinalTorrent 2011 (x32 Version:  - Bitberry Software)
FocalBlade 2.02 (Plugin) (Version:  - The Plugin Site)
Google Drive (x32 Version: 1.13.5782.599 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
HASP4 Device Drivers (x32 Version:  - )
HydraVision (x32 Version: 4.2.210.0 - Advanced Micro Devices, Inc.) Hidden
i1_driver_installer_utility version 1.0 (x32 Version:  - X-Rite)
i1_driver_installer_utility_i1Match version 1.0 (x32 Version:  - X-Rite)
i1_driver_installer_wizard version 1.0 (x32 Version:  - X-Rite)
ICC Profile Inspector 2.4.0 (x32 Version:  - Huanzhao Zeng)
Imagenomic Noiseware 5.0 Plug-in (build 5007) (Version:  - )
Imagenomic Portraiture 2.3 Plug-in (build 2308) (Version:  - )
Inpaint 4.4 (x32 Version:  - Teorex)
Intel(R) Control Center (x32 Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Network Connections 16.5.2.0 (Version: 16.5.2.0 - Intel)
Intel(R) Network Connections 16.5.2.0 (Version: 16.5.2.0 - Intel) Hidden
Intel(R) Rapid Storage Technology (x32 Version: 10.5.0.1026 - Intel Corporation)
Intel(R) Update Manager (x32 Version: 1.6.3.70 - Intel Corporation) Hidden
Intel® SSD Toolbox (x32 Version: 3.1.9.400 - Intel Corporation)
IrfanView (remove only) (x32 Version: 4.32 - Irfan Skiljan)
iTunes (Version: 11.1.3.8 - Apple Inc.)
JMicron JMB36X Driver (x32 Version: 1.17.58.2 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LightMachine 1.06 (Plugin) (Version:  - The Plugin Site)
Lightroom 5.2 (x32 Version: 5.2 - Adobe Systems Incorporated)
Mail.Ru Agent 6.2 (build 7314) (HKCU Version: 6.2.7314.0 - Mail.Ru) <==== ATTENTION
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
marvell 91xx driver (x32 Version: 1.0.0.1045 - Marvell)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Dutch) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (x32 Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 26.0 (x86 nl) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
NEC DISPLAY SOLUTIONS: Desktop Monitor Installer (x32 Version: 0.11.12.21 - NEC Display Solutions, Ltd.)
NEC MultiProfiler 1.0.05.02 (x32 Version: 1.0.05.02 - NEC Display Solutions)
NEC SpectraView II 1.1.16.00 (x32 Version: 1.1.16.00 - NEC Display Solutions of America, Inc.)
Nik Collection (x32 Version: 1.1.0.9 - Google)
Nikon Message Center (x32 Version: 0.92.000 - Nikon)
Nikon Message Center 2 (x32 Version: 2.1.0 - Nikon)
Nikon Movie Editor (x32 Version: 2.8.3 - Nikon)
NoiseControl 1.01 (Plugin) (Version:  - The Plugin Site)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Perfectly Clear Plugin 1.7.1 (x32 Version: 1.7.1 - Athentech)
PhotoFreebies 1.01 (x32 Version:  - The Plugin Site)
Photomatix Pro version 4.1 (Version: 4.1 - HDRsoft Sarl)
Photomatix Pro version 5.0 (Version: 5.0 - HDRsoft Ltd)
Picture Control Utility (x32 Version: 1.4.1 - Nikon)
Picture Control Utility x64 (Version: 1.4.16 - Nikon)
ProfileMaker Professional 5.0.8 (x32 Version: 5.0.8 - GretagMacbeth)
PTGui Pro 9.0 (x32 Version:  - New House Internet Services B.V.)
PTLens (Version: 3.0.448 - ePaperPress)
QIP 2012 4.0.7221 (HKCU Version: 4.0.7221 - )
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
RAMDisk (x32 Version: 3.5.130 - Dataram, Inc.)
Raw Therapee V4.0.9.50 x64 (Version: 4.0.950 - Raw Therapee Team)
RawDigger 0.9.10 (x32 Version: 0.9.10 - LibRaw,LLC)
RawDigger x64 0.9.11 (x32 Version: 0.9.11 - LibRaw,LLC)
RawDigger x64 0.9.13 (Version: 0.9.13 - LibRaw,LLC)
RawDigger x64 1.0.2.279 (Version: 1.0.2.279 - LibRaw,LLC)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
Service Installer II (x32 Version: 1.2 - Nalpeiron) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SILKYPIX Developer Studio Pro 5 English(EU) (Version: 5 - Ichikawa Soft Laboratory) Hidden
SILKYPIX Developer Studio Pro 5 English(EU) (x32 Version:  - )
SkyMonk Client (x32 Version: 1.63 - Letitbit)
Skype™ 6.7 (x32 Version: 6.7.102 - Skype Technologies S.A.)
STDUViewer version 1.0.84 (x32 Version: 1.0.84 - STDUtility)
STOIK Smart Resizer 3 (x32 Version: 3.0.0 - STOIK Technology)
TomTom HOME 2.8.3.2499 (x32 Version: 2.8.3.2499 - TomTom)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
tools-freebsd (x32 Version: 8.4.5.14951 - VMware, Inc.) Hidden
tools-linux (x32 Version: 8.4.5.14951 - VMware, Inc.) Hidden
tools-netware (x32 Version: 8.4.5.14951 - VMware, Inc.) Hidden
tools-solaris (x32 Version: 8.4.5.14951 - VMware, Inc.) Hidden
tools-windows (x32 Version: 8.4.5.14951 - VMware, Inc.) Hidden
tools-winPre2k (x32 Version: 8.4.5.14951 - VMware, Inc.) Hidden
Topaz Adjust 4 (64-bit) (Version: 4.1.0 - Topaz Labs) Hidden
Topaz Adjust 4 (x32 Version: 4.1.0 - Topaz Labs) Hidden
Topaz Adjust 5 (x32 Version: 5.0.1 - Topaz Labs, LLC)
Topaz B&W Effects (x32 Version: 2.1.0 - Topaz Labs, LLC)
Topaz Clarity (x32 Version: 1.0.0 - Topaz Labs, LLC)
Topaz Clean 3 (x32 Version: 3.0.2 - Topaz Labs, LLC)
Topaz DeJpeg 4 (64-bit) (Version: 4.0.2 - Topaz Labs) Hidden
Topaz DeJpeg 4 (x32 Version: 4.0.2 - Topaz Labs) Hidden
Topaz DeJpeg 4 (x32 Version: 4.0.2 - Topaz Labs, LLC)
Topaz DeNoise 5 (64-bit) (Version: 5.0.1 - Topaz Labs) Hidden
Topaz DeNoise 5 (x32 Version: 5.0.1 - Topaz Labs) Hidden
Topaz DeNoise 5 (x32 Version: 5.0.1 - Topaz Labs, LLC)
Topaz Detail 3 (x32 Version: 3.1.0 - Topaz Labs, LLC)
Topaz Fusion Express 2 (x32 Version: 2.1.3 - Topaz Labs, LLC)
Topaz InFocus (x32 Version: 1.0.0 - Topaz Labs, LLC)
Topaz Lens Effects (x32 Version: 1.2.0 - Topaz Labs, LLC)
Topaz ReMask 3 (64-bit) (Version: 3.2.0 - Topaz Labs) Hidden
Topaz ReMask 3 (x32 Version: 3.2.0 - Topaz Labs) Hidden
Topaz ReMask 3 (x32 Version: 3.2.1 - Topaz Labs, LLC)
Topaz ReStyle (x32 Version: 1.0.0 - Topaz Labs, LLC)
Topaz Simplify 4 (x32 Version: 4.0.0 - Topaz Labs, LLC)
Topaz Star Effects (x32 Version: 1.1.0 - Topaz Labs, LLC)
TuneUp Utilities 2013 (x32 Version: 13.0.4000.180 - TuneUp Software)
TuneUp Utilities 2013 (x32 Version: 13.0.4000.180 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-GB) (x32 Version: 12.0.2160.12 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-GB) (x32 Version: 13.0.4000.180 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-US) (x32 Version: 10.0.4500.46 - TuneUp Software) Hidden
Uninstall Tool (Version: 3.3 - CrystalIDEA Software, Inc.)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (x32 Version:  - Microsoft)
ViewNX 2 (Version: 2.8.3 - Nikon)
VMware Player (x32 Version: 4.0.1.27038 - VMware, Inc)
VMware Workstation (x32 Version: 7.1.3.14951 - VMware, Inc)
VMware Workstation (x32 Version: 7.1.3.14951 - VMware, Inc.) Hidden
WD SmartWare (Version: 1.4.5.5 - Western Digital)
Webshots (x32 Version: 3.1.5.7620 - AG Interactive)
Webshots Daily Features (x32 Version: 1.0 - AG Interactive, Inc.)
Webshots Daily Features (x32 Version: 1.0 - AG Interactive, Inc.) Hidden
Windows Driver Package - Leaf Imaging Ltd. Image  (02/11/2010 ) (Version: 02/11/2010  - Leaf Imaging Ltd.)
Windows Driver Package - Phase One / Mamiya V-Grip USB Driver (09/28/2010 1.1.0.1) (Version: 09/28/2010 1.1.0.1 - Phase One / Mamiya)
Windows Driver Package - Phase One A/S (WinUSB) USBDevice  (05/30/2013 1.12.0.68182) (Version: 05/30/2013 1.12.0.68182 - Phase One A/S)
Windows Driver Package - Phase One A/S (WinUSB) USBDevice  (11/13/2012 1.11.0.63801) (Version: 11/13/2012 1.11.0.63801 - Phase One A/S)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Mobile Device Updater Component (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
WinRAR 5.00 (64-bit) (Version: 5.00.0 - win.rar GmbH)
WinZip 17.0 (Version: 17.0.10283 - WinZip Computing, S.L. )
Wireless Network 300N Adapter (x32 Version: 1.00.0000 - Sitecom)
Zune (Version: 04.08.2345.00 - Microsoft Corporation)
Zune (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CHS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CHT) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CSY) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (DAN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (DEU) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ELL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ESP) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (FIN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (FRA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (HUN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (IND) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ITA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (JPN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (KOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (MSL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (NLD) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (NOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PLK) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PTB) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PTG) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (RUS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (SVE) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

==================== Restore Points  =========================


==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-10-31 12:22 - 00000856 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	acdid.acdsystems.com

==================== Scheduled Tasks (whitelisted) =============

Task: {0F212672-E237-4634-8B0D-7B445E33240E} - System32\Tasks\FinalTorrent Update Checker => C:\Program Files (x86)\FinalTorrent\FTCheckForUpdates.exe [2011-03-11] (Bitberry Software)
Task: {234917BC-7436-4814-809F-38ED8D3BE376} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-04-07] (Google Inc.)
Task: {289E7695-5D09-4C66-A9D1-D04C3EF87395} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2013-12-10] (TuneUp Software)
Task: {3E71E4C9-798A-4B2A-87B9-2841C939CFA9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-04-07] (Google Inc.)
Task: {58450249-02C9-4BAC-8BE9-75D401177E04} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software)
Task: {77548AF6-EA48-4708-A0D6-8F4A85F0C37C} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [2013-07-18] (Intel Corporation)
Task: {77F5E2FF-E6C8-4BB0-98D3-84C3C58B3ACC} - System32\Tasks\AdobeAAMUpdater-1.0-Foto-Jan en Yuul => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {803AB913-2C2E-40B3-AEEC-666C8935C510} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C0C582EB-1A30-4126-9D6A-B6F51A57D2CF} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [2013-07-18] (Intel Corporation)
Task: {C231B634-9CAD-40E7-B9EC-2FA066870FD8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {C2AF2571-9055-47EA-9467-2814603CF577} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-09-05] (Adobe Systems Incorporated)
Task: {D84F0C80-32BD-4FED-B0D7-1BF32C03BC59} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com
Task: {E92BA354-0F10-4511-8335-3139DF758EEE} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\Windows\Tasks\FinalTorrent Update Checker.job => C:\Program Files (x86)\FinalTorrent\FTCheckForUpdates.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-13 12:20 - 2013-12-13 12:20 - 03359600 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2013-03-03 21:32 - 2013-02-18 15:47 - 01300256 _____ () C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll
2013-06-06 23:53 - 2013-06-04 11:49 - 01453856 _____ () C:\Users\Jan en Yuul\AppData\Roaming\Yandex\YandexDisk\YandexDiskShellExt-3700.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2011-09-06 16:54 - 2011-09-06 16:54 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-01-06 03:32 - 2014-01-06 00:07 - 02244608 _____ () C:\Program Files\AVAST Software\Avast\defs\14010501\algo.dll
2010-03-05 08:24 - 2010-03-05 08:24 - 00886272 _____ () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\System.Data.SQLite.dll
2010-11-11 13:47 - 2010-11-11 13:47 - 00970352 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2010-11-11 13:47 - 2010-11-11 13:47 - 00068720 _____ () C:\Program Files (x86)\VMware\VMware Workstation\zlib1.dll
2013-11-01 01:53 - 2013-11-01 01:53 - 00857120 _____ () C:\Users\Jan en Yuul\AppData\Roaming\Mail.Ru\Agent\Mra\dll\YLUSBTEL.dll
2013-12-19 10:49 - 2013-12-19 10:49 - 32733080 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll
2013-12-19 10:49 - 2013-12-19 10:49 - 00742808 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libglesv2.dll
2013-12-19 10:49 - 2013-12-19 10:49 - 00136600 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libegl.dll
2013-12-21 02:02 - 2013-12-21 02:02 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-06-06 23:53 - 2013-06-04 11:49 - 01218848 _____ () C:\Users\Jan en Yuul\AppData\Roaming\Yandex\YandexDisk\wow64\YandexDiskShellExt-3700.dll
2013-12-11 20:45 - 2013-12-11 20:45 - 16242056 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
2013-12-23 19:22 - 2013-12-23 19:22 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\f60b3ee2de3f41a024920486d46d49f2\IsdiInterop.ni.dll
2013-12-23 19:21 - 2011-04-30 00:28 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\Microsoft:glFWTny0GK3LdB5ZFD3S9eEheF
AlternateDataStreams: C:\ProgramData\Microsoft:OPFbRqNVO3TMjrajKyX0rUKs
AlternateDataStreams: C:\ProgramData\Microsoft:UjbdIVxXcXskpWgWZ4HiIBlOuOA
AlternateDataStreams: C:\ProgramData\Microsoft:zZQYvHW8ryJCqY3btM4SAOP
AlternateDataStreams: C:\ProgramData\Nalpeiron:user.ns1
AlternateDataStreams: C:\ProgramData\Nalpeiron:user.ns2
AlternateDataStreams: C:\ProgramData\Nalpeiron:user.ns3
AlternateDataStreams: C:\ProgramData\Nalpeiron:user.ns4
AlternateDataStreams: C:\Users\Jan en Yuul\AppData\Local\Tj2d6OSB37R0IrG:7wV7yLNcNrdTlpWKoahgj

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/06/2014 03:35:55 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 8332.  Message ID: [0x2509].

Error: (01/06/2014 03:25:17 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 11196.  Message ID: [0x2509].

Error: (01/06/2014 03:20:29 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 10328.  Message ID: [0x2509].

Error: (01/06/2014 02:59:20 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9624.  Message ID: [0x2509].

Error: (01/06/2014 02:51:17 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 10144.  Message ID: [0x2509].

Error: (01/06/2014 02:36:21 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9496.  Message ID: [0x2509].

Error: (01/06/2014 02:22:35 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9520.  Message ID: [0x2509].

Error: (01/06/2014 02:16:09 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9684.  Message ID: [0x2509].

Error: (01/06/2014 01:58:14 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 8252.  Message ID: [0x2509].

Error: (01/06/2014 01:17:13 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 8376.  Message ID: [0x2509].


System errors:
=============
Error: (01/06/2014 05:13:08 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (01/06/2014 05:12:04 PM) (Source: Service Control Manager) (User: )
Description: The PDIHWCTL service failed to start due to the following error: 
%%2

Error: (01/06/2014 05:12:00 PM) (Source: Service Control Manager) (User: )
Description: The Hardlock service failed to start due to the following error: 
%%577

Error: (01/05/2014 08:06:34 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (01/05/2014 07:32:15 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (01/05/2014 07:31:16 PM) (Source: Service Control Manager) (User: )
Description: The PDIHWCTL service failed to start due to the following error: 
%%2

Error: (01/05/2014 07:31:15 PM) (Source: Service Control Manager) (User: )
Description: The Hardlock service failed to start due to the following error: 
%%577

Error: (01/05/2014 06:40:31 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (01/05/2014 06:39:35 PM) (Source: Service Control Manager) (User: )
Description: The PDIHWCTL service failed to start due to the following error: 
%%2

Error: (01/05/2014 06:39:33 PM) (Source: Service Control Manager) (User: )
Description: The Hardlock service failed to start due to the following error: 
%%577


Microsoft Office Sessions:
=========================
Error: (01/06/2014 03:35:55 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 8332.  Message ID: [0x2509].

Error: (01/06/2014 03:25:17 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 11196.  Message ID: [0x2509].

Error: (01/06/2014 03:20:29 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 10328.  Message ID: [0x2509].

Error: (01/06/2014 02:59:20 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9624.  Message ID: [0x2509].

Error: (01/06/2014 02:51:17 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 10144.  Message ID: [0x2509].

Error: (01/06/2014 02:36:21 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9496.  Message ID: [0x2509].

Error: (01/06/2014 02:22:35 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9520.  Message ID: [0x2509].

Error: (01/06/2014 02:16:09 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 9684.  Message ID: [0x2509].

Error: (01/06/2014 01:58:14 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 8252.  Message ID: [0x2509].

Error: (01/06/2014 01:17:13 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.18408 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 8376.  Message ID: [0x2509].


CodeIntegrity Errors:
===================================
  Date: 2014-01-06 17:12:00.594
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-06 17:12:00.500
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-05 19:31:15.869
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-05 19:31:15.759
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-05 18:39:33.477
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-05 18:39:33.375
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-04 21:16:07.180
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-04 21:16:07.086
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-04 03:17:00.291
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-01-04 03:17:00.166
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Percentage of memory in use: 18%
Total physical RAM: 16360.87 MB
Available physical RAM: 13352.57 MB
Total Pagefile: 32719.92 MB
Available Pagefile: 29503.36 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:141.72 GB) (Free:37.95 GB) NTFS
Drive d: () (Fixed) (Total:1863.01 GB) (Free:199.02 GB) NTFS
Drive e: () (Fixed) (Total:1620.49 GB) (Free:284.47 GB) NTFS
Drive f: (Foto D800E) (Fixed) (Total:242.53 GB) (Free:30.48 GB) NTFS
Drive k: (Recovery) (Fixed) (Total:7.32 GB) (Free:1.09 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 62848F2C)
Partition 1: (Active) - (Size=7 GB) - (Type=27)
Partition 2: (Not Active) - (Size=142 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 46516E81)
Partition 1: (Not Active) - (Size=-198626508800) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 46516E80)
Partition 1: (Active) - (Size=-459039331840) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=243 GB) - (Type=07 NTFS)

==================== End Of Log ============================
 
Laatst bewerkt door een moderator:
@Janosh1950,

Ik heb je laatste 2 berichten tussen de code tags geplaatst. Was wel een erg lange tekst.
 
Aan de hand van de logs kan ik geen overduidelijke cconclusies trekken.:(
Ik kan dus alleen maar zeggen dat de wss`elijke oorzaak TuneUp Utilities is.
 
Ok, en als dat de oorzaak is, is het probleem dan op te lossen door het te deinstalleren?
 
Status
Niet open voor verdere reacties.
                    Steun ons                    

Nieuwste berichten

Terug
Bovenaan Onderaan