Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015 Ran by Max at 2015-04-03 20:25:32 Running from K:\ Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Kaspersky Anti-Virus (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886} AS: Kaspersky Anti-Virus (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Apple Application Support (64-bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 4.03 - Piriform) CPUID ROG CPU-Z 1.65 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.65 - CPUID, Inc.) CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.) HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.240 - SurfRight B.V.) Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel) iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.) Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle) Launcher (Version: 1.0.0 - Square Enix Ltd.) Hidden Microsoft .NET Framework 4.5.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}) (Version: - Microsoft) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: - ) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Raptr (HKLM-x32\...\Raptr) (Version: - ) Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.) RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder) ROG GameFirst II v8.03 (HKLM\...\ROG GameFirst II) (Version: 8.03 - cFos Software GmbH, Bonn) Sid Meier's Starships (HKLM-x32\...\Steam App 282210) (Version: - Firaxis Games) SiSoftware Sandra Lite 2015.SP1a (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2496}_is1) (Version: 21.32.2015.3 - SiSoftware) Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) Sonic Radar (HKLM\...\{203BCA8C-BC00-4DD5-85DF-2F84DB803B57}) (Version: 1.2.001 - ASUSTeKcomputer.Inc) TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - ) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TriadWars (HKLM-x32\...\{f40bb465-c3c4-42ac-a360-f64cee75cf4d}) (Version: 1.0.0 - Square Enix Ltd.) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) WinZip 17.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D7}) (Version: 17.0.10283 - WinZip Computing, S.L. ) World of Tanks (HKU\S-1-5-21-2449853672-1911796663-2586537646-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 02-04-2015 15:44:50 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 02-04-2015 15:45:18 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 02-04-2015 15:46:27 Installatie van apparaatstuurprogramma: Advanced Micro Devices, Inc. Beeldschermadapters 02-04-2015 16:08:28 Revo Uninstaller Pro's restore point - Windows Media Player 02-04-2015 18:00:48 TriadWars 03-04-2015 19:00:22 Revo Uninstaller Pro's restore point - Skype™ 7.1 03-04-2015 19:00:28 Removed Skype™ 7.1 03-04-2015 19:09:04 Controlepunt van HitmanPro 03-04-2015 19:09:31 Controlepunt van HitmanPro ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {07D1E77B-86C2-4253-B545-6859B3CA43B8} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-01-26] () Task: {1DDABCA9-98E9-4399-B6FD-064E2D02B9A9} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-01] (ASUSTeK Computer Inc.) Task: {1FD214A4-0DFE-44DB-8E99-1BAD27735994} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2013-07-31] () Task: {3CEF39BE-B4BE-40B3-B6E8-BF6694A4A561} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {580E71F8-E14E-4EF1-BD37-577A5BC64B09} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-26] (Google Inc.) Task: {72CA52D0-8031-4DCE-B31B-413777F6F543} - System32\Tasks\{2174D339-6C09-48F0-A33C-67753E36ED53} => Chrome.exe http://ui.skype.com/ui/0/7.3.0.101/nl/go/help.faq.installer?source=lightinstaller&LastError=1638 Task: {73659EF2-B2C1-428A-8132-5EFCC0D0479F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-24] (Adobe Systems Incorporated) Task: {73667D38-253D-4001-8113-5CA252277A6A} - System32\Tasks\ASUS\i-Setup203344 => C:\Windows\Chipset\AsusSetup.exe [2010-09-08] (ASUSTeK Computer Inc.) Task: {76EF0518-9E17-47F5-B1E3-272EEFF49E79} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-06-19] (Piriform Ltd) Task: {884EEF5C-FEBF-403A-A9DA-281A349B42F8} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2011-09-10] () Task: {93CC7910-DA39-49C4-9D80-249FC4902CA8} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {A6ED31FF-6810-4693-98D2-1B65998A0E0E} - System32\Tasks\{488F7E1A-7705-4E03-9072-EF979FC163D1} => Chrome.exe http://ui.skype.com/ui/0/7.3.0.101/nl/go/help.faq.installer?source=lightinstaller&LastError=1638 Task: {CC29420D-C15E-4D84-855D-115B3C1B9A05} - System32\Tasks\{4ABA9BF4-D172-4CB9-A9D4-C6696FF19C8D} => Chrome.exe http://ui.skype.com/ui/0/7.2.0.103/nl/go/help.faq.installer?LastError=1638 Task: {DA8774D8-DB1F-4BB9-8917-60BAC69DC984} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-26] (Google Inc.) Task: {F5382F93-2FE8-43F0-95C5-43919F82896D} - System32\Tasks\Auslogics\BoostSpeed\Start BoostSpeed оn Max logon => C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [2014-04-15] (Auslogics) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2011-03-17 01:07 - 2011-03-17 01:07 - 04297568 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2015-02-13 05:20 - 2015-02-13 05:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-02-13 05:20 - 2015-02-13 05:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-03-23 17:19 - 2013-08-20 18:37 - 00605496 _____ () C:\Windows\system32\audioLibVc.dll 2012-06-01 11:42 - 2012-06-01 11:42 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe 2015-03-19 17:19 - 2011-10-30 15:28 - 00029696 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QtSolutions_SingleApplication-head.dll 2015-03-19 17:19 - 2011-10-22 09:05 - 08343040 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QtGui4.dll 2015-03-19 17:19 - 2011-08-28 21:41 - 02305536 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QtCore4.dll 2015-03-19 17:19 - 2011-08-28 21:42 - 00862720 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QtNetwork4.dll 2015-03-19 17:19 - 2011-10-30 15:28 - 00582144 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QtSolutions_PropertyBrowser-head.dll 2015-03-19 17:19 - 2011-08-28 21:57 - 01339904 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QtScript4.dll 2015-03-19 17:19 - 2011-08-28 22:50 - 00581120 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QtScriptTools4.dll 2015-03-19 17:19 - 2011-11-03 22:20 - 00617984 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QxtGui.dll 2015-03-19 17:19 - 2011-11-03 22:21 - 00395264 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\QxtCore.dll 2015-03-19 17:19 - 2011-08-28 22:51 - 00026624 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\plugins\imageformats\qgif4.dll 2015-03-19 17:19 - 2011-08-28 22:51 - 00029184 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\plugins\imageformats\qico4.dll 2015-03-19 17:19 - 2011-08-28 22:51 - 00200704 _____ () C:\Program Files (x86)\DuckLink\DuckCapture\plugins\imageformats\qjpeg4.dll 2015-03-23 16:27 - 2015-04-03 20:24 - 00031232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll 2015-03-23 16:27 - 2010-06-29 04:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll 2013-05-28 14:30 - 2013-05-28 14:30 - 00478912 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dblite.dll 2013-05-28 14:30 - 2015-03-23 17:36 - 01309888 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\kpcengine.2.2.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Windows\system32\OEMLOGO.BMP:com.dropbox.attributes ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2449853672-1911796663-2586537646-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Max\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: Media is not connected to internet. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== Accounts: ============================= Administrator (S-1-5-21-2449853672-1911796663-2586537646-500 - Administrator - Disabled) Gast (S-1-5-21-2449853672-1911796663-2586537646-501 - Limited - Disabled) Max (S-1-5-21-2449853672-1911796663-2586537646-1000 - Administrator - Enabled) => C:\Users\Max ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Could not start eventlog service, could not read events. De Windows Event Log-service wordt gestart. Kan de Windows Event Log-service niet starten. Systeemfout. Systeemfout 1747. De service voor verificatie is onbekend. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-4770K CPU @ 3.50GHz Percentage of memory in use: 20% Total physical RAM: 8130.13 MB Available physical RAM: 6427.41 MB Total Pagefile: 16258.45 MB Available Pagefile: 14391.63 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:238.37 GB) (Free:91.5 GB) NTFS Drive d: (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive e: (MB Support CD) (CDROM) (Total:3.38 GB) (Free:0 GB) CDFS Drive f: (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive g: () (Fixed) (Total:1862.92 GB) (Free:692 GB) NTFS Drive j: (hoofdschijf) (Fixed) (Total:760.62 GB) (Free:42.4 GB) NTFS Drive k: (Data_1) (Fixed) (Total:170.9 GB) (Free:160.15 GB) NTFS Drive m: (Max Films) (Fixed) (Total:488.28 GB) (Free:485.98 GB) NTFS Drive n: (Max2) (Fixed) (Total:1374.73 GB) (Free:947.54 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 1CC25C87) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 11740056) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (Size: 931.5 GB) (Disk ID: 961A5614) Partition 1: (Not Active) - (Size=170.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=760.6 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 289DA8CC) Partition 1: (Not Active) - (Size=488.3 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1374.7 GB) - (Type=07 NTFS) ==================== End Of Log ============================