Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 04-10-2016 Gestart door eddy (Beheerder) op EDDY (07-10-2016 09:13:37) Gestart vanaf C:\Users\eddy\Downloads Geladen Profielen: eddy (Beschikbare Profielen: eddy) Platform: Windows 10 Home Versie 1607 (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: Chrome) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe () C:\Program Files (x86)\PHotkey\PGFNEXSrv.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe () C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe () C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe (Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\n360.exe (CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\n360.exe () C:\Program Files (x86)\PHotkey\PHotkey.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe () C:\Program Files (x86)\PHotkey\Atouch64.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe () C:\Program Files (x86)\PHotkey\POsd.exe () C:\Program Files (x86)\PHotkey\GPMTray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (TODO: ) C:\Program Files (x86)\PHotkey\HCSynApi.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe () C:\Users\eddy\AppData\Local\Facebook\Games\FacebookGames.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe () C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (The CefSharp Authors) C:\Users\eddy\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe () C:\Users\eddy\AppData\Roaming\System Monitor\sm.exe () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareDesktop.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe Kon geen toegng krijgen tot proces -> chrome.exe (Microsoft Corporation) C:\Windows\System32\LockAppHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\cmd.exe (Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\conathst.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Corporation) C:\Windows\Temp\79C763BB-2003-480F-8B13-2A3DABF30E95\DismHost.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3933496 2012-09-20] (Logitech, Inc.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation) HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [396688 2015-07-18] () HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.) HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareTray.exe [9571552 2016-07-18] () HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945656 2015-10-20] (Synaptics Incorporated) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-11-26] (CyberLink Corp.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-10-13] (Apple Inc.) HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-11] (CyberLink Corp.) HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2013-09-18] (CyberLink Corp.) HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [401280 2014-06-20] () HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation) Winlogon\Notify\igfxcui: igfxdev.dll [X] Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1 HKU\S-1-5-21-1726438749-2776230961-4290742055-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50670720 2016-03-01] (Skype Technologies S.A.) HKU\S-1-5-21-1726438749-2776230961-4290742055-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8891608 2016-07-13] (Piriform Ltd) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2014-10-31] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\Users\eddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Games Arcade (BETA).lnk [2016-09-19] ShortcutTarget: Facebook Games Arcade (BETA).lnk -> C:\Users\eddy\AppData\Local\Facebook\Games\FacebookGames.exe () Startup: C:\Users\eddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk [2016-09-29] ShortcutTarget: Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk -> C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d0a575e9-b49f-4700-b597-6b1fa9cdece1}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-1726438749-2776230961-4290742055-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=lcjb HKU\S-1-5-21-1726438749-2776230961-4290742055-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB SearchScopes: HKU\S-1-5-21-1726438749-2776230961-4290742055-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NSBU&chn=1011&geo=BE&ver=22&locale=nl_BE&gct=kwd&qsrc=2869 BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-08-16] (Microsoft Corporation) BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation) BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-10-04] (Oracle Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-10-04] (Oracle Corporation) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\eddy\AppData\Roaming\Mozilla\Firefox\Profiles\oghrqmv0.default-1454858171531 [2016-10-07] FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25] FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon [2016-10-04] FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-15] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-15] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-10-04] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-10-04] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-06] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1726438749-2776230961-4290742055-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\eddy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [Geen bestand] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.be/ CHR StartupUrls: Default -> "hxxp://search.babylon.com/home?affID=10588&tl=gkn37168&tt=3512_8","hxxp://search.babylon.com/home?affID=10588&tl=gkn37168&tt=300812_58_3512_1","hxxp://search.conduit.com/?ctid=CT3324416&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPDB08D4C4-5144-4A0B-A159-CFD49E5B20EA&SSPV=" CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908 CHR DefaultSearchKeyword: Default -> NortonSafe CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff CHR Session Restore: Default -> is ingeschakeld. CHR Profile: C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default [2016-10-07] CHR Extension: (Google Presentaties) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04] CHR Extension: (Google Documenten) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04] CHR Extension: (Google Drive) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21] CHR Extension: (YouTube) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Norton Security Toolbar) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-09-16] CHR Extension: (Google Search) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Tampermonkey) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2016-08-30] CHR Extension: (Google Spreadsheets) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04] CHR Extension: (Norton Home Page for Chrome) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfoabcdjalmeenbjjngidappmppchblc [2016-10-04] CHR Extension: (Offline Documenten) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (vkkshgueg) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkmeeleimkfmcglckilghepakdadiakc [2016-10-02] CHR Extension: (Norton Safe) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2016-10-04] CHR Extension: (ACGB) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcgjhdockcefgidbflngihkakglojicj [2015-08-16] CHR Extension: (Google Photos) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcglmfcclpfgljeaiahehebeoaiicbko [2016-05-01] CHR Extension: (jump) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkdnaieooaobafbbjcmofjghdpgihibc [2016-05-03] CHR Extension: (Cloudrupt) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfopjhammmhcafnbolgfecogmmfnefm [2015-06-11] CHR Extension: (Norton Identity Safe) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-12-23] CHR Extension: (MyFunCards) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkbnhlhcdndaamafgbelomapajcnjpde [2016-09-29] CHR Extension: (Skype) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-09-22] CHR Extension: (Google Maps) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-09-18] CHR Extension: (Google Mail Checker) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-10-30] CHR Extension: (Norton Security Toolbar) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2015-08-08] CHR Extension: (Norton Safe) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2016-09-03] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02] CHR Extension: (Gmail) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28] CHR Extension: (Chrome Media Router) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-21] CHR Extension: (TelevisionFanatic) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppgplhcfmaadpnkmnkhgadmaekeldbnh [2016-09-29] CHR Profile: C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile [2016-10-06] CHR Extension: (Google Presentaties) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-10] CHR Extension: (Google Documenten) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-10] CHR Extension: (Google Drive) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-10] CHR Extension: (YouTube) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-10] CHR Extension: (Google Search) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-10] CHR Extension: (Google Spreadsheets) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-10] CHR Extension: (Bookmark Manager) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-06-10] CHR Extension: (Norton Identity Safe) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-06-10] CHR Extension: (Norton Security Toolbar) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2015-06-10] CHR Extension: (Google Wallet) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-10] CHR Extension: (Gmail) - C:\Users\eddy\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-10] CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\Exts\Chrome.crx [2016-10-04] CHR HKLM\...\Chrome\Extension: [eblihieomkjeiobglmnbmidkajdcfkpa] - CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\Exts\Chrome.crx [2016-10-04] CHR HKLM-x32\...\Chrome\Extension: [eblihieomkjeiobglmnbmidkajdcfkpa] - CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25] ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 ACT2_Service; C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe [1421216 2011-08-22] () R2 AHDDC2; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe [1518504 2012-07-30] () R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3192560 2016-07-26] (Microsoft Corporation) R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [74712 2013-03-11] (CyberLink) R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [316376 2013-03-11] (CyberLink) R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Bestand niet getekend] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation) R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Bestand niet getekend] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation) R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareService.exe [732056 2016-07-18] () R2 N360; C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\N360.exe [289080 2016-09-24] (Symantec Corporation) S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Bestand niet getekend] R2 PGFNEXSrv; C:\Program Files (x86)\PHotkey\PGFNEXSrv.exe [136192 2013-12-03] () [Bestand niet getekend] S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Bestand niet getekend] R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390672 2012-08-08] () R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 ACT2PM; C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys [15160 2011-06-10] () R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\BASHDefs\20161005.001\BHDrvx64.sys [1854712 2016-08-18] (Symantec Corporation) R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1608000.032\ccSetx64.sys [174328 2016-06-02] (Symantec Corporation) R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-10-04] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-10-04] (Symantec Corporation) R3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.129.0\gzflt.sys [161592 2016-04-28] (BitDefender LLC) R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [263952 2015-07-14] (Intel Corporation) R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\IPSDefs\20161006.001\IDSvia64.sys [1012440 2016-10-04] (Symantec Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation) S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3485696 2016-07-16] (Intel Corporation) R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2009-09-11] (PEGATRON) R3 PegaRadioSwitch; C:\Windows\System32\drivers\PegaRadioSwitch.sys [23552 2013-08-22] (Windows (R) Win 7 DDK provider) S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2013-09-19] (Synaptics Incorporated) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-10-20] (Synaptics Incorporated) R1 SRTSP; C:\Windows\System32\Drivers\N360x64\1608000.032\SRTSP64.SYS [784624 2016-09-23] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1608000.032\SRTSPX64.SYS [49400 2016-09-23] (Symantec Corporation) R0 SymEFASI; C:\Windows\System32\drivers\N360x64\1608000.032\SYMEFASI64.SYS [1628888 2016-09-23] (Symantec Corporation) S0 SymELAM; C:\Windows\System32\drivers\N360x64\1608000.032\SymELAM.sys [24192 2015-07-11] (Symantec Corporation) R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-10-04] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\N360x64\1608000.032\Ironx64.SYS [289520 2016-09-23] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1608000.032\SYMNETS.SYS [567512 2016-09-23] (Symantec Corporation) R1 tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [307352 2015-05-29] (Trend Micro Inc.) R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [485512 2016-04-28] (BitDefender S.R.L.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2016-10-07 09:03 - 2016-10-07 09:08 - 00061895 _____ C:\Users\eddy\Downloads\Addition.txt 2016-10-07 08:59 - 2016-10-07 09:13 - 00032801 _____ C:\Users\eddy\Downloads\FRST.txt 2016-10-07 08:59 - 2016-10-07 09:13 - 00000000 ____D C:\FRST 2016-10-07 08:48 - 2016-10-07 08:49 - 02405376 _____ (Farbar) C:\Users\eddy\Downloads\FRST64.exe 2016-10-06 15:24 - 2016-10-06 15:31 - 00000000 ____D C:\rsit 2016-10-06 15:24 - 2016-10-06 15:27 - 00000000 ____D C:\Program Files\trend micro 2016-10-06 15:18 - 2016-10-06 15:19 - 01222144 _____ C:\Users\eddy\Downloads\RSITx64.exe 2016-10-06 12:52 - 2016-10-06 12:52 - 00000408 _____ C:\WINDOWS\Tasks\PC Health Advisor Defrag.job 2016-10-06 12:52 - 2016-10-06 12:52 - 00000390 _____ C:\WINDOWS\Tasks\PC Health Advisor.job 2016-10-06 12:47 - 2016-10-06 12:49 - 05239920 _____ (ParetoLogic Inc.) C:\Users\eddy\Downloads\ParetoLogic PC Health Advisor_nl (1).exe 2016-10-06 10:31 - 2015-05-29 09:43 - 00307352 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmcomm.sys 2016-10-06 10:30 - 2016-10-06 10:30 - 02526736 _____ (Trend Micro Inc.) C:\Users\eddy\Downloads\HousecallLauncher64 (1).exe 2016-10-06 10:19 - 2016-10-06 10:19 - 00003106 _____ C:\WINDOWS\System32\Tasks\RunAtStartup 2016-10-06 10:19 - 2016-10-06 10:19 - 00000000 ____D C:\Users\eddy\AppData\Roaming\System Monitor 2016-10-06 10:18 - 2016-10-06 10:18 - 00001170 _____ C:\Users\Public\Desktop\Secure PC Tuneup.lnk 2016-10-06 10:18 - 2016-10-06 10:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secure PC Tuneup 2016-10-06 10:18 - 2016-10-06 10:18 - 00000000 ____D C:\Program Files (x86)\Secure PC Tuneup 2016-10-06 09:57 - 2016-10-06 09:57 - 00000000 ____D C:\ProgramData\USOShared 2016-10-06 09:06 - 2016-10-06 09:06 - 00003320 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task 2016-10-06 09:06 - 2016-10-06 09:06 - 00000000 ___HD C:\OneDriveTemp 2016-10-06 08:02 - 2016-10-06 08:02 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2016-10-06 07:57 - 2016-10-06 08:06 - 00000000 ____D C:\Users\eddy\AppData\Local\ConnectedDevicesPlatform 2016-10-06 07:56 - 2016-10-06 07:56 - 00000020 ___SH C:\Users\eddy\ntuser.ini 2016-10-06 05:20 - 2016-10-06 05:20 - 00000000 _SHDL C:\Users\Default\Sjablonen 2016-10-06 05:20 - 2016-10-06 05:20 - 00000000 _SHDL C:\Users\Default\Netwerkprinteromgeving 2016-10-06 05:20 - 2016-10-06 05:20 - 00000000 _SHDL C:\Users\Default\Mijn documenten 2016-10-06 05:20 - 2016-10-06 05:20 - 00000000 _SHDL C:\Users\Default\Menu Start 2016-10-06 05:20 - 2016-10-06 05:20 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's 2016-10-06 05:20 - 2016-10-06 05:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Geschiedenis 2016-10-06 05:20 - 2016-10-06 05:20 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's 2016-10-06 05:20 - 2016-10-06 05:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Geschiedenis 2016-10-06 05:12 - 2016-10-06 05:19 - 00007623 _____ C:\WINDOWS\diagwrn.xml 2016-10-06 05:12 - 2016-10-06 05:19 - 00007623 _____ C:\WINDOWS\diagerr.xml 2016-10-06 05:10 - 2016-10-06 12:09 - 00000000 ___DC C:\WINDOWS\Panther 2016-10-06 05:06 - 2016-10-06 05:06 - 00000000 ____D C:\Windows.old 2016-10-06 05:05 - 2016-10-06 05:05 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\Program Files\Reference Assemblies 2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\Program Files\MSBuild 2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-10-06 05:01 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2016-10-06 05:01 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2016-10-06 05:01 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2016-10-06 05:01 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2016-10-06 05:01 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2016-10-06 05:01 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2016-10-06 04:41 - 2016-10-06 11:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360 2016-10-06 04:39 - 2016-10-06 04:39 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard 2016-10-06 04:37 - 2016-10-06 04:37 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-10-06 04:29 - 2016-10-06 04:29 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-10-06 04:23 - 2016-10-06 04:31 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2016-10-06 04:20 - 2016-10-06 08:02 - 00000000 ____D C:\Users\eddy 2016-10-06 04:20 - 2016-10-06 04:20 - 00000000 _SHDL C:\Users\eddy\Sjablonen 2016-10-06 04:20 - 2016-10-06 04:20 - 00000000 _SHDL C:\Users\eddy\Netwerkprinteromgeving 2016-10-06 04:20 - 2016-10-06 04:20 - 00000000 _SHDL C:\Users\eddy\Mijn documenten 2016-10-06 04:20 - 2016-10-06 04:20 - 00000000 _SHDL C:\Users\eddy\Menu Start 2016-10-06 04:20 - 2016-10-06 04:20 - 00000000 _SHDL C:\Users\eddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's 2016-10-06 04:20 - 2016-10-06 04:20 - 00000000 _SHDL C:\Users\eddy\AppData\Local\Geschiedenis 2016-10-06 04:16 - 2016-10-06 07:57 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-10-06 04:16 - 2016-10-06 04:16 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2016-10-06 04:16 - 2016-10-06 04:16 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf 2016-10-06 04:16 - 2015-07-17 23:58 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL 2016-10-06 04:16 - 2015-07-17 23:58 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2016-10-06 04:15 - 2016-10-06 04:24 - 00000000 ____D C:\Program Files\Intel 2016-10-06 04:15 - 2016-10-06 04:15 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2016-10-06 04:15 - 2016-10-06 04:15 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2016-10-06 04:15 - 2016-10-06 04:15 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2016-10-06 04:15 - 2016-10-06 04:15 - 00000000 ____D C:\Program Files\Synaptics 2016-10-06 04:15 - 2016-10-06 04:15 - 00000000 ____D C:\Program Files\Realtek 2016-10-06 04:14 - 2016-10-06 04:14 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2016-10-06 04:14 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2016-10-06 04:13 - 2016-10-07 08:23 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2016-10-06 04:13 - 2016-10-06 04:13 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2016-10-06 04:12 - 2016-10-06 04:34 - 00194312 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-10-04 14:16 - 2016-10-04 14:16 - 00000000 ____D C:\Users\eddy\Desktop\Nieuwe map (6) 2016-10-04 13:26 - 2016-10-04 13:26 - 00000000 ____D C:\WINDOWS\Trend Micro 2016-10-04 13:26 - 2016-10-04 13:26 - 00000000 ____D C:\ProgramData\Trend Micro 2016-10-04 13:21 - 2016-10-04 13:21 - 02527376 _____ (Trend Micro Inc.) C:\Users\eddy\Downloads\HousecallLauncher64.exe 2016-10-04 13:03 - 2016-10-04 13:03 - 00000000 ____D C:\Users\eddy\Downloads\TeslacryptDecryptor 1.0.1569 MUI 2016-10-04 12:53 - 2016-10-04 12:54 - 18163566 _____ C:\Users\eddy\Downloads\TeslacryptDecryptor 1.0.1569 MUI.zip 2016-10-04 12:53 - 2016-10-04 12:53 - 11651485 _____ C:\Users\eddy\Downloads\RansomwareFileDecryptor 1.0.1646 MUI.zip 2016-10-04 12:44 - 2016-10-04 12:44 - 00000000 ____D C:\Users\eddy\AppData\Roaming\Sun 2016-10-04 12:44 - 2016-10-04 12:44 - 00000000 ____D C:\Users\eddy\AppData\LocalLow\Sun 2016-10-04 12:44 - 2016-10-04 12:44 - 00000000 ____D C:\Users\eddy\.oracle_jre_usage 2016-10-04 12:43 - 2016-10-06 04:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-10-04 12:43 - 2016-10-04 12:44 - 00000000 ____D C:\ProgramData\Oracle 2016-10-04 12:43 - 2016-10-04 12:43 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2016-10-04 12:42 - 2016-10-04 12:42 - 00000000 ____D C:\Program Files (x86)\Java 2016-10-04 12:41 - 2016-10-04 12:50 - 00000000 ____D C:\Program Files\Angry IP Scanner 2016-10-04 12:41 - 2016-10-04 12:41 - 00739904 _____ (Oracle Corporation) C:\Users\eddy\Downloads\JavaSetup8u101.exe 2016-10-04 12:40 - 2016-10-04 12:44 - 00388608 _____ (Trend Micro Inc.) C:\Users\eddy\Desktop\HijackThis.exe 2016-10-04 12:35 - 2016-10-04 12:40 - 02980582 _____ C:\Users\eddy\Downloads\ipscan-3.4.2-setup.exe 2016-09-15 11:32 - 2016-09-15 12:26 - 00000000 ____D C:\Users\eddy\Desktop\doopfeest Louis ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2016-10-07 09:16 - 2015-08-08 09:39 - 00000000 ____D C:\Users\eddy\AppData\Roaming\Skype 2016-10-07 08:40 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps 2016-10-07 08:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-10-07 08:27 - 2016-07-17 00:15 - 00543382 _____ C:\WINDOWS\system32\perfh013.dat 2016-10-07 08:27 - 2016-07-17 00:15 - 00094836 _____ C:\WINDOWS\system32\perfc013.dat 2016-10-07 08:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat 2016-10-07 08:27 - 2015-08-08 11:02 - 01526850 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-10-07 08:23 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF 2016-10-06 17:54 - 2015-08-08 11:17 - 00000000 ____D C:\Users\eddy\AppData\Local\Comms 2016-10-06 14:44 - 2016-07-16 13:01 - 00000000 ____D C:\ProgramData\ParetoLogic 2016-10-06 14:23 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2016-10-06 12:42 - 2016-07-16 14:50 - 00002284 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-10-06 12:09 - 2014-12-13 10:16 - 00000000 ____D C:\Users\eddy\AppData\Local\CrashDumps 2016-10-06 11:52 - 2015-06-11 08:17 - 01816391 _____ C:\Users\eddy\AppData\Local\census.cache 2016-10-06 11:50 - 2015-06-11 08:17 - 00089801 _____ C:\Users\eddy\AppData\Local\ars.cache 2016-10-06 10:46 - 2015-06-11 08:13 - 00000010 _____ C:\Users\eddy\AppData\Local\sponge.last.runtime.cache 2016-10-06 10:29 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-10-06 10:10 - 2015-06-09 14:09 - 00000000 ____D C:\Users\eddy\AppData\Local\NPE 2016-10-06 10:00 - 2015-06-10 10:17 - 00000000 ____D C:\ProgramData\F-Secure 2016-10-06 09:57 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate 2016-10-06 09:47 - 2016-05-01 20:31 - 00000000 ____D C:\Users\eddy\AppData\Local\FSDART 2016-10-06 09:09 - 2014-10-30 16:39 - 00000000 ____D C:\Users\eddy\AppData\Local\Packages 2016-10-06 09:06 - 2015-08-08 11:22 - 00002422 _____ C:\Users\eddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-10-06 09:06 - 2014-10-30 16:43 - 00000000 ___RD C:\Users\eddy\OneDrive 2016-10-06 08:23 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache 2016-10-06 08:05 - 2014-10-30 16:41 - 00000000 ____D C:\Users\eddy\Downloads\Documents\Youcam 2016-10-06 07:58 - 2014-10-30 15:45 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-10-06 07:57 - 2015-01-25 19:40 - 00000000 __SHD C:\Users\eddy\IntelGraphicsProfiles 2016-10-06 05:20 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT 2016-10-06 05:11 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2016-10-06 05:10 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2016-10-06 05:10 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2016-10-06 05:10 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration 2016-10-06 05:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2016-10-06 05:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI 2016-10-06 04:50 - 2015-08-08 11:10 - 00023076 _____ C:\WINDOWS\system32\emptyregdb.dat 2016-10-06 04:47 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries 2016-10-06 04:40 - 2014-05-29 21:18 - 01467244 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2016-10-06 04:32 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI 2016-10-06 04:31 - 2016-08-31 12:51 - 00000000 ____D C:\Users\eddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook 2016-10-06 04:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF 2016-10-06 04:31 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-10-06 04:31 - 2016-07-15 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2016-10-06 04:31 - 2016-04-29 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support 2016-10-06 04:31 - 2016-01-17 13:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2016-10-06 04:31 - 2016-01-17 13:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2016-10-06 04:31 - 2015-12-23 18:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360 2016-10-06 04:31 - 2015-01-25 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-10-06 04:31 - 2014-12-06 12:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-10-06 04:31 - 2014-11-23 17:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime 2016-10-06 04:31 - 2014-10-31 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2016-10-06 04:31 - 2014-05-29 21:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2016-10-06 04:31 - 2014-05-29 21:09 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerRecover 2016-10-06 04:31 - 2014-05-29 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo SoftwarePack 2016-10-06 04:31 - 2014-05-29 20:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeCinema 2016-10-06 04:31 - 2014-04-29 12:58 - 00000000 ____D C:\WINDOWS\sv 2016-10-06 04:31 - 2014-04-29 12:58 - 00000000 ____D C:\WINDOWS\sl 2016-10-06 04:31 - 2014-04-29 12:58 - 00000000 ____D C:\WINDOWS\da 2016-10-06 04:31 - 2014-04-29 12:57 - 00000000 ____D C:\WINDOWS\pl 2016-10-06 04:31 - 2014-04-29 12:57 - 00000000 ____D C:\WINDOWS\hu 2016-10-06 04:31 - 2014-04-29 12:57 - 00000000 ____D C:\WINDOWS\fi 2016-10-06 04:31 - 2014-04-29 12:57 - 00000000 ____D C:\WINDOWS\el 2016-10-06 04:31 - 2014-04-28 14:08 - 00000000 ____D C:\WINDOWS\tr 2016-10-06 04:31 - 2014-04-28 14:08 - 00000000 ____D C:\WINDOWS\nl 2016-10-06 04:31 - 2014-04-28 14:08 - 00000000 ____D C:\WINDOWS\it 2016-10-06 04:31 - 2014-04-28 14:08 - 00000000 ____D C:\WINDOWS\es 2016-10-06 04:31 - 2014-04-28 14:08 - 00000000 ____D C:\WINDOWS\de 2016-10-06 04:31 - 2014-04-28 11:57 - 00000000 ____D C:\WINDOWS\fr 2016-10-06 04:31 - 2014-03-18 16:58 - 00000000 ____D C:\WINDOWS\en-GB 2016-10-06 04:29 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\InputMethod 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE 2016-10-06 04:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB 2016-10-06 04:25 - 2014-05-29 21:25 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles 2016-10-06 04:25 - 2014-05-29 21:24 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2016-10-06 04:25 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2016-10-06 04:25 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2016-10-06 04:24 - 2016-07-20 11:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2016-10-06 04:24 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2016-10-06 04:24 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\InputMethod 2016-10-06 04:24 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-10-06 04:24 - 2016-01-05 11:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-10-06 04:24 - 2015-09-22 13:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2016-10-06 04:24 - 2014-12-20 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTech 2016-10-06 04:24 - 2014-10-30 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec 2016-10-06 04:24 - 2014-10-30 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2016-10-06 04:19 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2016-10-06 04:16 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog 2016-10-06 04:16 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView 2016-10-06 04:16 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2016-10-06 03:15 - 2016-07-17 00:59 - 00000000 ___HD C:\$WINDOWS.~BT 2016-10-06 03:13 - 2014-10-30 17:14 - 00001074 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-10-05 19:56 - 2015-06-04 16:15 - 00000940 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2016-10-05 04:32 - 2014-10-30 17:14 - 00001070 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-10-04 18:24 - 2016-05-21 11:43 - 00002413 _____ C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk 2016-10-04 14:46 - 2015-12-23 18:12 - 00000000 ____D C:\WINDOWS\system32\Drivers\N360x64 2016-10-04 14:45 - 2016-07-10 15:26 - 00002318 _____ C:\Users\Public\Desktop\Norton 360.lnk 2016-10-04 14:38 - 2015-12-23 18:14 - 00100592 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS 2016-10-04 14:38 - 2015-12-23 18:14 - 00008319 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT 2016-10-04 13:08 - 2016-04-13 12:16 - 00000000 ____D C:\Users\eddy\Desktop\Nieuwe map 2016-10-04 12:51 - 2014-10-30 16:39 - 00000000 ____D C:\Users\eddy\AppData\Local\VirtualStore 2016-10-04 08:17 - 2016-07-16 14:50 - 00002296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-09-24 15:23 - 2016-08-26 12:13 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job 2016-09-24 12:51 - 2016-06-11 21:25 - 00000338 _____ C:\WINDOWS\Tasks\HPCeeScheduleForeddy.job 2016-09-23 13:49 - 2016-08-26 12:08 - 00001287 _____ C:\Users\eddy\Desktop\Facebook Games Arcade (BETA).lnk 2016-09-21 08:49 - 2014-10-31 17:45 - 03098624 ___SH C:\Users\eddy\Desktop\Thumbs.db 2016-09-21 08:39 - 2015-05-20 10:30 - 00697344 ___SH C:\Users\eddy\Downloads\Thumbs.db 2016-09-20 10:57 - 2014-12-06 12:42 - 00000000 ____D C:\Program Files\Microsoft Office 15 2016-09-17 03:21 - 2015-01-25 18:27 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2016-09-17 03:21 - 2015-01-25 18:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2016-09-15 16:08 - 2014-10-31 20:10 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-09-15 15:49 - 2014-04-24 18:12 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-09-15 14:16 - 2015-10-30 09:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2016-09-15 14:16 - 2015-10-30 09:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll ==================== Bestanden in de root van sommige mappen ======= 2015-06-11 08:17 - 2016-10-06 11:50 - 0089801 _____ () C:\Users\eddy\AppData\Local\ars.cache 2015-06-11 08:17 - 2016-10-06 11:52 - 1816391 _____ () C:\Users\eddy\AppData\Local\census.cache 2015-06-09 15:45 - 2015-06-09 15:45 - 0000036 _____ () C:\Users\eddy\AppData\Local\housecall.guid.cache 2015-06-11 08:13 - 2016-10-06 10:46 - 0000010 _____ () C:\Users\eddy\AppData\Local\sponge.last.runtime.cache 2015-08-25 17:18 - 2015-08-25 17:18 - 0000057 _____ () C:\ProgramData\Ament.ini 2016-10-06 04:15 - 2016-10-06 04:15 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2014-10-31 09:52 - 2014-11-22 12:49 - 0008626 _____ () C:\ProgramData\hpzinstall.log ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\WINDOWS\system32\winlogon.exe => Bestand is getekend C:\WINDOWS\system32\wininit.exe => Bestand is getekend C:\WINDOWS\explorer.exe => Bestand is getekend C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend C:\WINDOWS\system32\svchost.exe => Bestand is getekend C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend C:\WINDOWS\system32\services.exe => Bestand is getekend C:\WINDOWS\system32\User32.dll => Bestand is getekend C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend C:\WINDOWS\system32\userinit.exe => Bestand is getekend C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend C:\WINDOWS\system32\rpcss.dll => Bestand is getekend C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2016-10-06 04:12 ==================== Eind van FRST.txt ============================