Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 18-01-2017 Gestart door Johnny (Beheerder) op JOHNNY (19-01-2017 13:04:51) Gestart vanaf C:\Users\Johnny\Desktop Geladen Profielen: Johnny (Beschikbare Profielen: Johnny) Platform: Windows 8.1 (Update) (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: FF) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Logitech, Inc.) C:\Program Files\Logitech\SolarApp\L4301_Solar.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.19\AsusFanControlService.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe ( ) C:\Windows\System32\lxebcoms.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\nis.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\nis.exe (TODO: ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe (Mozilla Corporation) C:\Program Files (x86)\mozilla firefox\firefox.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\conathst.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Windows\SysWOW64\PnkBstrB.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe () C:\Program Files (x86)\ASUS\AI Suite III\AsusMiniBar.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-09-15] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2014-09-01] (Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [lxebmon.exe] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe [772712 2013-01-23] () HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe [150264 2013-01-23] () HKLM\...\Run: [etMonitor] => C:\Windows\etMon.exe HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [888344 2016-01-07] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1994752 2014-02-20] (Wondershare) HKLM-x32\...\Run: [NPSStartup] => [X] HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [55349888 2015-09-04] (Skype Technologies S.A.) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [DAEMON Tools Lite] => D:\DAEMON Tools Lite\daemon.exe -autorun HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-05-30] (Disc Soft Ltd) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\MountPoints2: {53d8ab61-499c-11e5-8269-0862662d7fe7} - "F:\LaunchU3.exe" -a HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\MountPoints2: {6a9b792e-e447-11e5-8297-3010b39ca39e} - "L:\LaunchEAWG.exe" HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\MountPoints2: {fdb4510e-2db2-11e6-82af-3010b39ca39e} - "F:\autorun.exe" ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-07-27] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\Users\Johnny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trillian.lnk [2016-09-12] ShortcutTarget: Trillian.lnk -> C:\Program Files (x86)\Trillian\trillian.exe (Cerulean Studios) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 195.130.130.1 195.130.131.1 Tcpip\..\Interfaces\{6972F335-DCC2-47D5-A77D-CEE772D926C8}: [DhcpNameServer] 195.130.130.1 195.130.131.1 Tcpip\..\Interfaces\{B6E9D39D-FE03-4086-AB85-9B470843AFD8}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.be/ SearchScopes: HKU\S-1-5-21-1444268496-2388825387-1195434288-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=1000690&geo=BE&ver=22&locale=nl_BE&guid=48C0FE7F-A35A-4ADC-9C1A-0797BD552B79&doi=2016-09-01&gct=kwd&qsrc=2869 BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation) BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation) BHO-x32: Lexmark Printable Web -> {D2C5E510-BE6D-42CC-9F61-E4F939078474} -> C:\Program Files\Lexmark Printable Web\bho.dll [2010-02-10] () Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation) Toolbar: HKU\S-1-5-21-1444268496-2388825387-1195434288-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation) FireFox: ======== FF DefaultProfile: mnad7wpq.default FF ProfilePath: C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default [2017-01-19] FF Homepage: Mozilla\Firefox\Profiles\mnad7wpq.default -> hxxp://www.nieuwsblad.be/ FF Extension: (Norton Identity Safe) - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default\Extensions\idsafe@norton.com.xpi [2017-01-17] FF Extension: (Greasemonkey) - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-08-20] FF SearchPlugin: C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default\searchplugins\limetorrentscc-search.xml [2015-10-04] FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.2.15\coFFAddon FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.2.15\coFFAddon [2016-12-10] FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.2.15\coFFAddon FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1223183.dll [2015-12-22] (Adobe Systems, Inc.) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-11] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-11] (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1444268496-2388825387-1195434288-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Johnny\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-25] (Unity Technologies ApS) Chrome: ======= CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-18] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-18] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] () R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-04-24] (ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] () [Bestand niet getekend] R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.19\AsusFanControlService.exe [396088 2015-04-20] (ASUSTeK Computer Inc.) S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433688 2016-01-07] (BlueStack Systems, Inc.) S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413208 2016-01-07] (BlueStack Systems, Inc.) S3 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [859672 2016-01-07] (BlueStack Systems, Inc.) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-05-30] (Disc Soft Ltd) R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240576 2013-10-06] (DTS, Inc) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Bestand niet getekend] R2 L4301_Solar; C:\Program Files\Logitech\SolarApp\L4301_Solar.exe [405744 2013-01-30] (Logitech, Inc.) S2 lxebCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\lxebserv.exe [45736 2010-04-14] (Lexmark International, Inc.) R2 lxeb_device; C:\Windows\system32\lxebcoms.exe [1052328 2010-04-14] ( ) R2 lxeb_device; C:\Windows\SysWOW64\lxebcoms.exe [598696 2010-04-14] ( ) R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\NIS.exe [289080 2016-11-12] (Symantec Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation) R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-12] (Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-12] (Electronic Arts) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2016-02-28] () R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [103736 2016-02-28] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] () R3 ASMTFilter; C:\Windows\SysWow64\drivers\asmtufdriver.sys [24792 2014-06-13] (hxxp://www.asmedia.com.tw) R0 asstor64; C:\Windows\System32\drivers\asstor64.sys [84816 2014-03-14] (Asmedia Technology) R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] () R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation) R3 ASUSstpt; C:\Windows\System32\drivers\ASUSstpt.sys [27392 2013-03-28] (MCCI Corporation) R3 ASUSumsc; C:\Windows\System32\drivers\ASUSumsc.sys [151808 2013-03-28] (MCCI Corporation) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [10364120 2016-01-27] (Broadcom Corporation) R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\BASHDefs\20170117.001\BHDrvx64.sys [1874136 2016-11-07] (Symantec Corporation) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [154680 2016-01-07] (BlueStack Systems) R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1608010.00E\ccSetx64.sys [174328 2016-06-02] (Symantec Corporation) S3 DCamUSBET; C:\Windows\system32\DRIVERS\etDevice64.sys [527744 2007-07-23] (eMPIA Technology, Inc.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-03-09] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-03-09] (Disc Soft Ltd) R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [457496 2014-03-14] (Intel Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-10-04] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-10-04] (Symantec Corporation) S3 FiltUSBET; C:\Windows\system32\DRIVERS\etFilter64.sys [281088 2007-06-14] (eMPIA Technology Inc.) R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\IPSDefs\20170118.001\IDSvia64.sys [1038024 2017-01-13] (Symantec Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-13] (NVIDIA Corporation) R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [47672 2016-12-12] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation) S3 ScanUSBET; C:\Windows\system32\DRIVERS\etScan64.sys [9216 2007-07-23] (eMPIA Technology, Inc.) S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [10848 2000-01-21] () [Bestand niet getekend] R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1608010.00E\SRTSP64.SYS [784624 2016-11-12] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1608010.00E\SRTSPX64.SYS [49400 2016-11-12] (Symantec Corporation) R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1608010.00E\SYMEFASI64.SYS [1628888 2016-11-12] (Symantec Corporation) S0 SymELAM; C:\Windows\System32\drivers\NISx64\1608010.00E\SymELAM.sys [24192 2015-07-11] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-10-13] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NISx64\1608010.00E\Ironx64.SYS [289520 2016-11-12] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1608010.00E\SYMNETS.SYS [567512 2016-11-12] (Symantec Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X] S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\SDSDefs\20160706.008\ENG64.SYS [X] S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\SDSDefs\20160706.008\EX64.SYS [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-01-19 13:04 - 2017-01-19 13:05 - 00021816 _____ C:\Users\Johnny\Desktop\FRST.txt 2017-01-19 13:04 - 2017-01-19 13:04 - 00000000 ____D C:\FRST 2017-01-19 13:03 - 2017-01-19 13:03 - 02419712 _____ (Farbar) C:\Users\Johnny\Desktop\FRST64.exe 2017-01-19 11:31 - 2017-01-19 11:31 - 00388608 _____ (Trend Micro Inc.) C:\Users\Johnny\Downloads\HijackThis.exe 2017-01-18 00:45 - 2017-01-19 12:05 - 00000000 _____ C:\Windows\Path.idx 2017-01-18 00:37 - 2013-03-28 08:17 - 00151808 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ASUSumsc.sys 2017-01-18 00:37 - 2013-03-28 08:17 - 00027392 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ASUSstpt.sys 2017-01-18 00:37 - 2013-03-28 08:17 - 00018688 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ASUSwh.sys 2017-01-18 00:37 - 2013-03-28 08:17 - 00017152 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ASUScr.sys 2017-01-18 00:37 - 2011-09-20 05:25 - 00046152 _____ (MCCI Corporation) C:\Windows\SysWOW64\Drivers\ASUSFILTER.sys 2017-01-18 00:36 - 2017-01-18 00:37 - 00000000 ____D C:\Windows\System32\Tasks\ASUS 2017-01-18 00:36 - 2017-01-18 00:36 - 00000000 ____D C:\Program Files (x86)\Intel 2017-01-18 00:36 - 2017-01-18 00:36 - 00000000 ____D C:\Intel 2017-01-18 00:36 - 2014-06-13 11:25 - 00024792 _____ (hxxp://www.asmedia.com.tw) C:\Windows\SysWOW64\Drivers\asmtufdriver.sys 2017-01-18 00:36 - 2014-02-24 10:49 - 00014464 _____ C:\Windows\SysWOW64\Drivers\AsUpIO.sys 2017-01-18 00:36 - 2013-01-28 15:58 - 00014848 _____ (ASUSTek Computer Inc.) C:\Windows\SysWOW64\Drivers\AiChargerPlus.sys 2017-01-16 17:05 - 2017-01-16 17:05 - 00000000 ____D C:\Users\Johnny\Documents\EA Games 2017-01-13 11:45 - 2017-01-13 11:45 - 00000000 ____D C:\Users\Johnny\Documents\BioWare 2017-01-12 14:51 - 2017-01-12 14:51 - 00001009 _____ C:\Users\Public\Desktop\Origin.lnk 2017-01-12 14:51 - 2017-01-12 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2017-01-12 14:51 - 2017-01-12 14:51 - 00000000 ____D C:\Program Files (x86)\Origin 2017-01-12 14:50 - 2017-01-12 21:32 - 00000000 ____D C:\Users\Johnny\AppData\Local\Origin 2017-01-12 14:50 - 2017-01-12 14:50 - 55365224 _____ (Electronic Arts) C:\Users\Johnny\Downloads\OriginThinSetup.exe 2017-01-09 15:52 - 2017-01-09 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2017-01-09 15:51 - 2017-01-09 15:51 - 06293184 _____ (Piriform Ltd) C:\Users\Johnny\Downloads\spsetup130.exe 2017-01-09 14:56 - 2017-01-09 14:56 - 00000000 ____D C:\ProgramData\DAEMON Tools Pro 2017-01-09 14:55 - 2017-01-18 00:40 - 00000000 ____D C:\ProgramData\ASUS 2017-01-09 14:55 - 2017-01-09 14:55 - 00016896 _____ (ASUS) C:\Windows\AsTaskSched.dll 2017-01-09 14:51 - 2017-01-09 14:51 - 00000022 _____ C:\Windows\GPU-Z.INI 2017-01-09 14:47 - 2017-01-19 12:00 - 00003140 _____ C:\Windows\System32\Tasks\GPU Tweak II 2017-01-09 14:45 - 2017-01-18 00:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS 2017-01-09 14:45 - 2017-01-09 14:45 - 00001083 _____ C:\Users\Public\Desktop\ASUS GPU TweakII.lnk 2017-01-09 14:45 - 2017-01-09 14:45 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS 2017-01-09 14:43 - 2017-01-09 14:43 - 00000000 ____D C:\Windows\Downloaded Installations 2017-01-09 14:26 - 2017-01-09 14:26 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2017-01-09 14:26 - 2016-12-11 19:23 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2017-01-09 14:26 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2017-01-09 14:26 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll 2017-01-09 14:26 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2017-01-09 14:26 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe 2017-01-09 14:25 - 2016-12-12 03:37 - 40125496 _____ C:\Windows\system32\nvcompiler.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 34703416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 28138432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 17436808 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 17376896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 14410472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 14073400 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2017-01-09 14:25 - 2016-12-12 03:37 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 10345696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 09151216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 08753832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 03640376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 03206080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437633.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437633.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 01036224 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00975416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00944184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00896056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00894760 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00491536 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2017-01-09 14:25 - 2016-12-12 03:37 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00126008 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys 2017-01-09 14:25 - 2016-12-12 03:37 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2017-01-09 14:25 - 2016-12-12 03:37 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json 2017-01-09 14:25 - 2016-12-12 03:37 - 00000669 _____ C:\Windows\system32\nv-vk64.json 2017-01-09 14:19 - 2017-01-19 11:53 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1 2017-01-09 14:19 - 2017-01-09 14:19 - 00001432 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2017-01-09 14:18 - 2017-01-09 14:18 - 00004238 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-01-09 14:18 - 2016-12-13 00:36 - 00156096 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2017-01-09 14:18 - 2016-12-13 00:36 - 00123840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2017-01-09 14:18 - 2016-12-13 00:36 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2017-01-09 14:18 - 2016-12-12 15:36 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat 2017-01-01 13:41 - 2017-01-01 13:41 - 05135576 _____ (Facebook Inc.) C:\Users\Johnny\Downloads\Trendmicro_T1133285773455997T_.exe 2017-01-01 13:41 - 2017-01-01 13:41 - 00305832 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys 2017-01-01 13:41 - 2017-01-01 13:41 - 00000036 _____ C:\Users\Johnny\AppData\Local\housecall.guid.cache ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-01-19 12:42 - 2015-07-31 22:55 - 00000940 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2017-01-19 12:25 - 2015-07-27 11:22 - 00000000 ____D C:\ProgramData\NVIDIA 2017-01-19 12:06 - 2014-11-21 09:44 - 01826596 _____ C:\Windows\system32\PerfStringBackup.INI 2017-01-19 12:06 - 2014-11-21 09:05 - 00806500 _____ C:\Windows\system32\perfh013.dat 2017-01-19 12:06 - 2014-11-21 09:05 - 00162500 _____ C:\Windows\system32\perfc013.dat 2017-01-19 12:06 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf 2017-01-19 11:59 - 2016-11-18 13:51 - 00000000 ____D C:\Users\Johnny\AppData\LocalLow\Mozilla 2017-01-19 11:59 - 2016-11-10 15:18 - 00000374 _____ C:\Windows\Tasks\DriverToolkit Autorun.job 2017-01-19 11:59 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-01-19 11:54 - 2015-08-01 14:05 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2017-01-19 11:53 - 2016-05-24 12:37 - 00000000 ____D C:\Windows\pss 2017-01-19 11:53 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2017-01-19 11:51 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\ELAM 2017-01-18 23:58 - 2015-07-28 12:07 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\vlc 2017-01-18 15:27 - 2015-12-09 14:45 - 00000000 ____D C:\Windows\System32\Tasks\Remediation 2017-01-18 01:03 - 2015-07-27 11:18 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1444268496-2388825387-1195434288-1001 2017-01-18 00:38 - 2015-07-27 11:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-01-18 00:37 - 2015-07-27 11:17 - 00000000 ____D C:\Program Files\ASUS 2017-01-18 00:36 - 2015-07-27 11:17 - 00000000 ____D C:\Program Files (x86)\ASUS 2017-01-17 17:33 - 2015-07-28 09:21 - 00000000 ____D C:\Program Files (x86)\Steam 2017-01-17 16:11 - 2015-07-28 09:29 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\Origin 2017-01-17 16:11 - 2015-07-28 09:28 - 00000000 ____D C:\ProgramData\Origin 2017-01-16 13:46 - 2016-04-26 11:31 - 00000000 ____D C:\Users\Johnny\AppData\Local\Jagex 2017-01-16 13:46 - 2016-04-26 11:31 - 00000000 ____D C:\ProgramData\Jagex 2017-01-12 21:33 - 2015-08-05 21:15 - 00000000 ____D C:\Users\Johnny\AppData\Local\CrashDumps 2017-01-12 16:30 - 2015-07-27 12:17 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2017-01-12 16:30 - 2015-07-27 12:17 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-01-12 12:46 - 2015-07-28 09:28 - 00000000 ____D C:\ProgramData\Electronic Arts 2017-01-12 12:18 - 2015-07-27 11:35 - 00000000 ____D C:\Windows\system32\MRT 2017-01-12 12:18 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp 2017-01-12 12:17 - 2015-07-27 11:35 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-01-11 23:58 - 2016-08-27 15:42 - 00000000 ____D C:\Users\Johnny\Desktop\Totally.Accurate.Battle.Simulator.v0.1.06 2017-01-11 22:10 - 2015-12-14 12:50 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2017-01-10 23:03 - 2016-02-10 13:39 - 01596416 ___SH C:\Users\Johnny\Desktop\Thumbs.db 2017-01-10 22:42 - 2015-07-31 22:55 - 00003692 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-01-10 22:42 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-01-10 22:42 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Macromed 2017-01-09 15:52 - 2015-07-31 13:22 - 00000808 _____ C:\Users\Public\Desktop\Speccy.lnk 2017-01-09 14:54 - 2015-07-27 11:17 - 00010375 _____ C:\Windows\Ascd_hwid.ini 2017-01-09 14:54 - 2015-07-27 11:16 - 00047206 _____ C:\Windows\Ascd_tmp.ini 2017-01-09 14:44 - 2013-08-22 15:44 - 00377928 _____ C:\Windows\system32\FNTCACHE.DAT 2017-01-09 14:26 - 2015-11-20 23:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-01-09 14:25 - 2015-11-20 23:15 - 00000000 ____D C:\Users\Johnny\AppData\Local\NVIDIA Corporation 2017-01-09 14:25 - 2015-07-27 11:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-01-09 14:25 - 2015-07-27 11:21 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-01-09 14:25 - 2015-07-27 11:21 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-01-09 14:23 - 2016-11-27 21:56 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2017-01-09 14:23 - 2016-11-07 11:31 - 00000000 ____D C:\Program Files\paint.net 2017-01-09 14:19 - 2016-11-06 15:57 - 00000000 ____D C:\Users\Johnny\Desktop\Nieuwe map (2) 2017-01-09 14:19 - 2016-10-12 11:48 - 00003834 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-01-09 14:19 - 2015-08-23 11:08 - 00000000 ____D C:\Users\Johnny\Desktop\Nieuwe map 2017-01-09 14:19 - 2015-07-27 11:25 - 00000000 ____D C:\Users\Johnny\AppData\Local\NVIDIA 2017-01-09 14:18 - 2016-10-12 11:48 - 00003830 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-01-09 14:18 - 2016-10-12 11:48 - 00003830 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-01-09 14:18 - 2016-10-12 11:48 - 00003822 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-01-09 14:18 - 2016-10-12 11:48 - 00003646 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-01-09 14:18 - 2016-10-12 11:48 - 00003586 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-12-28 13:28 - 2016-04-05 11:07 - 00000000 ____D C:\Users\Johnny\AppData\Local\Windows Live 2016-12-25 14:25 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\catroot2 2016-12-23 12:21 - 2015-08-01 22:39 - 00000000 ____D C:\Users\Johnny\AppData\Local\Diagnostics 2016-12-23 11:44 - 2015-09-28 22:00 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\uTorrent 2016-12-23 11:44 - 2015-07-27 11:13 - 00000000 ____D C:\Users\Johnny\AppData\LocalLow 2016-12-22 23:42 - 2014-11-21 14:11 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-12-22 23:42 - 2014-11-21 14:11 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-12-22 22:38 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness 2016-12-22 11:41 - 2015-07-30 11:29 - 00000000 ____D C:\ProgramData\lx_Cats ==================== Bestanden in de root van sommige mappen ======= 2017-01-01 13:41 - 2017-01-01 13:41 - 0000036 _____ () C:\Users\Johnny\AppData\Local\housecall.guid.cache 2015-07-31 14:11 - 2016-07-15 15:48 - 0003638 _____ () C:\ProgramData\Coinstaller.log 2015-07-27 11:19 - 2015-07-27 11:19 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2015-08-23 10:42 - 2015-08-23 10:42 - 0000252 _____ () C:\ProgramData\FastPics.log 2016-07-15 17:36 - 2016-07-15 17:36 - 0000178 _____ () C:\ProgramData\lxdw.log 2015-10-01 23:13 - 2017-01-04 07:09 - 0022430 _____ () C:\ProgramData\lxebJSW.log 2015-07-30 11:28 - 2017-01-11 10:26 - 0055313 _____ () C:\ProgramData\lxebscan.log 2015-10-01 23:13 - 2015-10-01 23:13 - 0000000 _____ () C:\ProgramData\LxWbGwLog.log 2015-12-17 17:00 - 2015-12-17 17:00 - 0000016 _____ () C:\ProgramData\mntemp 2017-01-09 14:19 - 2017-01-19 12:00 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log 2017-01-09 14:19 - 2017-01-19 11:53 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1 2016-01-15 06:43 - 2016-01-15 06:43 - 1015978 _____ () C:\ProgramData\SPLE83.tmp 2015-08-23 10:29 - 2015-08-23 10:29 - 0000000 _____ () C:\ProgramData\UpdaterLog.txt ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\Windows\system32\winlogon.exe => Bestand is getekend C:\Windows\system32\wininit.exe => Bestand is getekend C:\Windows\explorer.exe => Bestand is getekend C:\Windows\SysWOW64\explorer.exe => Bestand is getekend C:\Windows\system32\svchost.exe => Bestand is getekend C:\Windows\SysWOW64\svchost.exe => Bestand is getekend C:\Windows\system32\services.exe => Bestand is getekend C:\Windows\system32\User32.dll => Bestand is getekend C:\Windows\SysWOW64\User32.dll => Bestand is getekend C:\Windows\system32\userinit.exe => Bestand is getekend C:\Windows\SysWOW64\userinit.exe => Bestand is getekend C:\Windows\system32\rpcss.dll => Bestand is getekend C:\Windows\system32\dnsapi.dll => Bestand is getekend C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2017-01-13 14:05 ==================== Eind van FRST.txt ============================