Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 05-03-2017 Gestart door Alain (Beheerder) op ALAIN-PC (07-03-2017 12:04:43) Gestart vanaf C:\Users\Alain\Downloads Geladen Profielen: Alain (Beschikbare Profielen: Alain) Platform: Windows 7 Professional Service Pack 1 (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: IE) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe () C:\Windows\System32\nvwmi64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Luis Cobian, CobianSoft) C:\Program Files (x86)\Cobian Backup 11\cbService.exe (Fork, Ltd.) C:\Windows\Prey\wpxsvc.exe (Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe (Node.js) C:\Windows\Prey\versions\1.6.6\bin\node.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (Luis Cobian, CobianSoft) C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe (Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Utilities 16\sMonitor\SSDMonitor.exe (Fork, Ltd.) C:\Windows\Prey\versions\1.6.6\node_modules\triggers\bin\lightevt.exe (SafeNet Inc.) C:\Windows\System32\hasplms.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (iOSinstaller.com) C:\Program Files (x86)\iOSinstaller\updater.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE (Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\ns.exe (PC Tools) C:\Program Files (x86)\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\ns.exe (Sony Corporation) E:\PlayMemories Home\PMBDeviceInfoProvider.exe (DEVGURU Co., LTD.) E:\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.3.1.204\WsAppService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE () C:\Windows\System32\nvwmi64.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.EXE (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor) HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2171960 2016-02-09] () HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [449168 2012-03-26] (CANON INC.) HKLM-x32\...\Run: [Cobian Backup 11 interface] => C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe [4407808 2013-03-07] (Luis Cobian, CobianSoft) HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Symantec\Norton Utilities 16\sMonitor\SSDMonitor.exe [106112 2017-01-09] (Symantec Corporation) Winlogon\Notify\ScCertProp: wlnotify.dll [X] HKU\S-1-5-19\...\RunOnce: [] => [X] HKU\S-1-5-20\...\RunOnce: [] => [X] HKU\S-1-5-21-131995894-4090845228-1571000866-1001\...\Policies\system: [EnableLUA] 1 HKU\S-1-5-21-131995894-4090845228-1571000866-1001\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-131995894-4090845228-1571000866-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\yowindow.scr [859080 2017-02-10] (repkasoft) HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1407912 2017-01-16] (Garmin Ltd. or its subsidiaries) HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-12-13] (Microsoft Corporation) HKU\S-1-5-18\...\RunOnce: [] => [X] ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\buShell.dll [2017-02-20] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\buShell.dll [2017-02-20] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\buShell.dll [2017-02-20] (Symantec Corporation) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] () ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine32\22.9.0.71\buShell.dll [2017-02-20] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine32\22.9.0.71\buShell.dll [2017-02-20] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine32\22.9.0.71\buShell.dll [2017-02-20] (Symantec Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2016-08-17] ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Hosts: Hosts bestand niet gevonden in de standaardmap Tcpip\Parameters: [DhcpNameServer] 195.130.130.5 195.130.131.5 Tcpip\..\Interfaces\{B423CB84-900D-48CB-8ED9-45DB2BBB4BFF}: [DhcpNameServer] 195.130.130.5 195.130.131.5 Internet Explorer: ================== HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-131995894-4090845228-1571000866-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-131995894-4090845228-1571000866-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hln.be/ SearchScopes: HKLM-x32 -> DefaultScope waarde ontbreekt SearchScopes: HKU\S-1-5-21-131995894-4090845228-1571000866-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-131995894-4090845228-1571000866-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=oem&geo=NL&ver=22.9.0.71&locale=nl_NL&guid=4F026673-8B51-4549-9E1A-07CFF3FBA7F1&doi=2016-12-19&gct=kwd&qsrc=2869 SearchScopes: HKU\S-1-5-21-131995894-4090845228-1571000866-1001 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHumfA2eDXzyC7zHBin1U4Bvc_7IbnXs_7gu0_cBcwfjQmDgEPUso6ZpbGz2tBjVJj2k2MlpGC_9oaOA75iqmoCOKNQBFjMRSOnnqZV2aD4leuNQS271tv77HR-DDOFF3AXc__Z8HAx5BAiX8TuvtuJ_nxv-YRB8utLeAhNTRA,,&q={searchTerms} BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\coIEPlg.dll [2017-02-20] (Symantec Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-09-05] (Adobe Systems Incorporated) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-09-05] (Adobe Systems Incorporated) BHO-x32: Geen Naam -> {0EEDB912-C5FA-486F-8334-57288578C627} -> Geen bestand BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation) BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine32\22.9.0.71\coIEPlg.dll [2017-02-20] (Symantec Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-27] (Oracle Corporation) BHO-x32: Aanmeldhulp voor Microsoft-account -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-09-05] (Adobe Systems Incorporated) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-27] (Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-09-05] (Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-09-05] (Adobe Systems Incorporated) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\coIEPlg.dll [2017-02-20] (Symantec Corporation) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-09-05] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.9.0.71\coIEPlg.dll [2017-02-20] (Symantec Corporation) Toolbar: HKU\S-1-5-21-131995894-4090845228-1571000866-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-09-05] (Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-131995894-4090845228-1571000866-1001 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Geen bestand Toolbar: HKU\S-1-5-21-131995894-4090845228-1571000866-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\coIEPlg.dll [2017-02-20] (Symantec Corporation) DPF: HKLM-x32 {53049A9A-1122-4673-B8D4-12F545AE3285} hxxp://cam.zandov.cz:7780/AVC_AX_764.cab DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://files.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab DPF: HKLM-x32 {971FC730-55F1-461F-83FD-B3BF5E1F039E} hxxp://178.118.89.93:8910/AVC_AX_742.cab DPF: HKLM-x32 {B8FB8104-FDC9-4339-8AFF-2EE4C8C92998} hxxp://180.250.56.133:8080/AVC_AX_NVR.cab DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab FireFox: ======== FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.0.50\coFFAddon FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.0.50\coFFAddon [2017-03-07] FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.0.50\coFFAddon FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-07-12] (Google) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-27] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-27] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-13] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> E:\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> E:\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-09-26] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems) FF Plugin HKU\S-1-5-21-131995894-4090845228-1571000866-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Alain\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-23] (Google Inc.) FF Plugin HKU\S-1-5-21-131995894-4090845228-1571000866-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Alain\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-23] (Google Inc.) FF Plugin HKU\S-1-5-21-131995894-4090845228-1571000866-1001: vasco.com/VascoCardReaderPlugin -> C:\Users\Alain\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin.dll [2014-10-27] (VASCO Data Security) FF Plugin HKU\S-1-5-21-131995894-4090845228-1571000866-1001: vasco.com/VascoCardReaderPlugin64 -> C:\Users\Alain\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin64.dll [2014-10-27] (VASCO Data Security) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-12-13] (Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default [2017-03-02] CHR Extension: (Google Documenten) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-02] CHR Extension: (Google Drive) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-02] CHR Extension: (YouTube) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-02] CHR Extension: (Adobe Acrobat) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-02] CHR Extension: (Offline Documenten) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-02] CHR Extension: (Norton Identity Safe) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-03-02] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-02] CHR Extension: (Gmail) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-02] CHR Extension: (Chrome Media Router) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-02] CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\Exts\Chrome.crx [2017-03-07] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\Exts\Chrome.crx [2017-03-07] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-09-05] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2016-08-17] (Adobe Systems) [Bestand niet getekend] R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated) R2 CobianBackup11; C:\Program Files (x86)\Cobian Backup 11\cbService.exe [1131008 2013-03-07] (Luis Cobian, CobianSoft) [Bestand niet getekend] R2 CronService; C:\Windows\Prey\wpxsvc.exe [611854 2016-10-02] (Fork, Ltd.) [Bestand niet getekend] S3 DiskDoctorService; C:\Program Files (x86)\Symantec\Norton Utilities 16\Tools\Disk Doctor\DiskDoctorSrv.exe [1150552 2015-03-17] (Symantec Corporation) R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1039376 2017-01-16] (Garmin Ltd. or its subsidiaries) R2 hasplms; C:\Windows\system32\hasplms.exe [4665168 2015-09-23] (SafeNet Inc.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Bestand niet getekend] R2 iOSinstallerUpdater; C:\Program Files (x86)\iOSinstaller\updater.exe [165376 2016-12-24] (iOSinstaller.com) [Bestand niet getekend] R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.9.0.71\NS.exe [326160 2017-02-21] (Symantec Corporation) R2 NU16StartManagerSvc; C:\Program Files (x86)\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe [795736 2015-03-17] (PC Tools) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation) R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation) R2 NVWMI; C:\Windows\system32\nvwmi64.exe [3164728 2016-02-09] () R2 PMBDeviceInfoProvider; E:\PlayMemories Home\PMBDeviceInfoProvider.exe [506912 2016-06-24] (Sony Corporation) S3 SpeedDiskService; C:\Program Files (x86)\Symantec\Norton Utilities 16\Tools\SpeedDisk\SpeedDiskSrv.exe [1163864 2015-03-17] (Symantec Corporation) R2 ss_conn_service; E:\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.) R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2005-01-31] (Ulead Systems, Inc.) [Bestand niet getekend] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.204\WsAppService.exe [437392 2016-11-16] (Wondershare) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation) R3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [77912 2015-09-23] (SafeNet Inc.) R3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [81368 2015-09-23] (SafeNet Inc.) R3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [322560 2015-09-23] (SafeNet Inc.) R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\BASHDefs\20170301.003\BHDrvx64.sys [1874136 2016-11-07] (Symantec Corporation) R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1609000.047\ccSetx64.sys [174240 2017-02-20] (Symantec Corporation) R1 cdrblock; C:\Windows\System32\DRIVERS\cdrblock.sys [36696 2011-04-21] (Grass Valley K.K.) R3 ComproHID; C:\Windows\System32\DRIVERS\ComproHID64.sys [9088 2007-10-01] (Compro Tech., Inc.) R3 ComproHID; C:\Windows\SysWOW64\DRIVERS\ComproHID64.sys [9088 2007-10-01] (Compro Tech., Inc.) S3 cpuz134; geen ImagePath S3 cxbu0x64; C:\Windows\System32\DRIVERS\cxbu0x64.sys [191224 2014-04-05] (HID Global Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497312 2017-01-26] (Symantec Corporation) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [16776 2010-07-15] () [Bestand niet getekend] S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14216 2010-07-15] () [Bestand niet getekend] R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156824 2017-01-26] (Symantec Corporation) S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9096 2010-07-15] () [Bestand niet getekend] S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [8456 2010-07-15] () [Bestand niet getekend] R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [350552 2015-09-23] (SafeNet Inc.) R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\IPSDefs\20170306.001\IDSvia64.sys [1038024 2017-01-13] (Symantec Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-17] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-11-17] (NVIDIA Corporation) S3 Ph3xIB64; C:\Windows\System32\DRIVERS\Ph3xIB64.sys [1627520 2009-06-10] (NXP Semiconductors) R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions) R3 SRTSP; C:\Windows\System32\Drivers\NSx64\1609000.047\SRTSP64.SYS [760992 2017-02-20] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1609000.047\SRTSPX64.SYS [49312 2017-02-20] (Symantec Corporation) R0 SymEFASI; C:\Windows\System32\drivers\NSx64\1609000.047\SYMEFASI64.SYS [1716896 2017-02-20] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102608 2017-03-07] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NSx64\1609000.047\Ironx64.SYS [291480 2017-02-20] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NSx64\1609000.047\SYMNETS.SYS [567512 2017-02-20] (Symantec Corporation) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Apple, Inc.) [Bestand niet getekend] R3 VMHybrid64; C:\Windows\System32\DRIVERS\VMHybr64.sys [1403648 2011-05-06] (Compro Technology, Inc.) R3 VMHybrid64; C:\Windows\SysWOW64\DRIVERS\VMHybr64.sys [1410048 2011-03-14] (Compro Technology, Inc.) S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20160915.023\ENG64.SYS [X] S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20160915.023\EX64.SYS [X] S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X] S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-03-07 12:04 - 2017-03-07 12:04 - 00027482 _____ C:\Users\Alain\Downloads\FRST.txt 2017-03-07 12:04 - 2017-03-07 12:04 - 00000000 ____D C:\FRST 2017-03-07 12:03 - 2017-03-07 12:03 - 02423808 _____ (Farbar) C:\Users\Alain\Downloads\FRST64.exe 2017-03-07 05:56 - 2017-03-07 05:56 - 00000000 ____D C:\Windows\System32\Tasks\Norton Security 2017-03-07 05:50 - 2017-03-07 05:50 - 00003216 _____ C:\Windows\System32\Tasks\Norton WSC Integration 2017-03-07 04:40 - 2017-03-07 04:40 - 06971584 _____ (Tim Kosse) C:\Users\Alain\Downloads\FileZilla_3.24.1_win64-setup.exe 2017-03-06 09:09 - 2017-03-06 09:09 - 00000000 ____D C:\Users\Alain\Downloads\LMA_TRS.2016.B&L 2017-03-05 14:54 - 2017-03-05 14:54 - 00000000 ____D C:\Users\Alain\AppData\Local\FromDocToPDFTooltab 2017-03-03 13:29 - 2017-03-03 15:33 - 00000000 ____D C:\Users\Alain\Desktop\Zéphyrine 2017-03-03 08:55 - 2017-03-03 08:55 - 00003128 _____ C:\Windows\System32\Tasks\{356C55AD-023E-4863-B7FC-1C4AAEA10694} 2017-03-03 08:51 - 2017-03-03 08:51 - 00001228 _____ C:\Users\Alain\Desktop\Windows Explorer.lnk 2017-03-03 08:45 - 2017-03-03 08:55 - 00000000 ____D C:\Users\Alain\Downloads\backups 2017-03-03 08:41 - 2017-03-03 08:41 - 00388608 _____ (Trend Micro Inc.) C:\Users\Alain\Downloads\HijackThis.exe 2017-03-02 17:14 - 2016-01-08 09:51 - 00161280 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ss_mdm.sys 2017-03-02 17:14 - 2016-01-08 09:51 - 00127488 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ss_bus.sys 2017-03-02 17:14 - 2016-01-08 09:51 - 00018944 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ss_mdfl.sys 2017-03-02 17:14 - 2016-01-08 09:51 - 00015872 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ss_whnt.sys 2017-03-02 17:14 - 2016-01-08 09:51 - 00015360 _____ (MCCI Corporation) C:\Windows\system32\Drivers\ss_cmnt.sys 2017-03-01 09:46 - 2017-03-01 11:29 - 628231075 _____ C:\Users\Alain\Downloads\legomarveldemo (1).zip 2017-03-01 05:41 - 2017-03-06 15:08 - 00009580 _____ C:\Users\Alain\Desktop\Wachtwoorden.xlsx 2017-03-01 05:40 - 2017-03-01 05:40 - 00000000 ____D C:\Users\Alain\Documents\Aangepaste Office-sjablonen 2017-02-27 15:54 - 2017-02-27 15:54 - 00000218 _____ C:\Users\Alain\AppData\Local\recently-used.xbel 2017-02-26 17:04 - 2017-02-26 22:37 - 00000000 ____D C:\Users\Alain\AppData\Roaming\VidCoder 2017-02-26 17:04 - 2017-02-26 17:04 - 00000552 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidCoder.lnk 2017-02-26 17:03 - 2017-02-26 17:03 - 09851498 _____ (RandomEngy ) C:\Users\Alain\Downloads\VidCoder-1.5.32-x64.exe 2017-02-26 16:59 - 2017-02-26 16:59 - 00000540 _____ C:\Users\Alain\Desktop\MakeMKV.lnk 2017-02-26 16:59 - 2017-02-26 16:59 - 00000000 ____D C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV 2017-02-26 16:59 - 2017-02-26 16:59 - 00000000 ____D C:\Users\Alain\.MakeMKV 2017-02-26 16:58 - 2017-02-26 16:58 - 10897511 _____ (GuinpinSoft inc) C:\Users\Alain\Downloads\Setup_MakeMKV_v1.10.4.exe 2017-02-23 14:23 - 2017-02-23 14:23 - 16956064 _____ C:\Users\Alain\Downloads\yosetup (1).exe 2017-02-21 06:20 - 2017-02-21 06:20 - 00000000 ____D C:\Users\Alain\AppData\Local\gtk-3.0 2017-02-21 06:19 - 2017-02-27 15:52 - 00000000 ____D C:\Users\Alain\AppData\Local\RawTherapee 2017-02-21 06:18 - 2017-02-21 06:18 - 34943097 _____ C:\Users\Alain\Downloads\RawTherapee_5.0-r1-gtk3_WinVista_64.zip 2017-02-19 07:40 - 2017-02-19 07:40 - 06375944 _____ C:\Users\Alain\Desktop\lens_fx100-400_manual_01.pdf 2017-02-16 11:05 - 2017-02-16 11:06 - 00000000 ____D C:\Users\Alain\Desktop\februari 2017-02-14 08:02 - 2017-03-07 12:02 - 00000358 _____ C:\Windows\Tasks\DriverToolkit Autorun.job 2017-02-14 08:02 - 2017-02-14 08:06 - 00002714 _____ C:\Windows\System32\Tasks\DriverToolkit Autorun 2017-02-14 07:52 - 2017-02-14 09:14 - 00000000 ____D C:\Program Files (x86)\DriverToolkit 2017-02-14 07:52 - 2017-02-14 07:52 - 00000000 ____D C:\Users\Alain\AppData\Local\DriverToolkit 2017-02-13 12:13 - 2016-02-09 09:39 - 03164728 ____R C:\Windows\system32\nvwmi64.exe 2017-02-13 12:13 - 2016-02-09 09:39 - 00004772 ____R C:\Windows\system32\nvPerfProvider.man 2017-02-13 12:13 - 2016-02-09 06:41 - 06368824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2017-02-13 12:13 - 2016-02-09 06:41 - 02993720 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2017-02-13 12:13 - 2016-02-09 06:41 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2017-02-13 12:13 - 2016-02-09 06:41 - 01264696 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2017-02-13 12:13 - 2016-02-09 06:41 - 00530368 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2017-02-13 12:13 - 2016-02-09 06:41 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2017-02-13 12:13 - 2016-02-09 06:41 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2017-02-13 12:13 - 2016-02-09 06:41 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2017-02-13 12:13 - 2016-02-06 02:49 - 06154909 _____ C:\Windows\system32\nvcoproc.bin 2017-02-13 12:12 - 2016-02-09 09:39 - 31081920 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2017-02-13 12:12 - 2016-02-09 09:39 - 21193032 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2017-02-13 12:12 - 2016-02-09 09:39 - 17625136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2017-02-13 12:12 - 2016-02-09 09:39 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436191.dll 2017-02-13 12:12 - 2016-02-09 09:39 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436191.dll 2017-02-13 12:12 - 2016-02-09 09:39 - 00469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2017-02-13 12:12 - 2016-02-09 09:39 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 42982336 _____ C:\Windows\system32\nvcompiler.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 37616696 _____ C:\Windows\SysWOW64\nvcompiler.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 24916536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 20733832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 17218792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 16995576 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 12383288 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2017-02-13 12:11 - 2016-02-09 09:39 - 03145272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 02722872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00950328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00880576 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00747064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00691256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00502080 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00423360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00423080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00379448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00153208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2017-02-13 12:11 - 2016-02-09 09:39 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2017-02-13 11:56 - 2017-02-13 11:56 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2017-02-13 11:56 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2017-02-13 11:56 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll 2017-02-13 11:56 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2017-02-13 11:56 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe 2017-02-10 12:57 - 2017-02-10 12:57 - 00859080 _____ (repkasoft) C:\Windows\yowindow.scr ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-03-07 12:03 - 2017-01-31 06:09 - 00000000 ____D C:\Users\Alain\Documents\Outlook-bestanden 2017-03-07 12:02 - 2016-10-02 07:19 - 00000000 ____D C:\Windows\Prey 2017-03-07 12:02 - 2016-06-21 04:50 - 00000288 _____ C:\Windows\Tasks\NUAutoUpdate.job 2017-03-07 12:02 - 2016-06-13 15:43 - 00000000 ____D C:\ProgramData\TEMP 2017-03-07 12:02 - 2015-12-13 14:38 - 00000000 ____D C:\ProgramData\NVIDIA 2017-03-07 12:01 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-03-07 10:52 - 2009-07-14 05:45 - 00015184 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-03-07 10:52 - 2009-07-14 05:45 - 00015184 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-03-07 10:41 - 2016-01-12 05:34 - 00000342 _____ C:\Windows\Tasks\PPTAssistantUpdateTask_Alain.job 2017-03-07 10:41 - 2016-01-12 05:34 - 00000330 _____ C:\Windows\Tasks\PPTAssistantNotifyTask_Alain.job 2017-03-07 10:32 - 2016-06-05 14:07 - 00000000 ____D C:\Users\Alain\Documents\Sony PMB 2017-03-07 10:20 - 2016-01-09 09:55 - 00000390 _____ C:\Windows\Tasks\WpsNotifyTask_Alain.job 2017-03-07 10:07 - 2016-01-09 09:55 - 00000390 _____ C:\Windows\Tasks\WpsUpdateTask_Alain.job 2017-03-07 09:04 - 2015-12-13 16:28 - 00000000 ____D C:\Windows\System32\Tasks\Remediation 2017-03-07 08:45 - 2016-01-12 05:33 - 00000584 _____ C:\Windows\Tasks\WpsExternal_Alain_20160112053349.job 2017-03-07 06:18 - 2015-12-13 16:28 - 00000000 ____D C:\Program Files\Common Files\AV 2017-03-07 05:50 - 2016-12-19 05:55 - 00002286 _____ C:\Users\Public\Desktop\Norton Security.lnk 2017-03-07 05:50 - 2016-12-19 05:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security 2017-03-07 05:50 - 2016-12-19 05:53 - 00000000 ____D C:\Windows\system32\Drivers\NSx64 2017-03-07 05:50 - 2016-12-19 05:53 - 00000000 ____D C:\Program Files (x86)\Norton Security 2017-03-07 05:12 - 2016-06-09 04:58 - 00000000 ____D C:\Users\Alain\AppData\Local\Popcorn-Time-CE 2017-03-07 04:42 - 2016-01-13 09:46 - 00000000 ____D C:\Users\Alain\AppData\Roaming\FileZilla 2017-03-07 04:42 - 2009-07-14 10:16 - 00759120 _____ C:\Windows\system32\perfh013.dat 2017-03-07 04:42 - 2009-07-14 10:16 - 00159836 _____ C:\Windows\system32\perfc013.dat 2017-03-07 04:42 - 2009-07-14 06:13 - 01708720 _____ C:\Windows\system32\PerfStringBackup.INI 2017-03-07 04:42 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2017-03-07 04:17 - 2016-12-19 05:55 - 00102608 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 2017-03-07 04:17 - 2016-12-19 05:55 - 00008298 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT 2017-03-07 04:07 - 2015-12-13 15:42 - 00000000 ____D C:\Users\Alain\AppData\Local\Adobe 2017-03-06 09:16 - 2016-01-24 05:12 - 00002147 _____ C:\Users\Public\Desktop\ImTOO Video Converter Ultimate.lnk 2017-03-05 17:03 - 2015-12-15 08:37 - 00000000 ____D C:\Users\Alain\AppData\Local\CrashDumps 2017-03-05 15:17 - 2016-03-04 13:56 - 00000000 ____D C:\Users\Alain\AppData\Roaming\Bigasoft Video Downloader Pro 2017-03-04 14:04 - 2015-12-15 19:41 - 00000000 ____D C:\Program Files (x86)\Cobian Backup 11 2017-03-03 14:38 - 2016-10-03 08:57 - 00000000 ____D C:\Users\Alain\Desktop\Nieuwe map (2) 2017-03-03 08:56 - 2015-12-27 10:41 - 00000000 ____D C:\Users\Alain\AppData\Roaming\Shareaza 2017-03-02 19:59 - 2016-06-13 15:43 - 00000000 ____D C:\Users\Alain\AppData\Roaming\Norton Utilities 16 2017-03-02 17:01 - 2016-07-12 09:48 - 00000000 ____D C:\Users\Alain\Documents\SelfMV 2017-03-02 16:32 - 2015-12-14 09:14 - 00000000 ____D C:\Users\Alain\AppData\Local\Google 2017-03-02 16:32 - 2015-12-14 09:14 - 00000000 ____D C:\Program Files (x86)\Google 2017-03-02 16:30 - 2015-12-13 15:10 - 00000782 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-03-02 16:29 - 2015-12-14 09:14 - 00000000 ____D C:\Program Files\Google 2017-03-02 07:35 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2017-02-26 16:59 - 2015-12-13 14:34 - 00000000 ____D C:\Users\Alain 2017-02-26 16:41 - 2015-12-29 06:31 - 00000000 ____D C:\Users\Alain\AppData\Roaming\DVD Flick 2017-02-23 10:18 - 2015-12-13 14:49 - 00000000 ____D C:\Windows\system32\MRT 2017-02-23 10:15 - 2015-12-13 14:49 - 138020592 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-02-21 07:20 - 2009-07-14 05:45 - 05220096 _____ C:\Windows\system32\FNTCACHE.DAT 2017-02-21 06:20 - 2015-12-13 15:58 - 00188272 _____ C:\Users\Alain\AppData\Local\GDIPFONTCACHEV1.DAT 2017-02-19 17:01 - 2009-07-14 06:08 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2017-02-19 05:49 - 2016-01-05 11:45 - 00000000 ____D C:\ProgramData\xml_param 2017-02-19 05:39 - 2016-12-15 04:49 - 00000000 ____D C:\Users\Alain\AppData\Local\Windows Live 2017-02-19 05:02 - 2016-12-06 03:34 - 00004608 _____ C:\Users\Alain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2017-02-18 05:48 - 2016-01-13 16:35 - 00000000 ____D C:\Program Files\DIFX 2017-02-13 12:13 - 2015-12-13 14:38 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-02-13 12:13 - 2015-12-13 14:38 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-02-13 12:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help 2017-02-13 12:12 - 2016-10-31 07:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-02-13 12:12 - 2015-12-13 14:38 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-02-12 14:29 - 2016-03-04 13:48 - 00000000 ____D C:\ProgramData\YTD Video Downloader 2017-02-09 17:54 - 2015-12-14 04:55 - 00000000 ____D C:\Users\Alain\Documents\Snagit 2017-02-08 04:38 - 2017-01-31 05:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2017-02-08 04:34 - 2009-07-14 03:34 - 00000541 _____ C:\Windows\win.ini 2017-02-05 17:09 - 2016-03-06 06:50 - 00000000 ____D C:\Users\Alain\AppData\Roaming\Garmin ==================== Bestanden in de root van sommige mappen ======= 2016-08-26 10:12 - 2016-08-26 11:17 - 7065600 _____ () C:\Program Files (x86)\GUT2781.tmp 2012-05-04 08:04 - 2012-05-04 08:04 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll 2016-01-15 15:34 - 2016-04-05 06:04 - 0000132 _____ () C:\Users\Alain\AppData\Roaming\Adobe BMP Format CS6 Prefs 2016-06-07 10:20 - 2016-06-07 10:20 - 0000132 _____ () C:\Users\Alain\AppData\Roaming\Adobe PNG Format CS6 Prefs 2016-02-03 14:15 - 2016-02-03 14:15 - 0000132 _____ () C:\Users\Alain\AppData\Roaming\Adobe Targa Format CS6 Prefs 2016-05-08 09:47 - 2016-05-08 09:47 - 6494208 _____ () C:\Users\Alain\AppData\Roaming\agent.dat 2016-05-08 09:47 - 2016-05-08 09:47 - 0054272 _____ () C:\Users\Alain\AppData\Roaming\ApplicationHosting.dat 2016-05-08 09:47 - 2016-05-08 09:47 - 0065568 _____ () C:\Users\Alain\AppData\Roaming\Config.xml 2016-05-08 09:47 - 2016-05-08 09:47 - 0072717 _____ () C:\Users\Alain\AppData\Roaming\Driptanstrong.tst 2016-05-08 09:47 - 2016-05-08 09:47 - 1626777 _____ () C:\Users\Alain\AppData\Roaming\Fixlux.tst 2016-05-08 09:47 - 2016-05-08 09:47 - 0015840 _____ () C:\Users\Alain\AppData\Roaming\InstallationConfiguration.xml 2016-05-08 09:47 - 2016-05-08 09:47 - 0127488 _____ () C:\Users\Alain\AppData\Roaming\Installer.dat 2016-11-05 17:19 - 2016-11-05 17:19 - 0000112 _____ () C:\Users\Alain\AppData\Roaming\JP2K CS6-voorkeuren 2016-05-08 09:47 - 2016-05-08 09:47 - 0126464 _____ () C:\Users\Alain\AppData\Roaming\lobby.dat 2016-05-08 09:47 - 2016-05-08 09:47 - 0018432 _____ () C:\Users\Alain\AppData\Roaming\Main.dat 2016-05-08 09:47 - 2016-05-08 09:47 - 0005568 _____ () C:\Users\Alain\AppData\Roaming\md.xml 2016-05-08 09:47 - 2016-05-08 09:47 - 0126464 _____ () C:\Users\Alain\AppData\Roaming\noah.dat 2016-05-08 09:47 - 2016-05-08 09:47 - 0032038 _____ () C:\Users\Alain\AppData\Roaming\uninstall_temp.ico 2016-12-06 03:34 - 2017-02-19 05:02 - 0004608 _____ () C:\Users\Alain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-07-20 04:07 - 2016-07-20 04:07 - 0000093 _____ () C:\Users\Alain\AppData\Local\fusioncache.dat 2016-02-24 16:09 - 2016-02-24 16:09 - 0000001 _____ () C:\Users\Alain\AppData\Local\llftool.4.40.agreement 2017-02-27 15:54 - 2017-02-27 15:54 - 0000218 _____ () C:\Users\Alain\AppData\Local\recently-used.xbel 2015-12-13 17:41 - 2015-12-13 17:41 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-01-23 20:44 - 2016-01-23 20:44 - 0000016 _____ () C:\ProgramData\mntemp ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\Windows\system32\winlogon.exe => Bestand is getekend C:\Windows\system32\wininit.exe => Bestand is getekend C:\Windows\SysWOW64\wininit.exe => Bestand is getekend C:\Windows\explorer.exe => Bestand is getekend C:\Windows\SysWOW64\explorer.exe => Bestand is getekend C:\Windows\system32\svchost.exe => Bestand is getekend C:\Windows\SysWOW64\svchost.exe => Bestand is getekend C:\Windows\system32\services.exe => Bestand is getekend C:\Windows\system32\User32.dll => Bestand is getekend C:\Windows\SysWOW64\User32.dll => Bestand is getekend C:\Windows\system32\userinit.exe => Bestand is getekend C:\Windows\SysWOW64\userinit.exe => Bestand is getekend C:\Windows\system32\rpcss.dll => Bestand is getekend C:\Windows\system32\dnsapi.dll => Bestand is getekend C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2017-03-05 14:21 ==================== Eind van FRST.txt ============================