Scanresultaten van Farbar Recovery Scan Tool (FRST) (x86) Versie: 14-05-2017 Gestart door Gebruiker (Beheerder) op GEBRUIK-NQUATT3 (18-05-2017 11:04:22) Gestart vanaf C:\Users\Gebruiker\Downloads Geladen Profielen: Gebruiker (Beschikbare Profielen: Gebruiker) Platform: Microsoft Windows 7 Ultimate (X86) Taal: Nederlands (Nederland) Internet Explorer Versie 9 (Standaardbrowser: Chrome) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Seagate Technology LLC) C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE (Secunia) C:\Program Files\Secunia\PSI\psia.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (Spotify Ltd) C:\Users\Gebruiker\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Secunia) C:\Program Files\Secunia\PSI\sua.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE (Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE (Nero AG) C:\Program Files\Nero\Update\NASvc.exe (Microsoft Corporation) C:\Windows\System32\wuauclt.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\prevhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220288 2017-04-27] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [263232 2017-05-15] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [28734456 2017-05-16] (Dropbox, Inc.) HKU\S-1-5-21-2339896189-3432171972-131133129-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7618776 2017-05-05] (Piriform Ltd) HKU\S-1-5-21-2339896189-3432171972-131133129-1000\...\Run: [Spotify Web Helper] => C:\Users\Gebruiker\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-05-07] (Spotify Ltd) HKU\S-1-5-21-2339896189-3432171972-131133129-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-2339896189-3432171972-131133129-1000\...\Policies\Explorer: [NoResolveSearch] 1 HKU\S-1-5-21-2339896189-3432171972-131133129-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKU\S-1-5-21-2339896189-3432171972-131133129-1000\...\Policies\Explorer: [NoInternetOpenWith] 1 HKU\S-1-5-21-2339896189-3432171972-131133129-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2016-04-08] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office OneNote 2003 Quick Launch.lnk [2013-04-04] ShortcutTarget: Microsoft Office OneNote 2003 Quick Launch.lnk -> C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE (Microsoft Corporation) BootExecute: autocheck autochk * ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 195.130.130.2 195.130.131.2 Tcpip\..\Interfaces\{0CD62D59-AAF3-4D7E-851E-439CB83DA63B}: [DhcpNameServer] 195.130.130.2 195.130.131.2 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT HKU\S-1-5-21-2339896189-3432171972-131133129-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-118-756 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-2339896189-3432171972-131133129-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms} HKU\S-1-5-21-2339896189-3432171972-131133129-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-118-756 HKU\S-1-5-21-2339896189-3432171972-131133129-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/nl-be/?ocid=iehp SearchScopes: HKLM -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms} SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms} SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms} SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> DEVIANTART_SEARCH URL = hxxp://search.deviantart.com/?qh=boost%3Apopular&q={searchTerms} SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> Event_ID_SEARCH URL = hxxp://www.eventid.net/display.asp?eventid={searchTerms}&source= SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> GOOGLE_SEARCH URL = hxxp://www.google.nl/search?hl=nl&q={searchTerms}&meta= SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> MSDN_ENHANCED_SEARCH URL = hxxp://search.msdn.microsoft.com/search/default.aspx?siteId=0&tab=0&query={searchTerms} SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> MSDOWNLOADCENTER URL = hxxp://www.microsoft.com/downloads/results.aspx?pocId=&freetext={SearchTerms}&DisplayLang=nl SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> MSHELP URL = hxxp://support.microsoft.com/?kbid={SearchTerms} SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> MSTECHNET URL = hxxp://social.technet.microsoft.com/Search/nl-NL?query={SearchTerms} SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> NEOWIN_FORUM URL = hxxp://www.neowin.net/forum/index.php?act=Search&CODE=01&keywords={searchTerms}&forums=all SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> WIKIPEDIA_SEARCH URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> YOUTUBE_SEARCH URL = hxxp://www.youtube.com/results?search_query={searchTerms}&search=Search SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-2339896189-3432171972-131133129-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms} BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-04-29] (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-24] (Google Inc.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-29] (Oracle Corporation) BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-24] (Google Inc.) DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/be/Core/Player/2020PlayerAX_IKEA_Win32.cab DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect125.cab DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) FireFox: ======== FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: (HP Smart Web Printing) - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-10-03] [niet getekend] FF HKU\S-1-5-21-2339896189-3432171972-131133129-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-29] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-29] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default [2017-05-18] CHR Extension: (Google Drive) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-15] CHR Extension: (Adblock Plus) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-22] CHR Extension: (Offline Documenten) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-15] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09] CHR Extension: (Chrome Media Router) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-13] CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [264432 2017-05-15] (AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [5782800 2017-05-15] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [1189720 2017-04-27] (AVG Technologies CZ, s.r.o.) R2 Basics Service; C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe [124280 2007-10-09] (Seagate Technology LLC) S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-09] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-09] (Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42288 2017-05-16] (Dropbox, Inc.) R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [Bestand niet getekend] S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes) R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [462632 2010-02-18] (Nero AG) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [Bestand niet getekend] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [Bestand niet getekend] R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia) R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 2310_00; C:\Windows\system32\DRIVERS\2310_00.sys [135200 2009-06-12] (HighPoint Technologies, Inc.) S3 ahcix86s; C:\Windows\system32\DRIVERS\ahcix86s.sys [118784 2007-03-21] (ATI Technologies Inc.) S3 arcm_x86; C:\Windows\system32\DRIVERS\arcm_x86.sys [43552 2009-11-09] (ARECA Technology Corporation) R1 avgbdisk; C:\Windows\system32\drivers\avgbdiskx.sys [135872 2017-05-15] (AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdriverx.sys [260616 2017-05-15] (AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\system32\drivers\avgbidshx.sys [151024 2017-05-15] (AVG Technologies CZ, s.r.o.) R0 avgblog; C:\Windows\system32\drivers\avgblogx.sys [270344 2017-05-15] (AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\system32\drivers\avgbunivx.sys [43992 2017-05-15] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [35264 2017-05-15] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [109056 2017-05-15] (AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [91464 2017-05-15] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [63280 2017-05-15] (AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [765704 2017-05-15] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [483736 2017-05-15] (AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\system32\drivers\avgStm.sys [116280 2017-05-15] (AVG Technologies CZ, s.r.o.) R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [42272 2014-04-28] (AVG Technologies) R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [280928 2017-05-15] (AVG Technologies CZ, s.r.o.) S3 DxVGrb; C:\Windows\System32\drivers\DxVGrb.sys [179200 2012-01-10] (Dexetek ) S1 epp; C:\EEK\bin32\epp.sys [105248 2016-11-23] (Emsisoft Ltd) R1 epp32; C:\EEK\RUN\epp32.sys [114200 2016-07-25] (Emsisoft GmbH) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [59904 2017-03-22] () R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-10-01] (Glarysoft Ltd) S3 hcw99rc; C:\Windows\System32\Drivers\hcw99rc.sys [10368 2007-03-23] (Hauppauge Computer Works, Inc.) S3 hptiop; C:\Windows\system32\DRIVERS\hptiop.sys [15008 2009-04-28] (HighPoint Technologies, Inc.) S3 hptmv; C:\Windows\system32\DRIVERS\hptmv.sys [71968 2006-09-27] (HighPoint Technologies, Inc.) S3 hptmv6; C:\Windows\system32\DRIVERS\hptmv6.sys [120352 2007-11-01] (HighPoint Technologies, Inc.) R0 ioatdma; C:\Windows\System32\Drivers\ioatdma.sys [36552 2009-11-16] (Intel Corporation) S3 ioatdma1; C:\Windows\System32\Drivers\qd16032.sys [36552 2009-11-16] (Intel Corporation) S3 ioatdma2; C:\Windows\System32\Drivers\qd26032.sys [37576 2009-11-16] (Intel Corporation) S3 iSSetup; C:\Windows\system32\DRIVERS\iSSetup.sys [75672 2007-06-19] (Intel Corporation) S3 iteraid; C:\Windows\system32\DRIVERS\iteraid.sys [29184 2007-05-02] (ITE Tech. Inc.) R0 johci; C:\Windows\System32\DRIVERS\johci.sys [15200 2008-10-09] (JMicron ) S3 JRAID; C:\Windows\system32\DRIVERS\jraid.sys [98928 2010-01-27] (JMicron Technology Corp.) S3 LVUSBSta; C:\Windows\System32\DRIVERS\LVUSBSta.sys [41888 2007-05-09] (Logitech Inc.) S3 m5289; C:\Windows\system32\DRIVERS\m5289.sys [52480 2005-07-04] (ULi Electronics Inc.) R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [161216 2017-04-29] (Malwarebytes) S3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [96704 2017-05-11] (Malwarebytes) S3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [39360 2017-05-11] (Malwarebytes) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [220088 2017-05-12] (Malwarebytes) S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [64288 2017-05-11] (Malwarebytes) S3 MegaSR1; C:\Windows\system32\DRIVERS\MegaSR1.sys [397632 2008-06-26] (LSI Corporation, Inc.) S3 MODRC; C:\Windows\system32\DRIVERS\modrc.sys [13056 2006-11-14] (DiBcom S.A.) S3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [7680 2009-06-03] () S3 mv61xx; C:\Windows\system32\DRIVERS\mv61xx.sys [137728 2007-05-25] (Marvell Semiconductor, Inc.) S3 NBv834x; C:\Windows\system32\DRIVERS\Xeno7x86.sys [104992 2009-11-01] (Bigfoot Networks, Inc.) S3 nvamacpi; C:\Windows\system32\DRIVERS\NVAMACPI.sys [24608 2009-07-17] (NVIDIA Corporation) S3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [1276832 2007-05-09] (Logitech Inc.) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-07-03] (Secunia) S3 rr172x; C:\Windows\system32\DRIVERS\rr172x.sys [101920 2007-11-01] (HighPoint Technologies, Inc.) S3 rr174x; C:\Windows\system32\DRIVERS\rr174x.sys [126496 2007-11-01] (HighPoint Technologies, Inc.) S3 rr2210; C:\Windows\system32\DRIVERS\rr2210.sys [122400 2007-11-01] (HighPoint Technologies, Inc.) S3 rr232x; C:\Windows\system32\DRIVERS\rr232x.sys [120352 2008-05-05] (HighPoint Technologies, Inc.) S3 rr2340; C:\Windows\system32\DRIVERS\rr2340.sys [128608 2009-12-31] (HighPoint Technologies, Inc.) S3 rr2522; C:\Windows\system32\DRIVERS\rr2522.sys [132704 2009-12-31] (HighPoint Technologies, Inc.) S3 rr62x; C:\Windows\system32\DRIVERS\rr62x.sys [122464 2009-12-21] (HighPoint Technologies, Inc.) S3 SI3112; C:\Windows\system32\DRIVERS\SI3112.sys [69168 2007-01-26] (Silicon Image, Inc.) S3 SI3112r; C:\Windows\system32\DRIVERS\SI3112r.sys [110128 2007-02-01] (Silicon Image, Inc) S3 SI3114; C:\Windows\system32\DRIVERS\SI3114.sys [68912 2006-11-10] (Silicon Image, Inc.) S3 SI3114r; C:\Windows\system32\DRIVERS\SI3114R.sys [110384 2007-04-11] (Silicon Image, Inc) S3 Si3114r5; C:\Windows\system32\DRIVERS\Si3114r5.sys [209200 2007-02-07] (Silicon Image, Inc) S3 SI3124; C:\Windows\system32\DRIVERS\SI3124.sys [76208 2006-11-02] (Silicon Image, Inc.) S3 Si3124r5; C:\Windows\system32\DRIVERS\Si3124r5.sys [207152 2006-09-20] (Silicon Image, Inc) S3 SI3132; C:\Windows\system32\DRIVERS\SI3132.sys [80424 2007-10-03] (Silicon Image, Inc) S3 Si3132r5; C:\Windows\system32\DRIVERS\Si3132r5.sys [217128 2008-10-30] (Silicon Image, Inc) R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [19240 2007-10-03] (Silicon Image, Inc) R0 SiRemFil; C:\Windows\System32\DRIVERS\SiRemFil.sys [15400 2007-10-03] (Silicon Image, Inc) S3 viamraid; C:\Windows\system32\DRIVERS\viamraid.sys [138464 2010-03-05] (VIA Technologies Inc.,Ltd) S3 videX32; C:\Windows\system32\DRIVERS\videX32.sys [13976 2010-02-11] (VIA Technologies, Inc.) S3 WinTVCIUSB; C:\Windows\system32\DRIVERS\hcw11.sys [91136 2008-02-28] (Hauppauge Computer Works, Inc.) S3 WmBEnum; C:\Windows\system32\drivers\WmBEnum.sys [19336 2008-01-24] (Logitech Inc.) S3 WmFilter; C:\Windows\system32\drivers\WmFilter.sys [28168 2008-01-24] (Logitech Inc.) S3 WmHidLo; C:\Windows\system32\drivers\WmHidLo.sys [29192 2008-01-24] (Logitech Inc.) S3 WmVirHid; C:\Windows\system32\drivers\WmVirHid.sys [14728 2008-01-24] (Logitech Inc.) S3 WmXlCore; C:\Windows\system32\drivers\WmXlCore.sys [48904 2008-01-24] (Logitech Inc.) R0 xfilt; C:\Windows\System32\DRIVERS\xfilt.sys [23192 2010-02-11] (VIA Technologies, Inc.) S3 dbx; system32\DRIVERS\dbx.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Gemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-05-18 11:04 - 2017-05-18 11:04 - 00025149 _____ C:\Users\Gebruiker\Downloads\FRST.txt 2017-05-18 10:42 - 2017-05-18 10:42 - 01770496 _____ (Farbar) C:\Users\Gebruiker\Desktop\FRST (1).exe 2017-05-18 10:40 - 2017-05-18 11:04 - 00000000 ____D C:\FRST 2017-05-18 10:40 - 2017-05-18 10:40 - 01770496 _____ (Farbar) C:\Users\Gebruiker\Downloads\FRST.exe 2017-05-18 10:33 - 2017-05-18 10:33 - 00000000 ____D C:\rsit 2017-05-18 09:47 - 2017-05-18 09:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2017-05-17 15:12 - 2017-05-17 15:12 - 00313366 _____ C:\Users\Gebruiker\Downloads\WindowsUpdateDiagnostic (2).diagcab 2017-05-17 15:11 - 2017-05-17 15:11 - 00195346 _____ C:\Users\Gebruiker\Downloads\wu170509.diagcab 2017-05-17 15:11 - 2017-05-17 15:11 - 00195346 _____ C:\Users\Gebruiker\Downloads\wu170509 (2).diagcab 2017-05-17 15:11 - 2017-05-17 15:11 - 00195346 _____ C:\Users\Gebruiker\Downloads\wu170509 (1).diagcab 2017-05-17 12:17 - 2017-05-17 12:17 - 00313366 _____ C:\Users\Gebruiker\Downloads\WindowsUpdateDiagnostic (1).diagcab 2017-05-17 12:08 - 2017-05-17 12:08 - 00313366 _____ C:\Users\Gebruiker\Downloads\WindowsUpdateDiagnostic.diagcab 2017-05-17 08:41 - 2017-05-17 08:41 - 09548112 _____ (Piriform Ltd) C:\Users\Gebruiker\Downloads\ccsetup530.exe 2017-05-16 23:01 - 2017-05-16 23:01 - 00042288 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2017-05-15 08:14 - 2017-05-15 08:13 - 00331896 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2017-05-13 13:09 - 2017-05-13 13:09 - 00016974 _____ C:\Users\Gebruiker\Downloads\pdf2doc.zip 2017-05-12 17:03 - 2017-05-12 17:03 - 00425767 _____ C:\Users\Gebruiker\Downloads\TA Nieuwsflits dag 33 2017 05 12.pdf 2017-05-11 19:47 - 2017-05-11 19:47 - 00467817 _____ C:\Users\Gebruiker\Downloads\SCN_0001.pdf 2017-05-08 19:45 - 2017-05-08 19:45 - 00140984 _____ C:\Users\Gebruiker\Downloads\invoice3175104-1.pdf 2017-05-07 18:24 - 2017-05-07 18:24 - 03449304 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Gebruiker\Downloads\AVG_Protection_Free_1606 (1).exe 2017-05-07 18:22 - 2017-05-07 18:22 - 04102600 _____ C:\Users\Gebruiker\Downloads\adwcleaner_6.046 (1).exe 2017-05-03 08:34 - 2017-05-03 08:34 - 09390672 _____ (Piriform Ltd) C:\Users\Gebruiker\Downloads\ccsetup529 (2).exe 2017-05-01 08:40 - 2017-05-01 08:40 - 09390672 _____ (Piriform Ltd) C:\Users\Gebruiker\Downloads\ccsetup529 (1).exe 2017-04-29 09:31 - 2017-04-29 09:31 - 00064652 _____ C:\Users\Gebruiker\Downloads\706725564816 (2).pdf 2017-04-29 09:31 - 2017-04-29 09:31 - 00061206 _____ C:\Users\Gebruiker\Downloads\707125844473.pdf 2017-04-29 09:25 - 2017-04-29 09:25 - 00064652 _____ C:\Users\Gebruiker\Downloads\706725564816.pdf 2017-04-29 09:25 - 2017-04-29 09:25 - 00064652 _____ C:\Users\Gebruiker\Downloads\706725564816 (1).pdf 2017-04-29 08:31 - 2017-04-29 08:31 - 00000000 ____D C:\Program Files\Common Files\Java 2017-04-29 08:25 - 2017-04-29 08:25 - 00738368 _____ (Oracle Corporation) C:\Users\Gebruiker\Downloads\chromeinstall-8u131.exe 2017-04-29 08:25 - 2017-04-29 08:25 - 00000000 ____D C:\ProgramData\Emsisoft 2017-04-29 08:05 - 2017-04-29 07:35 - 00024064 _____ C:\Windows\zoek-delete.exe 2017-04-29 07:33 - 2017-04-29 07:33 - 01309184 _____ C:\Users\Gebruiker\Downloads\zoek (2).exe 2017-04-29 07:31 - 2017-04-29 07:31 - 01309184 _____ C:\Users\Gebruiker\Downloads\zoek (1).exe 2017-04-28 11:00 - 2017-04-28 11:00 - 04102600 _____ C:\Users\Gebruiker\Downloads\adwcleaner_6.046.exe 2017-04-28 07:26 - 2017-05-12 16:39 - 00220088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2017-04-28 07:26 - 2017-05-11 19:40 - 00064288 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2017-04-28 07:26 - 2017-05-11 19:28 - 00096704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2017-04-28 07:26 - 2017-05-11 19:28 - 00039360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2017-04-28 07:26 - 2017-04-29 08:11 - 00161216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys 2017-04-28 07:25 - 2017-05-17 11:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-04-28 07:25 - 2017-04-28 07:25 - 00002020 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-04-28 07:25 - 2017-04-28 07:25 - 00000000 ____D C:\Program Files\Malwarebytes 2017-04-28 07:25 - 2017-03-22 11:02 - 00059904 _____ C:\Windows\system32\Drivers\mbae.sys 2017-04-28 07:23 - 2017-04-28 07:23 - 60107896 _____ (Malwarebytes ) C:\Users\Gebruiker\Downloads\Malwarebytes_Anti_Malware_v3.0.6.1469.exe 2017-04-28 07:18 - 2017-04-28 07:18 - 01204856 _____ (Adobe Systems Incorporated) C:\Users\Gebruiker\Downloads\readerdc_nl_ka_crd_install.exe 2017-04-28 07:08 - 2017-04-28 07:08 - 09390672 _____ (Piriform Ltd) C:\Users\Gebruiker\Downloads\ccsetup529.exe 2017-04-25 16:02 - 2017-05-17 11:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2017-04-23 12:05 - 2017-04-23 12:05 - 00202391 _____ C:\Users\Gebruiker\Downloads\VLABZOOM_902040_002031.pdf 2017-04-21 07:10 - 2017-04-21 07:14 - 00000000 ____D C:\Users\Gebruiker\Desktop\2017-04 (apr) 2017-04-21 05:43 - 2017-04-21 05:44 - 57495104 _____ (Oracle Corporation) C:\Users\Gebruiker\Downloads\Java_Runtime_Environment_(32bit)_v8_Update_131.exe 2017-04-21 05:37 - 2017-04-21 05:37 - 00179678 _____ C:\Users\Gebruiker\Downloads\returnLabel-5863383.pdf 2017-04-21 05:37 - 2017-04-21 05:37 - 00179678 _____ C:\Users\Gebruiker\Downloads\returnLabel-5863383 (1).pdf 2017-04-19 06:21 - 2017-04-19 06:30 - 56993980 _____ C:\Users\Gebruiker\Downloads\20170416 Paasfeest bij Veerle en Jan.zip 2017-04-19 06:12 - 2017-04-19 06:12 - 00917959 _____ C:\Users\Gebruiker\Downloads\TA Nieuwsflits dag 9 2017 04 18.pdf 2017-04-18 06:07 - 2017-04-18 06:08 - 16793416 _____ C:\Users\Gebruiker\Downloads\Glary_Utilities_v5.73.0.94.exe ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-05-18 10:42 - 2017-03-09 07:37 - 00001008 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2017-05-18 10:33 - 2013-04-19 09:39 - 00000000 ____D C:\Program Files\Trend Micro 2017-05-18 10:32 - 2009-07-14 06:34 - 00012848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-05-18 10:32 - 2009-07-14 06:34 - 00012848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-05-18 10:21 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf 2017-05-18 09:47 - 2017-03-09 07:37 - 00000000 ____D C:\Program Files\Dropbox 2017-05-18 09:23 - 2015-10-01 07:05 - 00000000 ____D C:\Program Files\Glary Utilities 5 2017-05-18 09:18 - 2017-03-09 07:37 - 00001004 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2017-05-18 09:18 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-05-17 12:11 - 2013-09-18 21:45 - 00000000 ____D C:\Users\Gebruiker\AppData\Local\ElevatedDiagnostics 2017-05-17 11:47 - 2017-02-20 10:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2017-05-17 11:47 - 2016-08-13 07:32 - 00000000 ____D C:\AdwCleaner 2017-05-17 11:47 - 2015-10-29 19:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-05-17 11:47 - 2015-03-29 13:01 - 00000000 ____D C:\Users\Gebruiker\AppData\Roaming\Spotify 2017-05-17 11:47 - 2013-09-26 20:47 - 00000000 ____D C:\EEK 2017-05-17 11:47 - 2013-04-07 13:28 - 00000000 ____D C:\Program Files\CCleaner 2017-05-17 11:47 - 2013-04-03 22:41 - 00000000 ____D C:\Users\Gebruiker 2017-05-17 11:47 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF 2017-05-17 11:47 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration 2017-05-17 10:27 - 2013-04-04 04:29 - 00000000 ____D C:\Temp 2017-05-17 08:42 - 2013-04-07 13:28 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-05-15 09:22 - 2013-04-04 18:53 - 00000000 ____D C:\Users\Gebruiker\AppData\Local\Adobe 2017-05-15 08:15 - 2017-04-06 06:32 - 00116280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgstm.sys 2017-05-15 08:14 - 2017-04-06 06:32 - 00483736 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2017-05-15 08:14 - 2017-04-06 06:32 - 00280928 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2017-05-15 08:14 - 2017-04-06 06:32 - 00109056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2017-05-15 08:14 - 2017-04-06 06:32 - 00091464 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2017-05-15 08:14 - 2017-04-06 06:32 - 00063280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2017-05-15 08:14 - 2017-04-06 06:32 - 00035264 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys 2017-05-15 08:13 - 2017-04-06 06:32 - 00765704 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2017-05-15 08:13 - 2017-04-06 06:32 - 00270344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgblogx.sys 2017-05-15 08:13 - 2017-04-06 06:32 - 00260616 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriverx.sys 2017-05-15 08:13 - 2017-04-06 06:32 - 00151024 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidshx.sys 2017-05-15 08:13 - 2017-04-06 06:32 - 00135872 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiskx.sys 2017-05-15 08:13 - 2017-04-06 06:32 - 00043992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbunivx.sys 2017-05-12 16:54 - 2013-11-10 10:00 - 00002161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-05-12 16:54 - 2013-11-10 10:00 - 00002149 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-05-10 07:07 - 2013-04-03 22:46 - 01676908 _____ C:\Windows\system32\PerfStringBackup.INI 2017-05-10 07:07 - 2009-07-14 10:27 - 00745020 _____ C:\Windows\system32\perfh013.dat 2017-05-10 07:07 - 2009-07-14 10:27 - 00152972 _____ C:\Windows\system32\perfc013.dat 2017-05-09 11:31 - 2014-07-09 18:29 - 00803320 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2017-05-09 11:31 - 2014-07-09 18:29 - 00144888 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2017-05-09 11:31 - 2013-04-04 18:46 - 00000000 ____D C:\Windows\system32\Macromed 2017-05-07 19:16 - 2015-03-29 13:01 - 00000000 ____D C:\Users\Gebruiker\AppData\Local\Spotify 2017-05-07 18:33 - 2015-10-26 07:18 - 00000000 ____D C:\Users\Gebruiker\AppData\Local\AvgSetupLog 2017-05-06 06:51 - 2015-11-26 09:59 - 00000978 _____ C:\Users\Public\Desktop\AVG.lnk 2017-05-03 08:12 - 2017-03-09 07:47 - 00000000 ___RD C:\Users\Gebruiker\Dropbox 2017-04-29 08:32 - 2014-08-10 19:02 - 00000000 ____D C:\Program Files\Java 2017-04-29 08:29 - 2015-10-29 19:52 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2017-04-28 07:42 - 2017-01-06 08:39 - 00000000 ____D C:\ProgramData\Skype 2017-04-28 07:25 - 2013-04-07 12:50 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-04-28 07:06 - 2017-01-06 08:39 - 00000000 ____D C:\Users\Gebruiker\AppData\Roaming\Skype 2017-04-28 06:40 - 2015-09-02 08:52 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit 2017-04-21 07:08 - 2016-12-21 08:19 - 00000000 ____D C:\ProgramData\HP 2017-04-18 06:13 - 2016-04-27 10:20 - 00000000 ____D C:\ProgramData\GlarySoft 2017-04-18 06:12 - 2016-05-20 08:18 - 00004188 _____ C:\GUDownLoaddebug.txt 2017-04-18 06:12 - 2015-10-01 07:05 - 00001050 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk 2017-04-18 06:12 - 2015-10-01 07:05 - 00001038 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk ==================== Bestanden in de root van sommige mappen ======= 2015-01-11 14:46 - 2015-01-11 14:46 - 0003584 _____ () C:\Users\Gebruiker\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-04-05 18:37 - 2013-04-05 18:37 - 0000017 _____ () C:\Users\Gebruiker\AppData\Local\resmon.resmoncfg 2013-04-07 16:13 - 2014-07-02 14:08 - 0008950 _____ () C:\ProgramData\hpzinstall.log ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\Windows\explorer.exe => Bestand is getekend C:\Windows\system32\winlogon.exe => Bestand is getekend C:\Windows\system32\wininit.exe => Bestand is getekend C:\Windows\system32\svchost.exe => Bestand is getekend C:\Windows\system32\services.exe => Bestand is getekend C:\Windows\system32\User32.dll => Bestand is getekend C:\Windows\system32\userinit.exe => Bestand is getekend C:\Windows\system32\rpcss.dll => Bestand is getekend C:\Windows\system32\dnsapi.dll => Bestand is getekend C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2017-04-24 10:07 ==================== Eind van FRST.txt ============================