Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 01-06-2017 Gestart door Johnny (Beheerder) op JOHNNY (01-06-2017 22:55:31) Gestart vanaf C:\Users\Johnny\Desktop Geladen Profielen: Johnny (Beschikbare Profielen: Johnny) Platform: Windows 8.1 (Update) (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: FF) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Logitech, Inc.) C:\Program Files\Logitech\SolarApp\L4301_Solar.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe () C:\Windows\SysWOW64\ASGT.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.19\AsusFanControlService.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe ( ) C:\Windows\System32\lxebcoms.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\nis.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\nis.exe () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (Corsair Components, Inc.) C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (TODO: ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Corsair Components, Inc.) C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe (Mozilla Corporation) C:\Program Files (x86)\mozilla firefox\firefox.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\conathst.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-09-15] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2014-09-01] (Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [lxebmon.exe] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe [772712 2013-01-23] () HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe [150264 2013-01-23] () HKLM\...\Run: [etMonitor] => C:\Windows\etMon.exe HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [888344 2016-01-07] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1994752 2014-02-20] (Wondershare) HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-03-14] (Valve Corporation) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [55349888 2015-09-04] (Skype Technologies S.A.) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [DAEMON Tools Lite] => D:\DAEMON Tools Lite\daemon.exe -autorun HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [CorsairLink4] => C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe [26972368 2017-05-04] (Corsair Components, Inc.) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-06] (Disc Soft Ltd) HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\MountPoints2: {6a9b792e-e447-11e5-8297-3010b39ca39e} - "L:\LaunchEAWG.exe" HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\MountPoints2: {c25a6dde-182e-11e7-8351-3010b39ca39e} - "F:\LaunchEAWG.exe" HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\MountPoints2: {fdb4510e-2db2-11e6-82af-3010b39ca39e} - "G:\LaunchEAWG.exe" ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\buShell.dll [2017-05-11] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\buShell.dll [2017-05-11] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\buShell.dll [2017-05-11] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine32\22.9.3.13\buShell.dll [2017-05-11] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine32\22.9.3.13\buShell.dll [2017-05-11] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine32\22.9.3.13\buShell.dll [2017-05-11] (Symantec Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-07-27] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\Users\Johnny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trillian.lnk [2016-09-12] ShortcutTarget: Trillian.lnk -> C:\Program Files (x86)\Trillian\trillian.exe (Cerulean Studios) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 195.130.130.1 195.130.131.1 Tcpip\..\Interfaces\{6972F335-DCC2-47D5-A77D-CEE772D926C8}: [DhcpNameServer] 195.130.130.1 195.130.131.1 Tcpip\..\Interfaces\{B6E9D39D-FE03-4086-AB85-9B470843AFD8}: [DhcpNameServer] 195.130.130.1 195.130.131.1 Internet Explorer: ================== HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.be/ SearchScopes: HKU\S-1-5-21-1444268496-2388825387-1195434288-1001 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp1_ch&p={searchTerms} SearchScopes: HKU\S-1-5-21-1444268496-2388825387-1195434288-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=1000690&geo=BE&ver=22.9.3.13&locale=nl_BE&guid=48C0FE7F-A35A-4ADC-9C1A-0797BD552B79&doi=2016-09-01&gct=kwd&qsrc=2869 BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\coIEPlg.dll [2017-05-11] (Symantec Corporation) BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine32\22.9.3.13\coIEPlg.dll [2017-05-11] (Symantec Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-30] (Oracle Corporation) BHO-x32: Lexmark Printable Web -> {D2C5E510-BE6D-42CC-9F61-E4F939078474} -> C:\Program Files\Lexmark Printable Web\bho.dll [2010-02-10] () BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-30] (Oracle Corporation) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\coIEPlg.dll [2017-05-11] (Symantec Corporation) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine32\22.9.3.13\coIEPlg.dll [2017-05-11] (Symantec Corporation) Toolbar: HKU\S-1-5-21-1444268496-2388825387-1195434288-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\coIEPlg.dll [2017-05-11] (Symantec Corporation) FireFox: ======== FF DefaultProfile: mnad7wpq.default FF ProfilePath: C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default [2017-06-01] FF Homepage: Mozilla\Firefox\Profiles\mnad7wpq.default -> hxxp://www.nieuwsblad.be/ FF Extension: (Norton Identity Safe) - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default\Extensions\idsafe@norton.com.xpi [2017-01-17] FF Extension: (FlashGot) - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-01-28] FF Extension: (Video DownloadHelper) - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-05-09] FF Extension: (Greasemonkey) - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2017-04-27] FF SearchPlugin: C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mnad7wpq.default\searchplugins\limetorrentscc-search.xml [2015-10-04] FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.2.15\coFFAddon FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.2.15\coFFAddon [2017-05-19] FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.2.15\coFFAddon FF HKU\S-1-5-21-1444268496-2388825387-1195434288-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => niet gevonden FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] () FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1223183.dll [2015-12-22] (Adobe Systems, Inc.) FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-30] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-30] (Oracle Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-01-20] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-01-20] (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1444268496-2388825387-1195434288-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Johnny\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-25] (Unity Technologies ApS) Chrome: ======= CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\Exts\Chrome.crx [2017-05-17] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\Exts\Chrome.crx [2017-05-17] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] () R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2016-06-27] () [Bestand niet getekend] R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-04-25] (ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] () [Bestand niet getekend] R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.19\AsusFanControlService.exe [396088 2015-04-20] (ASUSTeK Computer Inc.) S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433688 2016-01-07] (BlueStack Systems, Inc.) S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413208 2016-01-07] (BlueStack Systems, Inc.) S3 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [859672 2016-01-07] (BlueStack Systems, Inc.) R3 CLink4Service; C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe [32464 2017-05-04] (Corsair Components, Inc.) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-06] (Disc Soft Ltd) R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240576 2013-10-06] (DTS, Inc) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Bestand niet getekend] R2 L4301_Solar; C:\Program Files\Logitech\SolarApp\L4301_Solar.exe [405744 2013-01-30] (Logitech, Inc.) S2 lxebCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\lxebserv.exe [45736 2010-04-14] (Lexmark International, Inc.) R2 lxeb_device; C:\Windows\system32\lxebcoms.exe [1052328 2010-04-14] ( ) R2 lxeb_device; C:\Windows\SysWOW64\lxebcoms.exe [598696 2010-04-14] ( ) R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.9.3.13\NIS.exe [326160 2017-05-11] (Symantec Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [464440 2017-01-20] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-02-23] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2146704 2017-04-25] (Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3115928 2017-04-25] (Electronic Arts) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-03-14] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X] ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] () R3 ASMTFilter; C:\Windows\SysWow64\drivers\asmtufdriver.sys [24792 2014-06-13] (hxxp://www.asmedia.com.tw) R0 asstor64; C:\Windows\System32\drivers\asstor64.sys [84816 2014-03-14] (Asmedia Technology) R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] () R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation) R3 ASUSstpt; C:\Windows\System32\drivers\ASUSstpt.sys [27392 2013-03-28] (MCCI Corporation) R3 ASUSumsc; C:\Windows\System32\drivers\ASUSumsc.sys [151808 2013-03-28] (MCCI Corporation) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7474864 2015-08-03] (Broadcom Corporation) R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\BASHDefs\20170522.003\BHDrvx64.sys [1862784 2017-05-18] (Symantec Corporation) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [154680 2016-01-07] (BlueStack Systems) R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1609030.00D\ccSetx64.sys [174232 2017-05-11] (Symantec Corporation) R3 cpuz143; C:\Windows\TEMP\cpuz143\cpuz143_x64.sys [48952 2017-06-01] (CPUID) S3 DCamUSBET; C:\Windows\system32\DRIVERS\etDevice64.sys [527744 2007-07-23] (eMPIA Technology, Inc.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-03-09] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-03-09] (Disc Soft Ltd) R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [457496 2014-03-14] (Intel Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507032 2017-05-10] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156824 2017-05-10] (Symantec Corporation) S3 FiltUSBET; C:\Windows\system32\DRIVERS\etFilter64.sys [281088 2007-06-14] (eMPIA Technology Inc.) R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\IPSDefs\20170530.001\IDSvia64.sys [1053824 2017-05-21] (Symantec Corporation) R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2014-09-08] (ASUSTeK Computer Inc.) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation) R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [46016 2017-01-20] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2016-10-24] () S3 ScanUSBET; C:\Windows\system32\DRIVERS\etScan64.sys [9216 2007-07-23] (eMPIA Technology, Inc.) S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [10848 2000-01-21] () [Bestand niet getekend] R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1609030.00D\SRTSP64.SYS [770712 2017-05-11] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1609030.00D\SRTSPX64.SYS [49304 2017-05-11] (Symantec Corporation) R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1609030.00D\SYMEFASI64.SYS [1714328 2017-05-11] (Symantec Corporation) S0 SymELAM; C:\Windows\System32\drivers\NISx64\1609030.00D\SymELAM.sys [24608 2017-05-11] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102608 2017-05-18] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NISx64\1609030.00D\Ironx64.SYS [291480 2017-05-11] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1609030.00D\SYMNETS.SYS [567496 2017-05-11] (Symantec Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) R1 YSDrv; C:\Windows\system32\DRIVERS\YSDrv.sys [270608 2017-03-28] (BigNox Corporation) S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\SDSDefs\20160706.008\ENG64.SYS [X] S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\SDSDefs\20160706.008\EX64.SYS [X] S2 npf; \??\C:\Windows\system32\drivers\npf.sys [X] S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-06-01 22:55 - 2017-06-01 22:55 - 00025104 _____ C:\Users\Johnny\Desktop\FRST.txt 2017-06-01 22:54 - 2017-06-01 22:54 - 02433536 _____ (Farbar) C:\Users\Johnny\Desktop\FRST64.exe 2017-06-01 14:14 - 2017-06-01 14:14 - 03437304 _____ (Symantec Corporation) C:\Users\Johnny\Downloads\NPE.exe 2017-06-01 14:14 - 2017-06-01 14:14 - 00192512 _____ C:\Users\Johnny\Desktop\PWZ.exe 2017-06-01 14:14 - 2017-06-01 14:14 - 00000000 ____D C:\Windows\System32\Tasks\Remediation 2017-05-31 14:47 - 2017-05-31 14:50 - 00255738 _____ C:\Windows\ntbtlog.txt 2017-05-29 21:28 - 2014-09-08 08:26 - 00024824 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys 2017-05-22 17:41 - 2017-05-22 17:41 - 00030759 _____ C:\Users\Johnny\Downloads\g.i.joe.retaliation.(2013).dut.1cd.(5129598).zip 2017-05-19 11:11 - 2017-05-19 11:11 - 00003234 _____ C:\Windows\System32\Tasks\Norton WSC Integration 2017-05-18 17:45 - 2017-05-18 17:46 - 00031612 _____ C:\Users\Johnny\Downloads\Vikings.S04E17.WEB-DL.1080p.DD5.1-DRACULA.srt 2017-05-18 12:01 - 2017-05-18 12:01 - 00025139 _____ C:\Users\Johnny\Downloads\Vikings.S04E20.The.Reckoning.720p.WEB-DL.DD5.1.H.264-DRACULA.srt 2017-05-18 12:00 - 2017-05-18 12:00 - 00026221 _____ C:\Users\Johnny\Downloads\Vikings.S04E19.720p.HDTV.x264-SVA.srt 2017-05-18 12:00 - 2017-05-18 12:00 - 00024496 _____ C:\Users\Johnny\Downloads\Vikings.S04E18.HDTV.XviD-FUM[ettv].srt 2017-05-18 12:00 - 2017-05-18 12:00 - 00020442 _____ C:\Users\Johnny\Downloads\Vikings.S04E16.1080p.WEB-DL.DD5.1.H264-RARBG.srt 2017-05-18 11:59 - 2017-05-18 11:59 - 00032062 _____ C:\Users\Johnny\Downloads\Vikings.S04E14.PROPER.HDTV.x264-KILLERS[ettv].srt 2017-05-18 11:59 - 2017-05-18 11:59 - 00016661 _____ C:\Users\Johnny\Downloads\Vikings.S04E15.HDTV.x264-KILLERS.srt 2017-05-17 23:11 - 2017-05-17 23:11 - 00023472 _____ C:\Users\Johnny\Downloads\Vikings - 4x13 - Episode 13.HDTV.KILLERS.nl .srt 2017-05-17 22:07 - 2017-05-17 22:07 - 00023975 _____ C:\Users\Johnny\Downloads\Vikings.S04E12.HDTV.x264-KILLERS[ettv].v2.srt 2017-05-16 23:21 - 2017-05-16 23:21 - 00003164 _____ C:\Windows\System32\Tasks\Start CorsairLink4 2017-05-16 23:20 - 2017-06-01 17:07 - 00000000 ____D C:\Program Files (x86)\CorsairLink4 2017-05-16 23:20 - 2017-05-16 23:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corsair LINK 4 2017-05-16 22:52 - 2017-05-16 22:52 - 00025182 _____ C:\Users\Johnny\Downloads\Vikings.S04E09.-.Death.All.'Round.hdtv-killers.nld.srt 2017-05-16 22:44 - 2017-05-16 22:45 - 00035238 _____ C:\Users\Johnny\Downloads\Vikings.S04E11.HDTV.x264-KILLERS.srt 2017-05-16 22:44 - 2017-05-16 22:44 - 00023340 _____ C:\Users\Johnny\Downloads\Vikings.S04E10.HDTV.x264-KILLERS.srt 2017-05-16 16:01 - 2017-05-16 16:01 - 00030619 _____ C:\Users\Johnny\Downloads\Vikings.S04E08.HDTV.x264-KILLERS.srt 2017-05-16 13:18 - 2017-05-16 13:18 - 00024130 _____ C:\Users\Johnny\Downloads\Vikings.S04E06.HDTV.x264-KILLERS.srt 2017-05-16 13:18 - 2017-05-16 13:18 - 00020410 _____ C:\Users\Johnny\Downloads\Vikings.S04E07.HDTV.x264-KILLERS.srt 2017-05-15 16:30 - 2017-05-15 16:30 - 00034381 _____ C:\Users\Johnny\Downloads\Vikings.S04E05.720p.HDTV.x264-KILLERS.srt 2017-05-15 16:30 - 2017-05-15 16:30 - 00030932 _____ C:\Users\Johnny\Downloads\Vikings.S04E04.HDTV.x264-KILLERS[ettv].srt 2017-05-15 16:09 - 2017-05-15 20:53 - 00016898 _____ C:\Users\Johnny\Desktop\Onkosten ongeval.xlsx 2017-05-15 15:06 - 2017-05-15 15:06 - 00020748 _____ C:\Users\Johnny\Downloads\Vikings.S04E03.PROPER.HDTV.x264-KILLERS.srt 2017-05-15 13:57 - 2017-05-15 13:57 - 00027571 _____ C:\Users\Johnny\Downloads\Vikings.S04E02.720p.HDTV.x264-KILLERS.srt 2017-05-14 22:44 - 2017-05-14 22:44 - 00024972 _____ C:\Users\Johnny\Downloads\Vikings.S04E01.REPACK.HDTV.x264-KILLERS(1).srt 2017-05-14 22:22 - 2017-05-14 22:22 - 00027976 _____ C:\Users\Johnny\Downloads\Vikings.S04E01.REPACK.HDTV.x264-KILLERS.srt 2017-05-14 22:21 - 2017-05-14 22:21 - 00035998 _____ C:\Users\Johnny\Downloads\Vikings.S04E01.A.Good.Treason.1080p.WEB-DL.DD5.1.H264-V.srt 2017-05-14 22:20 - 2017-05-14 22:20 - 00025172 _____ C:\Users\Johnny\Downloads\Vikings.S04E01.A.Good.Treason.1080p.WEB-DL.DD5.1.H.264-V.srt 2017-05-11 12:39 - 2017-04-28 23:15 - 07444824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2017-05-11 12:39 - 2017-04-26 16:06 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2017-05-11 12:39 - 2017-04-16 12:23 - 02176584 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2017-05-11 12:39 - 2017-04-16 12:23 - 01662096 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2017-05-11 12:39 - 2017-04-16 12:23 - 01063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll 2017-05-11 12:39 - 2017-04-16 12:18 - 01135288 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2017-05-11 12:39 - 2017-04-16 12:18 - 00803192 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2017-05-11 12:39 - 2017-04-16 11:07 - 01566032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2017-05-11 12:39 - 2017-04-16 11:07 - 01213792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2017-05-11 12:39 - 2017-04-16 11:07 - 00548032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll 2017-05-11 12:39 - 2017-04-16 11:05 - 00612096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2017-05-11 12:39 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2017-05-11 12:39 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2017-05-11 12:39 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2017-05-11 12:39 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2017-05-11 12:39 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2017-05-11 12:39 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2017-05-11 12:39 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2017-05-11 12:39 - 2017-04-16 10:16 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2017-05-11 12:39 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2017-05-11 12:39 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2017-05-11 12:39 - 2017-04-16 10:02 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2017-05-11 12:39 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2017-05-11 12:39 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2017-05-11 12:39 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2017-05-11 12:39 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2017-05-11 12:39 - 2017-04-16 09:52 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2017-05-11 12:39 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2017-05-11 12:39 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2017-05-11 12:39 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2017-05-11 12:39 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2017-05-11 12:39 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2017-05-11 12:39 - 2017-04-16 09:40 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2017-05-11 12:39 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2017-05-11 12:39 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2017-05-11 12:39 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2017-05-11 12:39 - 2017-04-16 09:23 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2017-05-11 12:39 - 2017-04-16 09:22 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2017-05-11 12:39 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2017-05-11 12:39 - 2017-04-16 09:17 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2017-05-11 12:39 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2017-05-11 12:39 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2017-05-11 12:39 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2017-05-11 12:39 - 2017-04-16 09:10 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2017-05-11 12:39 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2017-05-11 12:39 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2017-05-11 12:39 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2017-05-11 12:39 - 2017-04-16 09:02 - 00267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll 2017-05-11 12:39 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2017-05-11 12:39 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2017-05-11 12:39 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2017-05-11 12:39 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2017-05-11 12:39 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2017-05-11 12:39 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2017-05-11 12:39 - 2017-04-10 00:00 - 01548640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2017-05-11 12:39 - 2017-04-10 00:00 - 00388448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2017-05-11 12:39 - 2017-04-08 01:20 - 01375960 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2017-05-11 12:39 - 2017-04-07 15:56 - 01094656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2017-05-11 12:39 - 2017-04-02 18:41 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2017-05-11 12:39 - 2017-04-02 18:41 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2017-05-11 12:39 - 2017-04-01 01:16 - 01968408 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2017-05-11 12:39 - 2017-03-31 23:59 - 01612504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2017-05-11 12:39 - 2017-03-13 18:38 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll 2017-05-11 12:39 - 2017-03-13 18:29 - 02609664 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2017-05-11 12:39 - 2017-03-13 18:25 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll 2017-05-11 12:39 - 2017-03-13 18:13 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll 2017-05-11 12:39 - 2017-03-13 18:07 - 02170880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll 2017-05-11 12:39 - 2017-03-13 18:06 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll 2017-05-11 12:39 - 2017-03-11 21:34 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-05-11 12:39 - 2017-03-11 21:32 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-05-11 12:39 - 2017-03-11 21:32 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-05-11 12:39 - 2017-03-11 20:49 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2017-05-11 12:39 - 2017-03-11 19:58 - 01437696 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2017-05-11 12:39 - 2017-03-11 19:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2017-05-11 12:39 - 2017-03-11 01:38 - 02017624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2017-05-11 12:39 - 2017-03-11 01:38 - 00275800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2017-05-11 12:39 - 2017-03-09 22:52 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll 2017-05-11 12:39 - 2017-03-09 21:17 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll 2017-05-11 12:39 - 2017-03-08 04:44 - 00448285 _____ C:\Windows\system32\ApnDatabase.xml 2017-05-05 13:17 - 2017-05-05 13:17 - 05596617 _____ (UserBenchmark.com) C:\Users\Johnny\Downloads\UserBenchMark(1).exe 2017-05-05 13:10 - 2017-05-05 13:10 - 05596617 _____ (UserBenchmark.com) C:\Users\Johnny\Downloads\UserBenchMark.exe 2017-05-04 14:39 - 2017-05-04 14:39 - 00118145 _____ C:\Users\Johnny\Downloads\Captain America Civil War 2016 HD-TC x264 AC3-CPG.srt 2017-05-03 15:39 - 2017-05-03 15:39 - 00000000 ____D C:\Program Files\JAM Software 2017-05-02 17:08 - 2017-05-03 13:07 - 00000000 ____D C:\Users\Johnny\AppData\Local\Alt1Toolkit 2017-05-02 17:08 - 2017-05-02 17:08 - 00002625 _____ C:\Users\Johnny\Desktop\Alt1 Toolkit.lnk ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-06-01 22:55 - 2017-01-19 14:04 - 00000000 ____D C:\FRST 2017-06-01 22:50 - 2017-03-03 18:46 - 00000000 ____D C:\ProgramData\CLink4 2017-06-01 22:50 - 2016-11-18 14:51 - 00000000 ____D C:\Users\Johnny\AppData\LocalLow\Mozilla 2017-06-01 22:50 - 2016-11-10 16:18 - 00000374 _____ C:\Windows\Tasks\DriverToolkit Autorun.job 2017-06-01 22:50 - 2015-07-27 12:22 - 00000000 ____D C:\ProgramData\NVIDIA 2017-06-01 18:00 - 2015-07-28 13:07 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\vlc 2017-06-01 16:48 - 2016-04-26 12:31 - 00000000 ____D C:\Users\Johnny\AppData\Local\Jagex 2017-06-01 16:48 - 2016-04-26 12:31 - 00000000 ____D C:\ProgramData\Jagex 2017-06-01 14:14 - 2016-10-06 12:12 - 00000000 ____D C:\Users\Johnny\AppData\Local\NPE 2017-06-01 13:55 - 2014-11-21 10:44 - 01826596 _____ C:\Windows\system32\PerfStringBackup.INI 2017-06-01 13:55 - 2014-11-21 10:05 - 00806500 _____ C:\Windows\system32\perfh013.dat 2017-06-01 13:55 - 2014-11-21 10:05 - 00162500 _____ C:\Windows\system32\perfc013.dat 2017-06-01 13:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf 2017-06-01 13:48 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-06-01 12:59 - 2017-03-28 16:25 - 00000000 ____D C:\Users\Johnny\AppData\Local\Nox 2017-06-01 12:35 - 2017-03-28 16:27 - 00000000 ____D C:\Users\Johnny\.android 2017-06-01 12:35 - 2017-03-28 16:26 - 00000000 ____D C:\Users\Johnny\vmlogs 2017-06-01 12:35 - 2017-03-28 16:26 - 00000000 ____D C:\Users\Johnny\.BigNox 2017-05-31 22:21 - 2016-02-10 14:39 - 03811840 ___SH C:\Users\Johnny\Desktop\Thumbs.db 2017-05-31 14:48 - 2015-08-01 15:05 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2017-05-29 15:54 - 2017-01-18 01:45 - 00000000 _____ C:\Windows\Path.idx 2017-05-29 15:22 - 2015-09-28 23:00 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\uTorrent 2017-05-29 13:52 - 2015-08-23 12:17 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\dvdcss 2017-05-28 21:52 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM 2017-05-27 22:58 - 2015-07-27 12:35 - 00000000 ____D C:\Windows\system32\MRT 2017-05-27 22:57 - 2015-07-27 12:35 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-05-24 14:52 - 2016-11-18 14:07 - 00000000 ____D C:\Program Files (x86)\mozilla firefox 2017-05-21 21:31 - 2015-07-28 09:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-05-19 12:49 - 2015-07-27 12:18 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1444268496-2388825387-1195434288-1001 2017-05-19 11:16 - 2015-07-28 09:44 - 00000000 ____D C:\Windows\System32\Tasks\Norton Internet Security 2017-05-19 11:11 - 2015-12-09 15:45 - 00000000 ____D C:\Program Files\Common Files\AV 2017-05-19 11:11 - 2015-07-28 09:43 - 00002427 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk 2017-05-19 11:11 - 2015-07-28 09:43 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security 2017-05-19 11:11 - 2015-07-28 09:43 - 00000000 ____D C:\Windows\system32\Drivers\NISx64 2017-05-18 11:51 - 2015-07-28 09:43 - 00102608 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 2017-05-18 11:51 - 2015-07-28 09:43 - 00008339 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT 2017-05-16 23:20 - 2015-07-27 12:17 - 00000000 ____D C:\ProgramData\Package Cache 2017-05-15 20:53 - 2017-04-27 12:32 - 00000000 ____D C:\Users\Johnny\Desktop\Sollicitaties 2017-05-13 18:02 - 2013-08-22 16:44 - 00609096 _____ C:\Windows\system32\FNTCACHE.DAT 2017-05-13 17:28 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions 2017-05-13 12:33 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp 2017-05-09 17:42 - 2015-07-31 23:55 - 00004262 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-05-09 17:42 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-05-09 17:42 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Macromed 2017-05-09 15:22 - 2015-08-23 12:08 - 00000000 ____D C:\Users\Johnny\Desktop\Nieuwe map 2017-05-09 14:48 - 2015-07-30 12:29 - 00000000 ____D C:\ProgramData\lx_Cats 2017-05-07 18:00 - 2015-08-05 22:15 - 00000000 ____D C:\Users\Johnny\AppData\Local\CrashDumps 2017-05-04 16:20 - 2015-07-27 13:17 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2017-05-03 15:42 - 2017-02-13 00:01 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\JAM Software 2017-05-02 17:08 - 2016-06-30 16:12 - 00000000 ____D C:\Users\Johnny\AppData\Local\SquirrelTemp 2017-05-02 17:08 - 2015-10-21 13:10 - 00000000 ____D C:\Users\Johnny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneApps 2017-05-02 17:01 - 2015-10-21 13:09 - 00000000 ____D C:\Users\Johnny\AppData\Local\Deployment ==================== Bestanden in de root van sommige mappen ======= 2017-01-01 14:41 - 2017-01-01 14:41 - 0000036 _____ () C:\Users\Johnny\AppData\Local\housecall.guid.cache 2015-07-31 15:11 - 2016-07-15 16:48 - 0003638 _____ () C:\ProgramData\Coinstaller.log 2015-07-27 12:19 - 2015-07-27 12:19 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2015-08-23 11:42 - 2015-08-23 11:42 - 0000252 _____ () C:\ProgramData\FastPics.log 2016-07-15 18:36 - 2016-07-15 18:36 - 0000178 _____ () C:\ProgramData\lxdw.log 2015-10-02 00:13 - 2017-05-15 20:51 - 0036214 _____ () C:\ProgramData\lxebJSW.log 2015-07-30 12:28 - 2017-05-31 22:21 - 0059182 _____ () C:\ProgramData\lxebscan.log 2015-10-02 00:13 - 2015-10-02 00:13 - 0000000 _____ () C:\ProgramData\LxWbGwLog.log 2015-12-17 18:00 - 2015-12-17 18:00 - 0000016 _____ () C:\ProgramData\mntemp 2017-01-09 15:19 - 2017-02-03 13:13 - 0016772 _____ () C:\ProgramData\NvTelemetryContainer.log 2017-01-09 15:19 - 2017-01-29 18:35 - 0003355 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1 2016-01-15 07:43 - 2016-01-15 07:43 - 1015978 _____ () C:\ProgramData\SPLE83.tmp 2015-08-23 11:29 - 2015-08-23 11:29 - 0000000 _____ () C:\ProgramData\UpdaterLog.txt Sommige bestanden in TEMP: ==================== 2017-04-05 17:22 - 2007-02-28 01:08 - 0456416 ____R (Macrovision Corporation) C:\Users\Johnny\AppData\Local\Temp\_is1376.exe 2017-04-05 17:07 - 2007-02-28 01:08 - 0456416 ____R (Macrovision Corporation) C:\Users\Johnny\AppData\Local\Temp\_is544C.exe 2017-04-05 17:20 - 2007-02-28 01:08 - 0456416 ____R (Macrovision Corporation) C:\Users\Johnny\AppData\Local\Temp\_is5CDD.exe 2017-04-05 17:27 - 2007-02-28 01:08 - 0456416 ____R (Macrovision Corporation) C:\Users\Johnny\AppData\Local\Temp\_is9073.exe 2017-04-05 17:12 - 2007-02-28 01:08 - 0456416 ____R (Macrovision Corporation) C:\Users\Johnny\AppData\Local\Temp\_isCA73.exe 2017-04-05 17:25 - 2007-02-28 01:08 - 0456416 ____R (Macrovision Corporation) C:\Users\Johnny\AppData\Local\Temp\_isE0EE.exe ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\Windows\system32\winlogon.exe => Bestand is getekend C:\Windows\system32\wininit.exe => Bestand is getekend C:\Windows\explorer.exe => Bestand is getekend C:\Windows\SysWOW64\explorer.exe => Bestand is getekend C:\Windows\system32\svchost.exe => Bestand is getekend C:\Windows\SysWOW64\svchost.exe => Bestand is getekend C:\Windows\system32\services.exe => Bestand is getekend C:\Windows\system32\User32.dll => Bestand is getekend C:\Windows\SysWOW64\User32.dll => Bestand is getekend C:\Windows\system32\userinit.exe => Bestand is getekend C:\Windows\SysWOW64\userinit.exe => Bestand is getekend C:\Windows\system32\rpcss.dll => Bestand is getekend C:\Windows\system32\dnsapi.dll => Bestand is getekend C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2017-01-13 15:05 ==================== Eind van FRST.txt ============================