Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 12.05.2018 Gestart door svenv_000 (Beheerder) op SVEN (13-05-2018 09:37:56) Gestart vanaf C:\Users\svenv_000\Downloads Geladen Profielen: svenv_000 (Beschikbare Profielen: svenv_000) Platform: Windows 8.1 (Update) (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: IE) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe (Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe (Acer Incorporated) C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe () C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (Symantec Corporation) C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.3.0.14\ARA.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [661400 2012-11-09] (Alps Electric Co., Ltd.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13626072 2013-06-25] (Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2018-01-26] (AVAST Software) HKLM-x32\...\RunOnce: [SBrowserCheck] => C:\ProgramData\Avast Software\Avast\SecureBrowser\avast_browser_setup_checker.exe [4788840 2018-05-06] () Winlogon\Notify\igfxcui: igfxdev.dll [X] HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133248 2013-05-31] (Qualcomm Atheros Commnucations) HKU\S-1-5-21-1678010181-4120838532-3394036514-1004\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1193176 2013-08-08] () ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.130.2 195.130.131.2 Tcpip\..\Interfaces\{48310F02-12FC-4F04-9B93-A1EC63919859}: [DhcpNameServer] 195.130.130.2 195.130.131.2 Tcpip\..\Interfaces\{A763E5F6-BB7D-4F0E-8025-13D67A703B4A}: [DhcpNameServer] 127.0.0.1 Internet Explorer: ================== HKU\S-1-5-21-1678010181-4120838532-3394036514-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/ HKU\S-1-5-21-1678010181-4120838532-3394036514-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1678010181-4120838532-3394036514-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-19] (AVAST Software) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-24] (Google Inc.) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-19] (AVAST Software) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-24] (Google Inc.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-24] (Google Inc.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-24] (Google Inc.) Toolbar: HKU\S-1-5-21-1678010181-4120838532-3394036514-1004 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-24] (Google Inc.) FireFox: ======== FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-18] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] () Chrome: ======= CHR Profile: C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default [2018-05-13] CHR Extension: (Documenten) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-06] CHR Extension: (Google Drive) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-05-06] CHR Extension: (YouTube) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-06] CHR Extension: (Avast SafePrice) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-05-06] CHR Extension: (Offline Documenten) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-05-06] CHR Extension: (Avast Online Security) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-05-06] CHR Extension: (Skype) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-05-06] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-06] CHR Extension: (Gmail) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-05-06] CHR Extension: (Chrome Media Router) - C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-06] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2018-01-26] (AVAST Software) R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [310912 2013-05-31] (Windows (R) Win 7 DDK provider) [Bestand niet getekend] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2018-01-26] (AVAST Software) R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated) R3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-05-01] (Acer Incorporated) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-16] (Acer Incorporated) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-01-16] (WildTangent) S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [24376 2015-06-30] (Hewlett-Packard Company) R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation) S3 Intel(R) TA SAM; C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel Corporation) R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe [153296 2016-04-26] (Intel(R) Corporation) R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [478416 2016-04-26] (Intel(R) Corporation) S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation) R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-29] (Acer Incorporate) S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4230016 2013-01-28] (Symantec Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [185096 2018-01-26] (AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321512 2018-01-26] (AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199448 2018-01-26] (AVAST Software) R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343768 2018-01-26] (AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57696 2018-01-26] (AVAST Software) R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [149344 2018-01-26] (AVAST Software) S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-01-26] (AVAST Software) R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-30] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [146648 2018-01-26] (AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110336 2018-01-26] (AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84384 2018-01-26] (AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1025176 2018-01-26] (AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [457896 2018-01-26] (AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [204456 2018-01-26] (AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [358672 2018-01-26] (AVAST Software) R3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2013-05-31] (Qualcomm Atheros) R3 ccSet_NARA; C:\WINDOWS\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated) R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [41688 2015-04-30] (Intel Corporation) R3 NetTap630; C:\WINDOWS\system32\DRIVERS\nettap630.sys [67800 2014-10-30] (Intel Corporation) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.) 2018-05-13 09:37 - 2018-05-13 09:38 - 000016244 _____ C:\Users\svenv_000\Downloads\FRST.txt 2018-05-13 09:37 - 2018-05-13 09:37 - 000000000 ____D C:\FRST 2018-05-13 09:32 - 2018-05-13 09:33 - 002404864 _____ (Farbar) C:\Users\svenv_000\Downloads\FRST64.exe 2018-05-06 09:22 - 2018-05-06 09:22 - 000000000 ____D C:\ProgramData\SWCUTemp 2018-05-06 09:19 - 2018-01-26 12:30 - 000365680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2018-05-06 08:32 - 2018-05-06 08:32 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump 2018-04-27 14:33 - 2018-04-27 14:33 - 000000000 ____D C:\Users\svenv_000\AppData\Local\AVAST Software 2018-04-27 14:33 - 2018-04-27 14:33 - 000000000 ____D C:\Program Files (x86)\AVAST Software 2018-04-21 12:01 - 2018-03-16 20:51 - 000144000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2018-04-21 12:01 - 2018-03-14 15:23 - 001993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2018-04-21 12:01 - 2018-03-14 15:23 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2018-04-21 12:01 - 2018-03-14 15:23 - 000656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2018-04-21 12:01 - 2018-03-14 15:23 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll 2018-04-21 12:01 - 2018-03-14 15:23 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2018-04-21 12:01 - 2018-03-14 15:23 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2018-04-21 12:01 - 2018-03-14 15:23 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2018-04-21 12:00 - 2018-03-14 15:23 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2018-04-21 12:00 - 2018-03-14 15:23 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2018-04-13 21:17 - 2018-03-23 15:50 - 004168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2018-04-13 21:17 - 2018-03-23 01:00 - 025742336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2018-04-13 21:17 - 2018-03-22 23:26 - 020287488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2018-04-13 21:17 - 2018-03-22 23:17 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2018-04-13 21:17 - 2018-03-22 23:15 - 005780480 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2018-04-13 21:17 - 2018-03-22 23:06 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2018-04-13 21:17 - 2018-03-22 22:52 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2018-04-13 21:17 - 2018-03-22 22:42 - 000661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2018-04-13 21:17 - 2018-03-22 22:37 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2018-04-13 21:17 - 2018-03-22 22:29 - 015282688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2018-04-13 21:17 - 2018-03-22 22:29 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2018-04-13 21:17 - 2018-03-22 22:29 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2018-04-13 21:17 - 2018-03-22 22:29 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2018-04-13 21:17 - 2018-03-22 22:27 - 002135552 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2018-04-13 21:17 - 2018-03-22 22:21 - 004496896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2018-04-13 21:17 - 2018-03-22 22:20 - 013680128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2018-04-13 21:17 - 2018-03-22 22:20 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2018-04-13 21:17 - 2018-03-22 22:15 - 003241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2018-04-13 21:17 - 2018-03-22 22:15 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2018-04-13 21:17 - 2018-03-22 22:15 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2018-04-13 21:17 - 2018-03-22 22:14 - 002059776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2018-04-13 21:17 - 2018-03-22 22:04 - 001545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2018-04-13 21:17 - 2018-03-22 21:55 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2018-04-13 21:17 - 2018-03-22 21:53 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2018-04-13 21:17 - 2018-03-22 21:52 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2018-04-13 21:17 - 2018-03-22 21:51 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2018-04-13 21:17 - 2018-03-10 19:50 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys 2018-04-13 21:17 - 2018-03-10 02:16 - 001549136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2018-04-13 21:17 - 2018-03-10 02:16 - 000388440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2018-04-13 21:17 - 2018-03-09 23:20 - 007405392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2018-04-13 21:17 - 2018-03-09 23:20 - 001737592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2018-04-13 21:17 - 2018-03-09 23:20 - 001676056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2018-04-13 21:17 - 2018-03-09 23:20 - 001536112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2018-04-13 21:17 - 2018-03-09 23:20 - 001500424 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2018-04-13 21:17 - 2018-03-09 23:20 - 001371344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2018-04-13 21:17 - 2018-03-09 23:20 - 000418640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2018-04-13 21:17 - 2018-03-09 21:59 - 000121168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys 2018-04-13 21:17 - 2018-03-09 16:52 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2018-04-13 21:17 - 2018-03-09 16:52 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2018-04-13 21:17 - 2018-03-09 16:52 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2018-04-13 21:17 - 2018-03-09 16:52 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2018-04-13 21:17 - 2018-03-08 20:15 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll 2018-04-13 21:17 - 2018-03-08 20:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll 2018-04-13 21:17 - 2018-03-08 16:21 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll 2018-04-13 21:17 - 2018-03-08 01:46 - 000202576 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll 2018-04-13 21:17 - 2018-03-08 01:42 - 000174928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll 2018-04-13 21:17 - 2018-03-07 21:28 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsnmp32.dll 2018-04-13 21:17 - 2018-03-07 20:26 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsnmp32.dll 2018-04-13 21:17 - 2018-03-03 19:44 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll 2018-04-13 21:17 - 2018-03-03 19:04 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll 2018-04-13 21:17 - 2018-02-10 03:29 - 000531632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2018-04-13 21:17 - 2018-02-10 03:25 - 001137872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2018-04-13 21:17 - 2018-02-09 19:44 - 000276304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2018-04-13 21:17 - 2018-02-09 19:21 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2018-04-13 21:17 - 2018-02-08 20:53 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll 2018-04-13 21:17 - 2018-02-08 20:22 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2018-04-13 21:17 - 2018-02-08 20:18 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll 2018-04-13 21:17 - 2018-02-08 20:03 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2018-04-13 21:17 - 2018-02-08 19:49 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll 2018-04-13 21:17 - 2018-02-08 19:42 - 001001984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll 2018-04-13 21:17 - 2018-02-08 19:42 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll 2018-04-13 21:17 - 2018-02-08 19:40 - 001096192 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2018-04-13 21:17 - 2018-02-08 19:38 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2018-04-13 21:17 - 2018-02-08 19:27 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2018-04-13 21:17 - 2018-02-08 19:24 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll 2018-04-13 21:17 - 2018-02-08 19:03 - 000664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll 2018-04-13 21:17 - 2018-02-08 19:03 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll 2018-04-13 21:17 - 2018-01-25 16:19 - 000995272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2018-04-13 21:17 - 2018-01-25 16:14 - 000922944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.) 2018-05-13 09:25 - 2016-09-30 09:31 - 000003884 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1475220688 2018-05-13 09:25 - 2015-12-03 19:29 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software 2018-05-13 09:25 - 2015-09-20 10:10 - 000003746 _____ C:\WINDOWS\System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d 2018-05-13 09:25 - 2015-09-20 10:10 - 000003500 _____ C:\WINDOWS\System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon 2018-05-13 09:25 - 2015-02-25 17:47 - 000003718 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2018-05-13 09:25 - 2015-02-25 17:47 - 000003476 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon 2018-05-13 09:25 - 2014-08-22 09:18 - 000003958 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{07545ACE-8461-4216-8B61-4AEEA057D62E} 2018-05-13 09:25 - 2014-08-16 20:17 - 000003488 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2018-05-13 09:25 - 2014-08-16 20:17 - 000003360 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2018-05-13 09:25 - 2014-08-16 17:18 - 000003550 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask 2018-05-13 09:25 - 2014-08-16 11:29 - 000003196 _____ C:\WINDOWS\System32\Tasks\{46DCE948-1011-471D-B98A-47F28D53A9E4} 2018-05-13 09:25 - 2013-08-08 05:37 - 000003550 _____ C:\WINDOWS\System32\Tasks\Norton Online Backup ARA 2018-05-13 09:25 - 2013-08-08 05:33 - 000002914 _____ C:\WINDOWS\System32\Tasks\Power Management 2018-05-13 09:25 - 2013-08-08 05:18 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1678010181-4120838532-3394036514-500 2018-05-13 09:25 - 2013-07-19 11:55 - 000004402 _____ C:\WINDOWS\System32\Tasks\ALUAgent 2018-05-13 09:25 - 2013-07-19 11:55 - 000003626 _____ C:\WINDOWS\System32\Tasks\ALU 2018-05-13 09:25 - 2013-07-19 11:55 - 000002904 _____ C:\WINDOWS\System32\Tasks\Launch Manager 2018-05-13 09:13 - 2014-08-16 20:13 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1678010181-4120838532-3394036514-1004 2018-05-13 09:08 - 2014-03-18 17:28 - 001815760 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2018-05-13 09:08 - 2014-03-18 17:00 - 000800728 _____ C:\WINDOWS\system32\perfh013.dat 2018-05-13 09:08 - 2014-03-18 17:00 - 000159420 _____ C:\WINDOWS\system32\perfc013.dat 2018-05-13 09:08 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf 2018-05-13 08:30 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp 2018-05-13 08:23 - 2014-08-16 12:13 - 000000000 ____D C:\WINDOWS\system32\MRT 2018-05-13 08:18 - 2017-10-22 17:30 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe 2018-05-13 08:18 - 2014-08-16 12:13 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2018-05-13 08:11 - 2014-08-20 10:02 - 000000000 __RDO C:\Users\svenv_000\OneDrive 2018-05-11 18:01 - 2015-08-23 17:33 - 000000000 ____D C:\Users\svenv_000\AppData\Roaming\Skype 2018-05-11 09:07 - 2014-08-16 20:18 - 000002268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-05-11 09:07 - 2014-08-16 20:18 - 000002227 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-05-06 09:21 - 2015-03-15 19:21 - 000001942 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2018-05-06 09:20 - 2017-05-20 11:17 - 000003914 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update 2018-05-06 09:17 - 2015-10-11 18:09 - 000000000 ____D C:\Users\svenv_000\AppData\Local\VirtualStore 2018-05-06 09:08 - 2014-08-20 09:41 - 000000000 ____D C:\Users\svenv_000 2018-05-06 09:08 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2018-05-06 09:03 - 2014-12-10 20:49 - 000000000 ____D C:\WINDOWS\system32\appraiser 2018-05-06 09:03 - 2014-08-16 12:17 - 000000000 ___SD C:\WINDOWS\system32\CompatTel 2018-05-06 09:03 - 2013-08-22 17:36 - 000000000 __RSD C:\WINDOWS\Media 2018-05-06 09:03 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache 2018-05-06 09:03 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2018-05-06 09:02 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2018-05-06 09:01 - 2015-10-26 19:33 - 000000000 ____D C:\ProgramData\Package Cache 2018-05-06 09:01 - 2014-08-16 18:10 - 000000000 ____D C:\ProgramData\AVAST Software 2018-05-06 09:01 - 2013-07-19 11:50 - 000000000 ____D C:\ProgramData\WildTangent 2018-05-06 08:57 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps 2018-05-06 08:47 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\registration 2018-05-06 08:37 - 2014-08-17 08:21 - 000000000 ____D C:\Users\svenv_000\AppData\Local\Google 2018-05-06 08:34 - 2014-08-16 20:17 - 000000000 ____D C:\Program Files (x86)\Google 2018-05-05 18:42 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF 2018-05-01 00:39 - 2018-03-17 22:00 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2018-05-01 00:39 - 2018-03-17 22:00 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2018-04-26 18:20 - 2013-08-22 16:44 - 000338192 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2018-04-24 18:21 - 2013-08-22 15:25 - 000524288 ___SH C:\WINDOWS\system32\config\BBI 2018-04-24 18:18 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData 2018-04-13 20:15 - 2017-03-16 15:51 - 000000000 ___RD C:\Program Files (x86)\Skype 2018-04-13 20:15 - 2014-08-16 20:11 - 000000000 ____D C:\ProgramData\Skype Sommige bestanden in TEMP: ==================== 2016-10-06 16:20 - 2016-10-06 16:20 - 000467968 _____ (Realtek Semiconductor Corp.) C:\Users\svenv_000\AppData\Local\Temp\COMAP.EXE 2016-10-07 02:33 - 2016-10-07 02:33 - 002458672 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Users\svenv_000\AppData\Local\Temp\libeay32.dll 2016-10-07 02:33 - 2016-10-07 02:33 - 000970912 _____ (Microsoft Corporation) C:\Users\svenv_000\AppData\Local\Temp\msvcr120.dll 2015-10-29 19:11 - 2018-04-06 17:30 - 058834376 _____ (Skype Technologies S.A.) C:\Users\svenv_000\AppData\Local\Temp\SkypeSetup.exe 2016-10-07 02:33 - 2016-10-07 02:33 - 000772672 _____ () C:\Users\svenv_000\AppData\Local\Temp\sqlite3.dll 2017-03-16 15:49 - 2017-03-16 15:49 - 014456872 _____ (Microsoft Corporation) C:\Users\svenv_000\AppData\Local\Temp\vc_redist.x86.exe 2016-06-25 10:59 - 2016-06-25 11:00 - 045780896 _____ (Google Inc.) C:\Users\svenv_000\AppData\Local\Temp\{81A3C613-1E20-4EAA-ACC6-7B97AD7163F1}-51.0.2704.103_chrome_installer.exe ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\WINDOWS\system32\winlogon.exe => Bestand is getekend C:\WINDOWS\system32\wininit.exe => Bestand is getekend C:\WINDOWS\explorer.exe => Bestand is getekend C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend C:\WINDOWS\system32\svchost.exe => Bestand is getekend C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend C:\WINDOWS\system32\services.exe => Bestand is getekend C:\WINDOWS\system32\User32.dll => Bestand is getekend C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend C:\WINDOWS\system32\userinit.exe => Bestand is getekend C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend C:\WINDOWS\system32\rpcss.dll => Bestand is getekend C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2018-05-13 09:13 ==================== Eind van FRST.txt ============================