Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 05-02-2017 Gestart door Nelleke (Beheerder) op HPNELLEKE (12-02-2017 20:39:02) Gestart vanaf C:\Users\Nelleke\Desktop Geladen Profielen: Nelleke (Beschikbare Profielen: Nelleke & UpdatusUser & Gast & DefaultAppPool) Platform: Windows 10 Home Versie 1607 (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: Edge) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe () C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (Realtek) C:\Program Files (x86)\11n USB Wireless LAN Utility\RtlService.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe (Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe (TorrentsTime) C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe () C:\Program Files (x86)\UCBrowser\Application\UCService.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (hxxp://www.amule.org/) C:\Program Files (x86)\amuleCe\ed2k.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Realtek Semiconductor Corp.) C:\Program Files (x86)\11n USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe (Glarysoft Ltd) C:\Program Files (x86)\Glarysoft\Software Update Pro\SoftwareUpdatePro.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe () C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Spotify Ltd) C:\Users\Nelleke\AppData\Roaming\Spotify\SpotifyWebHelper.exe () C:\Program Files\Digiarty\Air_Playit\airplayit.exe (XCZ) C:\Program Files\9EI0Y9I4Q4\9EI0Y9I4Q.exe (XCZ) C:\Program Files\BN258ZB8Q9\BN258ZB8Q.exe (XCZ) C:\Program Files\YRKBGUERAD\YRKBGUERA.exe (XCZ) C:\Program Files\YLTLN13CO8\BAZ0V09DN.exe (XCZ) C:\Program Files\SAJQ07LC90\SAJQ07LC9.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Digiarty, Inc.) C:\Program Files\Digiarty\Air_Playit\AirPS.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Glarysoft Ltd) C:\Program Files (x86)\Glarysoft\Software Update Pro\x64\Win64ShellLink.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16122.10271.0_x64__8wekyb3d8bbwe\Music.UI.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.693_none_42ff55c9655f38bf\TiWorker.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-12-13] (Realtek Semiconductor) HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard) HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [568888 2010-01-18] () HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe [395152 2011-06-30] (Seagate) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Reader Application Helper] => C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2014-10-24] (Sony Corporation) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2014-10-20] (Apple Inc.) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [Dropbox Update] => C:\Users\Nelleke\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [Spotify Web Helper] => C:\Users\Nelleke\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1431664 2016-11-28] (Spotify Ltd) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [Google Update] => C:\Users\Nelleke\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-16] (Google Inc.) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [Spotify] => C:\Users\Nelleke\AppData\Roaming\Spotify\Spotify.exe [6987376 2016-11-28] (Spotify Ltd) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [Digiarty_Software_AirPlayit] => C:\Program Files\Digiarty\Air_Playit\airplayit.exe [10468672 2012-02-28] () HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-10-17] (Apple Inc.) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [13082608 2016-12-15] (Plex, Inc.) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [GIEFIE8317] => C:\Program Files\9EI0Y9I4Q4\9EI0Y9I4Q.exe [370688 2017-02-01] (XCZ) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [6Q4ZN5JT1M] => C:\Program Files\BN258ZB8Q9\BN258ZB8Q.exe [370688 2017-02-01] (XCZ) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [DNG633OXF2] => C:\Program Files\YRKBGUERAD\YRKBGUERA.exe [370688 2017-02-01] (XCZ) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [HFLEYKBDEN] => C:\Program Files\YLTLN13CO8\BAZ0V09DN.exe [370688 2017-02-01] (XCZ) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [SK4PLD2D7Z] => C:\Program Files\SAJQ07LC90\SAJQ07LC9.exe [370688 2017-02-01] (XCZ) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9292504 2016-12-21] (Piriform Ltd) HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\RunOnce: [Uninstall C:\Users\Nelleke\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nelleke\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64" HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Policies\system: [DisableLockWorkstation] 0 HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\...\Policies\system: [DisableChangePassword] 0 ShellExecuteHooks: Geen Naam - {75D826D8-DE46-11E6-A83F-64006A5CFC23} - -> Geen bestand ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Nelleke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-09-25] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Nelleke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-09-25] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Nelleke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-09-25] (Microsoft Corporation) ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Nelleke\AppData\Roaming\Dropbox\bin\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Nelleke\AppData\Roaming\Dropbox\bin\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Nelleke\AppData\Roaming\Dropbox\bin\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Nelleke\AppData\Roaming\Dropbox\bin\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Nelleke\AppData\Roaming\Dropbox\bin\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Nelleke\AppData\Roaming\Dropbox\bin\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Nelleke\AppData\Roaming\Dropbox\bin\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Nelleke\AppData\Roaming\Dropbox\bin\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Nelleke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-25] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Nelleke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-25] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Nelleke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-25] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Event Reminder.lnk [2017-02-01] ShortcutTarget: Event Reminder.lnk -> C:\Program Files (x86)\Broderbund\PrintMaster\PMremind.exe (TLC Multimedia Inc.) Startup: C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP ENVY 5530 series.lnk [2017-02-12] ShortcutTarget: Inktwaarschuwingen controleren - HP ENVY 5530 series.lnk -> C:\Program Files\hp\HP ENVY 5530 series\Bin\HPStatusBL.dll (Hewlett-Packard Development Company, LP) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Hosts: Hosts bestand niet gevonden in de standaardmap Tcpip\Parameters: [DhcpNameServer] 10.0.1.1 Tcpip\..\Interfaces\{366a49b5-32a1-4fe0-bfbd-96a2a4c85881}: [DhcpNameServer] 10.0.1.1 Tcpip\..\Interfaces\{5ababc2e-ad2c-40c1-9f98-685acba11679}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{ecee283a-2785-4f4d-bb24-907dfa03d443}: [DhcpNameServer] 84.241.226.9 84.241.226.140 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-2849121425-4159316806-1266491598-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKLM-x32 -> {8738C1EA-4875-40F5-9380-5BA6643F3F0C} URL = hxxp://downloads.phpnuke.org/nl/index.php?rvs=google SearchScopes: HKLM-x32 -> {F21DCC63-C389-4117-A3CE-7EA396405A15} URL = hxxp://downloads.phpnuke.org/nl/index.php?rvs=google SearchScopes: HKLM-x32 -> {F58C87C1-3D25-45D0-9EE8-FEC4971F8C1B} URL = hxxp://nl.woofi.info SearchScopes: HKU\S-1-5-21-2849121425-4159316806-1266491598-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} BHO: Geen Naam -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> Geen bestand BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-30] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-30] (Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.) DPF: HKLM {414FB93D-DEDD-4FEF-AD7F-167992EBDB52} hxxps://enter.ing.net/SNX/CSHELL/extender.cab DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab FireFox: ======== FF DefaultProfile: fiejsl2o.default-1357987608005 FF ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 [2017-02-12] FF DefaultSearchUrl: Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 -> hxxp://www.google.com/search?btnG=Google+Search&q= FF SelectedSearchEngine: Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 -> Yahoo! FF Homepage: Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 -> hxxp://www.allemaal-series.com/browse.php FF Extension: (True Key Add-On) - C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\@true-key [2017-02-08] FF Extension: (Lunapic Image Edit) - C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\corp@lunapic.com.xpi [2016-04-27] FF Extension: (United States English Spellchecker) - C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\en-US@dictionaries.addons.mozilla.org [2016-03-19] FF Extension: (Firefox Hotfix) - C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31] FF Extension: (LastPass) - C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\support@lastpass.com [2017-01-12] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-25] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-25] () FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Geen bestand] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Geen bestand] FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-30] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-30] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Geen bestand] FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation) FF Plugin-x32: @sony.com/ReaderDesktop -> C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll [2014-10-24] (Sony Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll [Geen bestand] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2849121425-4159316806-1266491598-1001: @microsoft.com/Office on Demand;version=1 -> C:\Users\Nelleke\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\Microsoft Office 15\npofficeondemand.dll [2012-11-02] (Microsoft Corporation) FF Plugin HKU\S-1-5-21-2849121425-4159316806-1266491598-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Nelleke\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-03-23] (RocketLife, LLP) FF Plugin HKU\S-1-5-21-2849121425-4159316806-1266491598-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Nelleke\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [Geen bestand] FF Plugin HKU\S-1-5-21-2849121425-4159316806-1266491598-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Nelleke\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2849121425-4159316806-1266491598-1001: @talk.google.com/O1DPlugin -> C:\Users\Nelleke\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2849121425-4159316806-1266491598-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Nelleke\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin HKU\S-1-5-21-2849121425-4159316806-1266491598-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Nelleke\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin HKU\S-1-5-21-2849121425-4159316806-1266491598-1001: torrents-time.com/TTPlugin -> C:\Program Files (x86)\TorrentsTime Media Player\bin\npTTPlugin.dll [2016-02-25] (Torrents Time) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-08-24] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-08-24] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-08-24] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-08-24] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-08-24] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\Nelleke\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Nelleke\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\firefox.cfg [2014-05-08] <==== AANDACHT Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.) R2 Archer; C:\Program Files (x86)\WinArcher\Archer.dll [704512 2017-02-09] () [Bestand niet getekend] R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [2231616 2010-07-19] () R2 ed2kidle; C:\Program Files (x86)\amuleCe\ed2k.exe [270336 2017-02-06] (hxxp://www.amule.org/) [Bestand niet getekend] R2 GubZL; C:\Program Files (x86)\Gub\GubZL.dll [116224 2017-02-09] () [Bestand niet getekend] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.) S3 iThemes5; C:\Program Files (x86)\Common Files\Services\iThemes.dll [455168 2017-02-08] () [Bestand niet getekend] <==== AANDACHT R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [Bestand niet getekend] R2 Nipuytersary; C:\Program Files (x86)\Plokoy\qialhophCll.dll [148480 2017-02-01] () [Bestand niet getekend] R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation) R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [1919472 2016-12-15] (Plex, Inc.) R2 Realtek11nSU; C:\Program Files (x86)\11n USB Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek) [Bestand niet getekend] R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [289496 2013-12-13] (Realtek Semiconductor) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) S3 Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2014-04-25] (Sony Corporation) [Bestand niet getekend] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH) R2 Themes; C:\WINDOWS\system32\themeservice.dll [70656 2016-07-16] (Microsoft Corporation) [DependOnService: iThemes5]<==== AANDACHT R2 TTService; C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe [3312152 2016-10-07] (TorrentsTime) R2 UCBrowserSvc; C:\Program Files (x86)\UCBrowser\Application\UCService.exe [930704 2017-01-18] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) R2 WinSAPSvc; C:\ProgramData\WinSAPSvc\WinSAP.dll [183808 2017-02-08] () [Bestand niet getekend] S2 WinSnare; C:\Users\Nelleke\AppData\Roaming\WinSnare\WinSnare.dll [779776 2017-02-08] (InterSect Alliance Pty Ltd) [Bestand niet getekend] ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 anvsnddrv; C:\WINDOWS\System32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Inc.) S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] () R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2017-02-01] (REALiX(tm)) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [34048 2010-06-10] (CACE Technologies) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcwu.inf_amd64_b4551921048bc87c\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek ) U1 ucdrv; C:\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys [23652 ] (UC Web Inc.) <==== AANDACHT R0 vidsflt53; C:\WINDOWS\System32\DRIVERS\vsflt53.sys [141920 2012-09-08] (Acronis) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) S3 Epfwndis; \SystemRoot\system32\DRIVERS\Epfwndis.sys [X] U3 idsvc; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-02-12 20:37 - 2017-02-12 20:37 - 02421248 _____ (Farbar) C:\Users\Nelleke\Downloads\FRST64 (1).exe 2017-02-12 20:11 - 2017-02-12 20:11 - 00000000 ____D C:\Users\Nelleke\AppData\Local\CrashDumps 2017-02-12 20:00 - 2017-02-12 20:00 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2017-02-12 20:00 - 2016-12-29 13:28 - 00133056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2017-02-12 20:00 - 2016-09-09 19:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2017-02-12 20:00 - 2016-09-09 19:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll 2017-02-12 20:00 - 2016-09-09 19:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2017-02-12 20:00 - 2016-09-09 19:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe 2017-02-12 19:59 - 2017-01-17 05:57 - 00222648 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2017-02-12 19:59 - 2017-01-17 05:57 - 00210360 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2017-02-12 19:59 - 2016-12-29 14:10 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2017-02-12 19:57 - 2017-02-12 20:01 - 00000000 ____D C:\WINDOWS\LastGood 2017-02-09 08:16 - 2017-02-09 08:16 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\amuleC 2017-02-09 08:16 - 2017-02-09 08:16 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\aMule 2017-02-09 08:16 - 2017-02-09 08:16 - 00000000 ____D C:\Program Files (x86)\WinSnare(4.1.0) 2017-02-09 08:16 - 2017-02-09 08:16 - 00000000 ____D C:\Program Files (x86)\amuleCe 2017-02-09 08:10 - 2017-02-09 08:10 - 00000000 ____D C:\ProgramData\Uniblue 2017-02-08 20:36 - 2017-02-08 20:36 - 08813488 _____ (Piriform Ltd) C:\Users\Nelleke\Downloads\ccsetup526 (1).exe 2017-02-08 20:36 - 2017-02-08 20:36 - 00002862 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2017-02-08 20:36 - 2017-02-08 20:36 - 00000865 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-02-08 20:36 - 2017-02-08 20:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2017-02-08 20:36 - 2017-02-08 20:36 - 00000000 ____D C:\Program Files\CCleaner 2017-02-08 20:35 - 2017-02-08 20:35 - 08813488 _____ (Piriform Ltd) C:\Users\Nelleke\Downloads\ccsetup526.exe 2017-02-08 20:34 - 2017-02-09 08:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue 2017-02-08 20:34 - 2017-02-08 20:34 - 01165696 _____ (Uniblue Systems Limited ) C:\Users\Nelleke\Downloads\pcmechanicpm.exe 2017-02-08 17:49 - 2017-02-08 17:49 - 00087349 _____ C:\Users\Nelleke\Downloads\Definitieveberekeningtoeslagen (1).pdf 2017-02-08 17:49 - 2017-02-08 17:49 - 00087349 _____ C:\Users\Nelleke\Desktop\Definitieveberekeningtoeslagen (1).pdf 2017-02-08 17:49 - 2017-02-08 17:49 - 00087143 _____ C:\Users\Nelleke\Desktop\Voorschotbeschikkingtoeslagen (1).pdf 2017-02-08 17:48 - 2017-02-08 17:48 - 00087143 _____ C:\Users\Nelleke\Downloads\Voorschotbeschikkingtoeslagen (1).pdf 2017-02-08 17:48 - 2017-02-08 17:48 - 00084953 _____ C:\Users\Nelleke\Downloads\Voorlopigeaanslag2017.pdf 2017-02-08 17:47 - 2017-02-08 17:47 - 00090638 _____ C:\Users\Nelleke\Downloads\Aangiftebriefinkomstenbelasting2016.pdf 2017-02-08 17:47 - 2017-02-08 17:47 - 00090638 _____ C:\Users\Nelleke\Desktop\Aangiftebriefinkomstenbelasting2016.pdf 2017-02-08 09:03 - 2017-02-09 08:16 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\WinSnare 2017-02-08 09:03 - 2017-02-09 08:16 - 00000000 ____D C:\ProgramData\WinSAPSvc 2017-02-08 09:03 - 2017-02-09 08:16 - 00000000 ____D C:\Program Files (x86)\WinArcher 2017-02-08 09:03 - 2017-02-08 21:45 - 00000000 ____D C:\Program Files (x86)\WinSnare(4.0.9) 2017-02-08 09:03 - 2017-02-08 09:03 - 00000000 ____D C:\Program Files (x86)\Gub 2017-02-08 08:59 - 2017-02-08 08:59 - 00000000 ____D C:\Program Files (x86)\mwyhtxtg 2017-02-07 08:07 - 2017-02-07 08:07 - 01222144 _____ C:\Users\Nelleke\Desktop\RSITx64.exe 2017-02-07 07:50 - 2017-02-12 20:26 - 00002658 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdaterCore 2017-02-07 07:50 - 2017-02-12 20:26 - 00000322 _____ C:\WINDOWS\Tasks\UCBrowserUpdaterCore.job 2017-02-06 21:44 - 2017-02-08 08:59 - 00000000 ____D C:\Program Files\Plumbytes Software 2017-02-06 21:44 - 2017-02-06 21:45 - 00000000 ____D C:\Users\Nelleke\AppData\Local\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD} 2017-02-06 21:43 - 2017-02-06 21:43 - 00881904 _____ (Plumbytes Software) C:\Users\Nelleke\Desktop\antimalwaresetup.exe 2017-02-06 21:33 - 2017-02-06 21:33 - 00008626 _____ C:\Users\Nelleke\Desktop\AdwCleaner[C0].txt 2017-02-06 21:32 - 2017-02-10 08:12 - 00003560 _____ C:\WINDOWS\System32\Tasks\UCBrowserSecureUpdater 2017-02-06 21:20 - 2017-02-06 21:20 - 04015056 _____ C:\Users\Nelleke\Downloads\adwcleaner_6.043.exe 2017-02-06 21:13 - 2017-02-06 21:14 - 00052443 _____ C:\Users\Nelleke\Desktop\Addition.txt 2017-02-06 21:10 - 2017-02-12 20:40 - 00029520 _____ C:\Users\Nelleke\Desktop\FRST.txt 2017-02-06 21:10 - 2017-02-06 21:10 - 02421248 _____ (Farbar) C:\Users\Nelleke\Desktop\FRST64.exe 2017-02-06 21:10 - 2017-02-06 21:10 - 00000000 ____D C:\FRST 2017-02-06 21:09 - 2017-02-06 21:09 - 02421248 _____ (Farbar) C:\Users\Nelleke\Downloads\FRST64.exe 2017-02-06 21:07 - 2017-02-06 21:07 - 01129376 _____ (Google Inc.) C:\Users\Nelleke\Downloads\ChromeSetup.exe 2017-02-02 16:54 - 2017-02-02 16:54 - 00002175 _____ C:\Users\Public\Desktop\P-touch Address Book 1.1.lnk 2017-02-02 16:54 - 2017-02-02 16:54 - 00002157 _____ C:\Users\Public\Desktop\P-touch Editor 5.0.lnk 2017-02-02 16:53 - 2017-02-02 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother P-touch 2017-02-02 16:49 - 2017-02-02 16:49 - 00000000 ____D C:\Users\Nelleke\Documents\Mis etiquetas 2017-02-01 22:27 - 2017-02-01 22:27 - 00000188 _____ C:\WINDOWS\wininit.ini 2017-02-01 21:44 - 2017-02-01 21:44 - 00000000 ____D C:\Users\Nelleke\Documents\ProcAlyzer Dumps 2017-02-01 18:40 - 2017-02-01 18:40 - 00000000 ____D C:\Program Files\SAJQ07LC90 2017-02-01 18:39 - 2017-02-01 18:39 - 00000000 ____D C:\Program Files\YLTLN13CO8 2017-02-01 18:37 - 2017-02-06 20:43 - 00000098 _____ C:\WINDOWS\SysWOW64\Error.ini 2017-02-01 17:38 - 2017-02-01 19:34 - 00000000 ____D C:\Program Files (x86)\o3Y8eG2T5Z 2017-02-01 17:37 - 2017-02-01 18:08 - 00000480 _____ C:\WINDOWS\Tasks\UCBrowserUpdater.job 2017-02-01 17:37 - 2017-02-01 17:37 - 00003502 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdater 2017-02-01 17:37 - 2017-02-01 17:37 - 00000000 ____D C:\Users\Nelleke\AppData\Local\UCBrowser 2017-02-01 17:37 - 2017-02-01 17:37 - 00000000 ____D C:\Program Files\YRKBGUERAD 2017-02-01 17:37 - 2017-02-01 17:37 - 00000000 ____D C:\Program Files\BN258ZB8Q9 2017-02-01 17:36 - 2017-02-01 17:37 - 00000000 ____D C:\Program Files (x86)\UCBrowser 2017-02-01 17:36 - 2017-02-01 17:36 - 00003738 _____ C:\WINDOWS\System32\Tasks\Aniqipypharaph 2017-02-01 17:36 - 2017-02-01 17:36 - 00000000 ____D C:\ProgramData\Avira 2017-02-01 17:35 - 2017-02-01 19:33 - 00000000 ____D C:\ProgramData\ProductData 2017-02-01 17:35 - 2017-02-01 17:36 - 00000000 ____D C:\Program Files\9EI0Y9I4Q4 2017-02-01 17:35 - 2017-02-01 17:35 - 00000000 ____D C:\WINDOWS\system32\SSL 2017-02-01 17:35 - 2017-02-01 17:35 - 00000000 ____D C:\Users\Public\Thunder Network 2017-02-01 17:35 - 2017-02-01 17:35 - 00000000 ____D C:\ProgramData\Thunder Network 2017-02-01 17:34 - 2017-02-08 09:00 - 00000000 ____D C:\Program Files (x86)\Plokoy 2017-02-01 17:34 - 2017-02-01 21:39 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\Arekotugoght 2017-02-01 17:34 - 2017-02-01 19:33 - 00000000 ____D C:\ProgramData\IObit 2017-02-01 17:34 - 2017-02-01 18:44 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\IObit 2017-02-01 17:34 - 2017-02-01 17:36 - 00000000 ____D C:\Program Files\K5MTHRPD97 2017-02-01 17:34 - 2017-02-01 17:35 - 00000000 ____D C:\Users\Nelleke\AppData\LocalLow\IObit 2017-02-01 17:34 - 2017-02-01 17:34 - 00006092 _____ C:\WINDOWS\System32\Tasks\Clerfghtsterfiry Monitor 2017-02-01 17:34 - 2017-02-01 17:34 - 00000000 ____D C:\WINDOWS\IObit 2017-02-01 17:34 - 2017-02-01 17:34 - 00000000 ____D C:\Users\Nelleke\AppData\Local\Gruvph 2017-02-01 04:25 - 2017-02-01 04:25 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2017-01-30 22:50 - 2017-01-30 22:50 - 03296953 _____ C:\WINDOWS\3277d883a41bb50591375b3ac5cc3d56.exe 2017-01-30 20:03 - 2017-02-01 21:40 - 00000877 _____ C:\Users\Nelleke\Desktop\WALKMAN - Snelkoppeling.lnk 2017-01-28 08:17 - 2017-01-28 08:17 - 00126516 _____ C:\Users\Nelleke\Desktop\terms-and-conditions-nl_NL-20161102.pdf 2017-01-27 21:19 - 2017-02-01 21:40 - 00001864 _____ C:\Users\Public\Desktop\iTunes.lnk 2017-01-27 21:19 - 2017-01-27 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2017-01-27 21:18 - 2017-01-27 21:19 - 00000000 ____D C:\Program Files\iTunes 2017-01-27 21:18 - 2017-01-27 21:18 - 00000000 ____D C:\Program Files\iPod 2017-01-25 16:45 - 2017-01-25 16:45 - 00124549 _____ C:\Users\Nelleke\Desktop\1485338969_00007-Factuur_tbv_email.pdf 2017-01-25 16:43 - 2017-01-25 16:43 - 00025600 _____ C:\Users\Nelleke\Desktop\maart april 2017.xls 2017-01-25 16:40 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2017-01-25 16:40 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2017-01-25 14:11 - 2017-01-25 14:11 - 00000000 ____D C:\Program Files\Common Files\Intel 2017-01-25 14:09 - 2017-01-25 15:04 - 00000000 ____D C:\Program Files (x86)\McAfee 2017-01-25 14:09 - 2017-01-25 15:03 - 00000000 ____D C:\Program Files\Common Files\McAfee 2017-01-17 05:56 - 2017-01-17 05:56 - 34717624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2017-01-17 05:56 - 2017-01-17 05:56 - 28209080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2017-01-17 05:56 - 2017-01-17 05:56 - 14190520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2017-01-17 05:56 - 2017-01-17 05:56 - 00951224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2017-01-17 05:56 - 2017-01-17 05:56 - 00904760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2017-01-17 05:55 - 2017-01-17 05:55 - 02961336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2017-01-17 05:55 - 2017-01-17 05:55 - 02594744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2017-01-17 05:55 - 2017-01-17 05:55 - 01964600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437654.dll 2017-01-17 05:55 - 2017-01-17 05:55 - 01598392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437654.dll 2017-01-17 05:55 - 2017-01-17 05:55 - 01047096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2017-01-17 05:55 - 2017-01-17 05:55 - 00985144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2017-01-17 05:55 - 2017-01-17 05:55 - 00054728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2017-01-17 05:54 - 2017-01-17 05:54 - 40134200 _____ C:\WINDOWS\system32\nvcompiler.dll 2017-01-17 05:54 - 2017-01-17 05:54 - 35233336 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2017-01-17 05:53 - 2017-01-17 05:53 - 11017016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2017-01-17 05:52 - 2017-01-17 05:52 - 10907368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2017-01-17 05:52 - 2017-01-17 05:52 - 10453152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2017-01-17 05:52 - 2017-01-17 05:52 - 09246832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2017-01-17 05:52 - 2017-01-17 05:52 - 09000336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2017-01-17 05:52 - 2017-01-17 05:52 - 08847016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2017-01-17 05:52 - 2017-01-17 05:52 - 03509152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2017-01-17 05:52 - 2017-01-17 05:52 - 00698544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2017-01-17 05:52 - 2017-01-17 05:52 - 00586784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2017-01-17 00:59 - 2017-01-17 00:59 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json 2017-01-17 00:59 - 2017-01-17 00:59 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json 2017-01-13 15:53 - 2017-02-01 21:40 - 00001362 _____ C:\Users\Nelleke\Desktop\Plex Media Server.lnk 2017-01-13 15:53 - 2017-01-13 20:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server 2017-01-13 15:53 - 2017-01-13 15:53 - 00000000 ____D C:\Program Files (x86)\Plex 2017-01-13 15:49 - 2017-01-13 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TorrentsTime Media Player 2017-01-13 15:49 - 2017-01-13 15:49 - 00000000 ____D C:\Program Files (x86)\TorrentsTime Media Player 2017-01-13 15:48 - 2017-01-13 15:49 - 02843192 _____ (Torrents Time ) C:\Users\Nelleke\Desktop\torrentsTime-download.exe ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-02-12 20:32 - 2016-09-25 02:59 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-02-12 20:12 - 2016-11-16 18:03 - 00000000 ____D C:\Users\Nelleke\AppData\LocalLow\Mozilla 2017-02-12 20:01 - 2016-09-25 03:06 - 03018682 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-02-12 20:01 - 2016-07-16 23:15 - 01264270 _____ C:\WINDOWS\system32\perfh013.dat 2017-02-12 20:01 - 2016-07-16 23:15 - 00329154 _____ C:\WINDOWS\system32\perfc013.dat 2017-02-12 20:00 - 2016-09-25 03:02 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-02-12 20:00 - 2016-09-25 03:02 - 00000000 ____D C:\ProgramData\NVIDIA 2017-02-12 20:00 - 2016-09-25 03:02 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-02-12 20:00 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF 2017-02-12 19:59 - 2016-09-25 03:02 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-02-12 19:56 - 2016-09-25 03:07 - 00000000 ____D C:\Users\Nelleke 2017-02-12 19:49 - 2013-12-15 10:43 - 00000000 ____D C:\Program Files\trend micro 2017-02-12 19:47 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-02-10 08:22 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-02-08 21:51 - 2016-12-15 19:18 - 00000000 ____D C:\ProgramData\VSO 2017-02-08 21:51 - 2015-10-05 19:24 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\Vso 2017-02-08 21:51 - 2012-05-29 18:38 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\uTorrent 2017-02-08 21:51 - 2011-01-15 18:05 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2017-02-08 21:50 - 2016-09-25 03:57 - 00000000 ___DC C:\WINDOWS\Panther 2017-02-08 21:45 - 2015-10-20 10:50 - 00000000 ____D C:\Users\Nelleke\AppData\Local\Packages 2017-02-08 17:48 - 2017-01-12 08:58 - 00084953 _____ C:\Users\Nelleke\Desktop\Voorlopigeaanslag2017.pdf 2017-02-08 17:34 - 2016-09-27 09:46 - 00003260 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForNelleke 2017-02-08 17:34 - 2016-09-27 09:46 - 00000360 _____ C:\WINDOWS\Tasks\HPCeeScheduleForNelleke.job 2017-02-07 07:55 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-02-06 21:26 - 2016-09-25 03:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-02-06 21:26 - 2016-09-25 02:59 - 00504344 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-02-06 21:25 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI 2017-02-06 21:23 - 2015-07-19 17:01 - 00000000 ____D C:\AdwCleaner 2017-02-06 21:11 - 2015-06-04 08:20 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-02-06 20:41 - 2016-11-16 14:51 - 00000000 ____D C:\WINDOWS\Minidump 2017-02-02 16:54 - 2011-01-18 10:46 - 00000000 ____D C:\Program Files (x86)\Brother 2017-02-01 21:40 - 2016-12-18 18:00 - 00001337 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2017-02-01 21:40 - 2016-12-15 19:19 - 00001364 _____ C:\Users\Nelleke\Desktop\ConvertXToDVD 6.lnk 2017-02-01 21:40 - 2016-12-08 20:14 - 00001091 _____ C:\Users\Public\Desktop\Kobo.lnk 2017-02-01 21:40 - 2016-12-08 19:40 - 00001325 _____ C:\Users\Nelleke\Desktop\Pixpedia Publisher.lnk 2017-02-01 21:40 - 2016-10-24 17:05 - 00001411 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Update Pro.lnk 2017-02-01 21:40 - 2016-10-24 17:05 - 00001399 _____ C:\Users\Public\Desktop\Software Update Pro.lnk 2017-02-01 21:40 - 2016-10-03 09:14 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk 2017-02-01 21:40 - 2016-10-03 09:14 - 00001507 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk 2017-02-01 21:40 - 2016-09-25 03:20 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2017-02-01 21:40 - 2016-07-26 18:55 - 00001492 _____ C:\Users\Public\Desktop\WinAVI All-in-One Converter.lnk 2017-02-01 21:40 - 2016-04-25 08:53 - 00001001 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk 2017-02-01 21:40 - 2016-02-22 15:37 - 00000614 _____ C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Muziek.lnk 2017-02-01 21:40 - 2016-02-22 15:37 - 00000480 _____ C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\nieuwe schijf (Z).lnk 2017-02-01 21:40 - 2015-12-08 16:43 - 00001147 _____ C:\Users\Public\Desktop\CollageIt.lnk 2017-02-01 21:40 - 2015-11-14 21:17 - 00000607 _____ C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (2).lnk 2017-02-01 21:40 - 2015-11-02 22:33 - 00001194 _____ C:\Users\Nelleke\Desktop\Air Playit.lnk 2017-02-01 21:40 - 2015-10-20 10:58 - 00002436 _____ C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-02-01 21:40 - 2015-09-23 17:25 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2017-02-01 21:40 - 2015-08-17 12:05 - 00002027 _____ C:\Users\Public\Desktop\Reader for PC.lnk 2017-02-01 21:40 - 2015-07-12 09:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-02-01 21:40 - 2015-06-12 16:16 - 00001071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk 2017-02-01 21:40 - 2015-06-04 08:19 - 00001230 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2017-02-01 21:40 - 2015-05-25 21:13 - 00001806 _____ C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2017-02-01 21:40 - 2015-01-28 19:24 - 00002565 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Excel Viewer.lnk 2017-02-01 21:40 - 2015-01-28 16:28 - 00002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirPort-configuratieprogramma.lnk 2017-02-01 21:40 - 2014-12-21 14:49 - 00001042 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2017-02-01 21:40 - 2014-02-27 17:04 - 00002191 _____ C:\Users\Nelleke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2017-02-01 21:40 - 2013-01-12 12:17 - 00001125 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-02-01 21:40 - 2011-01-16 22:39 - 00002595 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk 2017-02-01 21:40 - 2010-11-30 04:41 - 00002372 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Install HP Power Assistant.lnk 2017-02-01 21:40 - 2010-11-30 04:27 - 00001020 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicStation.lnk 2017-02-01 21:40 - 2010-11-30 04:24 - 00001429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite Deluxe.lnk 2017-02-01 21:39 - 2016-11-16 15:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-02-01 21:39 - 2011-01-15 16:57 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\Adobe 2017-02-01 19:49 - 2013-12-03 19:51 - 00000000 ___RD C:\Users\Nelleke\Desktop\Output convertdvd 2017-02-01 19:43 - 2016-10-08 13:33 - 00000000 ___RD C:\Users\Nelleke\Desktop\oude foto's 2017-02-01 19:43 - 2016-09-24 19:34 - 00000000 ____D C:\Users\Nelleke\Desktop\nieuw kaart auto 2017-02-01 19:43 - 2016-09-24 19:33 - 00000000 ____D C:\Users\Nelleke\Desktop\nieuw branden 2017-02-01 19:43 - 2015-08-04 09:32 - 00000000 ____D C:\Users\Nelleke\Desktop\Nijntje 2017-02-01 19:40 - 2014-01-21 18:52 - 00000000 ____D C:\Users\Nelleke\Pa 2017-02-01 19:24 - 2016-09-25 03:07 - 00000000 ____D C:\Users\UpdatusUser 2017-02-01 19:24 - 2016-09-25 03:07 - 00000000 ____D C:\Users\Gast 2017-02-01 19:24 - 2016-09-25 03:07 - 00000000 ____D C:\Users\DefaultAppPool 2017-02-01 18:08 - 2013-01-12 12:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-02-01 17:36 - 2016-05-01 20:43 - 00000000 ____D C:\Program Files (x86)\Apple Software Update 2017-02-01 17:36 - 2015-06-12 16:16 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP 2017-02-01 17:36 - 2015-01-28 16:53 - 00000000 ____D C:\Program Files (x86)\AirPort 2017-02-01 17:36 - 2013-12-11 13:04 - 00000000 ____D C:\ProgramData\AVAST Software 2017-02-01 17:36 - 2013-02-14 21:56 - 00000000 ____D C:\ProgramData\AVG 2017-02-01 17:34 - 2015-07-09 20:21 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS 2017-02-01 04:25 - 2011-01-19 19:00 - 00000000 ____D C:\Users\Nelleke\AppData\Roaming\Dropbox 2017-01-27 21:18 - 2011-01-15 20:54 - 00000000 ____D C:\Program Files\Common Files\Apple 2017-01-27 20:09 - 2011-01-16 18:22 - 00000000 ____D C:\Users\Nelleke\AppData\Local\ElevatedDiagnostics 2017-01-25 16:54 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-01-25 15:03 - 2013-11-06 20:03 - 00000940 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2017-01-25 15:02 - 2014-10-21 15:11 - 00000000 ____D C:\ProgramData\McAfee 2017-01-25 15:02 - 2014-08-29 21:34 - 00000000 ____D C:\Users\Nelleke\AppData\Local\Adobe 2017-01-25 14:10 - 2015-11-23 22:10 - 00000000 ____D C:\ProgramData\Package Cache 2017-01-25 14:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-01-25 14:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-01-23 21:31 - 2011-01-17 16:40 - 00000000 ____D C:\Users\Nelleke\AppData\Local\Apps\2.0 2017-01-17 05:55 - 2016-08-26 23:32 - 01604152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll 2017-01-17 05:55 - 2016-08-26 23:32 - 00221640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2017-01-17 05:52 - 2016-08-26 23:29 - 03972960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2017-01-17 00:59 - 2016-08-02 23:08 - 00042296 _____ C:\WINDOWS\system32\nvinfo.pb 2017-01-13 18:04 - 2015-09-10 06:35 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-01-13 17:20 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache 2017-01-13 16:04 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2017-01-13 16:04 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2017-01-13 16:04 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe 2017-01-13 16:04 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences 2017-01-13 16:04 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning 2017-01-13 15:56 - 2016-02-06 18:14 - 00000000 ____D C:\Users\Nelleke\AppData\Local\Plex Media Server 2017-01-13 15:29 - 2013-08-14 19:31 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-01-13 15:25 - 2011-01-16 09:49 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-01-13 10:03 - 2016-09-25 03:40 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task ==================== Bestanden in de root van sommige mappen ======= 2015-11-04 17:26 - 2016-02-08 20:25 - 0000209 _____ () C:\Users\Nelleke\AppData\Roaming\burnaware.ini 2011-06-05 12:05 - 2011-09-11 12:52 - 0001854 _____ () C:\Users\Nelleke\AppData\Roaming\GhostObjGAFix.xml 2016-12-15 19:12 - 2016-12-15 19:19 - 0099384 _____ () C:\Users\Nelleke\AppData\Roaming\inst.exe 2013-03-24 09:37 - 2014-03-06 20:33 - 0000017 _____ () C:\Users\Nelleke\AppData\Roaming\mbam.context.scan 2011-01-31 22:15 - 2011-02-25 18:58 - 0047366 _____ () C:\Users\Nelleke\AppData\Roaming\mdbu.bin 2011-01-26 15:57 - 2016-12-15 19:19 - 0007859 _____ () C:\Users\Nelleke\AppData\Roaming\pcouffin.cat 2011-01-26 15:57 - 2016-12-15 19:19 - 0001167 _____ () C:\Users\Nelleke\AppData\Roaming\pcouffin.inf 2016-12-15 19:12 - 2016-12-15 19:19 - 0000055 _____ () C:\Users\Nelleke\AppData\Roaming\pcouffin.log 2011-01-26 15:57 - 2016-12-15 19:19 - 0082816 _____ (VSO Software) C:\Users\Nelleke\AppData\Roaming\pcouffin.sys 2011-04-16 14:15 - 2011-04-16 14:15 - 0005261 _____ () C:\Users\Nelleke\AppData\Roaming\servetome-fonts.conf 2012-04-15 11:32 - 2012-04-15 11:32 - 0040023 _____ () C:\Users\Nelleke\AppData\Roaming\UserTile.png 2015-08-14 21:14 - 2016-12-15 09:16 - 0001173 _____ () C:\Users\Nelleke\AppData\Roaming\vso_ts_preview.xml 2013-12-11 22:04 - 2013-12-12 12:19 - 0126473 _____ () C:\Users\Nelleke\AppData\Local\ars.cache 2013-12-11 22:04 - 2013-12-12 12:20 - 0268360 _____ () C:\Users\Nelleke\AppData\Local\census.cache 2011-06-28 19:24 - 2014-10-07 13:44 - 0017408 _____ () C:\Users\Nelleke\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-12-11 21:22 - 2013-12-11 21:22 - 0000036 _____ () C:\Users\Nelleke\AppData\Local\housecall.guid.cache 2012-09-01 11:03 - 2012-09-01 11:03 - 0007625 _____ () C:\Users\Nelleke\AppData\Local\Resmon.ResmonCfg 2015-02-08 15:51 - 2015-02-08 15:51 - 0000057 _____ () C:\ProgramData\Ament.ini 2011-01-15 17:11 - 2011-01-15 17:11 - 0000003 _____ () C:\ProgramData\MusicStation.log 2011-01-15 17:10 - 2011-01-15 17:10 - 0000224 _____ () C:\ProgramData\MusicStation.xml ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\WINDOWS\system32\winlogon.exe => Bestand is getekend C:\WINDOWS\system32\wininit.exe => Bestand is getekend C:\WINDOWS\explorer.exe => Bestand is getekend C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend C:\WINDOWS\system32\svchost.exe => Bestand is getekend C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend C:\WINDOWS\system32\services.exe => Bestand is getekend C:\WINDOWS\system32\User32.dll => Bestand is getekend C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend C:\WINDOWS\system32\userinit.exe => Bestand is getekend C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend C:\WINDOWS\system32\rpcss.dll => Bestand is getekend C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2017-02-08 09:25 ==================== Eind van FRST.txt ============================