Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 01-05-2017 Gestart door hugoke (Beheerder) op HUGO (02-05-2017 11:07:02) Gestart vanaf C:\Users\hugoke\Downloads Geladen Profielen: hugoke (Beschikbare Profielen: hugoke) Platform: Windows 8.1 Pro (Update) (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: FF) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe () C:\Program Files (x86)\PHotkey\AsLdrSrv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe () C:\Program Files (x86)\PHotkey\GFNEXSrv.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe () C:\Program Files (x86)\Allway Sync\Bin\SyncService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\apps\CCF_Reputation\fsorsp.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\apps\ComputerSecurity\Anti-Virus\fsgk32.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe () C:\Windows\SysWOW64\spdsvc.exe () C:\Windows\SysWOW64\SecUPDUtilSvc.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (IntelĀ® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\apps\ComputerSecurity\Common\FSMA32.EXE (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\apps\ComputerSecurity\Common\FSHDLL64.EXE (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\apps\ComputerSecurity\Anti-Virus\fssm32.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (VASCO Data Security) C:\Users\hugoke\AppData\Local\VASCO\NativeBridge\digipass-nativebridge-monitor.exe (F-Secure Corporation) C:\Program Files (x86)\F-Secure\F-Secure KEY\fskey.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () C:\Program Files (x86)\PHotkey\PHotkey.exe () C:\Program Files (x86)\PHotkey\MsgTranAgt.exe () C:\Program Files (x86)\PHotkey\MsgTranAgt64.exe () C:\Program Files (x86)\PHotkey\Atouch64.exe (Pegatron Corporation) C:\Program Files (x86)\PHotkey\MyWiMax.exe () C:\Program Files (x86)\PHotkey\POsd.exe () C:\Program Files (x86)\PHotkey\GPMTray.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (TODO: ) C:\Program Files (x86)\PHotkey\HCSynApi.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\outlook.exe (Microsoft Corporation) C:\Windows\System32\prevhost.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\excel.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\excel.exe () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Softwarenetz) C:\Softwarenetz\Agenda3\kalender3.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (VASCO Data Security) C:\Users\hugoke\AppData\Local\VASCO\NativeBridge\digipass-nativebridge.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2917176 2012-09-05] (Synaptics Incorporated) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2015-12-14] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407104 2015-12-14] (Realtek Semiconductor) HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] () HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-20] (CyberLink Corp.) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1057408 2012-06-08] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [FSKeyAutoStart] => C:\Program Files (x86)\F-Secure\F-Secure KEY\fskey.exe [6980064 2017-03-02] (F-Secure Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1 HKU\S-1-5-21-10870461-3760241935-267325191-1002\...\Run: [DigipassNativeBridge] => C:\Users\hugoke\AppData\Local\VASCO\NativeBridge\digipass-nativebridge-monitor.exe [108592 2016-11-15] (VASCO Data Security) AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation) AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [158384 2017-01-25] (NVIDIA Corporation) GroupPolicy: Restrictie <======= AANDACHT ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.131.1 195.130.130.1 Tcpip\..\Interfaces\{364E802C-70D9-40A5-829C-BA26C40C9D73}: [DhcpNameServer] 195.130.131.1 195.130.130.1 Tcpip\..\Interfaces\{ECC4C599-5728-488B-B1FE-813B8AC73FF8}: [DhcpNameServer] 195.130.131.1 195.130.130.1 Internet Explorer: ================== HKU\S-1-5-21-10870461-3760241935-267325191-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.stamnummer3.be/viewforum.php?f=2 HKU\S-1-5-21-10870461-3760241935-267325191-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://clubbrugge.be/nl/ SearchScopes: HKU\S-1-5-21-10870461-3760241935-267325191-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-03-14] (Microsoft Corporation) BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https64.dll [2017-04-05] (F-Secure Corporation) BHO: Search by F-Secure -> {690EF1CF-5775-4CB3-A5B8-85A63FD0262B} -> C:\Program Files (x86)\F-Secure\SAFE\apps\SafeSearch\IE\FSSafeSearch64.dll [2016-10-24] (F-Secure Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation) BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll [2017-04-05] (F-Secure Corporation) BHO-x32: Search by F-Secure -> {690EF1CF-5775-4CB3-A5B8-85A63FD0262B} -> C:\Program Files (x86)\F-Secure\SAFE\apps\SafeSearch\IE\FSSafeSearch.dll [2016-10-24] (F-Secure Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-28] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-28] (Oracle Corporation) Toolbar: HKLM - Search by F-Secure Toolbar - {B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - C:\Program Files (x86)\F-Secure\SAFE\apps\SafeSearch\IE\FSSafeSearch64.dll [2016-10-24] (F-Secure Corporation) Toolbar: HKLM-x32 - Search by F-Secure Toolbar - {B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - C:\Program Files (x86)\F-Secure\SAFE\apps\SafeSearch\IE\FSSafeSearch.dll [2016-10-24] (F-Secure Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: 2zup0enl.default-1491307673202 FF ProfilePath: C:\Users\hugoke\AppData\Roaming\Mozilla\Firefox\Profiles\2zup0enl.default-1491307673202 [2017-05-02] FF ProfilePath: C:\Users\hugoke\AppData\Roaming\Mozilla\Firefox\Profiles\qo6uq03t.dev-edition-default [2017-04-26] FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-01-28] [ niet getekend] FF HKLM\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\F-Secure\SAFE\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi [2017-04-05] FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be => niet gevonden FF HKLM-x32\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi FF HKU\S-1-5-21-10870461-3760241935-267325191-1002\...\Firefox\Extensions: [safesearch@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\apps\SafeSearch\\Firefox\main.xpi FF Extension: (Search by F-Secure) - C:\Program Files (x86)\F-Secure\SAFE\apps\SafeSearch\\Firefox\main.xpi [2016-10-24] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll [2017-04-12] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-12] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [Geen bestand] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [Geen bestand] FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-28] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-28] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-10-15] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default [2017-04-26] CHR Extension: (Google Presentaties) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-05] CHR Extension: (Google Documenten) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-05] CHR Extension: (Google Drive) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-05] CHR Extension: (YouTube) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-05] CHR Extension: (Google Spreadsheets) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-05] CHR Extension: (Offline Documenten) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-09] CHR Extension: (Browsing Protection by F-Secure) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2017-01-09] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-04] CHR Extension: (Gmail) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-05] CHR Extension: (Chrome Media Router) - C:\Users\hugoke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-04] CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 ASLDRService; C:\Program Files (x86)\PHotkey\ASLDRSrv.exe [104968 2009-12-18] () R2 BotkindSyncService; C:\Program Files (x86)\Allway Sync\Bin\SyncService.exe [182784 2015-10-16] () [Bestand niet getekend] R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042544 2017-03-14] (Microsoft Corporation) S4 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-13] (CyberLink) S3 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink) R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [39616 2016-06-03] (CHENGDU YIWO Tech Development Co., Ltd) R2 fshoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [181216 2016-10-25] (F-Secure Corporation) R3 FSMA; C:\Program Files (x86)\F-Secure\SAFE\apps\ComputerSecurity\Common\FSMA32.EXE [218080 2016-10-26] (F-Secure Corporation) R2 fsnethoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [181216 2016-10-25] (F-Secure Corporation) R2 FSORSPClient; C:\Program Files (x86)\F-Secure\SAFE\apps\CCF_Reputation\fsorsp.exe [62432 2016-05-20] (F-Secure Corporation) R2 GFNEXSrv; C:\Program Files (x86)\PHotkey\GFNEXSrv.exe [156672 2011-10-13] () [Bestand niet getekend] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company) S2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-08-16] (Intel Corporation) [Bestand niet getekend] R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-09-24] () S3 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Bestand niet getekend] R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [492664 2017-04-26] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [492664 2017-04-26] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425592 2017-04-26] (NVIDIA Corporation) S3 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Bestand niet getekend] R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2012-10-19] () R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\\spdsvc.exe [499000 2016-06-18] () R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2016-06-22] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [1153840 2012-09-24] (IntelĀ® Corporation) S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X] ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [1337216 2012-10-01] (Motorola Solutions, Inc.) R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink) S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [48168 2015-12-10] () R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\SAFE\apps\ComputerSecurity\Anti-Virus\minifilter\FSgk.sys [229080 2017-02-02] (F-Secure Corporation) R1 F-Secure HIPS; C:\Program Files (x86)\F-Secure\SAFE\apps\ComputerSecurity\HIPS\drivers\fshs.sys [106704 2017-04-24] (F-Secure Corporation) R0 fsbts; C:\WINDOWS\System32\Drivers\fsbts.sys [73928 2017-01-06] () R3 fsni; C:\Program Files (x86)\F-Secure\SAFE\apps\CCF_Scanning\bin\fsni64.sys [120016 2017-04-05] (F-Secure Corporation) R3 NETwNe64; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [3345376 2013-09-04] (Intel Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-04-26] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47736 2017-04-26] (NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-04-26] (NVIDIA Corporation) R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2009-09-11] (PEGATRON) S1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102664 2014-10-30] () S1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25992 2014-10-30] () S1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [700680 2014-10-30] () R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) R3 XHCIPort; C:\WINDOWS\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-05-02 11:07 - 2017-05-02 11:07 - 00024189 _____ C:\Users\hugoke\Downloads\FRST.txt 2017-05-02 11:06 - 2017-05-02 11:07 - 00000000 ____D C:\FRST 2017-05-02 11:05 - 2017-05-02 11:05 - 02428416 _____ (Farbar) C:\Users\hugoke\Downloads\FRST64.exe 2017-04-30 23:03 - 2017-04-30 23:03 - 00002081 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk 2017-04-30 23:03 - 2017-04-30 23:03 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2017-04-30 23:03 - 2016-12-29 14:28 - 00133056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2017-04-30 23:03 - 2016-09-09 20:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2017-04-30 23:03 - 2016-09-09 20:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll 2017-04-30 23:03 - 2016-09-09 20:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2017-04-30 23:03 - 2016-09-09 20:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe 2017-04-30 23:01 - 2017-04-30 23:02 - 00000000 ____D C:\WINDOWS\LastGood 2017-04-30 08:26 - 2017-04-30 08:26 - 01714166 _____ C:\Users\hugoke\Downloads\Pages de AA607_002003.pdf 2017-04-30 07:34 - 2017-04-30 07:34 - 00269576 _____ C:\Users\hugoke\Downloads\Pages de AA607_058060.pdf 2017-04-29 23:21 - 2017-05-01 08:00 - 00000000 ____D C:\Users\hugoke\AppData\Local\NVIDIA Corporation 2017-04-29 23:21 - 2017-04-29 23:21 - 00001428 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2017-04-29 23:21 - 2017-04-29 23:21 - 00000000 ____D C:\Users\hugoke\AppData\Local\NVIDIA 2017-04-29 23:21 - 2017-04-26 07:37 - 01882232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2017-04-29 23:21 - 2017-04-26 07:37 - 01755256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll 2017-04-29 23:21 - 2017-04-26 07:37 - 01473144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2017-04-29 23:21 - 2017-04-26 07:37 - 01317496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll 2017-04-29 23:21 - 2017-04-26 07:37 - 00121464 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll 2017-04-29 23:20 - 2017-04-29 23:20 - 00004146 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-29 23:20 - 2017-04-29 23:20 - 00003852 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-29 23:20 - 2017-04-29 23:20 - 00003738 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-29 23:20 - 2017-04-29 23:20 - 00003738 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-29 23:20 - 2017-04-29 23:20 - 00003730 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-29 23:20 - 2017-04-29 23:20 - 00003554 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-29 23:20 - 2017-04-29 23:20 - 00003494 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-29 23:20 - 2017-04-29 23:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-04-29 23:20 - 2017-04-26 07:37 - 00153720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2017-04-29 23:20 - 2017-04-26 07:37 - 00127608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2017-04-29 23:20 - 2017-04-26 07:37 - 00057976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys 2017-04-29 23:20 - 2017-04-26 07:37 - 00047736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2017-04-29 23:20 - 2017-04-26 07:03 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat 2017-04-29 23:20 - 2016-12-29 15:10 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2017-04-29 23:19 - 2017-04-29 23:19 - 80175936 _____ (NVIDIA Corporation) C:\Users\hugoke\Downloads\GeForce_Experience_v3.5.0.76.exe 2017-04-29 23:08 - 2017-04-29 23:09 - 00292896 _____ C:\WINDOWS\Minidump\042917-262500-01.dmp 2017-04-29 23:06 - 2017-04-29 23:06 - 833972211 _____ C:\WINDOWS\MEMORY.DMP 2017-04-29 22:49 - 2017-04-29 22:49 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\Sjablonen 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\Netwerkprinteromgeving 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\Mijn documenten 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\Menu Start 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Mijn video's 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Mijn muziek 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Mijn afbeeldingen 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's 2017-04-29 22:49 - 2017-04-29 22:49 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Geschiedenis 2017-04-29 22:48 - 2017-04-29 22:49 - 00000000 ____D C:\Users\UpdatusUser 2017-04-29 22:48 - 2016-12-29 15:16 - 06384576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2017-04-29 22:48 - 2016-12-29 15:16 - 02475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2017-04-29 22:48 - 2016-12-29 15:16 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2017-04-29 22:48 - 2016-12-29 15:16 - 00546752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2017-04-29 22:48 - 2016-12-29 15:16 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2017-04-29 22:48 - 2016-12-29 15:16 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2017-04-29 22:48 - 2016-12-29 15:16 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2017-04-29 22:48 - 2016-12-22 01:59 - 07651057 _____ C:\WINDOWS\system32\nvcoproc.bin 2017-04-29 22:48 - 2015-10-15 14:40 - 00002221 _____ C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-04-29 22:48 - 2014-11-21 10:45 - 00000369 _____ C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk 2017-04-29 22:48 - 2014-11-21 10:45 - 00000369 _____ C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk 2017-04-29 22:48 - 2012-10-17 16:13 - 00001655 _____ C:\Users\UpdatusUser\Desktop\LIFESTORE.lnk 2017-04-29 22:48 - 2012-09-17 18:22 - 00002439 _____ C:\Users\UpdatusUser\Desktop\MEDIONmediathek.lnk 2017-04-29 22:48 - 2012-08-30 16:56 - 00000977 _____ C:\Users\UpdatusUser\Desktop\Windows 8 Info.lnk 2017-04-29 22:48 - 2012-08-16 10:59 - 00000991 _____ C:\Users\UpdatusUser\Desktop\ALDI Startpagina.lnk 2017-04-29 22:48 - 2012-08-05 15:38 - 00001777 _____ C:\Users\UpdatusUser\Desktop\MEDIONhome.lnk 2017-04-29 22:48 - 2012-08-05 15:37 - 00001763 _____ C:\Users\UpdatusUser\Desktop\ALDI Talk.lnk 2017-04-29 22:48 - 2012-08-05 15:36 - 00001783 _____ C:\Users\UpdatusUser\Desktop\ALDI Foto Service.lnk 2017-04-26 17:11 - 2017-04-26 17:11 - 09390672 _____ (Piriform Ltd) C:\Users\hugoke\Downloads\ccsetup529.exe 2017-04-21 10:02 - 2017-04-21 10:03 - 03161178 _____ C:\Users\hugoke\Desktop\fsdiag.7z 2017-04-21 08:57 - 2017-04-21 08:57 - 00246104 _____ (Mozilla) C:\Users\hugoke\Downloads\Firefox Setup Stub 53.0.exe 2017-04-20 14:33 - 2017-03-13 18:38 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmitomi.dll 2017-04-20 14:33 - 2017-03-13 18:29 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2017-04-20 14:33 - 2017-03-13 18:25 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2017-04-20 14:33 - 2017-03-13 18:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmitomi.dll 2017-04-20 14:33 - 2017-03-13 18:07 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2017-04-20 14:33 - 2017-03-13 18:06 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2017-04-20 14:33 - 2017-03-11 21:34 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2017-04-20 14:33 - 2017-03-11 21:32 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2017-04-20 14:33 - 2017-03-11 21:32 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys 2017-04-20 14:33 - 2017-03-11 20:49 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2017-04-20 14:33 - 2017-03-11 19:58 - 01437696 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2017-04-20 14:33 - 2017-03-11 19:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2017-04-20 14:33 - 2017-03-11 01:38 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2017-04-20 14:33 - 2017-03-11 01:38 - 00275800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2017-04-20 14:33 - 2017-03-09 22:52 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll 2017-04-20 14:33 - 2017-03-09 21:17 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll 2017-04-20 14:33 - 2017-03-08 04:44 - 00448285 _____ C:\WINDOWS\system32\ApnDatabase.xml 2017-04-20 14:33 - 2017-03-04 21:22 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2017-04-20 14:33 - 2017-03-04 21:21 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys 2017-04-18 20:42 - 2017-04-18 20:42 - 00477240 _____ (Mozilla) C:\Users\hugoke\Downloads\firefox-54.0a2.en-US.win32.installer-stub.exe 2017-04-16 08:27 - 2017-04-29 22:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-04-16 08:27 - 2017-04-21 08:57 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-04-16 08:27 - 2017-04-21 08:57 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2017-04-15 18:04 - 2017-04-15 18:04 - 00309049 _____ C:\Users\hugoke\Desktop\Favorieten 15042017.html 2017-04-12 09:02 - 2017-03-25 21:39 - 20284416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2017-04-12 09:02 - 2017-03-25 21:07 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2017-04-12 09:02 - 2017-03-25 21:06 - 13654016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2017-04-12 09:02 - 2017-03-25 20:55 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2017-04-12 09:02 - 2017-03-25 20:52 - 02289152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2017-04-12 09:02 - 2017-03-25 20:51 - 01313280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2017-04-12 09:02 - 2017-03-25 20:48 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2017-04-12 09:02 - 2017-03-25 20:47 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2017-04-12 09:02 - 2017-03-25 20:47 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2017-04-12 09:02 - 2017-03-25 20:46 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2017-04-12 09:02 - 2017-03-25 20:46 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2017-04-12 09:02 - 2017-03-25 20:46 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll 2017-04-12 09:02 - 2017-03-25 20:45 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2017-04-12 09:02 - 2017-03-25 20:45 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2017-04-12 09:02 - 2017-03-25 20:13 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2017-04-12 09:02 - 2017-03-25 20:10 - 02898432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2017-04-12 09:02 - 2017-03-25 19:56 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2017-04-12 09:02 - 2017-03-25 19:52 - 25746944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-04-12 09:02 - 2017-03-25 19:41 - 06045696 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2017-04-12 09:02 - 2017-03-25 19:12 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2017-04-12 09:02 - 2017-03-25 19:04 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2017-04-12 09:02 - 2017-03-25 19:00 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2017-04-12 09:02 - 2017-03-25 19:00 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2017-04-12 09:02 - 2017-03-25 18:59 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2017-04-12 09:02 - 2017-03-25 18:57 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2017-04-12 09:02 - 2017-03-25 18:28 - 15259136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2017-04-12 09:02 - 2017-03-25 18:24 - 03241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2017-04-12 09:02 - 2017-03-25 18:10 - 01546240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2017-04-12 09:02 - 2017-03-25 18:01 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2017-04-12 09:02 - 2017-03-25 06:43 - 01375960 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2017-04-12 09:02 - 2017-03-24 20:24 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2017-04-12 09:02 - 2017-03-14 21:06 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2017-04-12 09:02 - 2017-03-14 16:26 - 03714560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2017-04-12 09:02 - 2017-03-14 16:09 - 02240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2017-04-12 09:02 - 2017-03-14 16:08 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2017-04-12 09:02 - 2017-03-14 16:06 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2017-04-12 09:02 - 2017-03-13 18:13 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2017-04-12 09:02 - 2017-03-13 18:12 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2017-04-12 09:02 - 2017-03-13 18:08 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2017-04-12 09:02 - 2017-03-13 18:08 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2017-04-12 09:02 - 2017-03-13 17:59 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2017-04-12 09:02 - 2017-03-13 17:59 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2017-04-12 09:02 - 2017-03-13 17:56 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2017-04-12 09:02 - 2017-03-12 17:04 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys 2017-04-12 09:02 - 2017-03-11 05:59 - 01763888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2017-04-12 09:02 - 2017-03-11 05:56 - 01489608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2017-04-12 09:02 - 2017-03-11 05:49 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2017-04-12 09:02 - 2017-03-11 05:49 - 00388440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2017-04-12 09:02 - 2017-03-11 05:44 - 00373080 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2017-04-12 09:02 - 2017-03-11 05:41 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2017-04-12 09:02 - 2017-03-09 23:13 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2017-04-12 09:02 - 2017-03-09 23:08 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2017-04-12 09:02 - 2017-03-09 21:29 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2017-04-12 09:02 - 2017-03-08 01:25 - 01661064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2017-04-12 09:02 - 2017-03-08 01:21 - 01212760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2017-04-12 09:02 - 2017-03-04 21:24 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2017-04-12 09:02 - 2017-03-04 21:06 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll 2017-04-12 09:02 - 2017-03-04 20:15 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll 2017-04-12 09:02 - 2017-03-04 18:37 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2017-04-12 09:02 - 2017-03-03 17:11 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll 2017-04-12 09:02 - 2017-03-03 17:10 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll 2017-04-12 09:02 - 2017-03-03 17:06 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll 2017-04-12 09:02 - 2017-03-03 17:04 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll 2017-04-12 09:02 - 2017-01-12 17:03 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys 2017-04-12 09:02 - 2017-01-12 17:03 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpcivsp.sys 2017-04-12 08:44 - 2017-04-12 08:44 - 00004434 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2017-04-11 08:48 - 2017-04-11 08:51 - 00000000 ____D C:\AdwCleaner 2017-04-08 09:26 - 2017-04-08 09:26 - 00000822 _____ C:\Users\hugoke\Desktop\Ambtenarenpensioen.htm ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-05-02 11:07 - 2016-11-17 09:56 - 00000000 ____D C:\Users\hugoke\AppData\LocalLow\Mozilla 2017-05-02 09:21 - 2015-10-15 15:17 - 00000000 ____D C:\Users\hugoke\Documents\Outlook-bestanden 2017-05-02 09:11 - 2015-10-15 21:23 - 00003946 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{833E24E7-E24D-423C-95FD-11F958550EE7} 2017-05-02 09:11 - 2015-10-15 21:06 - 00000000 ____D C:\ProgramData\NVIDIA 2017-05-02 09:09 - 2017-01-06 10:52 - 00003412 _____ C:\WINDOWS\System32\Tasks\Scheduled scanning task 2017-05-02 09:09 - 2017-01-06 10:52 - 00000674 _____ C:\WINDOWS\Tasks\Scheduled scanning task.job 2017-05-02 09:07 - 2015-10-15 18:52 - 00000000 __SHD C:\Users\hugoke\IntelGraphicsProfiles 2017-05-01 11:43 - 2015-10-15 14:10 - 00000000 ____D C:\Users\hugoke\AppData\Local\Packages 2017-05-01 08:01 - 2014-11-21 10:44 - 01861508 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-05-01 08:01 - 2014-11-21 10:05 - 00824302 _____ C:\WINDOWS\system32\perfh013.dat 2017-05-01 08:01 - 2014-11-21 10:05 - 00168066 _____ C:\WINDOWS\system32\perfc013.dat 2017-05-01 08:01 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf 2017-04-30 23:03 - 2015-10-15 21:06 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-04-30 23:02 - 2015-10-15 21:06 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-04-30 23:02 - 2015-10-15 21:06 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-04-30 07:39 - 2015-10-15 14:20 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-10870461-3760241935-267325191-1002 2017-04-29 23:09 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-04-29 23:08 - 2015-11-24 17:16 - 00000000 ____D C:\WINDOWS\Minidump 2017-04-29 22:48 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help 2017-04-29 22:45 - 2017-01-28 08:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-04-29 22:44 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2017-04-28 10:11 - 2016-05-16 12:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-04-28 10:11 - 2016-02-02 12:41 - 00000000 ____D C:\ProgramData\Oracle 2017-04-28 10:10 - 2016-05-16 12:18 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2017-04-28 10:09 - 2016-05-16 12:17 - 00000000 ____D C:\Program Files (x86)\Java 2017-04-26 23:58 - 2016-09-22 09:24 - 00024064 ___SH C:\Users\hugoke\Desktop\Thumbs.db 2017-04-26 17:13 - 2017-02-19 12:30 - 00000000 ____D C:\Users\hugoke\AppData\Local\CrashDumps 2017-04-26 16:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-04-21 10:02 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache 2017-04-20 20:28 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-04-18 12:09 - 2017-01-30 08:41 - 00000000 ____D C:\Users\hugoke\AppData\Local\VirtualStore 2017-04-18 12:09 - 2015-10-15 21:09 - 00000000 ____D C:\Users\hugoke 2017-04-18 09:24 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2017-04-18 09:23 - 2015-10-15 14:37 - 00000000 ____D C:\Program Files\Microsoft Office 15 2017-04-14 15:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-04-13 13:52 - 2015-12-07 13:05 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2017-04-12 20:38 - 2016-12-13 18:48 - 00003166 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 2017-04-12 20:37 - 2016-04-23 21:44 - 00002355 _____ C:\Users\hugoke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive voor Bedrijven.lnk 2017-04-12 20:37 - 2015-10-22 16:32 - 00003174 _____ C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-10870461-3760241935-267325191-1002 2017-04-12 20:32 - 2013-08-22 16:44 - 00390448 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-04-12 20:24 - 2015-10-15 16:43 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-04-12 20:22 - 2012-11-13 05:52 - 148601744 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-04-12 08:44 - 2015-10-20 20:14 - 00000000 ____D C:\Users\hugoke\AppData\Local\Adobe 2017-04-12 08:44 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-04-12 08:44 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-04-11 09:08 - 2015-10-15 15:20 - 00000000 ____D C:\Program Files (x86)\Google 2017-04-04 14:07 - 2016-04-06 14:02 - 00000000 ____D C:\Users\hugoke\Desktop\Oude Firefox-gegevens 2017-04-04 13:01 - 2015-10-15 15:20 - 00000000 ____D C:\Users\hugoke\AppData\Local\Google ==================== Bestanden in de root van sommige mappen ======= 2015-10-31 10:52 - 2016-02-07 11:35 - 0038432 _____ () C:\Users\hugoke\AppData\Roaming\Door komma's gescheiden waarden.ADR 2012-11-13 07:19 - 2012-11-13 07:19 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2015-10-21 19:52 - 2016-06-22 17:53 - 0016840 _____ () C:\ProgramData\hpzinstall.log Sommige bestanden in TEMP: ==================== 2017-04-28 10:09 - 2017-04-28 10:09 - 0739904 _____ (Oracle Corporation) C:\Users\hugoke\AppData\Local\Temp\jre-8u131-windows-au.exe 2017-02-02 10:55 - 2016-12-29 14:29 - 0860960 _____ (NVIDIA Corporation) C:\Users\hugoke\AppData\Local\Temp\nvSCPAPI64.dll 2017-04-29 22:43 - 2016-12-29 14:28 - 0351680 _____ (NVIDIA Corporation) C:\Users\hugoke\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\WINDOWS\system32\winlogon.exe => Bestand is getekend C:\WINDOWS\system32\wininit.exe => Bestand is getekend C:\WINDOWS\explorer.exe => Bestand is getekend C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend C:\WINDOWS\system32\svchost.exe => Bestand is getekend C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend C:\WINDOWS\system32\services.exe => Bestand is getekend C:\WINDOWS\system32\User32.dll => Bestand is getekend C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend C:\WINDOWS\system32\userinit.exe => Bestand is getekend C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend C:\WINDOWS\system32\rpcss.dll => Bestand is getekend C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2017-04-25 09:52 ==================== Eind van FRST.txt ============================