Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 07-06-2017 Gestart door Jürgen (Beheerder) op HOME (07-06-2017 18:31:32) Gestart vanaf C:\Users\Jürgen\Downloads\!TE DOEN Geladen Profielen: Jürgen (Beschikbare Profielen: Jürgen) Platform: Windows 8.1 (Update) (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: FF) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe (AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe (Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe () C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobeReader_3.1.8.7675_x86__ynb6jyjzte8ga\AcroRd32.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2014-01-07] (Hewlett-Packard ) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2014-01-07] (IDT, Inc.) HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3957816 2014-02-07] (Hewlett-Packard) HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-02-07] (Hewlett-Packard) HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-02-07] (Hewlett-Packard) HKLM\...\Run: [hshhsaaaws] => ******************************************************************************************************************************************************************************************************** (de data item heeft 59 mee tekens). HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-31] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [263232 2017-05-18] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-01-24] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-31] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-11-16] () HKU\S-1-5-21-3877121255-3291077568-540399961-1001\...\MountPoints2: {07d89225-3302-11e6-8287-0009dd508852} - "H:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3877121255-3291077568-540399961-1001\...\MountPoints2: {1b12f78b-e82e-11e5-8273-0009dd508852} - "H:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3877121255-3291077568-540399961-1001\...\MountPoints2: {a07a129f-3fbf-11e6-828b-a0d3c14bd06c} - "H:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3877121255-3291077568-540399961-1001\...\MountPoints2: {a07a12b3-3fbf-11e6-828b-a0d3c14bd06c} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3877121255-3291077568-540399961-1001\...\MountPoints2: {d6f05520-517e-11e6-8292-0009dd508852} - "F:\HiSuiteDownLoader.exe" ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-01-06] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Winsock: Catalog5 09 C:\windows\SysWOW64\wlidNSP.dll [50176 2014-10-29] (Microsoft Corporation) Winsock: Catalog5 10 C:\windows\SysWOW64\wlidNSP.dll [50176 2014-10-29] (Microsoft Corporation) Winsock: Catalog5-x64 09 C:\windows\system32\wlidnsp.dll [74240 2014-10-29] (Microsoft Corporation) Winsock: Catalog5-x64 10 C:\windows\system32\wlidnsp.dll [74240 2014-10-29] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 195.130.130.3 195.130.131.3 Tcpip\..\Interfaces\{E8CF4243-730E-4D1F-ABD8-4C1D53B9D0AB}: [DhcpNameServer] 195.130.130.3 195.130.131.3 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON14/15 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON14/15 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON14/15 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON14/15 HKU\S-1-5-21-3877121255-3291077568-540399961-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.be/ HKU\S-1-5-21-3877121255-3291077568-540399961-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON14/15 SearchScopes: HKU\S-1-5-21-3877121255-3291077568-540399961-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3877121255-3291077568-540399961-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.) BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH) BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-19] (Oracle Corporation) BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-01-16] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-19] (Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.) BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH) BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.) FireFox: ======== FF DefaultProfile: nycpcdgw.default FF ProfilePath: C:\Users\Jürgen\AppData\Roaming\Mozilla\Firefox\Profiles\nycpcdgw.default [2017-06-07] FF Homepage: Mozilla\Firefox\Profiles\nycpcdgw.default -> hxxp://www.google.be/ FF Extension: (LavaFox V2) - C:\Users\Jürgen\AppData\Roaming\Mozilla\Firefox\Profiles\nycpcdgw.default\Extensions\info@djzig.com [2017-05-17] FF Extension: (Adblock Plus) - C:\Users\Jürgen\AppData\Roaming\Mozilla\Firefox\Profiles\nycpcdgw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-07] FF Extension: (DownThemAll!) - C:\Users\Jürgen\AppData\Roaming\Mozilla\Firefox\Profiles\nycpcdgw.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-09-30] FF Extension: (Follow-on Search Telemetry) - C:\Users\Jürgen\AppData\Roaming\Mozilla\Firefox\Profiles\nycpcdgw.default\features\{9310a59b-80a3-40af-8493-96cc4ddbdc94}\followonsearch@mozilla.com.xpi [2017-06-06] FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2016-11-18] FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-11-07] [ niet getekend] FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be FF HKU\S-1-5-21-3877121255-3291077568-540399961-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-12] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-12] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-19] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-19] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation) ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [264432 2017-05-18] (AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7396872 2017-05-18] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-05-31] (AVG Technologies CZ, s.r.o.) R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-04-27] (Digital Wave Ltd.) R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Bestand niet getekend] R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Bestand niet getekend] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2016-08-26] () [Bestand niet getekend] R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Bestand niet getekend] S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-08-12] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-12] (Intel Corporation) S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Bestand niet getekend] R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-02-07] (Softex Inc.) [Bestand niet getekend] S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Bestand niet getekend] S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2014-01-07] (IDT, Inc.) [Bestand niet getekend] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S0 amdkmafd; C:\windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.) R3 athr; C:\windows\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\windows\system32\drivers\AtihdWB6.sys [222720 2013-12-20] (Advanced Micro Devices) R1 avgbdisk; C:\windows\system32\drivers\avgbdiska.sys [166624 2017-05-18] (AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\windows\system32\drivers\avgbidsdrivera.sys [314128 2017-05-18] (AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\windows\system32\drivers\avgbidsha.sys [192584 2017-05-18] (AVG Technologies CZ, s.r.o.) R0 avgblog; C:\windows\system32\drivers\avgbloga.sys [336896 2017-05-18] (AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\windows\system32\drivers\avgbuniva.sys [51336 2017-05-18] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\windows\system32\drivers\avgHwid.sys [39424 2017-05-18] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\windows\system32\drivers\avgMonFlt.sys [129776 2017-05-18] (AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\windows\system32\drivers\avgRdr2.sys [102280 2017-05-18] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\windows\system32\drivers\avgRvrt.sys [76832 2017-05-18] (AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\windows\system32\drivers\avgSnx.sys [1008288 2017-05-18] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\windows\system32\drivers\avgSP.sys [570320 2017-05-18] (AVG Technologies CZ, s.r.o.) R2 avgStm; C:\windows\system32\drivers\avgStm.sys [160008 2017-05-18] (AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\windows\system32\drivers\avgVmm.sys [340824 2017-05-18] (AVG Technologies CZ, s.r.o.) R1 CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink) S3 DFX11_1; C:\windows\system32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Windows (R) Win 7 DDK provider) S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.) S3 dot4; C:\windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-05-25] (Huawei Technologies Co., Ltd.) R3 MEIx64; C:\windows\System32\drivers\TeeDriverx64.sys [99288 2013-08-12] (Intel Corporation) S3 RtlWlanu; C:\windows\system32\DRIVERS\rtwlanu.sys [3860224 2015-08-05] (Realtek Semiconductor Corporation ) S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.) S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) U3 McAPExe; geen ImagePath U3 McMPFSvc; geen ImagePath U3 McNaiAnn; geen ImagePath U3 mcpltsvc; geen ImagePath U3 mfecore; geen ImagePath U3 MSK80Service; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-06-07 18:31 - 2017-06-07 18:31 - 00000000 ____D C:\FRST 2017-05-30 20:01 - 2017-05-30 20:01 - 00662091 _____ C:\Users\Jürgen\Documents\kbc-beleggingsgids.pdf 2017-05-29 23:03 - 2017-05-29 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2017-05-29 00:20 - 2017-05-29 00:20 - 00020000 _____ C:\Users\Jürgen\Documents\Fiscaal attest levensverzekeringen Pensioen J.pdf 2017-05-28 16:59 - 2017-05-28 16:59 - 02323858 _____ C:\Users\Jürgen\Documents\Verzekeringskaart VESPA 27-05-2017 tot 26-06-2018.pdf 2017-05-24 09:34 - 2017-06-04 13:24 - 00000000 ____D C:\Users\Jürgen\AppData\LocalLow\uTorrent 2017-05-23 15:20 - 2017-05-23 15:20 - 00946134 _____ C:\Users\Jürgen\Documents\Machtiging terugbetaling TOPIRAMAAT0001.pdf 2017-05-18 22:51 - 2017-05-18 22:51 - 00001358 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2017-05-18 08:25 - 2017-05-18 08:25 - 00160008 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgstm.sys 2017-05-18 08:25 - 2017-05-18 08:25 - 00003920 _____ C:\windows\System32\Tasks\Antivirus Emergency Update 2017-05-18 08:25 - 2017-05-18 08:24 - 01008288 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgSnx.sys 2017-05-18 08:25 - 2017-05-18 08:24 - 00570320 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgSP.sys 2017-05-18 08:25 - 2017-05-18 08:24 - 00340824 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgVmm.sys 2017-05-18 08:25 - 2017-05-18 08:24 - 00129776 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgMonFlt.sys 2017-05-18 08:25 - 2017-05-18 08:24 - 00102280 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgRdr2.sys 2017-05-18 08:25 - 2017-05-18 08:24 - 00076832 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgRvrt.sys 2017-05-18 08:25 - 2017-05-18 08:24 - 00039424 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgHwid.sys 2017-05-18 08:25 - 2017-05-18 08:23 - 00336896 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbloga.sys 2017-05-18 08:25 - 2017-05-18 08:23 - 00314128 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbidsdrivera.sys 2017-05-18 08:25 - 2017-05-18 08:23 - 00192584 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbidsha.sys 2017-05-18 08:25 - 2017-05-18 08:23 - 00166624 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbdiska.sys 2017-05-18 08:25 - 2017-05-18 08:23 - 00051336 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbuniva.sys 2017-05-18 08:24 - 2017-05-18 08:24 - 00401584 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\avgBoot.exe 2017-05-18 08:22 - 2017-05-29 23:03 - 00001028 _____ C:\Users\Public\Desktop\AVG.lnk 2017-05-12 12:40 - 2017-04-29 00:44 - 00835576 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe 2017-05-12 12:40 - 2017-04-29 00:44 - 00177656 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-05-11 16:37 - 2017-05-11 16:38 - 00000000 ____D C:\Users\Jürgen\Documents\Freemake 2017-05-11 16:37 - 2017-05-11 16:38 - 00000000 ____D C:\ProgramData\Freemake 2017-05-11 16:37 - 2017-05-11 16:37 - 00001343 _____ C:\Users\Public\Desktop\Freemake Audio Converter.lnk 2017-05-11 16:37 - 2017-05-11 16:37 - 00000000 ____D C:\Users\Jürgen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake 2017-05-11 16:37 - 2017-05-11 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake 2017-05-11 16:37 - 2017-05-11 16:37 - 00000000 ____D C:\Program Files (x86)\Freemake 2017-05-11 10:49 - 2017-03-30 15:15 - 00875712 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr120_clr0400.dll 2017-05-11 10:49 - 2017-03-30 15:15 - 00869568 _____ (Microsoft Corporation) C:\windows\system32\msvcr120_clr0400.dll 2017-05-11 10:49 - 2017-03-30 15:15 - 00678592 _____ (Microsoft Corporation) C:\windows\system32\msvcp120_clr0400.dll 2017-05-11 10:49 - 2017-03-30 15:15 - 00536768 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp120_clr0400.dll 2017-05-10 23:40 - 2017-04-28 23:15 - 07444824 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe 2017-05-10 23:40 - 2017-04-26 16:06 - 04169216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys 2017-05-10 23:40 - 2017-04-16 12:23 - 02176584 _____ (Microsoft Corporation) C:\windows\system32\combase.dll 2017-05-10 23:40 - 2017-04-16 12:23 - 01662096 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll 2017-05-10 23:40 - 2017-04-16 12:23 - 01063464 _____ (Microsoft Corporation) C:\windows\system32\WinTypes.dll 2017-05-10 23:40 - 2017-04-16 12:18 - 01135288 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll 2017-05-10 23:40 - 2017-04-16 12:18 - 00803192 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll 2017-05-10 23:40 - 2017-04-16 11:07 - 01566032 _____ (Microsoft Corporation) C:\windows\SysWOW64\combase.dll 2017-05-10 23:40 - 2017-04-16 11:07 - 01213792 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll 2017-05-10 23:40 - 2017-04-16 11:07 - 00548032 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinTypes.dll 2017-05-10 23:40 - 2017-04-16 11:05 - 00612096 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll 2017-05-10 23:40 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll 2017-05-10 23:40 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll 2017-05-10 23:40 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll 2017-05-10 23:40 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe 2017-05-10 23:40 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll 2017-05-10 23:40 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll 2017-05-10 23:40 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll 2017-05-10 23:40 - 2017-04-16 10:16 - 00862720 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll 2017-05-10 23:40 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx 2017-05-10 23:40 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll 2017-05-10 23:40 - 2017-04-16 10:02 - 00145408 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll 2017-05-10 23:40 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll 2017-05-10 23:40 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll 2017-05-10 23:40 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll 2017-05-10 23:40 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll 2017-05-10 23:40 - 2017-04-16 09:52 - 01033216 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll 2017-05-10 23:40 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll 2017-05-10 23:40 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll 2017-05-10 23:40 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll 2017-05-10 23:40 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll 2017-05-10 23:40 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe 2017-05-10 23:40 - 2017-04-16 09:40 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll 2017-05-10 23:40 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl 2017-05-10 23:40 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx 2017-05-10 23:40 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll 2017-05-10 23:40 - 2017-04-16 09:23 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll 2017-05-10 23:40 - 2017-04-16 09:22 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll 2017-05-10 23:40 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll 2017-05-10 23:40 - 2017-04-16 09:17 - 00880640 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll 2017-05-10 23:40 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll 2017-05-10 23:40 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll 2017-05-10 23:40 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll 2017-05-10 23:40 - 2017-04-16 09:10 - 00330752 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll 2017-05-10 23:40 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll 2017-05-10 23:40 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl 2017-05-10 23:40 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll 2017-05-10 23:40 - 2017-04-16 09:02 - 00267776 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincorlib.dll 2017-05-10 23:40 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll 2017-05-10 23:40 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll 2017-05-10 23:40 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll 2017-05-10 23:40 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll 2017-05-10 23:40 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll 2017-05-10 23:40 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll 2017-05-10 23:40 - 2017-04-10 00:00 - 01548640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys 2017-05-10 23:40 - 2017-04-10 00:00 - 00388448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys 2017-05-10 23:40 - 2017-04-08 01:20 - 01375960 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll 2017-05-10 23:40 - 2017-04-07 15:56 - 01094656 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll 2017-05-10 23:40 - 2017-04-02 18:41 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys 2017-05-10 23:40 - 2017-04-02 18:41 - 00414720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys 2017-05-10 23:40 - 2017-04-01 01:16 - 01968408 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll 2017-05-10 23:40 - 2017-03-31 23:59 - 01612504 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll 2017-05-10 23:40 - 2017-03-13 18:38 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\wmitomi.dll 2017-05-10 23:40 - 2017-03-13 18:29 - 02609664 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll 2017-05-10 23:40 - 2017-03-13 18:25 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll 2017-05-10 23:40 - 2017-03-13 18:13 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmitomi.dll 2017-05-10 23:40 - 2017-03-13 18:07 - 02170880 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmSvc.dll 2017-05-10 23:40 - 2017-03-13 18:06 - 00236032 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmWmiPl.dll 2017-05-10 23:40 - 2017-03-11 21:34 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys 2017-05-10 23:40 - 2017-03-11 21:32 - 00401408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys 2017-05-10 23:40 - 2017-03-11 21:32 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys 2017-05-10 23:40 - 2017-03-11 20:49 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll 2017-05-10 23:40 - 2017-03-11 19:58 - 01437696 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll 2017-05-10 23:40 - 2017-03-11 19:54 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll 2017-05-10 23:40 - 2017-03-11 01:38 - 02017624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys 2017-05-10 23:40 - 2017-03-11 01:38 - 00275800 ____C (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys 2017-05-10 23:40 - 2017-03-09 22:52 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\wisp.dll 2017-05-10 23:40 - 2017-03-09 21:17 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\wisp.dll 2017-05-10 23:40 - 2017-03-08 04:44 - 00448285 _____ C:\windows\system32\ApnDatabase.xml ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2017-06-07 18:31 - 2015-11-05 21:06 - 00000000 ____D C:\Users\Jürgen\Downloads\!TE DOEN 2017-06-07 18:28 - 2016-11-18 14:56 - 00000000 ____D C:\Users\Jürgen\AppData\LocalLow\Mozilla 2017-06-07 13:43 - 2016-04-20 22:40 - 00000000 ____D C:\Users\Jürgen\AppData\LocalLow\Adblock Plus for IE 2017-06-07 13:38 - 2015-11-05 19:44 - 00003946 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{20AF13F1-8008-467A-BB3B-CCF4D257BF9F} 2017-06-07 13:37 - 2015-11-05 19:31 - 00000000 ___DO C:\Users\Jürgen\OneDrive 2017-06-06 18:47 - 2015-11-08 20:22 - 00000000 ____D C:\Users\Jürgen\AppData\Roaming\vlc 2017-06-06 18:18 - 2016-09-03 10:56 - 00000000 ____D C:\Users\Jürgen\AppData\Roaming\Mp3tag 2017-06-06 18:16 - 2016-08-24 22:12 - 00000000 ____D C:\Users\Jürgen\Downloads\Verplaatsen Naar Seagate 2017-06-06 18:09 - 2015-11-05 23:29 - 62205440 ___SH C:\Users\Jürgen\Downloads\Thumbs.db 2017-06-06 17:10 - 2016-09-20 16:21 - 00003600 _____ C:\windows\System32\Tasks\AVG EUpdate Task 2017-06-04 17:45 - 2015-11-07 10:15 - 00000000 ____D C:\Users\Jürgen\Downloads\OK 2017-06-04 13:26 - 2015-11-05 21:12 - 00000000 ____D C:\Users\Jürgen\AppData\Roaming\uTorrent 2017-06-02 22:53 - 2017-03-11 14:12 - 00003162 _____ C:\windows\System32\Tasks\HPCeeScheduleForJürgen 2017-06-02 22:53 - 2017-03-11 14:12 - 00000346 _____ C:\windows\Tasks\HPCeeScheduleForJürgen.job 2017-05-29 23:30 - 2015-11-05 19:34 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3877121255-3291077568-540399961-1001 2017-05-26 12:55 - 2014-11-08 02:51 - 00792258 _____ C:\windows\system32\perfh013.dat 2017-05-26 12:55 - 2014-11-08 02:51 - 00177426 _____ C:\windows\system32\perfc013.dat 2017-05-26 12:55 - 2014-03-18 17:32 - 01825262 _____ C:\windows\system32\PerfStringBackup.INI 2017-05-26 12:55 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf 2017-05-26 12:49 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT 2017-05-26 12:48 - 2013-08-22 15:25 - 00524288 ___SH C:\windows\system32\config\BBI 2017-05-25 12:46 - 2016-11-18 14:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-05-25 12:46 - 2016-09-14 11:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-05-24 18:31 - 2015-11-10 00:05 - 00000000 ____D C:\Users\Jürgen\AppData\Roaming\DVDVideoSoft 2017-05-23 15:29 - 2016-08-18 00:34 - 00012218 _____ C:\Users\Jürgen\Documents\Lijst medicatie e.d. Nancy Swinnen.xlsx 2017-05-23 15:03 - 2015-11-05 20:20 - 00000000 ____D C:\windows\system32\MRT 2017-05-23 15:02 - 2015-11-05 20:20 - 132223576 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe 2017-05-19 20:03 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness 2017-05-18 22:51 - 2017-04-09 23:45 - 00001325 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk 2017-05-18 22:51 - 2015-11-10 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2017-05-18 22:51 - 2015-11-10 00:05 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft 2017-05-18 11:27 - 2015-11-05 21:00 - 00000000 ____D C:\ProgramData\Avg 2017-05-18 08:36 - 2015-11-05 20:59 - 00000000 ____D C:\Users\Jürgen\AppData\Local\Avg 2017-05-18 08:36 - 2015-11-05 20:59 - 00000000 ____D C:\ProgramData\MFAData 2017-05-18 08:36 - 2015-11-05 20:05 - 00000000 ____D C:\Program Files\Common Files\AV 2017-05-18 08:33 - 2013-08-22 17:36 - 00000000 ___HD C:\windows\ELAMBKUP 2017-05-18 08:26 - 2015-11-05 21:03 - 00000000 ____D C:\Users\Jürgen\AppData\Roaming\AVG 2017-05-18 08:22 - 2015-11-05 21:00 - 00000000 ____D C:\Program Files (x86)\AVG 2017-05-15 22:51 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\NDF 2017-05-14 12:02 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache 2017-05-12 12:39 - 2013-08-22 16:44 - 00600288 _____ C:\windows\system32\FNTCACHE.DAT 2017-05-12 00:14 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\inetsrv 2017-05-12 00:14 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\inetsrv 2017-05-12 00:14 - 2013-08-22 17:36 - 00000000 ____D C:\windows\PolicyDefinitions 2017-05-11 10:57 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp 2017-05-11 10:48 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\ELAM 2017-05-09 16:54 - 2016-10-17 18:44 - 00004398 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater 2017-05-09 16:54 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\Macromed 2017-05-09 16:54 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\Macromed ==================== Bestanden in de root van sommige mappen ======= 2015-12-14 21:53 - 2016-11-27 15:52 - 0007602 _____ () C:\Users\Jürgen\AppData\Local\resmon.resmoncfg 2015-11-07 14:47 - 2015-11-07 14:56 - 0001253 _____ () C:\ProgramData\hpzinstall.log Sommige bestanden in TEMP: ==================== 2016-06-23 17:00 - 2016-05-18 13:03 - 0186640 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Jürgen\AppData\Local\Temp\avguirn_081998769747.exe 2016-07-28 11:28 - 2016-06-21 18:49 - 0186640 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Jürgen\AppData\Local\Temp\avguirn_08320576341.exe 2016-08-23 11:44 - 2016-07-20 14:01 - 0186640 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Jürgen\AppData\Local\Temp\avguirn_08601177734.exe 2017-05-11 16:37 - 2017-05-11 16:37 - 19002008 _____ (Ellora Assets Corporation ) C:\Users\Jürgen\AppData\Local\Temp\FreemakeAudioConverterFull.exe 2016-09-11 11:05 - 2016-09-11 11:06 - 36403960 _____ (AppWork GmbH) C:\Users\Jürgen\AppData\Local\Temp\JDSetup131180583586027712.exe 2016-07-23 10:30 - 2016-07-23 10:30 - 0741440 _____ (Oracle Corporation) C:\Users\Jürgen\AppData\Local\Temp\jre-8u101-windows-au.exe 2016-10-19 14:18 - 2016-10-19 14:18 - 0737856 _____ (Oracle Corporation) C:\Users\Jürgen\AppData\Local\Temp\jre-8u111-windows-au.exe 2017-01-20 13:18 - 2017-01-20 13:18 - 0739904 _____ (Oracle Corporation) C:\Users\Jürgen\AppData\Local\Temp\jre-8u121-windows-au.exe 2017-04-19 12:52 - 2017-04-19 12:52 - 0739904 _____ (Oracle Corporation) C:\Users\Jürgen\AppData\Local\Temp\jre-8u131-windows-au.exe 2016-03-28 17:13 - 2016-05-09 07:08 - 2458672 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Users\Jürgen\AppData\Local\Temp\libeay32.dll 2016-03-28 17:13 - 2013-10-05 02:38 - 0970912 _____ (Microsoft Corporation) C:\Users\Jürgen\AppData\Local\Temp\msvcr120.dll 2016-08-17 21:19 - 2006-11-13 19:13 - 0145184 ____R (Microsoft Corporation) C:\Users\Jürgen\AppData\Local\Temp\ose00000.exe 2016-09-11 11:09 - 2016-09-11 11:09 - 0040448 ____N () C:\Users\Jürgen\AppData\Local\Temp\proxy_vole2976024349170334251.dll 2016-03-03 11:50 - 2016-05-09 07:08 - 0772672 _____ () C:\Users\Jürgen\AppData\Local\Temp\sqlite3.dll 2016-09-09 18:17 - 2016-09-09 18:17 - 30533688 _____ () C:\Users\Jürgen\AppData\Local\Temp\vlc-2.2.4-win32.exe ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\windows\system32\winlogon.exe => Bestand is getekend C:\windows\system32\wininit.exe => Bestand is getekend C:\windows\explorer.exe => Bestand is getekend C:\windows\SysWOW64\explorer.exe => Bestand is getekend C:\windows\system32\svchost.exe => Bestand is getekend C:\windows\SysWOW64\svchost.exe => Bestand is getekend C:\windows\system32\services.exe => Bestand is getekend C:\windows\system32\User32.dll => Bestand is getekend C:\windows\SysWOW64\User32.dll => Bestand is getekend C:\windows\system32\userinit.exe => Bestand is getekend C:\windows\SysWOW64\userinit.exe => Bestand is getekend C:\windows\system32\rpcss.dll => Bestand is getekend C:\windows\system32\dnsapi.dll => Bestand is getekend C:\windows\SysWOW64\dnsapi.dll => Bestand is getekend C:\windows\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2017-06-01 15:32 ==================== Eind van FRST.txt ============================