Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 03.05.2018 Gestart door Thibaut (Beheerder) op LAPTOPTJE (05-05-2018 02:49:50) Gestart vanaf C:\Users\Thibaut\Desktop Geladen Profielen: Thibaut (Beschikbare Profielen: Thibaut) Platform: Windows 8.1 (Update) (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: Chrome) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe () C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe (Pokki) C:\Users\Thibaut\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe (Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe () C:\Windows\SysWOW64\UMonit64.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Mobile Leader Co.,Ltd.) C:\Users\Thibaut\Desktop\LG PC Suite IV\LinkAir\LinkAir.exe (Spotify Ltd) C:\Users\Thibaut\AppData\Roaming\Spotify\SpotifyWebHelper.exe (McAfee Inc.) C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe (Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe (Pokki) C:\Users\Thibaut\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe (Pokki) C:\Users\Thibaut\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\cmd.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google) C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\SwReporter\28.152.200\software_reporter_tool.exe (Google) C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\SwReporter\28.152.200\software_reporter_tool.exe (Google) C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\SwReporter\28.152.200\software_reporter_tool.exe (Pokki) C:\Users\Thibaut\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2404296 2014-08-09] (NVIDIA Corporation) HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [217088 2014-06-07] (Realtek Semiconductor Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13675736 2014-08-14] (Realtek Semiconductor) HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-04-17] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [291056 2018-04-21] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [298296 2018-04-08] (Apple Inc.) HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [91488 2017-09-28] () HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596664 2017-08-30] (Razer Inc.) HKLM\...\Policies\Explorer: [AllowLegacyWebView] 1 HKLM\...\Policies\Explorer: [AllowUnhashedWebView] 1 HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-03-18] (Apple Inc.) HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\Run: [LG LinkAir] => C:\Users\Thibaut\Desktop\LG PC Suite IV\LinkAir\LinkAir.exe [2420072 2010-05-27] (Mobile Leader Co.,Ltd.) HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9856176 2017-09-20] (Piriform Ltd) HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\Run: [Spotify] => C:\Users\Thibaut\AppData\Roaming\Spotify\Spotify.exe [22454160 2018-03-31] (Spotify Ltd) HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\Run: [Spotify Web Helper] => C:\Users\Thibaut\AppData\Roaming\Spotify\SpotifyWebHelper.exe [782736 2018-03-31] (Spotify Ltd) HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\Run: [McAfeeSafeConnect] => C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe [1112960 2018-03-14] (McAfee Inc.) HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\RunOnce: [Application Restart #5] => C:\Users\Thibaut\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [8616656 2018-03-16] (Pokki) HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\RunOnce: [Application Restart #4] => C:\Users\Thibaut\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [8616656 2018-03-16] (Pokki) HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\...\RunOnce: [Application Restart #3] => C:\Users\Thibaut\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [8616656 2018-03-16] (Pokki) IFEO\facebookgameroom.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2018-04-29] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe (McAfee, Inc.) Startup: C:\Users\Thibaut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-09-26] ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Thibaut\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook) Startup: C:\Users\Thibaut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk [2017-10-02] ShortcutTarget: Verzenden naar OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) GroupPolicy: Restrictie <==== AANDACHT ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Winsock: Catalog5 09 C:\Windows\SysWOW64\wlidNSP.dll [50176 2014-11-21] (Microsoft Corporation) Winsock: Catalog5 10 C:\Windows\SysWOW64\wlidNSP.dll [50176 2014-11-21] (Microsoft Corporation) Winsock: Catalog5-x64 09 C:\Windows\system32\wlidnsp.dll [74240 2014-11-21] (Microsoft Corporation) Winsock: Catalog5-x64 10 C:\Windows\system32\wlidnsp.dll [74240 2014-11-21] (Microsoft Corporation) Hosts: 0.0.0.1 mssplus.mcafee.com Tcpip\Parameters: [DhcpNameServer] 195.130.131.5 195.130.130.5 Tcpip\..\Interfaces\{93CBADCE-ECCF-4FE7-97DE-9D555C9EB964}: [DhcpNameServer] 195.130.131.5 195.130.130.5 Tcpip\..\Interfaces\{9ED6586E-7D03-4367-8B52-FBFFEF7D0A74}: [DhcpNameServer] 8.8.8.8 8.8.4.4 Internet Explorer: ================== HKU\S-1-5-21-1770967010-2409308368-2111968363-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://us.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://us.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} SearchScopes: HKU\S-1-5-21-1770967010-2409308368-2111968363-1001 -> DefaultScope {F792AE0C-B9DA-4689-8D0E-2C35C95D5D65} URL = hxxp://www.google.nl/search?hl=nl&q={searchTerms} SearchScopes: HKU\S-1-5-21-1770967010-2409308368-2111968363-1001 -> {3E508CC9-18C2-4F65-9EC8-BD5DD50992A6} URL = SearchScopes: HKU\S-1-5-21-1770967010-2409308368-2111968363-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = SearchScopes: HKU\S-1-5-21-1770967010-2409308368-2111968363-1001 -> {F792AE0C-B9DA-4689-8D0E-2C35C95D5D65} URL = hxxp://www.google.nl/search?hl=nl&q={searchTerms} BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-04-29] (Microsoft Corporation) BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2018-03-19] (McAfee, Inc.) BHO-x32: HistoryTriggerBHO Class -> {21A88CB9-84D2-4020-A2D1-B25A21034884} -> C:\Users\Thibaut\Desktop\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll [2010-05-27] (LG Electronics) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2018-03-19] (McAfee, Inc.) IE Session Restore: HKU\S-1-5-21-1770967010-2409308368-2111968363-1001 -> is ingeschakeld. Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2018-03-19] (McAfee, Inc.) Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2018-03-19] (McAfee, Inc.) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-29] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-29] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-29] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-29] (Microsoft Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2018-03-19] (McAfee, Inc.) Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2018-03-19] (McAfee, Inc.) FireFox: ======== FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi FF Extension: (McAfee® WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-05-05] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi FF HKLM-x32\...\Firefox\Extensions: [{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}] - C:\Users\Thibaut\Desktop\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B} FF Extension: (LG Air Sync) - C:\Users\Thibaut\Desktop\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B} [2017-09-06] [Verouderd] [ niet getekend] FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-10-10] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-10-10] (Intel Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-04-29] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2017-06-15] () Chrome: ======= CHR DefaultProfile: Default CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.google.com" CHR NewTab: Default -> Not-active:"chrome-extension://cbmbfafhdccfgdgnbkgogehiklmemkoh/index.html" CHR Session Restore: Default -> is ingeschakeld. CHR Profile: C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default [2018-05-05] CHR Extension: (Presentaties) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Belfius Smart Card Reader Chrome Extensie) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\agicnfmechmlphpjmeefookfjhifbmhi [2017-10-10] CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2017-10-10] CHR Extension: (Documenten) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Drive) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-22] CHR Extension: (YouTube) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-22] CHR Extension: (Note Anywhere) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohahkiiknkelflnjjlipnaeapefmjbh [2017-10-10] CHR Extension: (X New Tab Page) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbmbfafhdccfgdgnbkgogehiklmemkoh [2017-10-10] CHR Extension: (Adblock Plus) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-04-21] CHR Extension: (Tampermonkey) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-03-04] CHR Extension: (Pixlr-o-matic) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj [2017-10-10] CHR Extension: (Spreadsheets) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-05-05] CHR Extension: (Stylish: Aangepaste thema's voor elke website) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2018-04-24] CHR Extension: (Stopwatch / timer) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggnidjbcahhbnleinchgobfnabopeioh [2018-01-15] CHR Extension: (Offline Documenten) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-06-23] CHR Extension: (Pinterest-bewaarknop) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2018-05-01] CHR Extension: (Advertenties blocker voor YouTube ™) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-02-25] CHR Extension: (Facebook - Delete All Messages) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgiidlnejdlfoacoeleopkljhbckmlko [2018-01-04] CHR Extension: (Telenet: Instellingen: Accounts) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieapabgkoipgefpmimgnhepibipbgkbb [2017-10-10] CHR Extension: (Google Play) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2018-02-13] CHR Extension: (Social Book Post Manager) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljfidlkcmdmmibngdfikhffffdmphjae [2018-01-04] CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2018-04-27] CHR Extension: (Tecknity Cookies) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhdckmmmapdjbfihlhkhfcefpjmfddgn [2018-04-19] CHR Extension: (MyTopMovies Search) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\nknhhccjclgkbbcpbfjbiflfhahcohno [2018-05-05] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (GIFPAL) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\noohoboklgjeccnihfkbdakbchbhjlch [2017-10-10] CHR Extension: (Gmail) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-06-22] CHR Extension: (Chrome Media Router) - C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-24] CHR Profile: C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-04-24] CHR Profile: C:\Users\Thibaut\AppData\Local\Google\Chrome\User Data\System Profile [2018-04-24] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2017-06-23] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2017-06-23] ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 0251681525481389mcinstcleanup; C:\Windows\TEMP\025168~1.EXE [1031928 2018-05-05] (McAfee, Inc.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-03-29] (Apple Inc.) R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [314688 2018-04-21] (AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7653992 2018-04-21] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-04-17] (AVG Technologies CZ, s.r.o.) R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [94208 2014-05-06] () [Bestand niet getekend] R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8566440 2018-04-23] (Microsoft Corporation) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573544 2015-01-29] (Acer Incorporated) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [399208 2017-06-15] (WildTangent) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-01-26] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-10-10] (Intel Corporation) R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [471784 2015-01-27] (Acer Incorporate) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6479136 2018-03-27] (Malwarebytes) R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604312 2018-03-19] (McAfee, Inc.) S3 McAfee Vpn Service; C:\Program Files (x86)\McAfee Safe Connect\service\VpnService.exe [314368 2018-03-06] (AnchorFree Inc.) [Bestand niet getekend] S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [405392 2018-03-27] (McAfee, Inc.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1721800 2014-08-09] (NVIDIA Corporation) R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [476904 2015-02-04] (Acer Incorporated) R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-10-08] () R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2015-02-04] (Acer Incorporated) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5614592 2018-01-22] (AVG Technologies CZ, s.r.o.) S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [242944 2015-01-07] (acer) R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [Bestand niet getekend] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 aftap0901; C:\Windows\system32\DRIVERS\aftap0901.sys [48624 2018-03-06] (The OpenVPN Project) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [189032 2018-04-21] (AVG Technologies CZ, s.r.o.) R1 avgbdisk; C:\Windows\System32\drivers\avgbdiska.sys [166064 2018-04-21] (AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [220600 2018-04-21] (AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [192536 2018-04-21] (AVG Technologies CZ, s.r.o.) R0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [336848 2018-04-21] (AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [50776 2018-04-21] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [39352 2018-04-21] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [139608 2018-04-21] (AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [103744 2018-04-21] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [76760 2018-04-21] (AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1019088 2018-04-21] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [452904 2018-04-21] (AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [198368 2018-04-21] (AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [372920 2018-04-21] (AVG Technologies CZ, s.r.o.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [76192 2018-03-19] () S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [110824 2014-06-11] (GenesysLogic) R3 iaLPSS_GPIO; C:\Windows\System32\drivers\iaLPSS_GPIO.sys [35832 2014-06-11] (Intel Corporation) R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [120312 2014-06-11] (Intel Corporation) R3 LgBttPort; C:\Windows\system32\DRIVERS\lgbtpt64.sys [16384 2009-09-29] (LG Electronics Inc.) R3 lgbusenum; C:\Windows\System32\drivers\lgbtbs64.sys [14848 2009-09-29] (LG Electronics Inc.) R3 LGVMODEM; C:\Windows\system32\DRIVERS\lgvmdm64.sys [17408 2009-09-29] (LG Electronics Inc.) R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193768 2018-04-21] (Malwarebytes) S3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [112864 2018-04-30] (Malwarebytes) S3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [44768 2018-04-30] (Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-04-30] (Malwarebytes) S3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [102112 2018-05-01] (Malwarebytes) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-10-10] (Intel Corporation) R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.) R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [922968 2016-10-12] (Microsoft Corporation) R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [573144 2014-04-18] (Realtek Semiconductor Corporation) S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3468504 2014-05-22] (Realtek Semiconductor Corporation ) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.) R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [42224 2014-02-20] (Synaptics Incorporated) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-11-15] (AVG Netherlands B.V.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.) 2018-05-05 02:49 - 2018-05-05 02:50 - 000032029 _____ C:\Users\Thibaut\Desktop\FRST.txt 2018-05-05 02:49 - 2018-05-05 02:49 - 000000000 ____D C:\FRST 2018-05-05 02:47 - 2018-05-05 02:47 - 002405376 _____ (Farbar) C:\Users\Thibaut\Desktop\FRST64.exe 2018-05-01 20:57 - 2018-05-01 21:00 - 000606016 _____ C:\Windows\Minidump\050118-28390-01.dmp 2018-05-01 20:57 - 2018-05-01 20:57 - 1249718722 _____ C:\Windows\MEMORY.DMP 2018-04-29 21:13 - 2018-04-29 21:13 - 000001723 _____ C:\Users\Public\Desktop\iTunes.lnk 2018-04-29 21:13 - 2018-04-29 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2018-04-29 21:13 - 2018-04-29 21:13 - 000000000 ____D C:\Program Files\iPod 2018-04-29 21:12 - 2018-04-29 21:13 - 000000000 ____D C:\Program Files\iTunes 2018-04-29 21:11 - 2018-04-29 21:11 - 000000000 ____D C:\Windows\System32\Tasks\Apple 2018-04-29 21:11 - 2018-04-29 21:11 - 000000000 ____D C:\Program Files (x86)\Apple Software Update 2018-04-29 19:46 - 2018-04-29 20:13 - 000000000 ____D C:\ProgramData\McAfee Security Scan 2018-04-29 19:46 - 2018-04-29 19:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2018-04-29 19:46 - 2018-04-29 19:46 - 000000000 ____D C:\Program Files\McAfee Security Scan 2018-04-29 19:21 - 2018-04-29 19:21 - 000001137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Safe Connect.lnk 2018-04-29 19:21 - 2018-04-29 19:21 - 000001125 _____ C:\Users\Public\Desktop\McAfee Safe Connect.lnk 2018-04-29 19:21 - 2018-04-29 19:21 - 000000000 ____D C:\Users\Thibaut\AppData\Roaming\McAfee Safe Connect 2018-04-29 19:21 - 2018-04-29 19:21 - 000000000 ____D C:\Users\Thibaut\AppData\Local\McAfee_Inc 2018-04-29 19:20 - 2018-04-29 19:20 - 000000000 ____D C:\Program Files (x86)\McAfee Safe Connect 2018-04-29 19:15 - 2018-04-29 19:46 - 000001944 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk 2018-04-29 19:15 - 2018-04-29 19:15 - 000004590 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2018-04-29 19:15 - 2018-04-29 19:15 - 000004434 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2018-04-29 19:13 - 2018-04-29 19:15 - 000000000 ____D C:\Users\Thibaut\AppData\Local\Adobe 2018-04-29 19:01 - 2018-04-29 19:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2018-04-29 10:09 - 2018-04-29 10:09 - 014518936 _____ C:\Users\Thibaut\Downloads\tixati-2.57-1.win64-install.exe 2018-04-29 10:09 - 2018-04-29 10:09 - 000000760 _____ C:\Users\Thibaut\Desktop\Tixati.lnk 2018-04-29 10:09 - 2018-04-29 10:09 - 000000000 ____D C:\Users\Thibaut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati 2018-04-29 10:09 - 2018-04-29 10:09 - 000000000 ____D C:\Program Files\tixati 2018-04-22 12:10 - 2018-04-22 12:10 - 000300300 _____ C:\Users\Thibaut\Downloads\orbs verschillende ....mp4 2018-04-22 12:09 - 2018-04-22 12:09 - 000560667 _____ C:\Users\Thibaut\Downloads\orbs.mp4 2018-04-22 10:03 - 2018-04-22 10:03 - 000560667 _____ C:\Users\Thibaut\Downloads\orbs verschillende.mp4 2018-04-21 17:06 - 2018-03-23 15:50 - 004168704 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2018-04-21 17:06 - 2018-03-23 01:00 - 025742336 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2018-04-21 17:06 - 2018-03-22 23:26 - 020287488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2018-04-21 17:06 - 2018-03-22 23:17 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2018-04-21 17:06 - 2018-03-22 23:15 - 005780480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2018-04-21 17:06 - 2018-03-22 23:06 - 000794112 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2018-04-21 17:06 - 2018-03-22 22:52 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2018-04-21 17:06 - 2018-03-22 22:42 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2018-04-21 17:06 - 2018-03-22 22:29 - 015282688 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2018-04-21 17:06 - 2018-03-22 22:29 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2018-04-21 17:06 - 2018-03-22 22:29 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2018-04-21 17:06 - 2018-03-22 22:29 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2018-04-21 17:06 - 2018-03-22 22:27 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2018-04-21 17:06 - 2018-03-22 22:21 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2018-04-21 17:06 - 2018-03-22 22:20 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2018-04-21 17:06 - 2018-03-22 22:15 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2018-04-21 17:06 - 2018-03-22 22:15 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2018-04-21 17:06 - 2018-03-22 22:15 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2018-04-21 17:06 - 2018-03-22 22:14 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2018-04-21 17:06 - 2018-03-22 22:04 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2018-04-21 17:06 - 2018-03-22 21:52 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2018-04-21 17:06 - 2018-03-10 19:50 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2018-04-21 17:06 - 2018-03-10 02:16 - 001549136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2018-04-21 17:06 - 2018-03-10 02:16 - 000388440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2018-04-21 17:06 - 2018-03-09 23:20 - 007405392 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2018-04-21 17:06 - 2018-03-09 23:20 - 001737592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2018-04-21 17:06 - 2018-03-09 23:20 - 001676056 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2018-04-21 17:06 - 2018-03-09 23:20 - 001536112 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2018-04-21 17:06 - 2018-03-09 23:20 - 001500424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2018-04-21 17:06 - 2018-03-09 23:20 - 001371344 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2018-04-21 17:06 - 2018-03-09 23:20 - 000418640 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2018-04-21 17:06 - 2018-03-09 21:59 - 000121168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys 2018-04-21 17:06 - 2018-03-09 16:52 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll 2018-04-21 17:06 - 2018-03-09 16:52 - 000113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll 2018-04-21 17:06 - 2018-03-09 16:52 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2018-04-21 17:06 - 2018-03-09 16:52 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2018-04-21 17:06 - 2018-03-08 16:21 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll 2018-04-21 17:06 - 2018-03-08 01:46 - 000202576 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll 2018-04-21 17:06 - 2018-03-08 01:42 - 000174928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll 2018-04-21 17:06 - 2018-03-03 19:44 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll 2018-04-21 17:06 - 2018-03-03 19:04 - 000252416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll 2018-04-21 17:06 - 2018-02-10 03:29 - 000531632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2018-04-21 17:06 - 2018-02-10 03:25 - 001137872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2018-04-21 17:06 - 2018-02-09 19:44 - 000276304 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2018-04-21 17:06 - 2018-02-09 19:21 - 000862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2018-04-21 17:06 - 2018-02-08 20:22 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2018-04-21 17:06 - 2018-02-08 20:03 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2018-04-21 17:06 - 2018-02-08 19:42 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll 2018-04-21 17:06 - 2018-02-08 19:38 - 000866304 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2018-04-21 17:06 - 2018-02-08 19:03 - 000664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll 2018-04-21 17:06 - 2018-01-25 16:19 - 000995272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2018-04-21 17:06 - 2018-01-25 16:14 - 000922944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2018-04-21 17:05 - 2018-03-22 22:37 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2018-04-21 17:05 - 2018-03-22 22:20 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2018-04-21 17:05 - 2018-03-22 21:55 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2018-04-21 17:05 - 2018-03-22 21:53 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2018-04-21 17:05 - 2018-03-22 21:51 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2018-04-21 17:05 - 2018-03-08 20:15 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2018-04-21 17:05 - 2018-03-08 20:14 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2018-04-21 17:05 - 2018-03-07 21:28 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll 2018-04-21 17:05 - 2018-03-07 20:26 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll 2018-04-21 17:05 - 2018-02-08 20:53 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll 2018-04-21 17:05 - 2018-02-08 20:18 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll 2018-04-21 17:05 - 2018-02-08 19:49 - 000289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll 2018-04-21 17:05 - 2018-02-08 19:42 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll 2018-04-21 17:05 - 2018-02-08 19:40 - 001096192 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2018-04-21 17:05 - 2018-02-08 19:27 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll 2018-04-21 17:05 - 2018-02-08 19:24 - 000199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll 2018-04-21 17:05 - 2018-02-08 19:03 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll 2018-04-21 16:50 - 2018-04-21 16:50 - 010573216 _____ (Malwarebytes ) C:\Users\Thibaut\Downloads\d064c5b8-7716-4334-a241-1e0004f47efa.tmp 2018-04-21 16:49 - 2018-03-16 20:51 - 000144000 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2018-04-21 16:49 - 2018-03-14 15:23 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2018-04-21 16:49 - 2018-03-14 15:23 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2018-04-21 16:49 - 2018-03-14 15:23 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2018-04-21 16:49 - 2018-03-14 15:23 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2018-04-21 16:49 - 2018-03-14 15:23 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2018-04-21 16:49 - 2018-03-14 15:23 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2018-04-21 16:49 - 2018-03-14 15:23 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2018-04-21 16:49 - 2018-03-14 15:23 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2018-04-21 16:49 - 2018-03-14 15:23 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2018-04-21 16:28 - 2018-04-30 09:16 - 000044768 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2018-04-21 16:27 - 2018-05-01 02:20 - 000102112 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2018-04-21 16:27 - 2018-04-30 09:16 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2018-04-21 16:27 - 2018-04-30 09:16 - 000112864 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2018-04-21 16:27 - 2018-04-21 16:27 - 000193768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2018-04-21 16:27 - 2018-04-21 16:27 - 000001847 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2018-04-21 16:27 - 2018-04-21 16:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2018-04-21 16:27 - 2018-03-19 12:57 - 000076192 _____ C:\Windows\system32\Drivers\mbae64.sys 2018-04-21 16:24 - 2018-04-21 16:24 - 073485616 _____ (Malwarebytes ) C:\Users\Thibaut\Downloads\mb3-setup-consumer-3.4.5.2467-1.0.342-1.0.4808.exe 2018-04-21 16:18 - 2018-04-21 16:18 - 000000000 ____D C:\Users\Thibaut\AppData\Roaming\AVG 2018-04-21 09:35 - 2018-04-21 09:35 - 000377584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2018-04-14 14:12 - 2018-04-24 23:14 - 000000000 ____D C:\Users\Thibaut\AppData\LocalLow\uTorrent 2018-04-12 21:40 - 2018-04-12 21:40 - 004641767 _____ C:\Users\Thibaut\Desktop\forge-1.10.2-12.18.3.2511-installer.jar 2018-04-12 21:17 - 2018-04-12 21:18 - 005147358 _____ C:\Users\Thibaut\Desktop\forge-1.12.2-14.23.3.2659-installer.jar 2018-04-10 00:19 - 2018-04-10 00:19 - 000000000 ____D C:\Program Files\Unity 2018-04-09 20:59 - 2018-04-12 21:33 - 000001273 _____ C:\Users\Thibaut\Desktop\nativelog.txt 2018-04-09 12:52 - 2018-04-09 21:20 - 000000000 ____D C:\Users\Thibaut\Desktop\ism-2 2018-04-09 12:34 - 2018-04-09 12:34 - 001982502 _____ C:\Users\Thibaut\Desktop\Instant-Structures-Mod-1.11.2.jar 2018-04-08 22:46 - 2018-04-08 22:46 - 000000000 ____D C:\Users\Thibaut\AppData\Roaming\java 2018-04-06 13:10 - 2018-04-06 13:10 - 000000000 __SHD C:\82ace7d6-0197-474d-bf4b-a2043e72329b 2018-04-06 13:06 - 2018-04-06 13:06 - 000000000 ____D C:\Users\Thibaut\AppData\Local\NVIDIA Corporation ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.) 2018-05-05 02:49 - 2015-05-05 18:24 - 000000000 ____D C:\Program Files (x86)\McAfee 2018-05-05 02:48 - 2018-01-02 00:25 - 000000000 ____D C:\Users\Thibaut\Downloads\max 2018-05-05 02:46 - 2017-06-22 15:45 - 000000000 ____D C:\Users\Thibaut\AppData\Local\SweetLabs App Platform 2018-05-05 02:46 - 2017-06-13 19:14 - 000800728 _____ C:\Windows\system32\perfh013.dat 2018-05-05 02:46 - 2017-06-13 19:14 - 000159420 _____ C:\Windows\system32\perfc013.dat 2018-05-05 02:46 - 2014-11-21 10:44 - 001815760 _____ C:\Windows\system32\PerfStringBackup.INI 2018-05-05 02:46 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf 2018-05-05 02:45 - 2017-06-22 15:55 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1770967010-2409308368-2111968363-1001 2018-05-05 02:45 - 2017-06-22 15:45 - 000000000 ____D C:\Users\Thibaut 2018-05-05 02:44 - 2018-01-02 00:09 - 000000000 ____D C:\Users\Thibaut\AppData\Local\Spotify 2018-05-05 02:44 - 2017-06-22 15:57 - 000000000 ____D C:\Users\Thibaut\OneDrive 2018-05-05 02:43 - 2018-01-02 00:09 - 000000000 ____D C:\Users\Thibaut\AppData\Roaming\Spotify 2018-05-05 02:40 - 2017-06-22 15:48 - 000000000 __SHD C:\Users\Thibaut\IntelGraphicsProfiles 2018-05-05 02:39 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-05-05 02:39 - 2013-08-22 15:25 - 000524288 ___SH C:\Windows\system32\config\BBI 2018-05-03 16:30 - 2017-09-18 17:37 - 000004174 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update 2018-05-01 23:36 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\NDF 2018-05-01 23:34 - 2017-10-27 02:01 - 000000000 ____D C:\Users\Thibaut\Documents\Outlook-bestanden 2018-05-01 23:32 - 2017-07-15 07:06 - 000000000 ____D C:\Users\Thibaut\AppData\Local\ElevatedDiagnostics 2018-05-01 20:57 - 2017-07-27 00:51 - 000000000 ____D C:\Windows\Minidump 2018-05-01 20:27 - 2017-10-13 18:06 - 000000000 ____D C:\Users\Thibaut\Downloads\PopcornTime 2018-05-01 20:00 - 2017-06-22 19:55 - 000003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4B64DF1A-E52F-429F-941C-E7D045D83DC1} 2018-05-01 09:29 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\LiveKernelReports 2018-04-30 20:04 - 2017-09-18 17:31 - 000003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task 2018-04-29 21:48 - 2013-08-22 17:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2018-04-29 21:46 - 2017-10-01 19:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-hulpprogramma's 2018-04-29 21:45 - 2017-06-13 19:27 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2018-04-29 21:11 - 2017-07-19 08:56 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2018-04-29 19:15 - 2015-05-05 18:24 - 000000000 ____D C:\ProgramData\McAfee 2018-04-29 19:15 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed 2018-04-29 19:14 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2018-04-29 01:34 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness 2018-04-27 00:48 - 2017-06-22 20:03 - 000002268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-04-27 00:48 - 2017-06-22 20:03 - 000002227 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-04-26 22:56 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache 2018-04-25 00:49 - 2013-08-22 16:44 - 000499720 _____ C:\Windows\system32\FNTCACHE.DAT 2018-04-25 00:46 - 2018-02-13 21:27 - 000000000 ____D C:\Program Files (x86)\BlueStacks 2018-04-25 00:37 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData 2018-04-25 00:32 - 2017-06-27 21:37 - 000000000 ____D C:\Windows\system32\appraiser 2018-04-25 00:25 - 2017-10-08 11:34 - 000002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2018-04-24 23:24 - 2017-07-11 22:46 - 000805376 ___SH C:\Users\Thibaut\Desktop\Thumbs.db 2018-04-24 23:15 - 2018-02-13 21:26 - 000000000 ____D C:\Users\Thibaut\AppData\Local\Bluestacks 2018-04-24 23:14 - 2017-07-05 23:46 - 000000000 ____D C:\Users\Thibaut\AppData\Roaming\uTorrent 2018-04-22 12:13 - 2017-08-08 19:18 - 000080384 ___SH C:\Users\Thibaut\Downloads\Thumbs.db 2018-04-21 17:30 - 2017-06-22 15:48 - 000000000 ____D C:\Users\Thibaut\AppData\Local\Packages 2018-04-21 17:30 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps 2018-04-21 17:29 - 2017-06-24 21:53 - 000000000 ____D C:\Windows\system32\MRT 2018-04-21 17:21 - 2017-10-11 11:31 - 136971704 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe 2018-04-21 17:21 - 2017-06-24 21:53 - 136971704 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-04-21 17:21 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp 2018-04-21 16:26 - 2017-08-08 12:47 - 000000000 ____D C:\ProgramData\Malwarebytes 2018-04-21 16:19 - 2017-09-18 17:37 - 000139608 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2018-04-21 09:35 - 2017-11-27 20:27 - 000189032 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2018-04-21 09:35 - 2017-09-18 17:37 - 000452904 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2018-04-21 09:35 - 2017-09-18 17:37 - 000372920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2018-04-21 09:35 - 2017-09-18 17:37 - 000198368 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2018-04-21 09:35 - 2017-09-18 17:37 - 000103744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2018-04-21 09:35 - 2017-09-18 17:37 - 000076760 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2018-04-21 09:35 - 2017-09-18 17:37 - 000039352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys 2018-04-21 09:34 - 2017-09-18 17:37 - 001019088 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2018-04-21 09:34 - 2017-09-18 17:37 - 000336848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys 2018-04-21 09:34 - 2017-09-18 17:37 - 000220600 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys 2018-04-21 09:34 - 2017-09-18 17:37 - 000192536 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys 2018-04-21 09:34 - 2017-09-18 17:37 - 000166064 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiska.sys 2018-04-21 09:34 - 2017-09-18 17:37 - 000050776 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys 2018-04-21 09:20 - 2017-07-20 16:30 - 000002508 _____ C:\Users\Thibaut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoundCloud.lnk 2018-04-21 09:20 - 2017-06-22 15:53 - 000002462 _____ C:\Users\Thibaut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk 2018-04-21 09:18 - 2017-11-27 20:27 - 000001988 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk 2018-04-21 08:56 - 2017-07-02 15:00 - 000000000 ____D C:\Users\Thibaut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox 2018-04-21 08:56 - 2013-08-22 17:36 - 000000000 ____D C:\Program Files\Windows Defender 2018-04-21 08:51 - 2015-05-05 18:20 - 000000000 ____D C:\ProgramData\WildTangent 2018-04-21 08:51 - 2014-11-21 17:56 - 000000000 ___SD C:\Windows\system32\CompatTel 2018-04-21 08:51 - 2013-08-22 17:36 - 000000000 __RSD C:\Windows\Media 2018-04-21 08:51 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2018-04-21 08:51 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\WinMetadata 2018-04-21 08:51 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\PolicyDefinitions 2018-04-21 08:51 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\system32\Dism 2018-04-21 08:49 - 2018-02-18 00:05 - 000000000 ____D C:\Users\Thibaut\Desktop\maxime 2018-04-21 08:49 - 2017-12-21 20:28 - 000000000 ____D C:\Windows\System32\Tasks\AVG 2018-04-21 08:49 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\system32\Sysprep 2018-04-21 08:49 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\servicing 2018-04-21 08:48 - 2017-09-18 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2018-04-21 08:48 - 2017-09-18 17:31 - 000000000 ____D C:\Program Files (x86)\AVG 2018-04-21 08:48 - 2017-09-18 16:49 - 000000000 ____D C:\Users\Thibaut\AppData\Local\Avg 2018-04-21 08:48 - 2017-09-18 16:49 - 000000000 ____D C:\ProgramData\Avg 2018-04-21 08:43 - 2017-07-14 01:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2018-04-21 08:21 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\registration 2018-04-21 08:07 - 2015-05-05 18:24 - 000000000 ____D C:\ProgramData\Package Cache 2018-04-21 07:32 - 2017-06-22 18:53 - 000000000 ____D C:\Users\Thibaut\AppData\Local\CrashDumps 2018-04-12 22:22 - 2017-07-14 01:30 - 000000000 ____D C:\Users\Thibaut\AppData\Roaming\.minecraft 2018-04-09 12:27 - 2017-07-14 01:25 - 000000000 ____D C:\Program Files (x86)\Minecraft 2018-04-08 22:40 - 2017-07-14 01:34 - 000000000 ____D C:\Program Files\Java 2018-04-06 21:47 - 2018-04-03 22:25 - 000000000 ____D C:\Program Files\Epic Games ==================== Bestanden in de root van sommige mappen ======= 2017-08-14 15:41 - 2017-08-14 15:41 - 000033280 _____ (Zynga) C:\Users\Thibaut\FVCE.exe 2017-06-13 08:25 - 2013-08-07 17:54 - 000604264 _____ () C:\Users\Thibaut\imagex.exe 2017-06-13 08:25 - 2013-08-07 18:28 - 000711272 _____ (Microsoft Corporation) C:\Users\Thibaut\imagex_X64.exe 2017-06-13 18:51 - 2015-04-02 08:28 - 000000530 _____ () C:\Users\Thibaut\LPCD_1.dat 2017-06-13 18:51 - 2015-04-02 08:15 - 000000528 _____ () C:\Users\Thibaut\LPCD_2.dat 2017-06-13 18:51 - 2015-04-02 08:12 - 000000550 _____ () C:\Users\Thibaut\LPCD_3.dat 2017-06-22 19:51 - 2014-11-19 02:46 - 000042048 _____ (WildTangent) C:\Users\Thibaut\Park-{ef2e9d9a-c12d-47ff-a3b3-8576ed34f748}.exe 2017-06-13 08:25 - 2015-09-03 10:58 - 000002471 _____ () C:\Users\Thibaut\PATCH.BAT 2017-06-13 08:25 - 2015-07-10 04:00 - 000912736 _____ () C:\Users\Thibaut\PreloadX.exe 2017-06-13 08:25 - 2015-07-10 04:00 - 000912736 _____ () C:\Users\Thibaut\PreloadX_1.exe 2017-06-13 08:25 - 2015-07-10 04:00 - 001698656 _____ () C:\Users\Thibaut\PreloadX_X64.exe 2017-06-13 08:25 - 2015-07-10 04:00 - 001698656 _____ () C:\Users\Thibaut\PreloadX_X64_1.exe 2017-08-14 15:41 - 2017-08-14 15:41 - 000201216 _____ () C:\Users\Thibaut\protobuf-net.dll 2017-06-13 08:25 - 2015-07-10 04:00 - 000343392 _____ () C:\Users\Thibaut\RecoverPM.exe 2017-08-14 15:41 - 2017-08-14 15:41 - 000062976 _____ () C:\Users\Thibaut\UnityEngine.Analytics.dll 2017-08-14 15:41 - 2017-08-14 15:41 - 005677056 _____ () C:\Users\Thibaut\UnityEngine.dll 2017-08-14 15:41 - 2017-08-14 15:41 - 000320000 _____ (Unity Technologies) C:\Users\Thibaut\UnityEngine.Networking.dll 2017-08-14 15:41 - 2017-08-14 15:41 - 000411136 _____ (Microsoft) C:\Users\Thibaut\UnityEngine.UI.dll 2017-06-13 08:25 - 2015-09-03 10:09 - 000001105 _____ () C:\Users\Thibaut\UPDATE_PLD_UTILITIES.CMD 2017-06-13 08:44 - 2013-08-22 04:39 - 000018272 _____ (Microsoft Corporation) C:\Users\Thibaut\_ootres.dll 2017-06-13 08:25 - 2009-08-27 05:04 - 000000349 _____ () C:\Users\Thibaut\_TIMEOUT.VBS 2017-06-22 15:48 - 2018-05-05 02:42 - 000475781 _____ () C:\Users\Thibaut\AppData\Local\BTServer.log 2018-03-17 12:53 - 2018-03-17 12:53 - 000000017 _____ () C:\Users\Thibaut\AppData\Local\resmon.resmoncfg Sommige bestanden in TEMP: ==================== 2018-04-24 23:14 - 2018-01-10 01:00 - 000969272 _____ (BlueStack Systems, Inc.) C:\Users\Thibaut\AppData\Local\Temp\BlueStacksClientUninstaller.exe 2018-04-29 19:21 - 2018-04-29 19:21 - 000290304 _____ (Microsoft Corporation) C:\Users\Thibaut\AppData\Local\Temp\CakeTubeSdk.Windows.Service.subinacl.exe 2018-04-24 23:14 - 2018-01-10 00:59 - 000421400 _____ (CodeTitans) C:\Users\Thibaut\AppData\Local\Temp\JSON.dll ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\Windows\system32\winlogon.exe => Bestand is getekend C:\Windows\system32\wininit.exe => Bestand is getekend C:\Windows\explorer.exe => Bestand is getekend C:\Windows\SysWOW64\explorer.exe => Bestand is getekend C:\Windows\system32\svchost.exe => Bestand is getekend C:\Windows\SysWOW64\svchost.exe => Bestand is getekend C:\Windows\system32\services.exe => Bestand is getekend C:\Windows\system32\User32.dll => Bestand is getekend C:\Windows\SysWOW64\User32.dll => Bestand is getekend C:\Windows\system32\userinit.exe => Bestand is getekend C:\Windows\SysWOW64\userinit.exe => Bestand is getekend C:\Windows\system32\rpcss.dll => Bestand is getekend C:\Windows\system32\dnsapi.dll => Bestand is getekend C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2018-04-28 02:12 ==================== Eind van FRST.txt ============================