Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 24.10.2018 Gestart door Kris (Beheerder) op KRIS-PC (03-11-2018 13:41:18) Gestart vanaf c:\Users\Kris\Downloads Geladen Profielen: UpdatusUser & Kris (Beschikbare Profielen: UpdatusUser & Kris) Platform: Windows 7 Home Premium Service Pack 1 (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: Chrome) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe () C:\Program Files (x86)\PHotkey\AsLdrSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe () C:\Program Files (x86)\PHotkey\GFNEXSrv.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe (CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ( ) C:\Windows\System32\lxeecoms.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (Google Inc.) C:\ProgramData\Partner\Partner.exe (Microsoft Corporation) C:\Windows\SysWOW64\perfhost.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Microsoft Corporation) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Scout Update\ScoutUpdate.exe () C:\Program Files (x86)\PHotkey\PHotkey.exe () C:\Program Files (x86)\PHotkey\MsgTranAgt.exe () C:\Program Files (x86)\PHotkey\MsgTranAgt64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (TODO: ) C:\Program Files (x86)\PHotkey\HCSynApi.exe () C:\Program Files (x86)\PHotkey\PVDesktop.exe (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe () C:\Program Files (x86)\PHotkey\PVDAgent.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe () C:\Program Files (x86)\PHotkey\POsd.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe (SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\AviraSoftwareUpdaterToastNotificationsBridge.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\Kris\Downloads\FRST64 (2) (1).exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2832168 2011-09-30] (Synaptics Incorporated) HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-09-16] (Intel(R) Corporation) HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-22] (Alcor Micro Corp.) HKLM\...\Run: [] => [X] HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2011-06-08] (Conexant systems, Inc.) HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation) HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-04] (CyberLink) HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336 2011-03-30] (CyberLink Corp.) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-10-09] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [64096 2018-03-08] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard) HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3418494263-741142788-155982698-1001\...\Winlogon: [Userinit] C:\Windows\System32\Userinit.exe, [30720 2010-11-21] (Microsoft Corporation) HKU\S-1-5-21-3418494263-741142788-155982698-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== AANDACHT Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2018-09-18] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.131.5 195.130.130.5 Tcpip\..\Interfaces\{3A44F70F-91A9-4ED3-A205-E742C1166F1C}: [DhcpNameServer] 62.28.116.41 62.28.40.173 Tcpip\..\Interfaces\{B06EE9C0-3725-4A31-950A-64D5B77FCC62}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{D4ECBD93-2721-4AC3-95B0-64293A4227C1}: [DhcpNameServer] 195.130.131.5 195.130.130.5 Tcpip\..\Interfaces\{D88796CF-336C-4DB7-AF89-73C5EF4E2D55}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKU\S-1-5-21-3418494263-741142788-155982698-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.aldi.com/ HKU\S-1-5-21-3418494263-741142788-155982698-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com SearchScopes: HKLM -> DefaultScope waarde ontbreekt SearchScopes: HKLM-x32 -> DefaultScope waarde ontbreekt BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2018-09-22] (Sun Microsystems, Inc.) BHO: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner64.dll [2014-09-21] (Google Inc.) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2018-09-22] (Sun Microsystems, Inc.) BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.) BHO-x32: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner.dll [2014-09-21] (Google Inc.) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-11-07] (Sun Microsystems, Inc.) BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.) DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxps://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1534587331546 FireFox: ======== FF ProfilePath: C:\Users\Kris\AppData\Roaming\Mozilla\Firefox\Profiles\8b5JoCk0.default [2018-10-10] FF Extension: (Avira Browser Safety) - C:\Users\Kris\AppData\Roaming\Mozilla\Firefox\Profiles\8b5JoCk0.default\Extensions\abs@avira.com [2016-10-15] FF Extension: (Avira SafeSearch Plus) - C:\Users\Kris\AppData\Roaming\Mozilla\Firefox\Profiles\8b5JoCk0.default\Extensions\safesearchplus2@avira.com [2016-10-15] [Verouderd] FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2018-09-18] [Verouderd] [ niet getekend] FF HKU\S-1-5-21-3418494263-741142788-155982698-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Plugin: @java.com/DTPlugin,version=1.6.0_45 -> C:\Windows\system32\npdeployJava1.dll [2018-09-22] (Sun Microsystems, Inc.) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll [2018-09-22] (Sun Microsystems, Inc.) FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN) FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll [2011-11-07] (Sun Microsystems, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation) FF Plugin-x32: @scout.avira-update.com/Avira Scout Update;version=3 -> C:\Program Files (x86)\Avira\Scout Update\1.3.32.7\npScoutUpdate3.dll [2017-04-24] (Avira Operations GmbH & Co. KG) FF Plugin-x32: @scout.avira-update.com/Avira Scout Update;version=9 -> C:\Program Files (x86)\Avira\Scout Update\1.3.32.7\npScoutUpdate3.dll [2017-04-24] (Avira Operations GmbH & Co. KG) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3418494263-741142788-155982698-1001: SkypePlugin -> C:\Users\Kris\AppData\Local\SkypePlugin\7.26.0.48\npGatewayNpapi.dll [2016-09-22] (Skype Technologies S.A.) FF Plugin HKU\S-1-5-21-3418494263-741142788-155982698-1001: SkypePlugin64 -> C:\Users\Kris\AppData\Local\SkypePlugin\7.26.0.48\npGatewayNpapi-x64.dll [2016-09-22] (Skype Technologies S.A.) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://www.mysearchresults.com/?c=3520&t=01 CHR StartupUrls: Default -> "hxxp://www.google.com/ig/redirectdomain?brand=MDNE&bmod=MDNE" CHR Profile: C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default [2018-11-03] CHR Extension: (Bellen via Skype) - C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2016-01-06] CHR Extension: (Adobe Acrobat) - C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-03] CHR Extension: (Avira Browser Safety) - C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-10-26] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02] CHR Extension: (Chrome Media Router) - C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-31] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [891472 2018-10-16] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [248312 2018-10-16] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [248312 2018-10-16] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1162120 2018-10-16] (Avira Operations GmbH & Co. KG) R2 ASLDRService; C:\Program Files (x86)\PHotkey\ASLDRSrv.exe [104968 2009-12-19] () R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [431688 2018-10-09] (Avira Operations GmbH & Co. KG) R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2938504 2018-02-15] (Avira Operations GmbH & Co. KG) R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [341336 2018-10-24] (Avira Operations GmbH & Co. KG) R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [102816 2018-10-11] (Avira Operations GmbH & Co. KG) R2 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [921664 2011-05-19] (Intel Corporation) [Bestand niet getekend] R2 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1335360 2011-05-19] (Intel Corporation) [Bestand niet getekend] R2 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [995392 2011-05-19] (Intel Corporation) [Bestand niet getekend] R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-14] (CyberLink) R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-14] (CyberLink) R2 GFNEXSrv; C:\Program Files (x86)\PHotkey\GFNEXSrv.exe [156672 2011-10-13] () [Bestand niet getekend] R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [Bestand niet getekend] R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [Bestand niet getekend] R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1037824 2009-09-20] (Hewlett-Packard Co.) [Bestand niet getekend] R2 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Bestand niet getekend] R2 lxee_device; C:\Windows\system32\lxeecoms.exe [1052328 2010-04-14] ( ) R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation) S2 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-09-16] () R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Bestand niet getekend] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Bestand niet getekend] R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2010-08-19] () S2 scupdate; C:\Program Files (x86)\Avira\Scout Update\ScoutUpdate.exe [157144 2016-10-15] (Avira Operations GmbH & Co. KG) S3 scupdatem; C:\Program Files (x86)\Avira\Scout Update\ScoutUpdate.exe [157144 2016-10-15] (Avira Operations GmbH & Co. KG) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-08-13] (TeamViewer GmbH) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [73240 2018-08-10] (Avira Operations GmbH & Co. KG) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [199920 2018-07-04] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [153040 2018-07-04] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-03] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-03] (Avira Operations GmbH & Co. KG) R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2009-09-11] (PEGATRON) R3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2018-10-24] (The OpenVPN Project) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [151184 2016-03-10] (MBB) S3 MBAMSwissArmy; \SystemRoot\System32\Drivers\mbamswissarmy.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.) 2018-11-03 13:31 - 2018-11-03 13:31 - 002414592 _____ (Farbar) C:\Users\Kris\Downloads\FRST64 (2) (1).exe 2018-11-02 21:34 - 2018-11-03 13:35 - 000051241 _____ C:\Users\Kris\Downloads\Shortcut.txt 2018-11-02 21:29 - 2018-11-02 21:30 - 002414592 _____ (Farbar) C:\Users\Kris\Downloads\FRST64 (2).exe 2018-11-01 22:31 - 2018-11-03 13:35 - 000053747 _____ C:\Users\Kris\Downloads\Addition.txt 2018-11-01 22:29 - 2018-11-03 13:41 - 000024113 _____ C:\Users\Kris\Downloads\FRST.txt 2018-11-01 22:28 - 2018-11-03 13:41 - 000000000 ____D C:\FRST 2018-11-01 22:28 - 2018-11-01 22:28 - 002414592 _____ (Farbar) C:\Users\Kris\Downloads\FRST64 (1).exe 2018-11-01 22:27 - 2018-11-01 22:27 - 002414592 _____ (Farbar) C:\Users\Kris\Downloads\FRST64.exe 2018-11-01 22:01 - 2018-11-01 22:01 - 047783495 _____ (SWE Sven Ritter ) C:\Users\Kris\Downloads\ske6221_e722x_cx_wxpw7 (2).exe 2018-10-30 22:54 - 2018-10-30 22:54 - 000023237 _____ C:\Users\Kris\Downloads\2018-68200374 (1).pdf 2018-10-30 22:52 - 2018-10-30 22:52 - 000022848 _____ C:\Users\Kris\Downloads\2013-05500215.pdf 2018-10-30 22:51 - 2018-10-30 22:51 - 000028037 _____ C:\Users\Kris\Downloads\2013-67700357 (2).pdf 2018-10-30 22:51 - 2018-10-30 22:51 - 000028037 _____ C:\Users\Kris\Downloads\2013-67700357 (1).pdf 2018-10-30 22:50 - 2018-10-30 22:50 - 000028125 _____ C:\Users\Kris\Downloads\2015-60300102 (1).pdf 2018-10-30 22:41 - 2018-10-30 22:41 - 000022958 _____ C:\Users\Kris\Downloads\2011-10400455 (1).pdf 2018-10-30 22:40 - 2018-10-30 22:40 - 000028037 _____ C:\Users\Kris\Downloads\2013-67700357.pdf 2018-10-30 22:39 - 2018-10-30 22:39 - 000030045 _____ C:\Users\Kris\Downloads\2016-64600148.pdf 2018-10-30 22:39 - 2018-10-30 22:39 - 000028125 _____ C:\Users\Kris\Downloads\2015-60300102.pdf 2018-10-30 22:39 - 2018-10-30 22:39 - 000027899 _____ C:\Users\Kris\Downloads\2014-15100557.pdf 2018-10-30 22:38 - 2018-10-30 22:38 - 000022958 _____ C:\Users\Kris\Downloads\2011-10400455.pdf 2018-10-30 22:37 - 2018-10-30 22:37 - 000022986 _____ C:\Users\Kris\Downloads\2010-16800522.pdf 2018-10-30 21:37 - 2018-10-30 21:37 - 000023237 _____ C:\Users\Kris\Downloads\2018-68200374.pdf 2018-10-30 18:40 - 2018-10-30 18:40 - 011952827 _____ C:\Users\Kris\Downloads\wetransfer-5d2af9.zip 2018-10-30 13:01 - 2018-10-30 13:01 - 000088409 _____ C:\Users\Kris\Downloads\P1_huurovereenkomst_aangepast_Valkenburgerweg_144A-%5bOndertekend%5d.pdf 2018-10-28 13:53 - 2018-10-28 13:54 - 086334352 _____ (Lenovo Group Limited ) C:\Users\Kris\Downloads\ado110w7.exe 2018-10-27 20:30 - 2018-10-27 20:30 - 005786192 _____ (Innovative Solutions ) C:\Users\Kris\Downloads\drivermax.exe 2018-10-26 22:13 - 2018-10-26 22:13 - 000048980 _____ C:\Users\Kris\Downloads\2018-64600326.pdf 2018-10-26 22:09 - 2018-10-26 22:09 - 000057104 _____ C:\Users\Kris\Downloads\2018-21600154.pdf 2018-10-26 22:05 - 2018-10-26 22:05 - 000038758 _____ C:\Users\Kris\Downloads\2018-66200548.pdf 2018-10-26 22:03 - 2018-10-26 22:03 - 000041919 _____ C:\Users\Kris\Downloads\2018-06600559.pdf 2018-10-26 21:53 - 2018-10-26 21:53 - 000051526 _____ C:\Users\Kris\Downloads\2017-32500462.pdf 2018-10-26 21:47 - 2018-10-26 21:47 - 000033381 _____ C:\Users\Kris\Downloads\2018-16500123.pdf 2018-10-26 21:45 - 2018-10-26 21:45 - 000044713 _____ C:\Users\Kris\Downloads\2018-19800067.pdf 2018-10-26 21:41 - 2018-10-26 21:41 - 000028806 _____ C:\Users\Kris\Downloads\2018-35200159.pdf 2018-10-26 11:49 - 2018-10-26 11:49 - 000165671 _____ C:\Users\Kris\Downloads\latestwu.diagcab 2018-10-25 15:03 - 2018-10-25 15:03 - 008737816 _____ (Sony Corporation) C:\Users\Kris\Downloads\EP0000600325.exe 2018-10-25 15:03 - 2018-10-25 15:03 - 000000000 ____D C:\ProgramData\Sony Corporation 2018-10-24 22:07 - 2018-10-24 22:08 - 000313366 _____ C:\Users\Kris\Downloads\WindowsUpdate.diagcab 2018-10-24 21:49 - 2018-10-24 21:49 - 000000000 ____D C:\Users\Kris\AppData\Roaming\Memeo 2018-10-24 20:59 - 2018-10-24 20:59 - 000000000 ___HT C:\Windows\wusa.lock 2018-10-24 20:53 - 2018-10-24 20:58 - 564744309 _____ C:\Users\Kris\Downloads\Windows6.1-KB947821-v34-x64 (1).msu 2018-10-24 20:48 - 2018-10-24 20:51 - 318337992 _____ C:\Users\Kris\Downloads\Windows6.1-KB968211-x64-RefreshPkg.msu 2018-10-24 17:16 - 2018-10-24 17:17 - 083537848 _____ (MiniTool Software Limited ) C:\Users\Kris\Downloads\pw103-free.exe 2018-10-24 16:11 - 2018-10-24 16:12 - 000000000 ____D C:\Users\Kris\AppData\Roaming\vlc 2018-10-24 16:09 - 2018-10-24 16:09 - 000000875 _____ C:\Users\Public\Desktop\VLC media player.lnk 2018-10-24 16:09 - 2018-10-24 16:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2018-10-24 16:09 - 2018-10-24 16:09 - 000000000 ____D C:\Program Files\VideoLAN 2018-10-24 16:07 - 2018-10-24 16:08 - 041486400 _____ C:\Users\Kris\Downloads\vlc-3.0.4-win64.exe 2018-10-24 10:55 - 2018-10-24 10:55 - 000035664 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\phantomtap.sys 2018-10-22 22:00 - 2018-10-25 23:11 - 000000000 ____D C:\Users\Kris\Documents\FYP 2018-10-19 18:36 - 2018-10-19 18:36 - 000001120 _____ C:\Users\Public\Desktop\Avira.lnk 2018-10-18 22:03 - 2018-10-18 22:03 - 000526037 _____ C:\Users\Kris\Downloads\kia-configurator-optima_sw-first_edition-20181018.pdf 2018-10-15 18:01 - 2018-10-15 18:01 - 000567946 _____ C:\Users\Kris\Downloads\2018-10900579 (1).pdf 2018-10-15 17:56 - 2018-10-15 17:56 - 000567946 _____ C:\Users\Kris\Downloads\2018-10900579.pdf 2018-10-15 15:12 - 2018-10-15 15:12 - 000143619 _____ C:\Users\Kris\Downloads\bolflex-monofolha-RICARDO.pdf 2018-10-15 09:14 - 2018-10-15 09:14 - 000018188 _____ C:\Users\Kris\Downloads\way-ve.pdf 2018-10-13 22:22 - 2018-10-13 22:23 - 047783495 _____ (SWE Sven Ritter ) C:\Users\Kris\Downloads\ske6221_e722x_cx_wxpw7 (1).exe 2018-10-13 21:22 - 2018-10-13 21:22 - 000003728 ____N C:\bootsqm.dat 2018-10-12 15:54 - 2018-10-15 11:11 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2018-10-12 15:54 - 2018-10-15 11:11 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2018-10-12 15:54 - 2018-10-12 15:54 - 000004580 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2018-10-12 11:54 - 2018-10-12 11:54 - 000006528 _____ C:\Users\Kris\Downloads\CY917145644DE.pdf 2018-10-11 20:51 - 2018-10-11 20:51 - 001912846 _____ C:\Users\Kris\Downloads\CAO Retail Non Food 2018-2020 (28-09-18).pdf 2018-10-11 13:53 - 2018-10-11 13:53 - 000036072 _____ C:\Users\Kris\Downloads\__64-hdaudbus.sys6.2.9200.16384.zip 2018-10-08 09:30 - 2018-10-08 09:30 - 000101867 _____ C:\Users\Kris\Desktop\3kr08fhrfaef7.pdf 2018-10-08 09:07 - 2018-10-08 09:07 - 062518512 _____ (Skype Technologies S.A.) C:\Users\Kris\Downloads\Skype-8.31.0.92.exe 2018-10-07 19:52 - 2018-10-07 19:52 - 002135713 _____ C:\Users\Kris\Downloads\droste.wmv 2018-10-07 14:08 - 2018-10-07 14:08 - 000100606 _____ C:\Users\Kris\Desktop\Rd4 Navraagsysteem Inzamelgegevens.pdf ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.) 2018-11-03 13:02 - 2009-07-14 05:45 - 000017152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2018-11-03 13:02 - 2009-07-14 05:45 - 000017152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2018-11-03 13:01 - 2017-09-19 19:58 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray 2018-11-03 12:59 - 2011-11-04 03:25 - 000793328 _____ C:\Windows\system32\perfh013.dat 2018-11-03 12:59 - 2011-11-04 03:25 - 000172182 _____ C:\Windows\system32\perfc013.dat 2018-11-03 12:59 - 2011-11-04 03:18 - 000779504 _____ C:\Windows\system32\perfh010.dat 2018-11-03 12:59 - 2011-11-04 03:18 - 000165302 _____ C:\Windows\system32\perfc010.dat 2018-11-03 12:59 - 2011-11-04 03:11 - 000723208 _____ C:\Windows\system32\perfh00E.dat 2018-11-03 12:59 - 2011-11-04 03:11 - 000189730 _____ C:\Windows\system32\perfc00E.dat 2018-11-03 12:59 - 2011-11-04 03:04 - 000785174 _____ C:\Windows\system32\perfh00C.dat 2018-11-03 12:59 - 2011-11-04 03:04 - 000168036 _____ C:\Windows\system32\perfc00C.dat 2018-11-03 12:59 - 2011-11-04 02:57 - 000784914 _____ C:\Windows\system32\perfh00A.dat 2018-11-03 12:59 - 2011-11-04 02:57 - 000176924 _____ C:\Windows\system32\perfc00A.dat 2018-11-03 12:59 - 2011-11-04 02:51 - 000736666 _____ C:\Windows\system32\perfh007.dat 2018-11-03 12:59 - 2011-11-04 02:51 - 000167572 _____ C:\Windows\system32\perfc007.dat 2018-11-03 12:59 - 2011-11-04 02:44 - 000548872 _____ C:\Windows\system32\perfh006.dat 2018-11-03 12:59 - 2011-11-04 02:44 - 000117114 _____ C:\Windows\system32\perfc006.dat 2018-11-03 12:59 - 2009-07-14 06:13 - 007150170 _____ C:\Windows\system32\PerfStringBackup.INI 2018-11-03 12:59 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2018-11-03 12:56 - 2014-09-21 08:44 - 000000000 ____D C:\Users\Kris\Documents\Youcam 2018-11-03 12:54 - 2018-03-09 07:30 - 000000000 ____D C:\Users\Public\Speedup Sessions 2018-11-03 12:52 - 2018-07-18 14:38 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2018-11-03 12:50 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-11-02 00:00 - 2018-09-07 19:46 - 000000000 ____D C:\Users\Kris\Documents\way-ve 2018-11-01 12:44 - 2018-09-04 21:40 - 006742757 _____ C:\Windows\SAII_LOG.TXT 2018-10-30 23:45 - 2014-09-21 08:37 - 000002248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-10-30 23:45 - 2014-09-21 08:37 - 000002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-10-30 13:01 - 2014-12-25 12:12 - 000000000 ____D C:\Users\Kris\Documents\persoonlijk 2018-10-30 12:25 - 2018-10-01 11:46 - 000000000 ____D C:\Users\Kris\Documents\Mijn scans 2018-10-26 17:05 - 2018-04-11 20:51 - 005242964 _____ C:\Windows\SysWOW64\STPackager.1 2018-10-26 07:46 - 2016-10-15 14:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2018-10-25 00:52 - 2011-11-07 17:44 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2018-10-25 00:51 - 2014-10-15 14:25 - 000000000 ____D C:\Users\Kris\AppData\Local\Adobe 2018-10-25 00:18 - 2014-09-21 08:43 - 000000000 ____D C:\Users\Kris 2018-10-25 00:17 - 2011-11-10 20:16 - 000000000 ____D C:\Users\UpdatusUser 2018-10-25 00:11 - 2014-09-21 08:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Memeo 2018-10-25 00:11 - 2011-11-10 19:56 - 000000000 ____D C:\Program Files\CONEXANT 2018-10-25 00:11 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration 2018-10-25 00:10 - 2017-01-08 09:13 - 000000000 ____D C:\Users\Kris\AppData\Local\ElevatedDiagnostics 2018-10-24 16:04 - 2016-12-12 10:14 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2018-10-24 15:55 - 2018-08-24 09:29 - 000555804 _____ C:\Windows\ntbtlog.txt 2018-10-23 08:13 - 2018-09-18 12:09 - 000000000 ____D C:\ProgramData\HP 2018-10-22 22:00 - 2014-09-27 20:08 - 000000000 ____D C:\Users\Kris\Documents\biodegradabel 2018-10-22 16:29 - 2014-09-24 07:10 - 000000000 ____D C:\Windows\system32\MRT 2018-10-22 16:16 - 2011-11-03 21:34 - 136745976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-10-22 16:14 - 2014-09-23 08:32 - 007005250 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2018-10-20 07:44 - 2016-01-06 18:54 - 000001310 _____ C:\Users\Public\Desktop\Skype.lnk 2018-10-20 07:44 - 2016-01-06 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2018-10-19 18:36 - 2016-10-15 14:50 - 000000000 ____D C:\ProgramData\Package Cache 2018-10-17 19:31 - 2015-04-25 21:29 - 000000000 ____D C:\Users\Kris\Documents\desousa 2018-10-15 22:48 - 2010-11-21 04:27 - 000559880 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2018-10-15 20:17 - 2014-09-21 08:44 - 000000000 ____D C:\Users\Kris\AppData\Local\VirtualStore 2018-10-15 11:11 - 2011-11-07 17:44 - 000000000 ____D C:\Windows\system32\Macromed 2018-10-10 20:09 - 2018-09-30 13:50 - 000000150 _____ C:\Windows\Reimage.ini 2018-10-10 07:06 - 2017-08-23 22:29 - 000002186 _____ C:\Users\Kris\Desktop\WhatsApp.lnk 2018-10-10 07:06 - 2017-08-23 22:29 - 000000000 ____D C:\Users\Kris\AppData\Roaming\WhatsApp 2018-10-10 07:06 - 2017-08-23 22:29 - 000000000 ____D C:\Users\Kris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2018-10-10 07:05 - 2017-08-23 22:28 - 000000000 ____D C:\Users\Kris\AppData\Local\WhatsApp 2018-10-10 07:04 - 2017-08-23 22:28 - 000000000 ____D C:\Users\Kris\AppData\Local\SquirrelTemp 2018-10-08 09:30 - 2014-10-15 14:25 - 000000000 ____D C:\Users\Kris\AppData\LocalLow\Adobe 2018-10-08 09:08 - 2016-01-06 18:54 - 000000000 ____D C:\Users\Kris\AppData\Roaming\Skype ==================== Bestanden in de root van sommige mappen ======= 2015-01-05 23:25 - 2015-01-07 23:54 - 000005120 _____ () C:\Users\Kris\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2018-08-20 06:24 - 2018-08-20 06:24 - 000007597 _____ () C:\Users\Kris\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\Windows\system32\winlogon.exe => Bestand is getekend C:\Windows\system32\wininit.exe => Bestand is getekend C:\Windows\SysWOW64\wininit.exe => Bestand is getekend C:\Windows\explorer.exe => Bestand is getekend C:\Windows\SysWOW64\explorer.exe => Bestand is getekend C:\Windows\system32\svchost.exe => Bestand is getekend C:\Windows\SysWOW64\svchost.exe => Bestand is getekend C:\Windows\system32\services.exe => Bestand is getekend C:\Windows\system32\User32.dll => Bestand is getekend C:\Windows\SysWOW64\User32.dll => Bestand is getekend C:\Windows\system32\userinit.exe => Bestand is getekend C:\Windows\SysWOW64\userinit.exe => Bestand is getekend C:\Windows\system32\rpcss.dll => Bestand is getekend C:\Windows\system32\dnsapi.dll => Bestand is getekend C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2018-08-20 19:18 ==================== Eind van FRST.txt ============================