Ga naar inhoud

Welkom op PC Helpforum!
PC Helpforum helpt GRATIS computergebruikers sinds 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

Vriendelijk verzoek: whitelist www.pc-helpforum.be in je adblocker.

Beste bezoeker. Je ziet deze tekst omdat een adblocker, plugin of andere software onze advertenties blokkeert. PC Helpforum helpt jaarlijks gratis duizenden mensen met computerproblemen. Deze website en server kunnen we enkel onderhouden dankzij de inkomsten uit advertenties. Vandaar een vriendelijk verzoek: whitelist onze site zodat we jullie gratis verder kunnen helpen. Klik hier om te lezen waarom en hoe je kunt whitelisten.



bm.silverlake

malware,rootkits,en anders ongewensts

    Aanbevolen berichten


  • Topicstarter
  •    1

    Zoek.exe v5.0.0.1 Updated 31-December-2015
    Tool run by bm.silverlake on ma 06-06-2016 at  7:42:22,56.
    Microsoft Windows 10 Home 10.0.10586  x64
    Running in: Normal Mode Internet Access Detected
    Launched: C:\Users\bm.silverlake\Desktop\zoek.exe [scan all users] [script inserted]

    ==== System Restore Info ======================

    6-6-2016 07:43:17 Zoek.exe System Restore Point Created Successfully.

    ==== Torpig Check ======================

    HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll
    HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll


    ==== Empty Folders Check ======================

    C:\PROGRA~3\Comms deleted successfully
    C:\PROGRA~3\Manuals deleted successfully
    C:\PROGRA~3\SoftwareDistribution deleted successfully
    C:\PROGRA~3\SUPPORTDIR deleted successfully
    C:\Users\bm.silverlake\AppData\Local\ActiveSync deleted successfully
    C:\Users\bm.silverlake\AppData\Local\Adobe deleted successfully
    C:\Users\bm.silverlake\AppData\Local\MediaShow deleted successfully
    C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully
    C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully

    ==== Deleting CLSID Registry Keys ======================


    ==== Deleting CLSID Registry Values ======================


    ==== Running Processes ======================

    C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Program Files\AVAST Software\Avast\afwServ.exe
    C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
    C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
    C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files\AVAST Software\Avast\avastui.exe
    C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
    C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
    C:\WINDOWS\SysWOW64\ctfmon.exe
    C:\Users\bm.silverlake\Desktop\zoek.exe
    C:\WINDOWS\SysWOW64\cmd.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\WINDOWS\SysWOW64\cmd.exe

    ==== Services(whitelist) ======================
    Powered by E Dev

    R2 - [iAStorDataMgrSvc] - Intel® Rapid Storage Technology - c:\program files\intel\intel® rapid storage technology\iastordatamgrsvc.exe
    R2 - [jhi_service] - Intel® Dynamic Application Loader Host Interface Service - c:\program files (x86)\intel\intel® management engine components\dal\jhi_service.exe
    R2 - [LMS] - Intel® Management and Security Application Local Management Service - c:\program files (x86)\intel\intel® management engine components\lms\lms.exe
    R2 - [nvsvc] - NVIDIA Display Driver Service - c:\windows\system32\nvvsvc.exe
    R2 - [stereo Service] - NVIDIA Stereoscopic 3D Driver Service - c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe
    R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe
    R3 - [AvastVBoxSvc] - AvastVBox COM Service - c:\program files\avast software\avast\ng\vbox\avastvboxsvc.exe
    R3 - [intel® Security Assist] - Intel® Security Assist - c:\program files (x86)\intel\intel® security assist\isa.exe
    S2 - [isaHelperSvc] - Intel® Security Assist Helper - c:\program files (x86)\intel\intel® security assist\isahelperservice.exe
    S2 - [sppsvc] - Software Protection - c:\windows\system32\sppsvc.exe
    S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
    S3 - [ALG] - Application Layer Gateway Service - c:\windows\system32\alg.exe
    S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe
    S3 - [diagnosticshub.standardcollector.service] - Microsoft® Diagnostics Hub Standard Collector-service - c:\windows\system32\diagsvcs\diagnosticshub.standardcollector.service.exe
    S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe
    S3 - [iEEtwCollectorService] - Internet Explorer ETW Collector Service - c:\windows\system32\ieetwcollector.exe
    S3 - [intel® Capability Licensing Service TCP IP Interface] - Intel® Capability Licensing Service TCP IP Interface - c:\program files\intel\icls client\socketheciserver.exe
    S3 - [MozillaMaintenance] - Mozilla Maintenance Service - c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe
    S3 - [MSDTC] - Distributed Transaction Coordinator - c:\windows\system32\msdtc.exe
    S3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe
    S3 - [PerfHost] - Performance Counter DLL Host - c:\windows\syswow64\perfhost.exe
    S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - c:\windows\system32\locator.exe
    S3 - [sensorDataService] - Sensor Data Service - c:\windows\system32\sensordataservice.exe
    S3 - [sNMPTRAP] - SNMP Trap - c:\windows\system32\snmptrap.exe
    S3 - [TieringEngineService] - Storage Tiers Management - c:\windows\system32\tieringengineservice.exe
    S3 - [TrustedInstaller] - Windows Modules Installer - c:\windows\servicing\trustedinstaller.exe
    S3 - [vds] - Virtual Disk - c:\windows\system32\vds.exe
    S3 - [VSS] - Volume Shadow Copy - c:\windows\system32\vssvc.exe
    S3 - [wbengine] - Block Level Backup Engine Service - c:\windows\system32\wbengine.exe
    S3 - [WdNisSvc] - Windows Defender Network Inspection Service - c:\program files\windows defender\nissrv.exe
    S3 - [WinDefend] - Windows Defender Service - c:\program files\windows defender\msmpeng.exe
    S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe
    S3 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - c:\program files\windows media player\wmpnetwk.exe

    ==== Deleting Services ======================


    ==== FireFox Fix ======================

    ProfilePath: C:\Users\BM42A9~1.SIL\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default

    user.js not found
    ---- Lines browser.startup.page removed from prefs.js ----
    user_pref("browser.startup.page", 0);
    ---- FireFox user.js and prefs.js backups ----

    prefs_06-06-2016_0750_.backup

    ==== Deleting Files \ Folders ======================

    C:\PROGRA~3\Package Cache deleted
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
    C:\windows\SysNative\GroupPolicy\Machine deleted
    C:\windows\SysNative\GroupPolicy\User deleted
    C:\windows\SysNative\GroupPolicy\GPT.INI deleted
    C:\WINDOWS\Syswow64\GroupPolicy\gpt.ini deleted

    ==== System Specs ======================

    Windows: Windows Version 6.2 (Build 9200)
    Memory (RAM): 12226 MB
    CPU Info: Intel® Core i7-4790 CPU @ 3.60GHz
    CPU Speed: 3598,0 MHz
    Sound Card: Speakers (Realtek High Definiti |
    27MP35-4 (NVIDIA High Definitio |
    Display Adapters: NVIDIA GeForce GTX 745 | NVIDIA GeForce GTX 745
    Monitors: 1x; Generic PnP Monitor |
    Screen Resolution: 1920 X 1080 - 32 bit
    Network: Network Present
    Network Adapters: Realtek PCIe GBE Family Controller
    CD / DVD Drives: 1x (G: | ) G: TSSTcorpCDDVDW SH-216DB
    Ports: COM Ports NOT Present. LPT Port NOT Present.
    Mouse: 3 Button Wheel Mouse Present
    Hard Disks: C:  117,5GB | D:  1803,0GB | E:  60,0GB
    Hard Disks - Free: C:  79,7GB | D:  1800,9GB | E:  41,6GB
    Manufacturer *: American Megatrends Inc.
    BIOS Info: AT/AT COMPATIBLE |  | MEDION - 1072009
    Time Zone: West-Europa (standaardtijd)
    Motherboard *: MEDION H81H3-EM2
    Country: Nederland
    Language: NLD

    ==== System Specs (Software) ======================

    Default Browser: Firefox    46.0.1
    Internet Explorer Version: 11.306.10586.0
    Mozilla Firefox version: 46.0.1 (x86 nl)
    Sun Java version: 1.8.0_31 (32-bit)
    Sun Java version: 1.8.0_31 (64-bit)
    Flash Player version: 21.0.0.242

    ==== Files Recently Created / Modified ======================

    ====== C:\WINDOWS ====
    2016-05-26 14:41:41    8D26DAE92B9995B082AE5B6BC2FB70DB    52184    ----a-w-    C:\WINDOWS\avastSS.scr
    2016-05-11 05:28:23    2617877C5761B8A696FD0368861EE6E4    4515256    ----a-w-    C:\WINDOWS\explorer.exe
    ====== C:\Users\BM42A9~1.SIL\AppData\Local\Temp ====
    ====== Java Cache =====
    ====== C:\WINDOWS\SysWOW64 =====
    ====== C:\WINDOWS\SysWOW64\drivers =====
    ====== C:\WINDOWS\Sysnative =====
    2016-05-26 14:41:43    7E8152C231FF349CEEEB12146D90E952    398152    ----a-w-    C:\WINDOWS\Sysnative\aswBoot.exe
    ====== C:\WINDOWS\Sysnative\drivers =====
    2016-06-03 21:19:00    78488AF2AB2111D67B3C4044707A519B    192216    ----a-w-    C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys
    2016-05-26 14:41:44    5261F0E21A21027CDED0CD47D20E16F2    536312    ----a-w-    C:\WINDOWS\Sysnative\drivers\aswNetSec.sys
    2016-05-22 09:30:09    D41D8CD98F00B204E9800998ECF8427E    0    ---ha-w-    C:\WINDOWS\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
    2016-05-11 05:28:22    48D8729FACC784900B831212AE56F824    1996640    ----a-w-    C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
    2016-05-11 05:28:19    E7463CE8579A0418A98BE9BE42C647D7    534872    ----a-w-    C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
    2016-05-11 05:28:19    01C01ED15ED56B98088CE1D5A0965E6A    577368    ----a-w-    C:\WINDOWS\Sysnative\drivers\dxgmms2.sys
    2016-05-11 05:28:18    CFFE69B6C276A3418687109EA8AC9E7D    330072    ----a-w-    C:\WINDOWS\Sysnative\drivers\pci.sys
    2016-05-11 05:28:18    B880BE37452AB1D4AA93845F58EF7960    95072    ----a-w-    C:\WINDOWS\Sysnative\drivers\sdport.sys
    2016-05-11 05:28:18    357910142E9285B978689B1DB4EFA00A    393568    ----a-w-    C:\WINDOWS\Sysnative\drivers\dxgmms1.sys
    2016-05-11 05:28:17    C330883C06E2D4CE4F6982F048265D37    335712    ----a-w-    C:\WINDOWS\Sysnative\drivers\fastfat.sys
    2016-05-11 05:28:17    C0752D58193603B6ED762B4027C65E1B    155136    ----a-w-    C:\WINDOWS\Sysnative\drivers\hidclass.sys
    2016-05-11 05:28:17    8F2523C9D8F1448FF2156452AF60FA00    87552    ----a-w-    C:\WINDOWS\Sysnative\drivers\filecrypt.sys
    2016-05-11 05:28:17    82D3B1F4D80057826AA649D78147DE36    63488    ----a-w-    C:\WINDOWS\Sysnative\drivers\UcmCx.sys
    2016-05-11 05:28:17    67B9684B8272D5EBD1CCBB1DBD425EC8    99680    ----a-w-    C:\WINDOWS\Sysnative\drivers\pdc.sys
    2016-05-11 05:28:17    50DFE05C698E9B0A63D95E3D669A105C    638816    ----a-w-    C:\WINDOWS\Sysnative\drivers\fvevol.sys
    2016-05-11 05:28:17    4AAD6547953D373A1EB5B2DF583D868B    67072    ----a-w-    C:\WINDOWS\Sysnative\drivers\usbser.sys
    2016-05-11 05:28:17    2A87EA182EA333D79AA0B03833EA67F2    131424    ----a-w-    C:\WINDOWS\Sysnative\drivers\ufxsynopsys.sys
    ====== C:\WINDOWS\Tasks ======
    ====== C:\WINDOWS\Temp ======
    ======= C:\Program Files =====
    2016-06-04 00:30:38    --------    d-----w-    C:\Program Files\trend micro
    ======= C:\PROGRA~2 =====
    2016-05-26 04:53:44    --------    d-----w-    C:\PROGRA~2\Mozilla Maintenance Service
    ======= C: =====
    ====== C:\Users\bm.silverlake\AppData\Roaming ======
    2016-06-03 19:15:22    8DE9F588DFB1641F2C0EA05BD4B60605    218    ----a-w-    C:\Users\BM42A9~1.SIL\AppData\Local\recently-used.xbel
    2016-06-03 19:15:22    8DE9F588DFB1641F2C0EA05BD4B60605    218    ----a-w-    C:\Users\bm.silverlake\AppData\Local\recently-used.xbel
    2016-06-03 16:46:46    --------    d-----w-    C:\Users\BM42A9~1.SIL\AppData\Local\gtk-2.0
    2016-06-03 16:46:46    --------    d-----w-    C:\Users\bm.silverlake\AppData\Local\gtk-2.0
    2016-06-03 16:40:34    --------    d-----w-    C:\Users\BM42A9~1.SIL\AppData\Local\fontconfig
    2016-06-03 16:40:34    --------    d-----w-    C:\Users\bm.silverlake\AppData\Local\fontconfig
    2016-06-03 16:40:33    --------    d-----w-    C:\Users\BM42A9~1.SIL\AppData\Local\gegl-0.2
    2016-06-03 16:40:33    --------    d-----w-    C:\Users\bm.silverlake\AppData\Local\gegl-0.2
    2016-06-03 16:35:54    --------    d-----w-    C:\Users\BM42A9~1.SIL\AppData\Local\Programs
    2016-06-03 16:35:54    --------    d-----w-    C:\Users\bm.silverlake\AppData\Local\Programs
    ====== C:\Users\bm.silverlake ======
    2016-06-06 05:41:52    --------    d-----w-    C:\WINDOWS\serviceprofiles\Localservice\winhttp
    2016-06-04 06:42:34    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    ----a-w-    C:\Users\BM42A9~1.SIL\Desktop\RSITx64.exe
    2016-06-04 06:42:34    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    ----a-w-    C:\Users\bm.silverlake\Desktop\RSITx64.exe
    2016-06-04 00:30:07    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    ----a-w-    C:\Users\BM42A9~1.SIL\Downloads\RSITx64.exe
    2016-06-04 00:30:07    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    ----a-w-    C:\Users\bm.silverlake\Downloads\RSITx64.exe
    2016-06-03 21:17:39    52F4695C53B02ADA7D648F95F2E2F8B4    22851472    ----a-w-    C:\Users\BM42A9~1.SIL\Downloads\mbam-setup-2.2.1.1043.exe
    2016-06-03 21:17:39    52F4695C53B02ADA7D648F95F2E2F8B4    22851472    ----a-w-    C:\Users\bm.silverlake\Downloads\mbam-setup-2.2.1.1043.exe
    2016-06-03 17:02:33    --------    d-----w-    C:\Users\BM42A9~1.SIL\.thumbnails
    2016-06-03 17:02:33    --------    d-----w-    C:\Users\bm.silverlake\.thumbnails
    2016-05-26 04:52:02    1F14A3768CB568E4AA89C568903F5CC4    242200    ----a-w-    C:\Users\BM42A9~1.SIL\Downloads\Firefox Setup Stub 46.0.1.exe
    2016-05-26 04:52:02    1F14A3768CB568E4AA89C568903F5CC4    242200    ----a-w-    C:\Users\bm.silverlake\Downloads\Firefox Setup Stub 46.0.1.exe

    ====== C: exe-files ==
    2016-06-04 06:42:34    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    ----a-w-    C:\Users\bm.silverlake\Desktop\RSITx64.exe
    2016-06-04 00:30:39    9A2347903D6EDB84C10F288BC0578C1C    388608    ----a-w-    C:\Program Files\trend micro\bm.silverlake.exe
    2016-06-04 00:30:07    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    ----a-w-    C:\Users\bm.silverlake\Downloads\RSITx64.exe
    2016-06-03 21:17:39    52F4695C53B02ADA7D648F95F2E2F8B4    22851472    ----a-w-    C:\Users\bm.silverlake\Downloads\mbam-setup-2.2.1.1043.exe
    === C: other files ==
    2016-06-03 21:19:00    78488AF2AB2111D67B3C4044707A519B    192216    ----a-w-    C:\Windows\System32\drivers\MBAMSwissArmy.sys

    ==== Startup Registry Enabled ======================

    [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

    [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

    [HKEY_USERS\S-1-5-21-775628570-3588427518-1694689872-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
    "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
    "CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R"
    "PowerDVD12Agent"="C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe"
    "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
    "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"

    ==== Startup Registry Enabled x64 ======================

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
    "IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60"
    "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

    ==== Task Scheduler Jobs ======================

    C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13-05-2016 10:12]

    ==== Other Scheduled Tasks ======================

    "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
    "C:\WINDOWS\SysNative\tasks\PDVDServ12 Task" [C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe]
    "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{CF317D64-B4FF-4468-BB4C-3F124728ADEF}" [C:\Windows\system32\msfeedssync.exe]

    ==== Folders in C:\PROGRA~3 0-6 Months Old ======================

    2015-12-31 10:55:11    --------    d-----w-    C:\PROGRA~3\AVAST Software
    2016-01-22 07:08:21    --------    d-----w-    C:\PROGRA~3\NVIDIA Corporation
    2016-01-22 07:08:27    --------    d-----w-    C:\PROGRA~3\NVIDIA
    2016-01-22 07:12:46    --------    d-sh--we    C:\PROGRA~3\Application Data
    2016-01-22 07:12:46    --------    d-sh--we    C:\PROGRA~3\Bureaublad
    2016-01-22 07:12:46    --------    d-sh--we    C:\PROGRA~3\Documenten
    2016-01-22 07:12:46    --------    d-sh--we    C:\PROGRA~3\Menu Start
    2016-01-22 07:12:46    --------    d-sh--we    C:\PROGRA~3\Sjablonen
    2016-02-24 17:14:25    --------    d-----w-    C:\PROGRA~3\Oracle
    2016-02-24 17:14:39    --------    d-----w-    C:\PROGRA~3\Sun
    2016-06-03 21:18:48    --------    d-----w-    C:\PROGRA~3\Malwarebytes

    ==== Firefox Start and Search pages ======================

    ProfilePath: C:\Users\BM42A9~1.SIL\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default
    user_pref("browser.startup.homepage", "google.com");
    user_pref("browser.newtab.url", "about:newtab");

    ==== Firefox Extensions Registry ======================

    [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
    "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [26-05-2016 16:41]
    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
    "sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [26-05-2016 16:41]

    ==== Firefox Extensions ======================

    AppDir: C:\Program Files (x86)\Mozilla Firefox
    - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

    ==== Firefox Plugins ======================

    Profilepath: C:\Users\bm.silverlake\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default
    70858ED7836E5C849D33576A84DC8CCF    - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll -    Shockwave Flash
    258693279212838A6A879A69A17BE215    - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll -    Shockwave Flash


    ==== Chromium Look ======================

    HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
    gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[26-05-2016 16:41]

    Google Slides - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
    Google Docs - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
    Google Drive - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
    YouTube - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
    Google Sheets - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
    Google Docs Offline - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
    Avast Online Security - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
    Chrome Web Store Payments - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
    Gmail - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
    Google Slides - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
    Google Docs - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
    Google Drive - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
    YouTube - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
    Google Sheets - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
    Google Docs Offline - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
    Avast Online Security - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
    Chrome Web Store Payments - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
    Gmail - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

    ==== Set IE to Default ======================

    Old Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://google.com./"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"

    New Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://google.com./"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

    ==== All HKLM and HKCU SearchScopes ======================

    HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
    HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
    HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    HKCU\SearchScopes "DefaultScope"="{5A7197FF-0B15-48ED-AC62-E258ECFBEBA0}"
    HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
    HKCU\SearchScopes\{5A7197FF-0B15-48ED-AC62-E258ECFBEBA0} - http://www.bing.com/search?q={searchTerms}&form=PRLNC1&src=IE11TR&pc=LCTE

    ==== HijackThis Entries ======================

    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
    O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
    O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
    O4 - HKLM\..\Run: [PowerDVD12Agent] "C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe"
    O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
    O4 - HKCU\..\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
    O4 - HKCU\..\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"
    O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
    O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
    O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
    O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
    O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
    O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
    O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
    O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
    O23 - Service: Intel® Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
    O23 - Service: Intel® Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
    O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
    O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
    O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
    O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    ==== Empty IE Cache ======================

    C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Users\bm.silverlake\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
    C:\Users\bm.silverlake\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
    C:\Users\BM42A9~1.SIL\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
    C:\Users\BM42A9~1.SIL\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
    C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
    C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
    C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
    C:\Users\bm.silverlake\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
    C:\Users\bm.silverlake\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
    C:\Users\BM42A9~1.SIL\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
    C:\Users\BM42A9~1.SIL\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
    C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
    C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

    ==== Empty FireFox Cache ======================

    C:\Users\bm.silverlake\AppData\Local\Mozilla\Firefox\Profiles\petb5utx.default\cache2 emptied successfully
    C:\Users\BM42A9~1.SIL\AppData\Local\Mozilla\Firefox\Profiles\petb5utx.default\cache2 emptied successfully

    ==== Empty Chrome Cache ======================

    C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
    C:\Users\BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

    ==== Empty All Flash Cache ======================

    No Flash Cache Found

    ==== Empty All Java Cache ======================

    Java Cache cleared successfully

    ==== C:\zoek_backup content ======================

    C:\zoek_backup (files=15 folders=12 9521192 bytes)

    ==== Empty Temp Folders ======================

    C:\WINDOWS\Temp will be emptied at reboot

    ==== After Reboot ======================

    ==== Empty Temp Folders ======================

    C:\WINDOWS\Temp successfully emptied
    C:\Users\BM42A9~1.SIL\AppData\Local\Temp successfully emptied

    ==== Empty Recycle Bin ======================

    C:\$RECYCLE.BIN successfully emptied

    ==== EOF on ma 06-06-2016 at  7:55:56,56 ======================
     

    Deel dit bericht


    Link naar bericht
    Delen op andere sites
  • Topicstarter
  •    1

    Dat is het logje.

     

     

    Wat betreft dat bleutooth ding had ik te vroeg gejuigd, savonds zat t er alweer op...Maar ik zit ook niet stil en klik soms gewoon maar wat aan,en probeer zaken uit, en zo kwam ik bij `VPN`,dat aangeschakeld was.

     

    Ik dacht dat al die zaken gewoon standaard met Windows meegeleverd waren,..maar je kan VPN uitschakelen. Bij ùit`is bleutooth weg, bij àan`is bleutooth na een tijdje pas , terug.

     

    Het lijkt dus verband met elkaar te houden.

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

  • Topicstarter
  •    1

    Oh= kan je je bericht niet bewerken-aanpassen?

     

    Wat betreft die firefox bufferinhoud wissen...dat gaat nu , nu die VPN "uit"is,ook weer.

     

    Afwachten of dat zo blijft.

     

     

    Blijft de vraag wie of wat VPN "aangeschakeld"heeft. (nee,ik niet, ik weet niet altijd wat ik doe,maar onthoud wel de naam van de knoppen die ik aanvink)

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

    Hallo,

     

    Download de 51a5c8edc4692-icon1337952077.pngFarbar Recovery Scan Tool 32 of 64 bit van één van de onderstaande links


    Hier staat een beschrijving hoe u kunt kijken of u een 32 of 64 bit versie van Windows heeft.

    Farbar Recovery Scan Tool uitvoeren

    • Klik met de rechtermuisknop op FRST.exe en kies voor de optie "Als administrator uitvoeren".
    • Als het programma is geopend klik Yes (Ja) bij de disclaimer.
    • Druk vervolgens op de Scan knop, er zal nu eerst een back-up van het register worden gemaakt.
    • Wanneer de scan gereed is worden er twee logbestanden aangemaakt met de naam (FRST.txt) & (Addition.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
    • Voeg beide logbestanden als bijlage toe aan het volgende bericht.

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

  • Topicstarter
  •    1

    Logje no1.

     

     

     

    Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie:05-06-2016 02
    Gestart door bm.silverlake (Beheerder) op DESKTOP-SN725PG (06-06-2016 11:10:33)
    Gestart vanaf C:\Users\bm.silverlake\Desktop
    Geladen Profielen: bm.silverlake (Beschikbare Profielen: bm.silverlake)
    Platform: Windows 10 Home Versie 1511 (X64) Taal: Nederlands (Nederland)
    Internet Explorer Versie 11 (Standaardbrowser: Edge)
    Boot Modus: Normal
    Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processen (gefilterd) =================

    (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
    (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
    (Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
    (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
    (Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
    () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
    (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.20961.0_x64__8wekyb3d8bbwe\Video.UI.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_21_0_0_242.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_21_0_0_242.exe


    ==================== Register (gefilterd) ===========================

    (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

    HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
    HKLM\...\Run: [iAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
    HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2015-06-17] (NVIDIA Corporation)
    HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110008 2015-05-26] (CyberLink)
    HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [499128 2015-05-26] (CyberLink Corp.)
    HKLM-x32\...\Run: [PowerDVD12Agent] => "C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe"
    HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7400064 2016-06-03] (AVAST Software)
    HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
    HKU\S-1-5-21-775628570-3588427518-1694689872-1003\...\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
    HKU\S-1-5-21-775628570-3588427518-1694689872-1003\...\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-05-26] (AVAST Software)

    ==================== Internet (gefilterd) ====================

    (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

    Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
    Tcpip\..\Interfaces\{62f6614d-a86d-4340-991c-12e7f29db8cf}: [DhcpNameServer] 192.168.1.254

    Internet Explorer:
    ==================
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
    HKU\S-1-5-21-775628570-3588427518-1694689872-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.com./
    HKU\S-1-5-21-775628570-3588427518-1694689872-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-775628570-3588427518-1694689872-1003 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
    BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2016-02-24] (Oracle Corporation)
    BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2016-02-24] (Oracle Corporation)
    StartMenuInternet: IEXPLORE.EXE - iexplore.exe

    FireFox:
    ========
    FF ProfilePath: C:\Users\bm.silverlake\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default
    FF NewTab: about:newtab
    FF Homepage: google.com
    FF NetworkProxy: "type", 0
    FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-13] ()
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
    FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2016-02-24] (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2016-02-24] (Oracle Corporation)
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
    FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-23] (NVIDIA Corporation)
    FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-23] (NVIDIA Corporation)
    FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
    FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
    FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-26]
    FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
    FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
    FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-26]

    Chrome:
    =======
    CHR Profile: C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Google Presentaties) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-07]
    CHR Extension: (Google Documenten) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-07]
    CHR Extension: (Google Drive) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-07]
    CHR Extension: (YouTube) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-07]
    CHR Extension: (Google Spreadsheets) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-07]
    CHR Extension: (Offline Documenten) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-07]
    CHR Extension: (Avast Online Security) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-03-07]
    CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-07]
    CHR Extension: (Gmail) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-07]
    CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-05-26]

    ==================== Services (gefilterd) ========================

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

    R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-26] (AVAST Software)
    R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [370656 2016-05-26] (AVAST Software)
    R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5570272 2016-05-26] (Avast Software)
    R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
    S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
    R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [bestand niet getekend]
    S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [bestand niet getekend]
    R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
    S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
    S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

    ===================== Drivers (gefilterd) ==========================

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

    R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-05-26] (AVAST Software)
    R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-26] (AVAST Software)
    R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [536312 2016-05-26] (AVAST Software)
    R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-05-26] (AVAST Software)
    R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-05-26] (AVAST Software)
    R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-26] (AVAST Software)
    R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-05-26] (AVAST Software)
    R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-05-26] (AVAST Software)
    R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-05-26] (AVAST Software)
    R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
    S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
    R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216 2016-06-03] (Malwarebytes)
    R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [183584 2015-06-12] (Intel Corporation)
    R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [161760 2016-05-26] (AVAST Software)
    R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek                                            )
    S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
    R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [323392 2016-05-26] (Avast Software)
    S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
    S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
    S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
    S3 mfeaack01; \Device\mfeaack01.sys [X]

    ==================== NetSvcs (gefilterd) ===================

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


    ==================== Een Maand Aangemaakt bestanden en mappen ========

    (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

    2016-06-06 11:10 - 2016-06-06 11:10 - 00014134 _____ C:\Users\bm.silverlake\Desktop\FRST.txt
    2016-06-06 11:10 - 2016-06-06 11:10 - 00000000 ____D C:\FRST
    2016-06-06 11:09 - 2016-06-06 11:09 - 02384896 _____ (Farbar) C:\Users\bm.silverlake\Desktop\FRST64.exe
    2016-06-06 07:56 - 2016-06-06 07:56 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\ActiveSync
    2016-06-06 07:53 - 2016-06-06 07:42 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
    2016-06-06 07:42 - 2016-06-06 07:50 - 00000000 ____D C:\zoek_backup
    2016-06-04 21:53 - 2016-06-04 21:53 - 00000279 _____ C:\Users\bm.silverlake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prullenbak.lnk
    2016-06-04 09:39 - 2016-06-06 08:22 - 00000000 ____D C:\Users\bm.silverlake\AppData\LocalLow\uTorrent
    2016-06-03 23:19 - 2016-06-03 23:19 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
    2016-06-03 23:18 - 2016-06-03 23:18 - 00000000 ____D C:\ProgramData\Malwarebytes
    2016-06-03 22:31 - 2016-06-03 22:31 - 00002212 _____ C:\Users\bm.silverlake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\prullenbak (2).lnk
    2016-06-03 21:15 - 2016-06-03 21:15 - 00000218 _____ C:\Users\bm.silverlake\AppData\Local\recently-used.xbel
    2016-06-03 19:02 - 2016-06-03 19:02 - 00000000 ____D C:\Users\bm.silverlake\.thumbnails
    2016-06-03 18:46 - 2016-06-03 21:14 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\gtk-2.0
    2016-06-03 18:40 - 2016-06-03 18:40 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\gegl-0.2
    2016-06-03 18:40 - 2016-06-03 18:40 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\fontconfig
    2016-05-26 17:28 - 2016-05-26 17:28 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
    2016-05-26 17:28 - 2016-05-26 17:28 - 00000000 ____D C:\WINDOWS\system32\vbox
    2016-05-26 16:41 - 2016-05-26 16:41 - 00536312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
    2016-05-26 16:41 - 2016-05-26 16:41 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
    2016-05-26 16:41 - 2016-05-26 16:41 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
    2016-05-26 16:41 - 2016-05-26 16:41 - 00001983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Internet Security.lnk
    2016-05-26 06:53 - 2016-05-26 06:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
    2016-05-26 06:52 - 2016-05-26 06:52 - 00242200 _____ C:\Users\bm.silverlake\Downloads\Firefox Setup Stub 46.0.1.exe
    2016-05-22 11:30 - 2016-05-22 11:30 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
    2016-05-11 07:28 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
    2016-05-11 07:28 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
    2016-05-11 07:28 - 2016-05-06 06:03 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
    2016-05-11 07:28 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
    2016-05-11 07:28 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
    2016-05-11 07:28 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
    2016-05-11 07:28 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
    2016-05-11 07:28 - 2016-05-06 05:23 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
    2016-05-11 07:28 - 2016-04-30 08:42 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
    2016-05-11 07:28 - 2016-04-30 08:31 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
    2016-05-11 07:28 - 2016-04-23 08:12 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
    2016-05-11 07:28 - 2016-04-23 08:12 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
    2016-05-11 07:28 - 2016-04-23 08:12 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
    2016-05-11 07:28 - 2016-04-23 08:12 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
    2016-05-11 07:28 - 2016-04-23 08:12 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
    2016-05-11 07:28 - 2016-04-23 08:12 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
    2016-05-11 07:28 - 2016-04-23 08:12 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
    2016-05-11 07:28 - 2016-04-23 08:12 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
    2016-05-11 07:28 - 2016-04-23 07:28 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
    2016-05-11 07:28 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
    2016-05-11 07:28 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
    2016-05-11 07:28 - 2016-04-23 07:24 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
    2016-05-11 07:28 - 2016-04-23 07:24 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
    2016-05-11 07:28 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
    2016-05-11 07:28 - 2016-04-23 07:24 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
    2016-05-11 07:28 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
    2016-05-11 07:28 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
    2016-05-11 07:28 - 2016-04-23 07:24 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
    2016-05-11 07:28 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
    2016-05-11 07:28 - 2016-04-23 07:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
    2016-05-11 07:28 - 2016-04-23 07:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
    2016-05-11 07:28 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
    2016-05-11 07:28 - 2016-04-23 07:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
    2016-05-11 07:28 - 2016-04-23 07:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
    2016-05-11 07:28 - 2016-04-23 07:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
    2016-05-11 07:28 - 2016-04-23 07:12 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
    2016-05-11 07:28 - 2016-04-23 07:11 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
    2016-05-11 07:28 - 2016-04-23 07:11 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
    2016-05-11 07:28 - 2016-04-23 07:11 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
    2016-05-11 07:28 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
    2016-05-11 07:28 - 2016-04-23 07:11 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
    2016-05-11 07:28 - 2016-04-23 07:11 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
    2016-05-11 07:28 - 2016-04-23 07:10 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
    2016-05-11 07:28 - 2016-04-23 07:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
    2016-05-11 07:28 - 2016-04-23 07:10 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
    2016-05-11 07:28 - 2016-04-23 07:09 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
    2016-05-11 07:28 - 2016-04-23 07:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
    2016-05-11 07:28 - 2016-04-23 07:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
    2016-05-11 07:28 - 2016-04-23 07:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
    2016-05-11 07:28 - 2016-04-23 07:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
    2016-05-11 07:28 - 2016-04-23 07:09 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
    2016-05-11 07:28 - 2016-04-23 07:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
    2016-05-11 07:28 - 2016-04-23 07:09 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
    2016-05-11 07:28 - 2016-04-23 07:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
    2016-05-11 07:28 - 2016-04-23 07:08 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
    2016-05-11 07:28 - 2016-04-23 07:08 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
    2016-05-11 07:28 - 2016-04-23 07:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
    2016-05-11 07:28 - 2016-04-23 07:07 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
    2016-05-11 07:28 - 2016-04-23 07:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
    2016-05-11 07:28 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
    2016-05-11 07:28 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
    2016-05-11 07:28 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
    2016-05-11 07:28 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
    2016-05-11 07:28 - 2016-04-23 07:01 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
    2016-05-11 07:28 - 2016-04-23 07:01 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
    2016-05-11 07:28 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
    2016-05-11 07:28 - 2016-04-23 07:01 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
    2016-05-11 07:28 - 2016-04-23 07:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
    2016-05-11 07:28 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
    2016-05-11 07:28 - 2016-04-23 07:01 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
    2016-05-11 07:28 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
    2016-05-11 07:28 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
    2016-05-11 07:28 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
    2016-05-11 07:28 - 2016-04-23 06:39 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
    2016-05-11 07:28 - 2016-04-23 06:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
    2016-05-11 07:28 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
    2016-05-11 07:28 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
    2016-05-11 07:28 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
    2016-05-11 07:28 - 2016-04-23 06:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
    2016-05-11 07:28 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
    2016-05-11 07:28 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
    2016-05-11 07:28 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
    2016-05-11 07:28 - 2016-04-23 06:32 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
    2016-05-11 07:28 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
    2016-05-11 07:28 - 2016-04-23 06:32 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
    2016-05-11 07:28 - 2016-04-23 06:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
    2016-05-11 07:28 - 2016-04-23 06:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
    2016-05-11 07:28 - 2016-04-23 06:30 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
    2016-05-11 07:28 - 2016-04-23 06:30 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
    2016-05-11 07:28 - 2016-04-23 06:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
    2016-05-11 07:28 - 2016-04-23 06:29 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
    2016-05-11 07:28 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
    2016-05-11 07:28 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
    2016-05-11 07:28 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
    2016-05-11 07:28 - 2016-04-23 06:29 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
    2016-05-11 07:28 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
    2016-05-11 07:28 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
    2016-05-11 07:28 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
    2016-05-11 07:28 - 2016-04-23 06:28 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
    2016-05-11 07:28 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
    2016-05-11 07:28 - 2016-04-23 06:28 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
    2016-05-11 07:28 - 2016-04-23 06:28 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
    2016-05-11 07:28 - 2016-04-23 06:28 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
    2016-05-11 07:28 - 2016-04-23 06:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
    2016-05-11 07:28 - 2016-04-23 06:27 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
    2016-05-11 07:28 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
    2016-05-11 07:28 - 2016-04-23 06:26 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
    2016-05-11 07:28 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
    2016-05-11 07:28 - 2016-04-23 06:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
    2016-05-11 07:28 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
    2016-05-11 07:28 - 2016-04-23 06:25 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
    2016-05-11 07:28 - 2016-04-23 06:25 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
    2016-05-11 07:28 - 2016-04-23 06:25 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
    2016-05-11 07:28 - 2016-04-23 06:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
    2016-05-11 07:28 - 2016-04-23 06:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
    2016-05-11 07:28 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
    2016-05-11 07:28 - 2016-04-23 06:24 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
    2016-05-11 07:28 - 2016-04-23 06:24 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
    2016-05-11 07:28 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
    2016-05-11 07:28 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
    2016-05-11 07:28 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
    2016-05-11 07:28 - 2016-04-23 06:23 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
    2016-05-11 07:28 - 2016-04-23 06:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
    2016-05-11 07:28 - 2016-04-23 06:23 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
    2016-05-11 07:28 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
    2016-05-11 07:28 - 2016-04-23 06:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
    2016-05-11 07:28 - 2016-04-23 06:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
    2016-05-11 07:28 - 2016-04-23 06:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
    2016-05-11 07:28 - 2016-04-23 06:22 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
    2016-05-11 07:28 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
    2016-05-11 07:28 - 2016-04-23 06:21 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
    2016-05-11 07:28 - 2016-04-23 06:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
    2016-05-11 07:28 - 2016-04-23 06:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
    2016-05-11 07:28 - 2016-04-23 06:20 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
    2016-05-11 07:28 - 2016-04-23 06:20 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
    2016-05-11 07:28 - 2016-04-23 06:20 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
    2016-05-11 07:28 - 2016-04-23 06:20 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
    2016-05-11 07:28 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
    2016-05-11 07:28 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
    2016-05-11 07:28 - 2016-04-23 06:19 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
    2016-05-11 07:28 - 2016-04-23 06:19 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
    2016-05-11 07:28 - 2016-04-23 06:19 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
    2016-05-11 07:28 - 2016-04-23 06:19 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
    2016-05-11 07:28 - 2016-04-23 06:19 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
    2016-05-11 07:28 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
    2016-05-11 07:28 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
    2016-05-11 07:28 - 2016-04-23 06:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
    2016-05-11 07:28 - 2016-04-23 06:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
    2016-05-11 07:28 - 2016-04-23 06:17 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
    2016-05-11 07:28 - 2016-04-23 06:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
    2016-05-11 07:28 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
    2016-05-11 07:28 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
    2016-05-11 07:28 - 2016-04-23 06:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
    2016-05-11 07:28 - 2016-04-23 06:16 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
    2016-05-11 07:28 - 2016-04-23 06:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
    2016-05-11 07:28 - 2016-04-23 06:15 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
    2016-05-11 07:28 - 2016-04-23 06:15 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
    2016-05-11 07:28 - 2016-04-23 06:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
    2016-05-11 07:28 - 2016-04-23 06:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
    2016-05-11 07:28 - 2016-04-23 06:15 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
    2016-05-11 07:28 - 2016-04-23 06:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
    2016-05-11 07:28 - 2016-04-23 06:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
    2016-05-11 07:28 - 2016-04-23 06:14 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
    2016-05-11 07:28 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
    2016-05-11 07:28 - 2016-04-23 06:14 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
    2016-05-11 07:28 - 2016-04-23 06:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
    2016-05-11 07:28 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
    2016-05-11 07:28 - 2016-04-23 06:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
    2016-05-11 07:28 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
    2016-05-11 07:28 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
    2016-05-11 07:28 - 2016-04-23 06:13 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
    2016-05-11 07:28 - 2016-04-23 06:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
    2016-05-11 07:28 - 2016-04-23 06:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
    2016-05-11 07:28 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
    2016-05-11 07:28 - 2016-04-23 06:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
    2016-05-11 07:28 - 2016-04-23 06:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
    2016-05-11 07:28 - 2016-04-23 06:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
    2016-05-11 07:28 - 2016-04-23 06:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
    2016-05-11 07:28 - 2016-04-23 06:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
    2016-05-11 07:28 - 2016-04-23 06:09 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
    2016-05-11 07:28 - 2016-04-23 06:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
    2016-05-11 07:28 - 2016-04-23 06:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
    2016-05-11 07:28 - 2016-04-23 06:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
    2016-05-11 07:28 - 2016-04-23 06:07 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
    2016-05-11 07:28 - 2016-04-23 06:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
    2016-05-11 07:28 - 2016-04-23 06:07 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
    2016-05-11 07:28 - 2016-04-23 06:06 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
    2016-05-11 07:28 - 2016-04-23 06:05 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
    2016-05-11 07:28 - 2016-04-23 06:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
    2016-05-11 07:28 - 2016-04-23 06:05 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
    2016-05-11 07:28 - 2016-04-23 06:05 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
    2016-05-11 07:28 - 2016-04-23 06:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
    2016-05-11 07:28 - 2016-04-23 06:05 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
    2016-05-11 07:28 - 2016-04-23 06:05 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
    2016-05-11 07:28 - 2016-04-23 06:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
    2016-05-11 07:28 - 2016-04-23 06:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
    2016-05-11 07:28 - 2016-04-23 06:04 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
    2016-05-11 07:28 - 2016-04-23 06:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
    2016-05-11 07:28 - 2016-04-23 06:03 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
    2016-05-11 07:28 - 2016-04-23 06:03 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
    2016-05-11 07:28 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
    2016-05-11 07:28 - 2016-04-23 06:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
    2016-05-11 07:28 - 2016-04-23 06:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
    2016-05-11 07:28 - 2016-04-23 06:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
    2016-05-11 07:28 - 2016-04-23 06:02 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
    2016-05-11 07:28 - 2016-04-23 06:02 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
    2016-05-11 07:28 - 2016-04-23 06:01 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
    2016-05-11 07:28 - 2016-04-23 06:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
    2016-05-11 07:28 - 2016-04-23 06:00 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
    2016-05-11 07:28 - 2016-04-23 05:45 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
    2016-05-11 07:28 - 2016-04-23 04:10 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
    2016-05-11 07:28 - 2016-04-23 04:10 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
    2016-05-11 07:28 - 2016-04-19 00:30 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml

    ==================== Een Maand Gewijzigd bestanden en mappen ========

    (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

    2016-06-06 10:12 - 2015-12-26 14:16 - 00000940 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
    2016-06-06 08:42 - 2015-10-30 20:05 - 00818654 _____ C:\WINDOWS\system32\perfh013.dat
    2016-06-06 08:42 - 2015-10-30 20:05 - 00159802 _____ C:\WINDOWS\system32\perfc013.dat
    2016-06-06 08:42 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
    2016-06-06 08:42 - 2015-07-25 19:00 - 01850926 _____ C:\WINDOWS\system32\PerfStringBackup.INI
    2016-06-06 08:37 - 2016-01-22 09:11 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
    2016-06-06 08:37 - 2016-01-22 09:08 - 00000000 ____D C:\ProgramData\NVIDIA
    2016-06-06 08:37 - 2015-10-30 08:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
    2016-06-06 08:26 - 2015-12-26 23:59 - 00000000 ____D C:\Users\bm.silverlake\AppData\Roaming\uTorrent
    2016-06-06 08:24 - 2015-12-26 16:42 - 00000000 ____D C:\Users\bm.silverlake\AppData\Roaming\vlc
    2016-06-06 07:54 - 2016-02-24 10:57 - 00000008 __RSH C:\ProgramData\ntuser.pol
    2016-06-06 07:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
    2016-06-06 07:50 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
    2016-06-06 07:06 - 2015-12-27 21:07 - 00004214 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CF317D64-B4FF-4468-BB4C-3F124728ADEF}
    2016-06-05 12:19 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
    2016-06-04 08:47 - 2016-01-22 09:09 - 00000000 ____D C:\Users\bm.silverlake
    2016-06-04 08:40 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
    2016-05-29 09:59 - 2015-12-31 12:56 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
    2016-05-28 08:07 - 2015-07-10 11:05 - 00000000 ____D C:\Users\Default.migrated
    2016-05-28 08:05 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
    2016-05-26 22:16 - 2016-01-07 22:32 - 00000000 ____D C:\Users\bm.silverlake\AppData\Roaming\dvdcss
    2016-05-26 16:41 - 2015-12-31 12:57 - 00161760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\ngvss.sys
    2016-05-26 16:41 - 2015-12-31 12:56 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
    2016-05-26 16:41 - 2015-12-31 12:56 - 00465792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
    2016-05-26 16:41 - 2015-12-31 12:56 - 00287528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
    2016-05-26 16:41 - 2015-12-31 12:56 - 00166432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
    2016-05-26 16:41 - 2015-12-31 12:56 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
    2016-05-26 16:41 - 2015-12-31 12:56 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
    2016-05-26 16:41 - 2015-12-31 12:56 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
    2016-05-26 16:41 - 2015-12-31 12:56 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
    2016-05-26 06:57 - 2016-05-04 01:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
    2016-05-26 06:17 - 2015-12-26 13:21 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\VirtualStore
    2016-05-23 10:54 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
    2016-05-23 00:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\setup
    2016-05-23 00:37 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
    2016-05-19 05:23 - 2015-12-26 13:21 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\Packages
    2016-05-12 08:32 - 2015-07-25 10:53 - 00000000 __RHD C:\Users\Public\AccountPictures
    2016-05-12 00:17 - 2015-10-30 20:08 - 00000000 ____D C:\Program Files\Windows Journal
    2016-05-12 00:17 - 2015-10-30 09:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
    2016-05-12 00:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
    2016-05-12 00:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
    2016-05-12 00:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
    2016-05-12 00:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
    2016-05-11 21:57 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
    2016-05-11 21:57 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
    2016-05-11 07:51 - 2015-12-26 15:39 - 00000000 ____D C:\WINDOWS\system32\MRT
    2016-05-11 07:49 - 2015-12-26 15:39 - 139319312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

    ==================== Bestanden in de root van sommige mappen =======

    2016-02-24 20:07 - 2016-02-24 20:07 - 0000042 _____ () C:\Users\bm.silverlake\AppData\Roaming\WB.CFG
    2016-06-03 21:15 - 2016-06-03 21:15 - 0000218 _____ () C:\Users\bm.silverlake\AppData\Local\recently-used.xbel
    2016-01-22 09:08 - 2016-01-22 09:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
    2015-08-19 15:17 - 2015-08-19 15:17 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
    2015-08-19 15:16 - 2015-08-19 15:17 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
    2015-08-19 15:17 - 2015-08-19 15:17 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
    2015-08-19 15:16 - 2015-08-19 15:16 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
    2015-08-19 15:17 - 2015-08-19 15:17 - 0000110 _____ () C:\ProgramData\{E3D04529-6EDB-11D8-A372-0050BAE317E1}.log

    ==================== Bamital & volsnap =================

    (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

    C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
    C:\WINDOWS\system32\wininit.exe => Bestand is getekend
    C:\WINDOWS\explorer.exe => Bestand is getekend
    C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
    C:\WINDOWS\system32\svchost.exe => Bestand is getekend
    C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
    C:\WINDOWS\system32\services.exe => Bestand is getekend
    C:\WINDOWS\system32\User32.dll => Bestand is getekend
    C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
    C:\WINDOWS\system32\userinit.exe => Bestand is getekend
    C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
    C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
    C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
    C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
    C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend


    LastRegBack: 2016-06-03 10:12

    ==================== Eind van FRST.txt ============================

     

     

    Deel dit bericht


    Link naar bericht
    Delen op andere sites
  • Topicstarter
  •    1

    Logje no 2

     

     

     

     

    Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie:05-06-2016 02
    Gestart door bm.silverlake (2016-06-06 11:10:50)
    Gestart vanaf C:\Users\bm.silverlake\Desktop
    Windows 10 Home Versie 1511 (X64) (2016-01-22 07:12:51)
    Boot Modus: Normal
    ==========================================================


    ==================== Accounts: =============================

    Administrator (S-1-5-21-775628570-3588427518-1694689872-500 - Administrator - Disabled)
    bm.silverlake (S-1-5-21-775628570-3588427518-1694689872-1003 - Administrator - Enabled) => C:\Users\bm.silverlake
    DefaultAccount (S-1-5-21-775628570-3588427518-1694689872-503 - Limited - Disabled)
    Gast (S-1-5-21-775628570-3588427518-1694689872-501 - Limited - Disabled)

    ==================== Security Center ========================

    (Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

    AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
    FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

    ==================== Geïnstalleerde programma's ======================

    (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

    µTorrent (HKU\S-1-5-21-775628570-3588427518-1694689872-1003\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
    Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
    Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software)
    CyberLink Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
    Intel® Chipset Device Software (x32 Version: 10.1.1.7 - Intel® Corporation) Hidden
    Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
    Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
    Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
    Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Mozilla Firefox 46.0.1 (x86 nl) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 nl)) (Version: 46.0.1 - Mozilla)
    Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla)
    NVIDIA 3D Vision stuurprogramma 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.62 - NVIDIA Corporation)
    NVIDIA Grafisch stuurprogramma 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.62 - NVIDIA Corporation)
    NVIDIA HD Audio-stuurprogramma 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
    NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
    NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
    OpenOffice 4.1.2 (HKLM-x32\...\{E6AD67BB-1C33-4AB3-A387-E0D48137AB70}) (Version: 4.12.9782 - Apache Software Foundation)
    Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7543 - Realtek Semiconductor Corp.)
    VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

    ==================== Aangepaste CLSID (gefilterd): ==========================

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

    CustomCLSID: HKU\S-1-5-21-775628570-3588427518-1694689872-1003_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation)

    ==================== Geplande Taken (gefilterd) =============

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

    Task: {05473588-653D-4676-8EBB-2E5420BE786A} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe [2015-06-03] (CyberLink Corp.)
    Task: {44F7C9A7-00F1-4FE9-A6C2-C75FA87A3487} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation)
    Task: {58A7210B-E2DD-40E0-8251-762E993D24E6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-05-26] (AVAST Software)
    Task: {9782DA2D-A48C-455B-9FFB-131CB3CD855E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13] (Adobe Systems Incorporated)

    (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

    Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

    ==================== Snelkoppelingen =============================

    (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

    ==================== Geladen Modules (gefilterd) ==============

    2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
    2016-01-22 09:08 - 2015-07-23 03:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
    2016-04-13 09:30 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
    2016-04-13 09:30 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
    2016-01-22 09:05 - 2016-01-22 09:05 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
    2016-05-11 07:28 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
    2016-05-11 07:28 - 2016-04-23 06:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
    2016-05-11 07:28 - 2016-04-23 05:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
    2016-05-11 07:28 - 2016-04-23 05:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
    2016-05-11 07:28 - 2016-04-23 06:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
    2016-06-03 06:54 - 2016-06-03 06:54 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
    2016-06-03 06:54 - 2016-06-03 06:54 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
    2016-06-03 06:54 - 2016-06-03 06:54 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
    2016-03-04 04:34 - 2016-03-04 04:34 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
    2016-05-26 16:41 - 2016-05-26 16:41 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
    2016-05-26 16:41 - 2016-05-26 16:41 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
    2016-06-05 19:20 - 2016-06-05 19:20 - 02923008 _____ () C:\Program Files\AVAST Software\Avast\defs\16060501\algo.dll
    2016-05-26 16:41 - 2016-05-26 16:41 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll
    2016-05-26 16:41 - 2016-05-26 16:41 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
    2015-08-19 15:17 - 2014-12-08 09:28 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
    2014-12-08 17:28 - 2014-12-08 17:28 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
    2015-12-31 12:56 - 2015-12-31 12:56 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
    2015-06-24 03:07 - 2015-06-24 03:07 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

    ==================== Alternate Data Streams (gefilterd) =========

    (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)


    ==================== Veilige Modus (gefilterd) ===================

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)


    ==================== Bestandskoppeling (gefilterd) ===============

    (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


    ==================== Internet Explorer vertrouwde/beperkte toegang ===============

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)


    ==================== Hosts inhoud: ===============================

    (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

    2015-07-10 13:04 - 2016-02-24 18:35 - 00000828 ____A C:\WINDOWS\system32\Drivers\etc\hosts


    ==================== Andere gebieden ============================

    (Momenteel is er geen automatische fix voor dit onderdeel.)

    HKU\S-1-5-21-775628570-3588427518-1694689872-1003\Control Panel\Desktop\\Wallpaper -> c:\users\bm.silverlake\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{da0df3ac-0694-45e2-ab7b-6288a6842540}.jpg
    DNS Servers: 192.168.1.254
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
    Windows Firewall is ingeschakeld.

    ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

    (Momenteel is er geen automatische fix voor dit onderdeel.)


    ==================== Firewall regels (gefilterd) ===============

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

    FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
    FirewallRules: [{FA0F7155-B0F9-4719-B763-76ACB5B0C3CC}] => (Allow) C:\Users\bm.silverlake\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{BCCF532A-175B-4567-B11B-D7AFDB4F498F}] => (Allow) C:\Users\bm.silverlake\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{4376C002-AB9C-4F4E-8C77-BC736C4CF6E2}] => (Allow) C:\Users\bm.silverlake\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{D7C71CA3-43B8-4A5B-BC90-5BC9C022E1A8}] => (Allow) C:\Users\bm.silverlake\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{858A47E7-0934-4F85-9549-A0E346043DAD}] => (Allow) C:\Users\bm.silverlake\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{656D74F8-9682-4BEF-AAB9-291140FA6EED}] => (Allow) C:\Users\bm.silverlake\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{ED61B607-E9C0-49D9-A927-CBD9457FD9A5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    FirewallRules: [{AB231573-8A6F-455B-9621-609D419C6CF8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
    FirewallRules: [TCP Query User{39753F54-4227-4731-A63F-F3C1928D85EE}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
    FirewallRules: [uDP Query User{FC1495CD-2B88-40D1-8FE8-7F9CD33263F2}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
    FirewallRules: [{11F91129-EBA0-4681-BCA0-5BCF35C754A6}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
    FirewallRules: [{F4ABA7E6-6880-4783-8902-E0FFE3615F8E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe

    ==================== Herstelpunten =========================

    06-06-2016 07:43:11 zoek.exe restore point

    ==================== Defecte Apparaatbeheer Apparaten =============


    ==================== Eventlog fouten: =========================

    Applicatiefouten:
    ==================
    Error: (06/06/2016 07:43:13 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
    Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.

    Details:
    AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

    System Error:
    Toegang geweigerd.
    .

    Error: (06/05/2016 12:54:14 AM) (Source: Perflib) (EventID: 1008) (User: )
    Description: BITSC:\Windows\System32\bitsperf.dll8

    Error: (06/03/2016 10:53:51 PM) (Source: Perflib) (EventID: 1008) (User: )
    Description: BITSC:\Windows\System32\bitsperf.dll8

    Error: (06/01/2016 11:46:19 PM) (Source: Perflib) (EventID: 1008) (User: )
    Description: BITSC:\Windows\System32\bitsperf.dll8

    Error: (05/31/2016 12:08:50 AM) (Source: Perflib) (EventID: 1008) (User: )
    Description: BITSC:\Windows\System32\bitsperf.dll8

    Error: (05/29/2016 10:09:06 AM) (Source: Perflib) (EventID: 1008) (User: )
    Description: BITSC:\Windows\System32\bitsperf.dll8

    Error: (05/28/2016 08:15:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-SN725PG)
    Description: Het pakket Microsoft.Windows.ShellExperienceHost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy+App is beëindigd omdat het onderbreken te lang duurde.

    Error: (05/28/2016 12:41:01 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Naam van toepassing met fout: ShellExperienceHost.exe, versie: 10.0.10586.306, tijdstempel: 0x571afaa5
    Naam van module met fout: JumpViewUI.dll, versie: 10.0.10586.306, tijdstempel: 0x571af742
    Uitzonderingscode: 0xc0000005
    Foutmarge: 0x000000000004404d
    Id van proces met fout: 0x182c
    Starttijd van toepassing met fout: 0xShellExperienceHost.exe0
    Pad naar toepassing met fout: ShellExperienceHost.exe1
    Pad naar module met fout: ShellExperienceHost.exe2
    Rapport-id: ShellExperienceHost.exe3
    Volledige pakketnaam met fout: ShellExperienceHost.exe4
    Relatieve toepassings-id van pakket met fout: ShellExperienceHost.exe5

    Error: (05/28/2016 12:40:48 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Naam van toepassing met fout: ShellExperienceHost.exe, versie: 10.0.10586.306, tijdstempel: 0x571afaa5
    Naam van module met fout: JumpViewUI.dll, versie: 10.0.10586.306, tijdstempel: 0x571af742
    Uitzonderingscode: 0xc0000005
    Foutmarge: 0x000000000004404d
    Id van proces met fout: 0x1970
    Starttijd van toepassing met fout: 0xShellExperienceHost.exe0
    Pad naar toepassing met fout: ShellExperienceHost.exe1
    Pad naar module met fout: ShellExperienceHost.exe2
    Rapport-id: ShellExperienceHost.exe3
    Volledige pakketnaam met fout: ShellExperienceHost.exe4
    Relatieve toepassings-id van pakket met fout: ShellExperienceHost.exe5

    Error: (05/27/2016 11:22:54 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Naam van toepassing met fout: ShellExperienceHost.exe, versie: 10.0.10586.306, tijdstempel: 0x571afaa5
    Naam van module met fout: JumpViewUI.dll, versie: 10.0.10586.306, tijdstempel: 0x571af742
    Uitzonderingscode: 0xc0000005
    Foutmarge: 0x000000000004404d
    Id van proces met fout: 0x210
    Starttijd van toepassing met fout: 0xShellExperienceHost.exe0
    Pad naar toepassing met fout: ShellExperienceHost.exe1
    Pad naar module met fout: ShellExperienceHost.exe2
    Rapport-id: ShellExperienceHost.exe3
    Volledige pakketnaam met fout: ShellExperienceHost.exe4
    Relatieve toepassings-id van pakket met fout: ShellExperienceHost.exe5


    Systeemfouten:
    =============
    Error: (06/06/2016 08:37:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: De Host synchroniseren_43df2-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

    Error: (06/06/2016 08:37:11 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: toepassingsspecifiekLokaalActiveren{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)Niet beschikbaarNiet beschikbaar

    Error: (06/06/2016 08:27:06 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Host synchroniseren_3e93f.

    Error: (06/06/2016 08:26:56 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: De Host synchroniseren_3e93f-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

    Error: (06/06/2016 08:26:56 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: toepassingsspecifiekLokaalActiveren{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)Niet beschikbaarNiet beschikbaar

    Error: (06/06/2016 07:53:43 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: De Host synchroniseren_35879e8-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

    Error: (06/06/2016 07:53:43 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: toepassingsspecifiekLokaalActiveren{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)Niet beschikbaarNiet beschikbaar

    Error: (06/06/2016 07:50:48 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
    Description: De PEVSystemStart-service staat aangeduid als een interactieve service. Het systeem is echter zodanig geconfigureerd dat interactieve services niet zijn toegestaan. Deze service werkt mogelijk niet juist.

    Error: (06/06/2016 07:50:48 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
    Description: De PEVSystemStart-service staat aangeduid als een interactieve service. Het systeem is echter zodanig geconfigureerd dat interactieve services niet zijn toegestaan. Deze service werkt mogelijk niet juist.

    Error: (06/06/2016 07:50:47 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
    Description: De PEVSystemStart-service staat aangeduid als een interactieve service. Het systeem is echter zodanig geconfigureerd dat interactieve services niet zijn toegestaan. Deze service werkt mogelijk niet juist.


    CodeIntegrity:
    ===================================
      Date: 2016-05-23 00:40:57.891
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-05-14 15:51:45.797
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-05-12 14:29:06.810
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-05-12 08:28:48.214
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-05-11 15:18:30.260
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-04-14 13:32:11.786
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-04-14 05:31:50.315
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-04-13 13:36:20.931
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-03-23 09:07:34.379
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

      Date: 2016-03-13 10:10:04.674
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


    ==================== Geheugen info ===========================

    Processor: Intel® Core i7-4790 CPU @ 3.60GHz
    Percentage geheugen in gebruik: 17%
    Totaal fysiek RAM-geheugen: 12225.37 MB
    Beschikbaar fysiek RAM-geheugen: 10117.18 MB
    Totaal Virtueel geheugen: 14081.37 MB
    Beschikbaar Virtual geheugen: 11862.63 MB

    ==================== Schijven ================================

    Drive c: (Boot) (Fixed) (Total:117.53 GB) (Free:86.81 GB) NTFS
    Drive d: (Data) (Fixed) (Total:1803.02 GB) (Free:1800.92 GB) NTFS
    Drive e: (Recover) (Fixed) (Total:60 GB) (Free:41.6 GB) NTFS

    ==================== MBR & Partitietabel ==================

    ========================================================
    Disk: 0 (Size: 119.2 GB) (Disk ID: FFE190C0)

    Partition: GPT.

    ========================================================
    Disk: 1 (Size: 1863 GB) (Disk ID: 910247B4)

    Partition: GPT.

    ==================== Eind van Addition.txt ============================

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

    Hallo,

     

    In de logjes is niks raars te zien doe  het volgende;

     

    1.

    Met het onderstaande tooltje ruim je o.a. alle gebruikte tools op:

     

    Download 51a5ce45263de-delfix.pngDelfix - Alternatieve downloadlink by Xplode naar het bureaublad.

     

    Dubbelklik op Delfix.exe om de tool te starten.

    Zet nu vinkjes voor de volgende items:

    • Remove disinfection tools
    • Create registry backup
    • Purge System Restore

    Klik nu op "Run" en wacht geduldig tot de tool gereed is.

    Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft je echter niet te plaatsen.

    Start je pc hierna opnieuw op, mochten er nog programma's of log bestanden aanwezig zijn mag je die handmatig verwijderen.

     

     

    2. Download 51a72c6334c99-ccleaner16.pngCCleaner naar het bureaublad.

    Installeer CCleaner en start CCleaner op.

    • Klik in de linker kolom op Cleaner.
    • Klik achtereenvolgens op Analyseren en Schoonmaken.
    • Klik vervolgens in de linker kolom op Register en klik op Scan naar problemen.
    • Als er fouten gevonden worden klik je op Herstel geselecteerde problemen en OK.
    • Dan krijg je de vraag om een back-up te maken, klik op JA. en kies dan Herstel alle geselecteerde fouten.
    • Sluit hierna CCleaner af.

     

    Vertel hoe het hierna gaat?

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

  • Topicstarter
  •    1

    Heb goed nieuws en slecht nieuws.

     

    Het goede is dat er nu inderdaad  2 gb terug is van de 3 verdwenen gb's , de teller staat nu op 88,7 gb in plaats van op 86 gb.

     

    Dan is er nog ergens 1 niet helemaal verwijderd.

     

     

    het slechte nieuws is dat het mij lukte om dat VPN uit te schakelen,maar ht schakelt zichzelf ook weer aan, en dan heb ik die bleutooth instelling ook weer aan.

     

     

     

     

    Is dat VPN standaard met windows 10 meegeleverd/er onderdeel van windows 10? of is het een los iets,dat ik eraf kan gooien?

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

    Logo

    OVER ONS

    PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

    ×
    ×
    • Nieuwe aanmaken...

    Belangrijke informatie

    We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.