BIJLAGE GING NIET. PROBEER IK OP DEZE MANIER, VERDEELD OVER TWEE BERICHTEN.
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 06.06.2018 01
Gestart door toshiba (Beheerder) op TOSHIBA-PC (14-06-2018 23:30:15)
Gestart vanaf C:\Users\toshiba\Downloads
Geladen Profielen: toshiba (Beschikbare Profielen: toshiba)
Platform: Windows 7 Professional Service Pack 1 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: Chrome)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processen (gefilterd) =================
(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Facebook) C:\Users\toshiba\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(The CefSharp Authors) C:\Users\toshiba\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Register (gefilterd) ===========================
(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
HKU\S-1-5-21-4186936667-2563205542-3891848372-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-4186936667-2563205542-3891848372-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
IFEO\osppsvc.exe: [Debugger] SppExtComObjPatcher.exe
IFEO\sppsvc.exe: [Debugger] SppExtComObjPatcher.exe
Startup: C:\Users\toshiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-10-27]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\toshiba\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
Startup: C:\Users\toshiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk [2017-12-15]
ShortcutTarget: OneNote 2010 Schermopname en Snel starten.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (gefilterd) ====================
(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)
Tcpip\Parameters: [DhcpNameServer] 194.151.228.18 194.151.228.34
Tcpip\..\Interfaces\{F4B2E34A-B564-4B61-9D3A-811D1F82AC09}: [DhcpNameServer] 194.151.228.18 194.151.228.34
Internet Explorer:
==================
HKU\S-1-5-21-4186936667-2563205542-3891848372-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://
www.google.nl/
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-06-13] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-06-13] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: e9dxkcfs.default
FF ProfilePath: C:\Users\toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\e9dxkcfs.default [2018-06-14]
FF Extension: (uBlock Origin) - C:\Users\toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\e9dxkcfs.default\Extensions\
uBlock0@raymondhill.net.xpi [2018-06-13]
FF Extension: (TLS 1.3 gradual roll-out fallback-limit) - C:\Users\toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\e9dxkcfs.default\features\{11dd7e9e-6d00-40f3-910c-ec1fca5b909f}\
tls13-version-fallback-rollout-bug1462099@mozilla.org.xpi [2018-06-11] [Verouderd]
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-06-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-06-13] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-06-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-06-12] (Google Inc.)
FF Plugin-x32: @zylom.com/ZylomGamesPlayer -> C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll [2009-10-23] (Zylom)
Chrome:
=======
CHR Profile: C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default [2018-06-14]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-10]
CHR Extension: (Chrome Media Router) - C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-14]
==================== Services (gefilterd) ====================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-08-15] (Microsoft Corporation)
===================== Drivers (gefilterd) ======================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2012-03-08] (Broadcom Corporation)
S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.)
S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [178216 2012-02-22] (Broadcom Corporation)
S3 bxois; C:\Windows\system32\drivers\bxois.sys [539176 2012-02-22] (Broadcom Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
R3 O2MDRDR; C:\Windows\System32\DRIVERS\o2mdx64.sys [64160 2009-07-13] (O2Micro )
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een Maand Aangemaakt bestanden en mappen ========
(Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.)
2018-06-14 23:30 - 2018-06-14 23:31 - 000009661 _____ C:\Users\toshiba\Downloads\FRST.txt
2018-06-14 23:29 - 2018-06-14 23:30 - 000000000 ____D C:\FRST
2018-06-14 23:29 - 2018-06-14 23:29 - 002413056 _____ (Farbar) C:\Users\toshiba\Downloads\FRST64.exe
2018-06-14 23:26 - 2018-06-14 23:26 - 000012229 _____ C:\Users\toshiba\Documents\TEST LIBRE-OFFICE.ods
2018-06-14 22:27 - 2018-06-14 22:27 - 000000000 ____D C:\Users\toshiba\AppData\Roaming\LibreOffice
2018-06-14 22:24 - 2018-06-14 22:24 - 000000000 ____D C:\ProgramData\Package Cache
2018-06-14 22:23 - 2018-06-14 22:23 - 000001500 _____ C:\Users\Public\Desktop\LibreOffice 6.0.lnk
2018-06-14 22:23 - 2018-06-14 22:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.0
2018-06-14 22:22 - 2018-06-14 22:22 - 000000000 ____D C:\Program Files\LibreOffice
2018-06-14 22:17 - 2018-06-14 22:20 - 273920000 _____ C:\Users\toshiba\Downloads\LibreOffice_6.0.4_Win_x64.msi
2018-06-14 16:26 - 2018-06-14 16:26 - 000002913 _____ C:\Users\toshiba\Documents\defender.txt
2018-06-14 16:13 - 2018-06-14 16:14 - 000047832 _____ (Microsoft Corporation) C:\Users\toshiba\Downloads\Microsoft.WindowsDefender.mp
2018-06-14 15:12 - 2018-06-14 15:12 - 000000000 ____D C:\inetpub
2018-06-13 23:18 - 2018-06-13 23:18 - 015082688 _____ (Microsoft Corporation) C:\Users\toshiba\Downloads\mseinstall(1).exe
2018-06-13 23:07 - 2018-06-13 23:07 - 015082688 _____ (Microsoft Corporation) C:\Users\toshiba\Downloads\mseinstall.exe
2018-06-13 18:15 - 2018-06-13 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft
2018-06-13 18:15 - 2018-06-13 18:15 - 000000000 ____D C:\Users\toshiba\AppData\Roaming\Solvusoft
2018-06-13 18:14 - 2018-06-13 18:20 - 000000000 ____D C:\Program Files\Solvusoft
2018-06-13 18:14 - 2018-06-13 18:14 - 000000000 ____D C:\Program Files (x86)\Solvusoft
2018-06-13 18:13 - 2018-06-13 19:54 - 000000000 ____D C:\ProgramData\Solvusoft
2018-06-13 18:12 - 2018-06-13 18:13 - 023086408 _____ (Solvusoft Corporation) C:\Users\toshiba\Downloads\Setup_WinThruster_2018.exe
2018-06-13 15:42 - 2018-06-13 19:54 - 000000000 ____D C:\Users\toshiba\AppData\LocalLow\Sun
2018-06-13 15:42 - 2018-06-13 15:42 - 000000000 ____D C:\Users\toshiba\AppData\Roaming\Sun
2018-06-13 15:41 - 2018-06-13 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-06-13 15:41 - 2018-06-13 19:54 - 000000000 ____D C:\Program Files\Java
2018-06-13 15:41 - 2018-06-13 15:41 - 000111048 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2018-06-13 15:41 - 2018-06-13 15:41 - 000000000 ____D C:\ProgramData\Oracle
2018-06-13 15:40 - 2018-06-13 15:40 - 071830472 _____ (Oracle Corporation) C:\Users\toshiba\Downloads\jre-8u171-windows-x64.exe
2018-06-13 15:33 - 2018-06-14 16:06 - 000001815 _____ C:\Users\toshiba\Documents\Nieuwe Database.odb
2018-06-13 15:31 - 2018-06-13 19:54 - 000000000 ____D C:\Users\toshiba\AppData\Roaming\OpenOffice
2018-06-13 14:57 - 2018-06-13 20:05 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.5
2018-06-13 14:57 - 2018-06-13 14:57 - 000001120 _____ C:\Users\Public\Desktop\OpenOffice 4.1.5.lnk
2018-06-13 14:56 - 2018-06-13 14:56 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4
2018-06-13 14:50 - 2018-06-13 20:03 - 000000000 ____D C:\Users\toshiba\Desktop\OpenOffice 4.1.5 (nl) Installation Files
2018-06-13 14:49 - 2018-06-13 14:50 - 142170939 _____ C:\Users\toshiba\Downloads\Apache_OpenOffice_4.1.5_Win_x86_install_nl.exe
2018-06-13 13:47 - 2018-06-13 13:47 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2018-06-12 00:21 - 2018-03-14 19:14 - 000135360 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-06-12 00:21 - 2018-03-14 19:09 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-06-12 00:21 - 2018-03-14 15:05 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-06-12 00:21 - 2018-03-14 15:05 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-06-12 00:21 - 2018-03-14 15:05 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-06-12 00:21 - 2018-03-14 15:05 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-06-12 00:21 - 2018-03-14 15:05 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-06-12 00:21 - 2018-03-14 15:05 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-06-12 00:21 - 2018-03-14 15:05 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-06-12 00:21 - 2018-03-14 15:05 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-06-11 01:01 - 2018-06-11 01:05 - 000000000 ____D C:\Program Files (x86)\Zylom Games
2018-06-11 01:01 - 2018-06-11 01:01 - 000511152 _____ C:\Users\toshiba\Downloads\gamesplayerinstall.exe
2018-06-11 01:01 - 2018-06-11 01:01 - 000000000 ____D C:\ProgramData\Zylom
2018-06-11 00:13 - 2018-06-14 14:34 - 000000000 ____D C:\Users\toshiba\AppData\LocalLow\Mozilla
2018-06-11 00:13 - 2018-06-11 00:18 - 000000000 ____D C:\Users\toshiba\AppData\Local\Mozilla
2018-06-11 00:13 - 2018-06-11 00:13 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-06-11 00:13 - 2018-06-11 00:13 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk
2018-06-11 00:13 - 2018-06-11 00:13 - 000000000 ____D C:\Users\toshiba\AppData\Roaming\Mozilla
2018-06-11 00:13 - 2018-06-11 00:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-06-11 00:13 - 2018-06-11 00:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-06-10 23:23 - 2018-06-10 23:23 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-06-10 23:23 - 2018-06-10 23:23 - 000002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-06-10 23:23 - 2018-06-10 23:23 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-06-10 23:23 - 2018-06-10 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-06-10 23:23 - 2018-06-10 23:23 - 000000000 ____D C:\ProgramData\AVAST Software
2018-06-10 23:22 - 2018-06-10 23:23 - 000000000 ____D C:\Program Files\CCleaner
2018-06-10 22:54 - 2018-06-10 23:21 - 015838840 _____ (Piriform Ltd) C:\Users\toshiba\Downloads\ccsetup543.exe
==================== Een Maand Gewijzigd bestanden en mappen ========
(Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.)
2018-06-14 15:12 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2018-06-14 15:12 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\inetsrv
2018-06-14 14:23 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-06-14 06:55 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2018-06-14 06:21 - 2011-04-12 15:00 - 000745674 _____ C:\Windows\system32\perfh013.dat
2018-06-14 06:21 - 2011-04-12 15:00 - 000153594 _____ C:\Windows\system32\perfc013.dat
2018-06-14 06:21 - 2009-07-14 07:13 - 001669560 _____ C:\Windows\system32\PerfStringBackup.INI
2018-06-14 06:17 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-06-14 06:08 - 2009-07-14 06:45 - 000435560 _____ C:\Windows\system32\FNTCACHE.DAT
2018-06-14 06:05 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2018-06-13 23:19 - 2017-10-24 22:59 - 000002198 _____ C:\Windows\epplauncher.mif
2018-06-13 22:49 - 2017-10-25 19:32 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-13 22:49 - 2016-08-21 19:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-06-13 20:04 - 2016-08-21 19:49 - 000000000 ____D C:\Windows\system32\appraiser
2018-06-13 20:04 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-06-13 20:04 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\servicing
2018-06-13 20:04 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\security
2018-06-13 20:03 - 2017-12-02 22:07 - 000000000 ____D C:\Program Files\Lexmark
2018-06-13 20:03 - 2016-08-22 00:36 - 000000000 ___RD C:\Users\Public\Recorded TV
2018-06-13 20:03 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-06-13 20:02 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2018-06-13 19:52 - 2017-10-24 22:44 - 000000000 ____D C:\Users\toshiba
2018-06-13 17:11 - 2017-11-01 20:50 - 000000000 ____D C:\Users\toshiba\AppData\Local\ElevatedDiagnostics
2018-06-13 15:44 - 2017-10-24 22:56 - 000114824 _____ C:\Users\toshiba\AppData\Local\GDIPFONTCACHEV1.DAT
2018-06-12 08:11 - 2017-10-25 19:28 - 000003490 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-06-12 08:11 - 2017-10-25 19:28 - 000003362 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-06-12 01:15 - 2016-08-21 19:11 - 001644228 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-06-11 15:38 - 2009-07-14 06:45 - 000026880 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-06-11 15:38 - 2009-07-14 06:45 - 000026880 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-06-10 23:24 - 2017-10-24 23:30 - 000000000 ____D C:\Windows\Panther
2018-06-10 23:24 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\ModemLogs
2018-05-15 19:38 - 2009-07-14 07:08 - 000032568 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Bamital & volsnap ======================
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
C:\Windows\system32\winlogon.exe => Bestand is getekend
C:\Windows\system32\wininit.exe => Bestand is getekend
C:\Windows\SysWOW64\wininit.exe => Bestand is getekend
C:\Windows\explorer.exe => Bestand is getekend
C:\Windows\SysWOW64\explorer.exe => Bestand is getekend
C:\Windows\system32\svchost.exe => Bestand is getekend
C:\Windows\SysWOW64\svchost.exe => Bestand is getekend
C:\Windows\system32\services.exe => Bestand is getekend
C:\Windows\system32\User32.dll => Bestand is getekend
C:\Windows\SysWOW64\User32.dll => Bestand is getekend
C:\Windows\system32\userinit.exe => Bestand is getekend
C:\Windows\SysWOW64\userinit.exe => Bestand is getekend
C:\Windows\system32\rpcss.dll => Bestand is getekend
C:\Windows\system32\dnsapi.dll => Bestand is getekend
C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend
C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend
LastRegBack: 2018-06-11 00:22
==================== Eind van FRST.txt ============================