Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

high CPU spikes


  • Please log in to reply

#1
Henkgezicht

Henkgezicht

    New Member

  • Member
  • Pip
  • 1 posts

Hi all,

 

As I'm completely new here, and I'm not quite sure whether this is the right place to post this, please redirect me to the correct area if I'm wrong. 

 

My question:

 

Since yesterday my laptop has drastically decreased performance, games didn't run as smoothly as they use too, and my laptop frequently freezes. After looking through all the processes I found that node.js used a great amount of CPU. After googling what it is, I actually came across this site, seeing someone else had the same issue. Since his problem was a program that I don't have, I'm pretty sure the help provided there doesn't apply to me. Furthermore, even after terminating node I still have frequent CPU spikes. Even my chrome froze several times when typing my question.

 

The topic I mentioned did however suggest running a Farbar recovery scan tool, you'll find my logs below.

 

Since this happend over a day, I have no clue how this happend. I would highly appriciate any help. (please take into consideration I'm not that great with computers, just basic/general knowledge) Is there any solution to my problem? 

 

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie:13-06-2016
Gestart door Rowan (Beheerder) op ROWAN-ASUS (13-06-2016 22:52:38)
Gestart vanaf C:\Users\Rowan\Downloads
Geladen Profielen: Rowan (Beschikbare Profielen: Rowan)
Platform: Windows 10 Home Versie 1511 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: Chrome)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processen (gefilterd) =================
 
(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(F-Secure Corporation) C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(F-Secure Corporation) C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(F-Secure Corporation) C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE
(F-Secure Corporation) C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSHDLL64.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Spotify Ltd) C:\Users\Rowan\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATILGE.EXE
(F-Secure Corporation) C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(F-Secure Corporation) C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\fsgk32.exe
(F-Secure Corporation) C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\fssm32.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSPanel.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Register (gefilterd) ===========================
 
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
 
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [114048 2013-10-18] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [63296 2014-08-20] ()
HKLM-x32\...\Run: [F-Secure Manager] => C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE [310312 2015-10-08] (F-Secure Corporation)
HKLM-x32\...\Run: [F-Secure Hoster (45123)] => C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe [187432 2014-07-08] (F-Secure Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23972712 2016-05-31] (Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-799755118-484934018-984176578-1001\...\Run: [Spotify Web Helper] => C:\Users\Rowan\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-05-31] (Spotify Ltd)
HKU\S-1-5-21-799755118-484934018-984176578-1001\...\Run: [Spotify] => C:\Users\Rowan\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-05-31] (Spotify Ltd)
HKU\S-1-5-21-799755118-484934018-984176578-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE [297024 2014-12-03] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-799755118-484934018-984176578-1001\...\RunOnce: [Uninstall C:\Users\Rowan\AppData\Local\Microsoft\OneDrive\17.3.6301.0127_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Rowan\AppData\Local\Microsoft\OneDrive\17.3.6301.0127_1\amd64"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
Startup: C:\Users\Rowan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Slack.lnk [2016-06-13]
ShortcutTarget: Slack.lnk -> C:\Users\Rowan\AppData\Local\slack\Update.exe ()
 
==================== Internet (gefilterd) ====================
 
(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)
 
Tcpip\Parameters: [DhcpNameServer] 84.116.46.21 84.116.46.20
Tcpip\..\Interfaces\{1143e71b-57b0-4b60-b5da-148b8c14c7a1}: [DhcpNameServer] 84.116.46.21 84.116.46.20
Tcpip\..\Interfaces\{cb034b9f-54ec-4d9f-855a-cc9639d9440c}: [DhcpNameServer] 84.116.46.21 84.116.46.20
 
Internet Explorer:
==================
HKU\S-1-5-21-799755118-484934018-984176578-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-799755118-484934018-984176578-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-05-26] (Microsoft Corporation)
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https64.dll [2016-05-09] (F-Secure Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-05-26] (Microsoft Corporation)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll [2016-05-09] (F-Secure Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-05-26] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-05-26] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-05-26] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-05-26] (Microsoft Corporation)
 
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-05-26] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: Browsing Protection by F-Secure - C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi [2016-05-09]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi
 
Chrome: 
=======
CHR Profile: C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Presentaties) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-05]
CHR Extension: (Google Documenten) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Google Drive) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Google Spreadsheets) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-05]
CHR Extension: (Offline Documenten) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-02]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2016-05-09]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Rowan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - C:/Program Files (x86)/Internetbeveiliging/apps/CCF_Scanning/bin/browser/install/fs_chrome_https/fs_chrome_https.crx [2014-06-25]
 
==================== Services (gefilterd) ========================
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [504320 2015-10-30] (Microsoft Corporation) [Bestand niet getekend]
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [Bestand niet getekend]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1314848 2016-01-19] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2945792 2016-05-26] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-11-29] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-11-29] (Dropbox, Inc.)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation)
R2 fshoster; C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe [187432 2014-07-08] (F-Secure Corporation)
R3 FSMA; C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE [216104 2015-10-08] (F-Secure Corporation)
R2 FSORSPClient; C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe [60456 2015-03-09] (F-Secure Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373160 2015-12-19] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel® Corporation) [Bestand niet getekend]
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [200240 2016-05-25] (Microsoft Corporation) [Bestand niet getekend]
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1289968 2016-05-29] (Overwolf LTD)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
 
===================== Drivers (gefilterd) ==========================
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4325544 2015-06-26] (Qualcomm Atheros Communications, Inc.)
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [219128 2016-02-24] (F-Secure Corporation)
R1 F-Secure HIPS; C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\HIPS\drivers\fshs.sys [106696 2016-06-02] (F-Secure Corporation)
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [75448 2016-01-12] ()
R3 fsni; C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Scanning\bin\fsni64.sys [110272 2016-05-09] (F-Secure Corporation)
R1 fsvista; C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [13352 2015-10-08] ()
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
 
==================== NetSvcs (gefilterd) ===================
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
 
==================== Een Maand Aangemaakt bestanden en mappen ========
 
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
 
2016-06-13 22:52 - 2016-06-13 22:53 - 00025287 _____ C:\Users\Rowan\Downloads\FRST.txt
2016-06-13 22:52 - 2016-06-13 22:52 - 02385920 _____ (Farbar) C:\Users\Rowan\Downloads\FRST64.exe
2016-06-13 22:52 - 2016-06-13 22:52 - 00000000 ____D C:\FRST
2016-06-13 22:51 - 2016-06-13 22:51 - 01736192 _____ (Farbar) C:\Users\Rowan\Downloads\FRST (1).exe
2016-06-13 22:50 - 2016-06-13 22:50 - 01736192 _____ (Farbar) C:\Users\Rowan\Downloads\FRST.exe
2016-06-13 22:34 - 2016-06-13 22:34 - 00003646 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2016-06-13 22:32 - 2016-06-13 22:34 - 00000614 _____ C:\DelFix.txt
2016-06-13 22:32 - 2016-06-13 22:32 - 00000000 ____D C:\WINDOWS\ERUNT
2016-06-13 20:50 - 2016-06-13 20:51 - 207340008 _____ (Intel Corporation) C:\Users\Rowan\Downloads\win64_154022.4424 (1).exe
2016-06-13 20:49 - 2016-06-13 20:49 - 207340008 _____ (Intel Corporation) C:\Users\Rowan\Downloads\win64_154022.4424.exe
2016-06-13 20:40 - 2016-06-13 21:04 - 00000000 ____D C:\Users\Rowan\AppData\Local\FSDART
2016-06-13 18:58 - 2016-06-13 21:58 - 00000941 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {40593294-2FE0-4F67-AFE1-5BFBA861C35D}.job
2016-06-13 18:58 - 2016-06-13 19:32 - 00000755 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {40593294-2FE0-4F67-AFE1-5BFBA861C35D}.job
2016-06-13 18:58 - 2016-06-13 18:58 - 00004146 _____ C:\WINDOWS\System32\Tasks\EPSON XP-215 217 Series Update {40593294-2FE0-4F67-AFE1-5BFBA861C35D}
2016-06-13 18:58 - 2016-06-13 18:58 - 00003968 _____ C:\WINDOWS\System32\Tasks\EPSON XP-215 217 Series Invitation {40593294-2FE0-4F67-AFE1-5BFBA861C35D}
2016-06-13 18:51 - 2016-06-13 18:51 - 00000000 ___HD C:\OneDriveTemp
2016-06-12 18:04 - 2016-06-12 18:04 - 00076921 _____ C:\Users\Rowan\Downloads\Warcraft- The Beginning.pdf
2016-06-11 00:58 - 2016-06-11 00:58 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-06-11 00:58 - 2016-06-11 00:58 - 00001216 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-06-09 15:24 - 2016-06-13 22:26 - 00000000 ____D C:\Users\Rowan\AppData\Roaming\Slack
2016-06-09 15:24 - 2016-06-09 15:24 - 00002209 _____ C:\Users\Rowan\Desktop\Slack.lnk
2016-06-09 15:24 - 2016-06-09 15:24 - 00000000 ____D C:\Users\Rowan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2016-06-09 15:24 - 2016-06-09 15:24 - 00000000 ____D C:\Users\Rowan\AppData\Local\slack
2016-06-09 15:23 - 2016-06-09 15:24 - 00000000 ____D C:\Users\Rowan\AppData\Local\SquirrelTemp
2016-06-09 15:20 - 2016-06-09 15:23 - 59231712 _____ (Slack Technologies) C:\Users\Rowan\Downloads\SlackSetup.exe
2016-06-09 00:00 - 2016-06-09 00:06 - 00000000 ____D C:\Users\Rowan\AppData\LocalLow\uTorrent
2016-06-09 00:00 - 2016-06-09 00:03 - 00000000 ____D C:\Users\Rowan\Downloads\30 Days of Night (2007) [1080p]
2016-06-09 00:00 - 2016-06-09 00:00 - 00017420 _____ C:\Users\Rowan\Downloads\[kat.cr]30.days.of.night.2007.1080p.brrip.x264.1.50gb.yify.torrent
2016-06-08 18:43 - 2016-06-13 18:56 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-06-08 18:43 - 2016-06-13 18:56 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-06-08 18:43 - 2016-06-08 18:43 - 00003976 _____ C:\WINDOWS\System32\Tasks\Update Checker
2016-06-07 16:14 - 2016-06-07 16:14 - 00579703 _____ C:\Users\Rowan\Downloads\Eerste algemene aandachtspunten community management Woov - 18052016 (00000002).pptx
2016-06-06 23:47 - 2016-06-06 23:47 - 00017561 _____ C:\Users\Rowan\Downloads\[kat.cr]the.sum.of.all.fears.2002.720p.brrip.x264.750mb.yify.torrent
2016-06-06 23:47 - 2016-06-06 23:47 - 00000000 ____D C:\Users\Rowan\Downloads\The Sum of All Fears (2002)
2016-06-06 23:38 - 2016-06-06 23:38 - 00000000 ____D C:\Users\Rowan\Downloads\Thirteen Days (2000) 720p BRrip scOrp
2016-06-06 23:37 - 2016-06-06 23:37 - 00023265 _____ C:\Users\Rowan\Downloads\[kat.cr]thirteen.days.2000.720p.brrip.scorp.torrent
2016-06-05 22:26 - 2016-06-05 22:26 - 03878112 _____ (Husdawg, LLC) C:\Users\Rowan\Downloads\Detection.exe
2016-06-03 23:01 - 2016-06-03 23:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-06-01 21:20 - 2016-06-01 21:20 - 03042661 _____ C:\Users\Rowan\Downloads\passanten-segment_msz_sjabloon_20140101-v20140407.xlsx
2016-05-30 22:36 - 2016-05-30 22:36 - 00000000 ____D C:\Users\Rowan\AppData\Roaming\PDAppFlex
2016-05-26 23:54 - 2016-05-26 23:54 - 01111982 _____ C:\Users\Rowan\Downloads\Leonie Festival content Nederland klaar.xlsx
2016-05-25 18:40 - 2016-05-25 18:40 - 00008474 _____ C:\Users\Rowan\Downloads\Loonafrekening_2522293.pdf
2016-05-24 15:16 - 2016-05-24 15:16 - 00003644 _____ C:\WINDOWS\System32\Tasks\[email protected]
2016-05-16 19:52 - 2016-06-07 15:28 - 00000034 _____ C:\Users\Rowan\AppData\Roaming\AdobeWLCMCache.dat
2016-05-16 19:52 - 2016-06-02 00:03 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-05-16 19:52 - 2016-05-16 19:52 - 00002199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015.lnk
2016-05-16 19:52 - 2016-05-16 19:52 - 00000000 ____D C:\Users\Rowan\AppData\LocalLow\Adobe
2016-05-16 19:52 - 2016-05-16 19:52 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-05-16 19:46 - 2016-06-13 22:28 - 00000000 ___RD C:\Users\Rowan\Creative Cloud Files
2016-05-16 19:46 - 2016-06-13 21:09 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-05-16 19:46 - 2016-05-16 19:46 - 00000000 ____D C:\Program Files\Adobe
2016-05-16 19:42 - 2016-06-11 00:59 - 00000000 ____D C:\ProgramData\Adobe
2016-05-16 19:42 - 2016-06-11 00:58 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-05-16 19:38 - 2016-06-13 22:28 - 00000000 ____D C:\Users\Rowan\AppData\Local\Adobe
2016-05-16 19:37 - 2016-05-16 19:38 - 00692416 _____ (Adobe Systems Incorporated) C:\Users\Rowan\Downloads\CreativeCloudSet-Up.exe
2016-05-16 16:22 - 2016-05-16 16:23 - 00291820 _____ C:\WINDOWS\Minidump\051616-43671-01.dmp
 
==================== Een Maand Gewijzigd bestanden en mappen ========
 
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
 
2016-06-13 22:35 - 2015-01-26 21:44 - 00001086 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-13 22:29 - 2015-11-29 21:24 - 00001034 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-06-13 22:26 - 2015-11-29 21:28 - 00000000 ___RD C:\Users\Rowan\Dropbox
2016-06-13 22:26 - 2015-02-02 00:33 - 00000000 ____D C:\Users\Rowan\AppData\Roaming\Spotify
2016-06-13 22:25 - 2016-02-24 22:56 - 00000000 ____D C:\Users\Rowan
2016-06-13 22:25 - 2016-02-24 22:51 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-06-13 22:25 - 2015-11-29 21:24 - 00001030 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-06-13 22:25 - 2015-03-16 21:10 - 00000000 ____D C:\Users\Rowan\Desktop\Games
2016-06-13 22:25 - 2015-02-02 00:34 - 00000000 ____D C:\Users\Rowan\AppData\Local\Spotify
2016-06-13 22:25 - 2015-01-26 21:44 - 00001082 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-13 22:25 - 2015-01-26 21:38 - 00000000 ___RD C:\Users\Rowan\OneDrive
2016-06-13 22:25 - 2015-01-26 21:36 - 00000093 _____ C:\Users\Rowan\AppData\Roaming\sp_data.sys
2016-06-13 22:25 - 2015-01-26 21:34 - 00000000 __SHD C:\Users\Rowan\IntelGraphicsProfiles
2016-06-13 22:17 - 2016-02-23 20:17 - 00000941 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {77F7683F-6983-44F0-8C51-77F52A8C11DA}.job
2016-06-13 22:17 - 2016-02-23 20:17 - 00000755 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {77F7683F-6983-44F0-8C51-77F52A8C11DA}.job
2016-06-13 22:16 - 2015-02-07 20:39 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-13 22:09 - 2015-02-01 16:54 - 00000000 ____D C:\Users\Rowan\AppData\Local\Battle.net
2016-06-13 22:09 - 2015-02-01 16:54 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-06-13 21:36 - 2015-02-01 16:55 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2016-06-13 21:04 - 2016-02-24 23:19 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-13 20:45 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-13 18:55 - 2015-01-26 21:42 - 00004184 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{241F5226-351B-4520-A7C9-6C2C92B58F99}
2016-06-11 22:07 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-06-11 22:02 - 2014-10-29 08:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-06-11 21:51 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-11 21:46 - 2015-01-27 23:18 - 00000000 ____D C:\Users\Rowan\AppData\Roaming\Skype
2016-06-11 17:58 - 2016-04-03 02:00 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-11 17:58 - 2014-10-29 08:25 - 00000000 ____D C:\ProgramData\Skype
2016-06-11 16:41 - 2015-01-26 21:34 - 00000000 ____D C:\Users\Rowan\AppData\Local\Packages
2016-06-11 15:06 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-11 00:59 - 2015-01-26 21:34 - 00000000 ____D C:\Users\Rowan\AppData\Roaming\Adobe
2016-06-11 00:58 - 2014-10-29 08:25 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-10 11:02 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-09 16:23 - 2016-04-14 16:23 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-06-09 13:58 - 2016-02-24 23:12 - 01847504 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-09 13:58 - 2015-10-30 20:05 - 00826284 _____ C:\WINDOWS\system32\perfh013.dat
2016-06-09 13:58 - 2015-10-30 20:05 - 00162416 _____ C:\WINDOWS\system32\perfc013.dat
2016-06-09 13:52 - 2016-02-24 22:46 - 00355520 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-09 13:51 - 2016-05-01 22:38 - 00000000 ____D C:\Users\Rowan\AppData\Roaming\uTorrent
2016-06-08 23:38 - 2015-01-26 21:44 - 00002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-08 23:38 - 2015-01-26 21:44 - 00002282 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-08 18:43 - 2016-02-24 22:52 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-06-08 18:43 - 2014-10-29 08:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-06-07 17:33 - 2016-03-17 17:48 - 00000000 ____D C:\Users\Rowan\Desktop\Woov
2016-06-03 23:02 - 2015-11-29 21:24 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-05-30 17:12 - 2016-02-27 15:14 - 00000000 ____D C:\Users\Rowan\Desktop\twitter werk
2016-05-30 11:19 - 2015-02-09 18:47 - 00000000 ____D C:\Users\Rowan\Desktop\Internship
2016-05-29 21:44 - 2015-06-01 22:32 - 00000000 ____D C:\Users\Rowan\AppData\LocalLow\F-Secure
2016-05-24 19:47 - 2016-02-24 23:32 - 00002423 _____ C:\Users\Rowan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-05-16 16:22 - 2016-03-01 11:21 - 00000000 ____D C:\WINDOWS\Minidump
2016-05-16 16:22 - 2015-01-26 22:03 - 616834889 _____ C:\WINDOWS\MEMORY.DMP
2016-05-15 18:10 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-05-14 17:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-05-14 16:23 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
 
==================== Bestanden in de root van sommige mappen =======
 
2016-05-16 19:52 - 2016-06-07 15:28 - 0000034 _____ () C:\Users\Rowan\AppData\Roaming\AdobeWLCMCache.dat
2015-01-26 21:36 - 2016-06-13 22:25 - 0000093 _____ () C:\Users\Rowan\AppData\Roaming\sp_data.sys
2016-02-24 22:53 - 2016-02-24 22:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-10-29 08:25 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-10-29 08:25 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2014-10-29 08:25 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
 
Sommige bestanden in TEMP:
====================
C:\Users\Rowan\AppData\Local\Temp\Foxit PhantomPDF Updater.exe
C:\Users\Rowan\AppData\Local\Temp\offer-BDD05932-89C4-49DA-B836-2FCCD2D425D2.exe
C:\Users\Rowan\AppData\Local\Temp\utils.dll
 
 
==================== Bamital & volsnap =================
 
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
 
C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
C:\WINDOWS\system32\wininit.exe => Bestand is getekend
C:\WINDOWS\explorer.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
C:\WINDOWS\system32\svchost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
C:\WINDOWS\system32\services.exe => Bestand is getekend
C:\WINDOWS\system32\User32.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
C:\WINDOWS\system32\userinit.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend
 
 
LastRegBack: 2016-06-10 00:07
 
==================== Eind van FRST.txt ============================

  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,012 posts
  • MVP
Get Process Explorer
 
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  
 
View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures
 
 
Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  
 
Wait a full minute then:
 
File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.
 
 
Get the free version of Speccy:
 
http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), 
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top about 10 lines down.) Save the file.  Attach the file to your next post.  (More Reply Options, Choose File, Open, Attach This File)
 

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP