Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 10.02.2018 02
Gestart door patri (Beheerder) op PATRICK (11-02-2018 17:56:01)
Gestart vanaf C:\Users\patri\Desktop
Geladen Profielen: patri (Beschikbare Profielen: patri)
Platform: Windows 10 Home Versie 1709 16299.192 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files (x86)\PHotkey\PGFNEXSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsservp.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Program Files (x86)\PHotkey\MsgTranAgt.exe
() C:\Program Files (x86)\PHotkey\MsgTranAgt64.exe
() C:\Program Files (x86)\PHotkey\PHotkey.exe
() C:\Program Files (x86)\PHotkey\Atouch64.exe
() C:\Program Files (x86)\PHotkey\Dolbyosd.exe
() C:\Program Files (x86)\PHotkey\GPMTray.exe
() C:\Program Files (x86)\PHotkey\KeyboardMonitorTool.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
() C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Register (gefilterd) ===========================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16427256 2016-02-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427704 2016-02-18] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-11-06] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [628736 2015-06-16] ()
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3352808 2015-11-06] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [88552 2018-01-31] (Bitdefender)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567936 2018-02-08] (Dropbox, Inc.)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-1405700835-1020330466-823045023-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [1986280 2017-08-04] (TomTom)
HKU\S-1-5-21-1405700835-1020330466-823045023-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [27089080 2018-01-18] (Microsoft Corporation)
HKU\S-1-5-21-1405700835-1020330466-823045023-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [36864 2017-09-29] (Microsoft Corporation)

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 195.130.131.3 195.130.130.3
Tcpip\..\Interfaces\{20197f9f-c37f-4339-9b1e-bfe02c57f129}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{20197f9f-c37f-4339-9b1e-bfe02c57f129}: [DhcpNameServer] 195.130.131.3 195.130.130.3
Tcpip\..\Interfaces\{3a8c7393-7bf2-493a-890a-1063776d34a9}: [DhcpNameServer] 8.8.8.8 8.8.4.4

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-1405700835-1020330466-823045023-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.be/
SearchScopes: HKU\S-1-5-21-1405700835-1020330466-823045023-1001 -> DefaultScope {C006864D-A2A1-4022-A6CB-F456ADA96E27} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-1405700835-1020330466-823045023-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1405700835-1020330466-823045023-1001 -> {AD3F127A-9CFB-4AB9-A714-210570F681A3} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1405700835-1020330466-823045023-1001 -> {C006864D-A2A1-4022-A6CB-F456ADA96E27} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2018-02-02] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2018-01-17] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2018-02-02] (Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2018-01-17] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2018-02-02] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2018-02-02] (Bitdefender)
Toolbar: HKU\S-1-5-21-1405700835-1020330466-823045023-1001 -> Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2018-02-02] (Bitdefender)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-12-16] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-12-16] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-12-16] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-12-16] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: cigy6cmu.default
FF ProfilePath: C:\Users\patri\AppData\Roaming\Mozilla\Firefox\Profiles\cigy6cmu.default [2018-02-11]
FF Homepage: Mozilla\Firefox\Profiles\cigy6cmu.default -> www.google.be
FF Extension: (eID België) - C:\Users\patri\AppData\Roaming\Mozilla\Firefox\Profiles\cigy6cmu.default\Extensions\belgiumeid@eid.belgium.be.xpi [2018-02-04]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff [2017-09-29]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2017-09-29] [Verouderd] [ niet getekend]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-12-16] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation)

Chrome: 
=======
CHR Profile: C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default [2017-09-14]
CHR Extension: (Google Slides) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-07-30]
CHR Extension: (Google Docs) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-30]
CHR Extension: (Google Drive) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-30]
CHR Extension: (YouTube) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-30]
CHR Extension: (Google Sheets) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-07-30]
CHR Extension: (Bitdefender Wallet) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2017-07-30]
CHR Extension: (Google Docs Offline) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-07-30]
CHR Extension: (Gmail) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-30]
CHR Extension: (Chrome Media Router) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-30]
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2090152 2017-08-11] (Bitdefender)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [103584 2018-01-29] (Bitdefender)
S3 BitdefenderVpnSvc; C:\Program Files\Bitdefender\Bitdefender VPN\vpnservice.exe [320944 2017-11-29] ()
S3 cplspcon; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [440304 2017-04-04] (Intel Corporation)
R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [163328 2016-01-27] () [Bestand niet getekend]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-25] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-25] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2018-02-08] (Dropbox, Inc.)
R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [103072 2017-12-04] (Bitdefender)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144104 2015-11-06] (ELAN Microelectronics Corp.)
S3 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-11-06] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-27] (Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [515256 2017-08-10] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-04-04] (Intel Corporation)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [269480 2017-08-03] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-11-06] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-11-06] (NVIDIA Corporation)
R2 PGFNEXSrv; C:\Program Files (x86)\PHotkey\PGFNEXSrv.exe [135680 2014-08-07] () [Bestand niet getekend]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1269824 2017-06-21] (Bitdefender)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [118096 2018-02-02] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [1170712 2018-02-02] (Bitdefender)
R2 vsservp; C:\Program Files\Bitdefender\Bitdefender Security\vsservp.exe [524872 2016-08-25] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
S4 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3756200 2017-08-03] (Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-29] (The OpenVPN Project)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1058784 2018-02-02] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1765336 2018-02-02] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [133088 2017-06-06] (BitDefender LLC)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [47376 2017-11-24] (© Bitdefender SRL)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
S3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [51632 2015-09-03] (CyberLink Corporation)
R1 ElRawDisk; C:\WINDOWS\system32\drivers\ElRawDsk.sys [30752 2013-12-03] (EldoS Corporation)
S3 EMVSCARD; C:\WINDOWS\System32\Drivers\EMVSCARD.sys [28544 2006-12-13] (USB Smart Card Reader)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [30808 2015-11-06] (ELAN Microelectronic Corp.)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [187688 2017-05-11] (BitDefender LLC)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [245768 2017-08-10] (Intel Corporation)
R0 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [338744 2018-02-02] (Bitdefender)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [7644672 2017-09-05] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvpmwu.inf_amd64_f2045d1eeb288d10\nvlddmkm.sys [14456920 2017-05-18] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-11-06] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50472 2015-11-06] (NVIDIA Corporation)
R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
R3 PegaRadioSwitch; C:\WINDOWS\System32\drivers\PegaRadioSwitch.sys [33576 2017-03-24] (Windows (R) Win 7 DDK provider)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2015-12-02] ()
R1 RawDisk3; C:\WINDOWS\system32\drivers\rawdsk3.sys [32568 2015-07-24] (EldoS Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [888064 2015-10-15] (Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [426504 2016-09-25] (Realsil Semiconductor Corporation)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [439576 2017-04-11] (BitDefender S.R.L.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2018-02-11 17:56 - 2018-02-11 17:56 - 000020537 _____ C:\Users\patri\Desktop\FRST.txt
2018-02-11 17:55 - 2018-02-11 17:56 - 000000000 ____D C:\FRST
2018-02-11 17:54 - 2018-02-11 17:54 - 002404864 _____ (Farbar) C:\Users\patri\Desktop\FRST64.exe
2018-02-09 22:23 - 2018-02-11 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-02-08 21:10 - 2018-02-08 21:10 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2018-02-08 21:10 - 2018-02-08 21:10 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2018-02-08 21:10 - 2018-02-08 21:10 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2018-02-08 21:10 - 2018-02-08 21:10 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2018-02-06 16:28 - 2018-02-09 22:55 - 000000000 ____D C:\Users\patri\AppData\Local\CrashDumps
2018-02-06 16:27 - 2018-02-11 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender VPN
2018-02-06 16:27 - 2018-02-06 16:27 - 000066337 _____ C:\ProgramData\vpn.1517930842.bdinstall.bin
2018-02-06 16:27 - 2018-02-06 16:27 - 000002195 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk
2018-02-06 16:27 - 2018-02-06 16:27 - 000000000 ____D C:\ProgramData\Bitdefender VPN
2018-02-06 16:27 - 2017-11-29 07:51 - 000048624 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\aftap0901.sys
2018-02-05 00:21 - 2018-02-05 00:21 - 000000000 ____D C:\Users\patri\Documents\Aangepaste Office-sjablonen
2018-02-02 18:22 - 2018-02-02 18:22 - 000000034 _____ C:\WINDOWS\system32\STOOLSubmit.ret
2018-02-02 18:22 - 2018-02-02 18:22 - 000000000 ____D C:\ProgramData\Dumps
2018-02-02 17:38 - 2018-02-02 17:38 - 000000000 ___HD C:\OneDriveTemp
2018-02-01 11:11 - 2018-02-04 16:22 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-29 12:01 - 2018-01-29 12:02 - 000000000 ___RD C:\Users\patri\Dropbox
2018-01-24 18:24 - 2018-01-24 18:24 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2018-01-24 18:24 - 2018-01-24 18:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-01-24 18:23 - 2018-01-24 18:23 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2018-01-21 12:42 - 2018-01-21 12:42 - 000001295 _____ C:\Users\Public\Desktop\eID Viewer.lnk
2018-01-21 12:42 - 2018-01-21 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
2018-01-20 01:15 - 2018-01-20 01:15 - 000000017 _____ C:\Users\patri\AppData\Local\resmon.resmoncfg
2018-01-15 17:12 - 2018-01-15 17:12 - 000002656 _____ C:\Users\patri\Desktop\Word 2016.lnk
2018-01-15 14:30 - 2018-01-15 14:30 - 000022462 _____ C:\ProgramData\agent.uninstall.1516023036.bdinstall.bin

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2018-02-11 17:52 - 2017-08-16 19:43 - 000000000 ____D C:\Users\patri\AppData\LocalLow\Mozilla
2018-02-11 17:38 - 2017-12-18 22:12 - 000004198 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{989A2C01-6218-45AE-85B0-EC5720C0ED82}
2018-02-11 17:34 - 2017-12-18 22:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-02-11 17:04 - 2017-12-18 22:15 - 002042406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-11 17:04 - 2017-09-30 15:32 - 001081026 _____ C:\WINDOWS\system32\perfh013.dat
2018-02-11 17:04 - 2017-09-30 15:32 - 000286628 _____ C:\WINDOWS\system32\perfc013.dat
2018-02-11 16:59 - 2017-12-18 22:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-02-11 16:59 - 2017-10-08 10:14 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-02-11 16:59 - 2017-01-30 14:28 - 000000000 __SHD C:\Users\patri\IntelGraphicsProfiles
2018-02-11 16:59 - 2015-12-07 17:06 - 000000000 ____D C:\ProgramData\NVIDIA
2018-02-11 16:58 - 2017-10-15 22:53 - 000000000 ____D C:\Program Files\Bitdefender Agent
2018-02-11 16:58 - 2017-09-29 09:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-02-11 16:57 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\registration
2018-02-11 16:56 - 2017-09-12 15:02 - 000031215 _____ C:\bdlog.txt
2018-02-11 16:53 - 2017-10-16 08:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security
2018-02-11 16:53 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-02-11 16:53 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-02-11 16:53 - 2017-09-29 14:44 - 000000000 ____D C:\WINDOWS\INF
2018-02-11 16:53 - 2017-09-29 09:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-02-11 16:53 - 2017-08-16 19:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-02-11 16:53 - 2017-08-16 19:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-02-11 16:53 - 2017-07-25 02:17 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-02-11 16:53 - 2017-02-02 14:29 - 000000000 ____D C:\Users\patri\AppData\Temp
2018-02-10 12:14 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-02-09 20:41 - 2017-12-18 22:08 - 000000000 ____D C:\Users\patri\AppData\Local\Packages
2018-02-09 20:23 - 2017-09-29 09:45 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2018-02-09 11:58 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-02-08 23:57 - 2017-08-16 19:43 - 000000969 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-02-07 16:00 - 2017-09-29 14:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-02-06 16:27 - 2017-10-16 08:18 - 000000000 ____D C:\Program Files\Bitdefender
2018-02-06 12:11 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-02-06 12:10 - 2017-12-18 22:04 - 000392464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-06 12:02 - 2017-09-29 14:46 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-02-06 03:49 - 2017-09-29 14:49 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-02-06 03:49 - 2017-09-29 14:49 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-02-02 18:22 - 2017-10-16 08:18 - 000000000 ____D C:\ProgramData\Bitdefender
2018-02-02 18:22 - 2017-07-24 18:08 - 000000000 ____D C:\ProgramData\BDLogging
2018-02-02 17:39 - 2017-12-18 22:07 - 000000000 ____D C:\Users\patri
2018-02-02 17:39 - 2017-01-30 14:33 - 000000000 ___RD C:\Users\patri\OneDrive
2018-02-02 02:36 - 2017-12-18 17:05 - 001058784 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys
2018-02-02 02:36 - 2017-12-18 17:05 - 000338744 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2018-02-02 02:35 - 2017-12-18 17:05 - 001765336 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2018-02-01 11:14 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-01-31 13:56 - 2017-12-18 22:12 - 000003360 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1405700835-1020330466-823045023-1001
2018-01-31 13:56 - 2017-07-24 17:27 - 000002387 _____ C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-01-29 11:58 - 2017-07-25 02:17 - 000000000 ____D C:\Users\patri\AppData\Local\Dropbox
2018-01-24 18:25 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-01-24 18:25 - 2017-09-17 11:16 - 000002729 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000002662 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive voor Bedrijven.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype voor Bedrijven 2016.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000002642 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000002628 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2018-01-24 18:25 - 2017-09-17 11:16 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-hulpprogramma's
2018-01-24 18:24 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-01-24 18:24 - 2015-10-30 10:07 - 000000000 ____D C:\WINDOWS\ShellNew
2018-01-24 18:23 - 2017-09-17 11:15 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2018-01-24 18:21 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Common Files\system
2018-01-24 18:21 - 2015-10-30 08:24 - 000000283 _____ C:\WINDOWS\win.ini
2018-01-24 00:59 - 2017-08-16 19:43 - 000001224 _____ C:\Users\Public\Desktop\Firefox.lnk
2018-01-21 12:42 - 2017-09-07 12:33 - 000000000 ____D C:\Program Files (x86)\Belgium Identity Card
2018-01-15 14:23 - 2015-11-05 19:33 - 000000000 ____D C:\ProgramData\Temp

==================== Bestanden in de root van sommige mappen =======

2017-07-29 17:34 - 2017-07-29 20:23 - 022834768 _____ () C:\Users\patri\xp68-win-mp280-5_56a-ea24.exe
2018-01-20 01:15 - 2018-01-20 01:15 - 000000017 _____ () C:\Users\patri\AppData\Local\resmon.resmoncfg

Sommige bestanden in TEMP:
====================
2018-02-06 16:27 - 2018-02-06 16:27 - 000290304 _____ (Microsoft Corporation) C:\Users\patri\AppData\Local\Temp\CakeTubeSdk.Windows.Service.subinacl.exe

==================== Bamital & volsnap ======================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
C:\WINDOWS\system32\wininit.exe => Bestand is getekend
C:\WINDOWS\explorer.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
C:\WINDOWS\system32\svchost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
C:\WINDOWS\system32\services.exe => Bestand is getekend
C:\WINDOWS\system32\User32.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
C:\WINDOWS\system32\userinit.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend

LastRegBack: 2017-12-18 22:04

==================== Eind van FRST.txt ============================