Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 14-12-2019 Gestart door Gebruiker (AANDACHT: De gebruiker is geen beheerder) op LAPTOP-DH9V5FBG (LENOVO 81CN) (21-12-2019 19:29:12) Gestart vanaf C:\Users\Gebruiker\Downloads Geladen Profielen: Gebruiker (Beschikbare Profielen: Installatie & Gebruiker) Platform: Windows 10 Home Versie 1903 18362.535 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe (Facebook Inc) C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126997.inf_amd64_c60ea4cd103ded0b\igfxEM.exe (LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.0.54.0_x64__5grkq8ppsgwt4\VFS\ProgramFilesX64\Lenovo\LenovoUtility\utility.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11912.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19101.10711.0_x64__8wekyb3d8bbwe\Music.UI.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Node.js Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATINXE.EXE (Spotify AB -> Spotify Ltd) C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe (Spotify AB -> Spotify Ltd) C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe (Spotify AB -> Spotify Ltd) C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe (Spotify AB -> Spotify Ltd) C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe (Spotify AB -> Spotify Ltd) C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (Wondershare Software Co., Ltd. -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe Kon geen toegang krijgen tot proces -> Adobe Installer.exe Kon geen toegang krijgen tot proces -> AdobeUpdateService.exe Kon geen toegang krijgen tot proces -> AGMService.exe Kon geen toegang krijgen tot proces -> AGSService.exe Kon geen toegang krijgen tot proces -> app_updater.exe Kon geen toegang krijgen tot proces -> armsvc.exe Kon geen toegang krijgen tot proces -> aswidsagent.exe Kon geen toegang krijgen tot proces -> AVGSvc.exe Kon geen toegang krijgen tot proces -> csrss.exe Kon geen toegang krijgen tot proces -> csrss.exe Kon geen toegang krijgen tot proces -> dasHost.exe Kon geen toegang krijgen tot proces -> DbxSvc.exe Kon geen toegang krijgen tot proces -> dllhost.exe Kon geen toegang krijgen tot proces -> DolbyDAX2API.exe Kon geen toegang krijgen tot proces -> DropboxUpdate.exe Kon geen toegang krijgen tot proces -> dwm.exe Kon geen toegang krijgen tot proces -> escsvc64.exe Kon geen toegang krijgen tot proces -> fontdrvhost.exe Kon geen toegang krijgen tot proces -> fontdrvhost.exe Kon geen toegang krijgen tot proces -> GoogleCrashHandler.exe Kon geen toegang krijgen tot proces -> GoogleCrashHandler64.exe Kon geen toegang krijgen tot proces -> igfxCUIService.exe Kon geen toegang krijgen tot proces -> IntelCpHDCPSvc.exe Kon geen toegang krijgen tot proces -> IntelCpHeciSvc.exe Kon geen toegang krijgen tot proces -> jhi_service.exe Kon geen toegang krijgen tot proces -> LenovoVantageService.exe Kon geen toegang krijgen tot proces -> LMS.exe Kon geen toegang krijgen tot proces -> lsass.exe Kon geen toegang krijgen tot proces -> MBAMService.exe Kon geen toegang krijgen tot proces -> mDNSResponder.exe Kon geen toegang krijgen tot proces -> mepService.exe Kon geen toegang krijgen tot proces -> OfficeClickToRun.exe Kon geen toegang krijgen tot proces -> PresentationFontCache.exe Kon geen toegang krijgen tot proces -> PsiService_2.exe Kon geen toegang krijgen tot proces -> RAVBg64.exe Kon geen toegang krijgen tot proces -> RtkAudioService64.exe Kon geen toegang krijgen tot proces -> RtkBtManServ.exe Kon geen toegang krijgen tot proces -> SearchIndexer.exe Kon geen toegang krijgen tot proces -> SecurityHealthService.exe Kon geen toegang krijgen tot proces -> services.exe Kon geen toegang krijgen tot proces -> SgrmBroker.exe Kon geen toegang krijgen tot proces -> smss.exe Kon geen toegang krijgen tot proces -> spoolsv.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> svchost.exe Kon geen toegang krijgen tot proces -> SynTPEnhService.exe Kon geen toegang krijgen tot proces -> TeamViewer_Service.exe Kon geen toegang krijgen tot proces -> tv_w32.exe Kon geen toegang krijgen tot proces -> tv_x64.exe Kon geen toegang krijgen tot proces -> unsecapp.exe Kon geen toegang krijgen tot proces -> wininit.exe Kon geen toegang krijgen tot proces -> winlogon.exe Kon geen toegang krijgen tot proces -> WmiPrvSE.exe Kon geen toegang krijgen tot proces -> wsc_proxy.exe Kon geen toegang krijgen tot proces -> WUDFHost.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [316336 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [876032 2017-10-12] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [1655296 2010-09-05] (Dominik Reichl) [Bestand niet getekend] HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Bestand niet getekend] HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6268224 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1985824 2013-07-25] (Wondershare Software Co., Ltd. -> Wondershare) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2084920 2019-09-27] (Adobe Inc. -> Adobe Inc.) HKLM\...\RunOnce: [*EmptyTemp] => cmd /c rd /q/s C:\FRST\Temp HKU\S-1-5-21-1681954670-4036996131-736709052-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-1681954670-4036996131-736709052-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINXE.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-1681954670-4036996131-736709052-1002\...\Run: [IncrediMail] => C:\Program Files (x86)\IncrediMail\bin\IncMail.exe [444352 2019-05-26] (IncrediMail Inc. -> IncrediMail Ltd.) [Bestand niet getekend] HKU\S-1-5-21-1681954670-4036996131-736709052-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-1681954670-4036996131-736709052-1002\...\Run: [Spotify] => C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe [22151072 2019-12-19] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1681954670-4036996131-736709052-1002\...\RunOnce: [Application Restart #3] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1704944 2019-12-14] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-19] (Google LLC -> Google LLC) Startup: C:\Users\Installatie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-05-19] ShortcutTarget: MEGAsync.lnk -> C:\Users\Gebruiker\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => Task: C:\WINDOWS\Tasks\EPSON ET-2550 Series Update {B704E1B8-4B07-460C-AE6C-D96D87447244}.job => ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.254 Tcpip\..\Interfaces\{2af8103d-badb-4a1a-999d-3f56d8401fe7}: [DhcpNameServer] 192.168.2.254 Internet Explorer: ================== HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP HKU\S-1-5-21-1681954670-4036996131-736709052-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE SearchScopes: HKU\S-1-5-21-1681954670-4036996131-736709052-1002 -> DefaultScope {7E013ED9-51BF-43BF-8AE1-85A7E86FEF21} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\Gebruiker\Downloads Edge Notifications: HKU\S-1-5-21-1681954670-4036996131-736709052-1002 -> hxxps://www.facebook.com; hxxps://www.youtube.com FireFox: ======== FF DefaultProfile: 2dkczaby.default-1570729385082 FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\2dkczaby.default-1570729385082 [2019-12-21] FF Notifications: Mozilla\Firefox\Profiles\2dkczaby.default-1570729385082 -> hxxps://phlearn.com; hxxps://en.savefrom.net; hxxps://nl.dreamstime.com; hxxps://dut.worldtourismgroup.com FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\2dkczaby.default-1570729385082\Extensions\langpack-nl@firefox.mozilla.org.xpi [2019-10-11] FF Extension: (Woordenboek Nederlands) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\2dkczaby.default-1570729385082\Extensions\nl-NL@dictionaries.addons.mozilla.org.xpi [2019-10-11] FF Extension: (Google Translator for Firefox) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\2dkczaby.default-1570729385082\Extensions\translator@zoli.bod.xpi [2019-10-10] FF Extension: (Googleâ„¢ Translator) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\2dkczaby.default-1570729385082\Extensions\{059cddf1-f66c-4b63-a79a-c35ac7e6ac65}.xpi [2019-10-10] FF Extension: (YouTube Download) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\2dkczaby.default-1570729385082\Extensions\{807833d9-8ea7-42f8-a8a4-46ff7519dd8b}.xpi [2019-10-10] FF Extension: (YouTube Converter Button) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\2dkczaby.default-1570729385082\Extensions\{8f4bbf79-5514-4d04-a901-d5fabfe91d73}.xpi [2019-10-10] FF HKLM\...\Firefox\Extensions: [{b84eec0c-f44b-420f-b2ee-db2a585be7fc}] - C:\Program Files (x86)\vondos\smartdefender\FF\smart_defender-1.0.0-an+fx.xpi => niet gevonden FF HKLM-x32\...\Firefox\Extensions: [{b84eec0c-f44b-420f-b2ee-db2a585be7fc}] - C:\Program Files (x86)\vondos\smartdefender\FF\smart_defender-1.0.0-an+fx.xpi => niet gevonden FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-09-27] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-09-27] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR NewTab: Default -> Not-active:"chrome-extension://fdlbonbnnibgchcnehhcapioihjpnlmh/nos.html" CHR DefaultSearchURL: Default -> hxxps://nl.search.yahoo.com/search?fr=mcafee&type=E210NL91082G91207&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR Notifications: Default -> hxxps://morguefile.com; hxxps://www.4shared.com; hxxps://www.facebook.com; hxxps://www.youtube.com; hxxps://xpozer.com CHR Profile: C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default [2019-12-21] CHR Extension: (Presentaties) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-05] CHR Extension: (Documenten) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-05] CHR Extension: (Google Drive) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17] CHR Extension: (ColorZilla) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2018-10-04] CHR Extension: (YouTube) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-05] CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23] CHR Extension: (NOS Nieuws in beeld) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdlbonbnnibgchcnehhcapioihjpnlmh [2018-09-18] CHR Extension: (Spreadsheets) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-05] CHR Extension: (Yahoo Partner) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpdpdomdpmhpgncppolomeniknkgpbhm [2018-09-07] CHR Extension: (Offline Documenten) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-06] CHR Extension: (Save Button for Pinterest) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\keckjhpnlkboakghjefkmljidppfdcpo [2018-10-14] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13] CHR Extension: (Gmail) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-03-26] CHR Extension: (Chrome Media Router) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-18] CHR Profile: C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-12-21] CHR Profile: C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-21] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [823352 2019-09-27] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [996928 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [6307248 2019-12-19] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110560 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [Bestand niet getekend] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11345992 2019-11-28] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-01-06] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-01-06] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.) R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-12-09] (Digital Wave Ltd -> Digital Wave Ltd) R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation) S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2019-04-19] (Macrovision Europe Ltd.) [Bestand niet getekend] S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2410672 2017-11-27] (Intel(R) Rapid Storage Technology -> Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [742704 2017-10-12] (Intel(R) Trust Services -> Intel(R) Corporation) S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [668472 2017-10-12] (Intel(R) Trust Services -> Intel(R) Corporation) R2 jhi_service; C:\WINDOWS\System32\jhi_service.exe [576560 2018-05-23] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\LenovoVantageService.exe [18200 2019-07-24] (Lenovo -> Lenovo Group Ltd.) R3 lmhosts; C:\WINDOWS\System32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) R3 lmhosts; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6960640 2019-12-05] (Malwarebytes Inc -> Malwarebytes) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 NlaSvc; C:\WINDOWS\System32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NlaSvc; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 nsi; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 nsi; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268336 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [687560 2018-05-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Bestand niet getekend] R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [282200 2018-01-05] (Synaptics Incorporated -> Synaptics Incorporated) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12097024 2019-11-06] (TeamViewer GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [205600 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [275232 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [210328 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [65376 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16520 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [43512 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [171640 2019-11-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [111096 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84560 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [848688 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [461216 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [236288 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [317304 2019-10-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 epp; C:\Program Files\Emsisoft Anti-Malware\epp.sys [155328 2019-12-02] (Microsoft Windows Hardware Compatibility Publisher -> Emsisoft Ltd) S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [69632 2017-11-27] (Intel(R) Rapid Storage Technology -> Intel Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2019-12-21] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [278344 2019-12-21] (Malwarebytes Inc -> Malwarebytes) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1010648 2017-12-13] (Realtek Semiconductor Corp. -> Realtek ) R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [758216 2018-05-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [421312 2017-10-18] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [9353552 2018-08-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [899672 2017-10-18] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.) R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [57944 2018-01-05] (Synaptics Incorporated -> Synaptics Incorporated) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-12-21 18:28 - 2019-12-21 18:28 - 000008099 _____ C:\Users\Gebruiker\Desktop\Fixlog.txt 2019-12-21 18:19 - 2019-12-21 18:20 - 002264064 _____ (Farbar) C:\Users\Gebruiker\Downloads\FRST64(1).exe 2019-12-21 18:17 - 2019-12-21 18:17 - 000278344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2019-12-21 18:17 - 2019-12-21 18:17 - 000216544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2019-12-21 18:14 - 2019-12-21 18:14 - 002264064 _____ (Farbar) C:\Users\Gebruiker\Downloads\FRST64.exe 2019-12-21 17:23 - 2019-12-21 17:23 - 000245760 _____ C:\Users\Gebruiker\Downloads\logs.db3 2019-12-21 17:12 - 2019-12-21 17:12 - 000001124 _____ C:\Users\Gebruiker\Desktop\scan_191221-170522.txt 2019-12-21 17:07 - 2019-12-21 17:25 - 000001124 _____ C:\Users\Installatie\Desktop\scan_191221-170522.txt 2019-12-21 17:01 - 2019-12-21 17:02 - 356503752 _____ C:\Users\Gebruiker\Documents\EmsisoftEmergencyKit.exe 2019-12-21 16:41 - 2019-12-21 18:09 - 000000000 ____D C:\Program Files\Emsisoft Anti-Malware 2019-12-21 16:33 - 2019-12-21 18:06 - 000000000 ____D C:\ProgramData\Emsisoft 2019-12-21 16:31 - 2019-12-21 17:06 - 000000000 ____D C:\EEK 2019-12-21 16:29 - 2019-12-21 16:31 - 356503752 _____ C:\Users\Gebruiker\Downloads\EmsisoftEmergencyKit.exe 2019-12-21 16:24 - 2019-12-21 18:27 - 000008099 _____ C:\Users\Gebruiker\Downloads\Fixlog.txt 2019-12-21 11:13 - 2019-12-21 11:13 - 000066161 _____ C:\Users\Installatie\Desktop\FRST.txt 2019-12-21 11:12 - 2019-12-21 11:13 - 000054580 _____ C:\Users\Installatie\Desktop\Addition.txt 2019-12-21 10:55 - 2019-12-21 10:56 - 000054580 _____ C:\Users\Gebruiker\Downloads\Addition.txt 2019-12-21 10:54 - 2019-12-21 19:29 - 000040219 _____ C:\Users\Gebruiker\Downloads\FRST.txt 2019-12-19 14:37 - 2019-12-19 20:06 - 000000000 ____D C:\Users\Gebruiker\Desktop\Bewerkt in Lightroom 2019-12-19 14:23 - 2019-12-19 14:23 - 000130528 _____ C:\Users\Gebruiker\Desktop\dog-4661341_1280.webp 2019-12-19 11:08 - 2019-12-19 11:08 - 000000000 ____D C:\Users\Gebruiker\Desktop\pippos psd 2019-12-18 09:29 - 2019-12-18 09:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2019-12-18 08:44 - 2019-12-18 09:31 - 000001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2019-12-18 08:44 - 2019-12-18 08:44 - 000001277 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk 2019-12-18 08:33 - 2019-12-18 08:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-12-17 20:30 - 2019-12-17 20:30 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2019-12-17 15:30 - 2019-12-17 15:30 - 000769344 _____ C:\Users\Gebruiker\Desktop\Nieuwj 2020.ppsx 2019-12-16 22:00 - 2019-12-16 22:01 - 000000000 ____D C:\Users\Gebruiker\Desktop\Powerpoints 2019-12-15 18:33 - 2019-12-17 10:40 - 000000000 ____D C:\Users\Gebruiker\Desktop\MP3 2019-12-15 18:22 - 2019-12-15 18:23 - 000001368 _____ C:\Users\Installatie\Desktop\MediaHuman YouTube to MP3 Converter.lnk 2019-12-15 18:22 - 2019-12-15 18:23 - 000000221 _____ C:\Users\Installatie\Desktop\Visit MediaHuman Website.url 2019-12-15 18:22 - 2019-12-15 18:22 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\YouTubeToMp3 2019-12-15 18:22 - 2019-12-15 18:22 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\MediaHuman 2019-12-15 18:22 - 2019-12-15 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaHuman 2019-12-15 18:22 - 2019-12-15 18:22 - 000000000 ____D C:\Program Files (x86)\MediaHuman 2019-12-15 18:14 - 2019-12-15 18:14 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\DVDVideoSoft 2019-12-15 18:14 - 2019-12-15 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2019-12-15 18:14 - 2019-12-15 18:14 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files 2019-12-15 18:14 - 2019-12-15 18:14 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack 2019-12-15 18:14 - 2019-12-15 18:14 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft 2019-12-15 18:13 - 2019-12-15 21:20 - 000000000 ____D C:\Users\Installatie\AppData\Roaming\DVDVideoSoft 2019-12-15 18:12 - 1999-05-28 15:13 - 000301568 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\SysWOW64\~GLH0007.TMP 2019-12-15 18:08 - 2019-12-15 18:08 - 000001222 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Switch Sound File Converter.lnk 2019-12-14 09:25 - 2019-12-14 09:25 - 000000000 ___HD C:\OneDriveTemp 2019-12-12 08:49 - 2019-12-12 08:49 - 000001096 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2019.lnk 2019-12-12 08:45 - 2019-12-12 08:45 - 000001037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge 2020.lnk 2019-12-12 08:43 - 2019-12-12 08:43 - 000001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom.lnk 2019-12-11 21:30 - 2019-12-19 08:40 - 000000000 ___HD C:\adobeTemp 2019-12-11 21:28 - 2019-12-11 21:28 - 000001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk 2019-12-11 12:14 - 2019-12-11 12:14 - 025443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 005914112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 002494432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 001539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 001098928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys 2019-12-11 12:14 - 2019-12-11 12:14 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys 2019-12-11 12:14 - 2019-12-11 12:14 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2019-12-11 12:14 - 2019-12-11 12:14 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 009927992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 007905000 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 007278592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 006516648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 006083832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 005943296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 002762296 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 002698768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 002284544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 002082208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-12-11 12:13 - 2019-12-11 12:13 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001656600 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001512528 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001399312 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-12-11 12:13 - 2019-12-11 12:13 - 001261464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001054864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 001006904 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000986936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000842552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000822416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000674280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000593128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000511000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 000422712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2019-12-11 12:13 - 2019-12-11 12:13 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000127272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2019-12-11 12:13 - 2019-12-11 12:13 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevQueryBroker.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2019-12-11 12:13 - 2019-12-11 12:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2019-12-08 18:34 - 2019-12-08 18:34 - 000001881 _____ C:\Users\Gebruiker\Desktop\Spotify.lnk 2019-12-05 09:04 - 2019-12-05 09:04 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\cache 2019-12-05 09:01 - 2019-12-05 09:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader 2019-12-04 09:38 - 2019-12-11 21:19 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-11-29 22:01 - 2019-11-29 22:01 - 000001258 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Doxillion Document Converter.lnk 2019-11-29 10:56 - 2019-12-09 09:26 - 000000000 ____D C:\Users\Gebruiker\Desktop\Nieuwe plaatjes 2019-11-25 21:46 - 2019-11-25 21:46 - 000001051 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk 2019-11-25 21:15 - 2019-11-25 21:16 - 000000000 ____D C:\Users\Gebruiker\Documents\G-Geschiedenis (1) 2019-11-23 09:30 - 2019-11-25 20:03 - 000000000 ____D C:\Users\Gebruiker\Documents\MEGAsync Downloads 2019-11-23 09:21 - 2019-11-23 09:21 - 000002080 _____ C:\Users\Gebruiker\Desktop\MEGA Website.lnk 2019-11-21 09:03 - 2019-11-25 17:43 - 000000000 ____D C:\Users\Gebruiker\Desktop\Nieuwe foto,s ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-12-21 19:29 - 2019-10-09 18:06 - 000000000 ____D C:\FRST 2019-12-21 19:26 - 2018-09-05 14:05 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\Packages 2019-12-21 19:17 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-12-21 19:10 - 2019-08-08 08:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-12-21 18:32 - 2018-09-06 11:01 - 000000000 ____D C:\Users\Gebruiker\AppData\LocalLow\Mozilla 2019-12-21 18:25 - 2019-08-08 08:40 - 001771832 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-12-21 18:25 - 2019-03-19 13:33 - 000787394 _____ C:\WINDOWS\system32\perfh013.dat 2019-12-21 18:25 - 2019-03-19 13:33 - 000154388 _____ C:\WINDOWS\system32\perfc013.dat 2019-12-21 18:25 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2019-12-21 18:18 - 2019-10-11 09:36 - 000000000 ___RD C:\Users\Gebruiker\Creative Cloud Files 2019-12-21 18:18 - 2018-09-08 20:34 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\Adobe 2019-12-21 18:17 - 2019-10-25 09:07 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\Spotify 2019-12-21 18:17 - 2019-08-08 08:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-12-21 18:17 - 2018-09-05 14:22 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2019-12-21 18:17 - 2018-09-05 14:06 - 000000000 ___RD C:\Users\Gebruiker\OneDrive 2019-12-21 18:17 - 2018-09-05 14:05 - 000000000 __SHD C:\Users\Gebruiker\IntelGraphicsProfiles 2019-12-21 17:27 - 2019-10-25 09:07 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\Spotify 2019-12-21 16:24 - 2018-09-18 07:05 - 000000000 ____D C:\Users\Gebruiker\AppData\LocalLow\Temp 2019-12-21 13:08 - 2018-11-09 21:21 - 000000000 ____D C:\Users\Gebruiker\Desktop\Printscreens 2019-12-21 10:14 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-12-20 18:13 - 2019-11-08 07:28 - 000000000 ____D C:\Users\Gebruiker\Desktop\Nieuwe tubes 2019-12-20 15:45 - 2019-10-11 09:18 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2019-12-20 15:40 - 2018-11-28 20:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-12-20 12:12 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2019-12-19 21:00 - 2018-09-07 21:05 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\CrashDumps 2019-12-19 20:00 - 2019-10-09 09:51 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2019-12-19 19:47 - 2019-09-29 09:54 - 000000000 ____D C:\Users\Gebruiker\Desktop\Photoshopmaterialen 2019 2019-12-19 19:32 - 2019-10-13 09:56 - 000002332 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-12-19 16:24 - 2018-10-24 21:23 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-12-18 08:33 - 2019-01-06 17:22 - 000000000 ____D C:\Program Files (x86)\Dropbox 2019-12-18 08:32 - 2018-10-09 19:05 - 000000000 ____D C:\Users\Gebruiker\Documents\Programmas 2019-12-17 19:39 - 2018-09-06 11:01 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\Thunderbird 2019-12-17 19:38 - 2019-07-26 20:49 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\WhatsApp 2019-12-17 15:46 - 2019-07-26 20:49 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\WhatsApp 2019-12-17 15:46 - 2019-07-26 20:49 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\SquirrelTemp 2019-12-15 18:58 - 2019-02-10 19:33 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\vlc 2019-12-15 13:07 - 2018-09-05 14:06 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\PlaceholderTileLogoFolder 2019-12-14 09:32 - 2018-09-07 08:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-12-12 08:49 - 2019-11-08 07:34 - 000000000 ____D C:\Users\Gebruiker\Documents\Adobe 2019-12-12 08:45 - 2018-12-20 12:37 - 000000000 ____D C:\Program Files\Common Files\Adobe 2019-12-12 08:43 - 2018-11-26 21:54 - 000000000 ____D C:\Program Files\Adobe 2019-12-11 21:22 - 2018-09-05 14:05 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\Adobe 2019-12-11 21:19 - 2019-08-08 08:29 - 005124200 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-12-11 21:19 - 2018-09-05 14:05 - 000000000 ___RD C:\Users\Gebruiker\3D Objects 2019-12-11 21:19 - 2018-04-17 20:03 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-12-11 21:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2019-12-11 21:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-12-11 21:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-12-11 12:18 - 2018-09-06 10:58 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-12-11 12:15 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-12-11 12:15 - 2018-09-06 10:58 - 129221664 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-12-11 10:52 - 2019-11-07 17:47 - 000000000 ____D C:\Users\Gebruiker\Desktop\Maskers 5 2019-12-09 09:25 - 2019-10-01 17:33 - 000000000 ____D C:\Users\Gebruiker\Desktop\photoshop werk 2019-12-08 18:34 - 2019-10-25 09:07 - 000001867 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2019-12-06 09:36 - 2018-10-24 07:58 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\Foxit Software 2019-12-05 09:04 - 2019-10-09 09:51 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2019-12-05 09:01 - 2018-10-24 21:16 - 000000000 ____D C:\ProgramData\Foxit Software 2019-12-05 09:01 - 2018-10-24 07:58 - 000000000 ____D C:\Users\Installatie\AppData\Roaming\Foxit Software 2019-12-05 08:25 - 2019-10-13 09:58 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-12-04 08:40 - 2019-07-11 11:03 - 000000000 ____D C:\Users\Gebruiker\Documents\Ink en Uitg 2019-11-29 22:03 - 2019-01-06 18:18 - 000000000 ___RD C:\Users\Gebruiker\Dropbox 2019-11-29 22:00 - 2018-09-23 18:44 - 000000000 ____D C:\ProgramData\NCH Software 2019-11-29 17:01 - 2019-08-08 08:33 - 000000000 ____D C:\Users\Gebruiker 2019-11-26 12:27 - 2018-09-05 14:13 - 000000000 ____D C:\ProgramData\AVG 2019-11-23 09:17 - 2019-08-08 08:33 - 000000000 ____D C:\Users\Installatie 2019-11-21 12:53 - 2019-11-20 08:27 - 000000000 ____D C:\Users\Gebruiker\Desktop\Tags 2019-11-21 08:49 - 2019-08-08 08:33 - 000002388 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk ==================== Bestanden in de root van sommige mappen ======== 2018-10-09 06:53 - 2007-02-13 01:31 - 001111552 _____ () C:\Program Files (x86)\FSCapture.exe 2018-12-05 19:16 - 2018-12-06 21:15 - 000004199 _____ () C:\Users\Gebruiker\AppData\Roaming\downloads.json 2018-09-20 15:14 - 2018-09-20 15:14 - 000037737 _____ () C:\Users\Gebruiker\AppData\Roaming\SoundTap.dmp 2018-09-06 12:49 - 2018-09-06 12:49 - 000003584 _____ () C:\Users\Gebruiker\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2019-10-11 09:41 - 2019-10-11 09:41 - 000000000 _____ () C:\Users\Gebruiker\AppData\Local\oobelibMkey.log 2018-09-09 10:48 - 2019-05-12 14:00 - 000000600 _____ () C:\Users\Gebruiker\AppData\Local\PUTTY.RND 2019-06-06 07:36 - 2019-10-07 16:10 - 130634752 _____ () C:\Users\Gebruiker\AppData\Local\SageThumbs.db3 ==================== FLock ============================== 2019-08-08 08:30 C:\Recovery 2019-12-12 19:59 C:\WINDOWS\system32\config 2019-03-19 05:52 C:\WINDOWS\system32\Configuration 2019-03-19 05:52 C:\WINDOWS\system32\DriverState 2019-03-19 05:52 C:\WINDOWS\system32\FxsTmp 2019-03-19 05:53 C:\WINDOWS\system32\ias 2019-08-08 09:29 C:\WINDOWS\system32\MsDtc 2019-03-19 05:52 C:\WINDOWS\system32\networklist 2019-12-21 19:10 C:\WINDOWS\system32\SleepStudy 2019-12-21 19:18 C:\WINDOWS\system32\sru 2019-11-25 21:46 C:\WINDOWS\system32\Tasks 2019-08-08 09:29 C:\WINDOWS\system32\Tasks_Migrated 2019-10-13 11:37 C:\WINDOWS\system32\WDI 2019-12-20 12:12 C:\Program Files\WindowsApps 2019-08-08 08:40 C:\WINDOWS\diagerr.xml 2019-08-08 08:40 C:\WINDOWS\diagwrn.xml 2019-08-08 09:29 C:\WINDOWS\InfusedApps 2019-08-09 21:31 C:\WINDOWS\LiveKernelReports 2019-11-20 18:16 C:\WINDOWS\Minidump 2019-03-19 05:52 C:\WINDOWS\ModemLogs 2019-12-21 19:29 C:\WINDOWS\Prefetch 2019-08-08 08:30 C:\WINDOWS\ServiceState 2019-12-21 19:27 C:\WINDOWS\Temp 2019-03-19 05:52 C:\WINDOWS\SysWOW64\config 2019-03-19 05:52 C:\WINDOWS\SysWOW64\Configuration 2019-03-19 05:52 C:\WINDOWS\SysWOW64\FxsTmp 2019-03-19 05:52 C:\WINDOWS\SysWOW64\Msdtc 2019-03-19 05:52 C:\WINDOWS\SysWOW64\networklist 2019-03-19 05:52 C:\WINDOWS\SysWOW64\sru 2019-03-19 05:52 C:\WINDOWS\SysWOW64\Tasks 2019-03-19 05:52 C:\WINDOWS\system32\Drivers\DriverData 2019-09-12 11:19 C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2019-09-12 11:19 C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2018-09-27 12:52 C:\WINDOWS\Tasks\EPSON ET-2550 Series Update {B704E1B8-4B07-460C-AE6C-D96D87447244}.job 2019-11-07 08:34 C:\ProgramData\Packages 2019-03-19 13:35 C:\ProgramData\WindowsHolographicDevices 2019-08-10 11:21 C:\Users\Installatie\AppData\Local\ElevatedDiagnostics ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) AANDACHT: ==> Kan geen toegang krijgen tot BCD. De gebruiker is geen beheerder -> The boot configuration data store could not be opened. Toegang geweigerd. ==================== Einde van FRST.txt ========================