Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 24-12-2019 01 Gestart door Admin (Beheerder) op PC (25-12-2019 10:45:24) Gestart vanaf C:\Users\Admin\Desktop Geladen Profielen: Admin (Beschikbare Profielen: Admin) Platform: Windows 10 Home Versie 1909 18363.535 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdtrackersnmh.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391120 2019-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [456088 2019-10-13] (Bitdefender SRL -> Bitdefender) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-2980793151-4220202154-4047133139-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-2980793151-4220202154-4047133139-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [807936 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-19] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2018-07-20] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {034FB47E-D789-4999-BF34-C34E40DE94E2} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [488760 2019-07-15] (Bitdefender SRL -> Bitdefender) Task: {15883CCD-B117-4D6D-9DC1-5840486C3C38} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-20] (Google Inc -> Google Inc.) Task: {1AD3461F-B238-4CF8-9BAE-1FFE106DA531} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {3A34FBA0-D2A7-45FF-9B6F-42CBA2D06B11} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-20] (Google Inc -> Google Inc.) Task: {4F935BD8-72EB-4AF5-BB9D-A84F0F20B410} - System32\Tasks\ASC_SkipUac_Admin => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe Task: {58D94AD5-155D-4386-B132-EFDB367F0C2F} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_pepper.exe [1453112 2019-12-10] (Adobe Inc. -> Adobe) Task: {730E8A57-6CEE-49D6-83F9-0D7C61ED7F73} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {AB21E872-9DB5-4956-94CE-CC1E70FF979D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {E679DB31-CDBD-4113-9291-A2D3DCC74C35} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) Task: {F582A50D-5D43-4355-A0BC-CB13753AE517} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [525120 2019-12-18] (Bitdefender SRL -> Bitdefender) Task: {FF5B9B67-7F2D-41B1-B9CC-4533E2D139AB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-10] (Adobe Inc. -> Adobe) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.130.4 195.130.131.4 Tcpip\..\Interfaces\{128a3fae-2d83-4e5c-b6f9-068bae84f46d}: [DhcpNameServer] 195.130.130.4 195.130.131.4 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2980793151-4220202154-4047133139-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00 SearchScopes: HKU\S-1-5-21-2980793151-4220202154-4047133139-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00 SearchScopes: HKU\S-1-5-21-2980793151-4220202154-4047133139-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00 BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2019-12-18] (Bitdefender SRL -> Bitdefender) BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-12-18] (Bitdefender SRL -> Bitdefender) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-12-18] (Bitdefender SRL -> Bitdefender) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-12-18] (Bitdefender SRL -> Bitdefender) Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-12-18] (Bitdefender SRL -> Bitdefender) FireFox: ======== FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2019-12-18] FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2019-11-21] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2019-03-06] [Verouderd] [niet getekend] FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://google.be/ CHR StartupUrls: Default -> "hxxp://google.be/" CHR Notifications: Default -> hxxps://arenubeforeign.club; hxxps://bobs-tube.com; hxxps://dlp-imgsrc.femvxitrquzretxzdq.info; hxxps://mobnootiffy.com; hxxps://sesono.com; hxxps://vidcopa.me; hxxps://vtm.be; hxxps://www.facebook.com; hxxps://www.hln.be; hxxps://www.nieuwsblad.be; hxxps://www.reddit.com; hxxps://www.tomtom.com; hxxps://www.youtube.com; hxxps://yoku.pro CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2019-12-25] CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-07-20] CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-20] CHR Extension: (AdBlock - de beste advertentieblokker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18] CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2019-11-20] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15] CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-11] CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-25] CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\vpnservice.exe [322432 2019-06-04] (AnchorFree Inc -> AnchorFree Inc.) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2019-12-18] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2019-12-18] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender) R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [471120 2019-10-13] (Bitdefender SRL -> Bitdefender) R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [119368 2019-11-14] (Bitdefender SRL -> Bitdefender) R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Bestand niet getekend] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-11] (Malwarebytes Inc -> Malwarebytes) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Bestand niet getekend] R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Bestand niet getekend] R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1291888 2019-07-15] (Bitdefender SRL -> Bitdefender) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [151656 2019-12-18] (Bitdefender SRL -> Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2019-12-18] (Bitdefender SRL -> Bitdefender) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-06-15] (AnchorFree Inc -> The OpenVPN Project) R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1693368 2019-11-21] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [739264 2019-11-21] (Bitdefender SRL -> Bitdefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-04-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2019-09-13] (Bitdefender SRL -> © Bitdefender SRL) R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (Bitdefender SRL -> BitDefender) R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131904 2018-12-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [31816 2018-07-15] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.) R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [564112 2019-11-21] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [188384 2019-06-03] (Bitdefender SRL -> BitDefender LLC) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-08-01] (Martin Malik - REALiX -> REALiX(tm)) R2 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [196392 2019-09-13] (Bitdefender SRL -> Bitdefender) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2019-12-24] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [278344 2019-12-25] (Malwarebytes Inc -> Malwarebytes) R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [56840 2019-03-10] (Synaptics Incorporated -> Synaptics Incorporated) R3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2019-11-27] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [610640 2019-01-14] (Bitdefender SRL -> Bitdefender) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 AscFileControl; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileControl.sys [X] S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X] S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X] S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X] S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-12-25 10:45 - 2019-12-25 10:47 - 000020633 _____ C:\Users\Admin\Desktop\FRST.txt 2019-12-25 10:27 - 2019-12-25 10:27 - 002271744 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe 2019-12-25 10:16 - 2019-12-25 10:16 - 000278344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2019-12-24 14:54 - 2019-12-24 14:54 - 000002002 _____ C:\Users\Admin\Downloads\AdwCleaner[C06].txt 2019-12-24 14:51 - 2019-12-24 14:52 - 000002002 _____ C:\Users\Admin\Downloads\AdwCleaner[C06] (1).txt 2019-12-24 14:44 - 2019-12-24 14:44 - 000002002 _____ C:\Users\Admin\Documents\AdwCleaner[C06].txt 2019-12-24 14:06 - 2019-12-24 14:06 - 008237744 _____ (Malwarebytes) C:\Users\Admin\Desktop\adwcleaner_8.0.1.exe 2019-12-24 13:58 - 2019-12-24 13:59 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\IGDump 2019-12-24 13:57 - 2019-12-24 13:57 - 000216544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2019-12-20 18:03 - 2019-12-20 18:03 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-12-11 19:52 - 2019-12-11 19:52 - 000000000 ____D C:\Users\Admin\AppData\Local\cache 2019-12-11 19:51 - 2019-12-11 19:51 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2019-12-11 19:51 - 2019-12-11 19:51 - 000000000 ____D C:\Users\Admin\AppData\Local\mbamtray 2019-12-11 19:51 - 2019-12-11 19:51 - 000000000 ____D C:\Users\Admin\AppData\Local\mbam 2019-12-11 19:51 - 2019-12-11 19:50 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2019-12-11 19:50 - 2019-12-23 15:00 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2019-12-11 19:50 - 2019-12-11 19:50 - 000000000 ____D C:\ProgramData\Malwarebytes 2019-12-11 19:49 - 2019-12-11 19:49 - 000000000 ____D C:\Program Files\Malwarebytes 2019-12-11 19:47 - 2019-12-11 19:48 - 001883976 _____ (Malwarebytes) C:\Users\Admin\Downloads\MBSetup.exe 2019-12-11 13:16 - 2019-12-11 13:16 - 025443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2019-12-11 13:16 - 2019-12-11 13:16 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-12-11 13:16 - 2019-12-11 13:16 - 002494432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-12-11 13:16 - 2019-12-11 13:16 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2019-12-11 13:16 - 2019-12-11 13:16 - 001098928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2019-12-11 13:16 - 2019-12-11 13:16 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2019-12-11 13:16 - 2019-12-11 13:16 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-12-11 13:16 - 2019-12-11 13:16 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 009927992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 007905000 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 006516648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 006083832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 005943296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 005914112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 002762296 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 002698768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 002082208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-12-11 13:15 - 2019-12-11 13:15 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001656600 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001512528 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001399312 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-12-11 13:15 - 2019-12-11 13:15 - 001261464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 001054864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000986936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000842552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000822416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 000674280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000593128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2019-12-11 13:15 - 2019-12-11 13:15 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-12-11 13:15 - 2019-12-11 13:15 - 000511000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000127272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys 2019-12-11 13:15 - 2019-12-11 13:15 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2019-12-11 13:15 - 2019-12-11 13:15 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 007278592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 002284544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-12-11 13:14 - 2019-12-11 13:14 - 001006904 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe 2019-12-11 13:14 - 2019-12-11 13:14 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000422712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2019-12-11 13:14 - 2019-12-11 13:14 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys 2019-12-11 13:14 - 2019-12-11 13:14 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2019-12-11 13:14 - 2019-12-11 13:14 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevQueryBroker.dll 2019-12-11 13:14 - 2019-12-11 13:14 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll 2019-12-06 05:41 - 2019-12-06 05:41 - 000072951 _____ C:\ProgramData\dm.update.1575607032.bdinstall.bin 2019-12-06 05:39 - 2019-12-06 05:39 - 000036410 _____ C:\ProgramData\dm.uninstall.1575607073.bdinstall.bin 2019-12-05 22:46 - 2019-12-05 22:47 - 000286399 _____ C:\Users\Admin\Downloads\Tornooischema U8.pdf 2019-11-27 15:33 - 2019-11-27 15:33 - 085712896 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 033017856 _____ C:\WINDOWS\system32\config\COMPONENTS.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 004243456 _____ C:\WINDOWS\system32\config\DRIVERS.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 000581632 _____ C:\WINDOWS\system32\config\DEFAULT.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 000069632 _____ C:\WINDOWS\system32\config\SAM.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit 2019-11-27 15:30 - 2019-11-27 15:30 - 000166288 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2019-11-27 15:17 - 2019-11-27 15:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 7 2019-11-27 15:15 - 2019-11-27 15:15 - 000002878 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_Admin 2019-11-25 20:49 - 2019-11-25 20:49 - 000003354 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2980793151-4220202154-4047133139-1001 2019-11-25 20:49 - 2019-11-25 20:49 - 000002369 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-12-25 10:46 - 2018-07-16 17:43 - 000000000 ____D C:\FRST 2019-12-25 10:20 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-12-25 10:20 - 2019-03-19 05:37 - 000065536 _____ C:\WINDOWS\system32\config\ELAM 2019-12-25 10:15 - 2019-08-21 17:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-12-25 02:29 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-12-25 02:26 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2019-12-25 00:56 - 2019-08-21 17:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-12-23 23:35 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2019-12-23 23:35 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-12-23 23:35 - 2018-07-18 13:12 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages 2019-12-23 20:19 - 2014-07-13 16:14 - 000002281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-12-23 20:19 - 2014-07-13 16:14 - 000002240 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-12-23 20:11 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-12-21 21:58 - 2014-05-09 21:16 - 000000000 ____D C:\Users\Admin\Desktop\lotto-eurom 2019-12-14 23:55 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-12-14 15:02 - 2019-08-21 17:47 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2019-12-14 15:02 - 2019-08-21 17:47 - 000003454 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2019-12-11 19:51 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-12-11 19:51 - 2018-05-23 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2019-12-11 14:19 - 2019-08-21 17:41 - 001771832 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-12-11 14:19 - 2019-03-19 13:33 - 000786140 _____ C:\WINDOWS\system32\perfh013.dat 2019-12-11 14:19 - 2019-03-19 13:33 - 000154170 _____ C:\WINDOWS\system32\perfc013.dat 2019-12-11 14:16 - 2017-12-07 20:14 - 000000000 ___RD C:\Users\Admin\3D Objects 2019-12-11 14:16 - 2016-04-27 07:37 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-12-11 14:13 - 2019-08-21 17:23 - 000435344 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-12-11 14:09 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2019-12-11 14:09 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-12-11 14:09 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-12-11 13:28 - 2018-07-20 18:53 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-12-11 13:23 - 2018-07-20 18:52 - 129221664 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-12-10 11:20 - 2019-08-21 17:47 - 000004684 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier 2019-12-10 11:19 - 2019-09-10 12:45 - 005133880 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe 2019-12-10 11:19 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-12-10 11:19 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-12-06 05:39 - 2018-07-21 14:53 - 000000000 ____D C:\Program Files\Bitdefender 2019-11-27 15:51 - 2018-08-01 17:30 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\IObit 2019-11-27 15:51 - 2018-08-01 17:29 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IObit 2019-11-27 15:51 - 2018-08-01 17:29 - 000000000 ____D C:\Program Files (x86)\IObit 2019-11-27 15:51 - 2018-08-01 17:28 - 000000000 ____D C:\ProgramData\IObit 2019-11-25 20:49 - 2014-05-10 13:47 - 000000000 ___RD C:\Users\Admin\OneDrive ==================== Bestanden in de root van sommige mappen ======== 2019-02-13 19:14 - 2019-02-13 19:14 - 000006348 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel 2018-10-27 14:06 - 2018-10-27 14:06 - 000000000 _____ () C:\Users\Admin\AppData\Local\{39089C40-03C4-4209-918A-9D115079CD65} 2019-08-14 14:03 - 2019-08-14 14:03 - 000000000 _____ () C:\Users\Admin\AppData\Local\{4D0C47F3-FEC2-48AD-A8AA-FD35986C67C9} ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================