Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 22-11-2020 01 Gestart door Johan (Beheerder) op GEBRUIKER-PC (Hewlett-Packard HP Compaq dc7800p Small Form Factor) (24-11-2020 17:53:56) Gestart vanaf C:\Users\Johan\Downloads Geladen Profielen: Johan Platform: Windows 10 Home Versie 2004 19041.630 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Edge Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\AuthManager\AuthManSvr.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\SelfServicePlugin\SelfService.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\SelfServicePlugin\SelfServicePlugin.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe (Citrix Systems, Inc. -> The CefSharp Authors) C:\Program Files (x86)\Citrix\ICA Client\Browser\CtxWebBrowser.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <23> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Johan\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\NisSrv.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [795744 2019-12-02] (Citrix Systems, Inc. -> Citrix Systems, Inc.) HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [460384 2019-12-02] (Citrix Systems, Inc. -> Citrix Systems, Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKU\S-1-5-21-3157429923-292206502-2485843891-1001\...\Run: [EPSON SX440 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHBE.EXE [232448 2011-01-20] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-3157429923-292206502-2485843891-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32281272 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3157429923-292206502-2485843891-1001\...\Run: [EPSON212E58 (Epson Stylus SX440)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHBE.EXE [232448 2011-01-20] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\Installer\chrmstp.exe [2020-11-23] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {00411972-5913-4368-8FDA-BE75A48AFA5D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {00EF517D-861D-40D3-BBD5-A8C07E592752} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {055F4513-3938-4FF6-98A6-291A633F6729} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd) Task: {05C6A006-DE7B-49DB-8CE2-389B399BA7C3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {0D5E0971-F816-45B1-A5E0-06601E4CD900} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe Task: {0DCA5D5A-3EC4-4A55-A070-6A9751F569F5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1A00F2E5-74E9-41BE-B6C6-9B0072BE0389} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1C3066CB-0185-41C4-9944-80A280D72B42} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26781880 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd) Task: {249DDCBE-BB83-4582-8EF0-1758F000E0B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.) Task: {24E83220-854D-464F-9288-F807A60D5741} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {2CC3F8A9-E92F-4E01-B9CC-5B74FE1D4672} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {30B2297A-8CD7-496E-B099-7460143F9E16} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe Task: {3C3DB43A-070A-4492-8250-E71EE2087531} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {4A4C9704-6937-441F-B795-DED40B95506E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {511C1C75-8912-4D03-BB48-6E54D671375B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.) Task: {535FC20E-92AB-49AD-B799-9C4CEBD5B59F} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {54852766-7D38-417F-930C-88C375BC3130} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation) Task: {59D468A7-E37A-4AAB-8B1C-F18B69560A28} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {64085AE0-5090-43F0-87E2-468F5D21D19B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {68720649-2B0F-4D9B-A26B-73653958E6BD} - \Microsoft\Windows\Setup\EOSNotify -> Geen bestand <==== AANDACHT Task: {697E49B4-7888-4715-81D9-4CD47A0CFD37} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {6E1CC2C8-08BB-4DBF-A066-B04AB06BA805} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {6E540BC8-9FD1-4CAF-9B01-6B4E8E55C2DB} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {747F38BE-FCF2-444A-9B1B-322181F91A8D} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {771EC40F-3FD3-4FE8-9182-B60C594456D3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.) Task: {7BC31BFE-83C9-4D19-859F-F0247FEDFE20} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {7C7F99D4-0EE5-4301-930C-F20361C8C689} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {813108E3-01C6-4F4F-B132-7947398BAAFA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.) Task: {83257ED1-B921-4709-8AD6-8BBB98643CCB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe Task: {842019E5-2875-4BDA-8F96-FDD164D5AE71} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [374152 2020-07-09] (Microsoft Corporation -> Microsoft Corporation) Task: {93189095-C8DE-47AC-8FE2-5823CF9E78A9} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {9622086B-6EF3-4D16-AFA6-B9367D5BC16A} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {989BA4BE-C26E-434C-9EB3-0D0C0AC73632} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9D99D81A-06E6-43DC-829C-55281429D674} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-12] (Adobe Inc. -> Adobe) Task: {9F5A2399-634E-40CA-848F-A2DBAE4B2737} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {A1A899C0-9D2C-4ECA-9855-742F1A008F1B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {A55CB5DE-1B15-4E37-A8A4-0743A6337599} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-07] (Google Inc -> Google Inc.) Task: {AB7331E2-1A3A-4162-980B-FB1553915D96} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {AD4C6FFD-4DE5-4F33-B1F5-BB53737AF1DB} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {AE04E566-6317-404E-9E2B-AA02CC84452F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B300DDD2-ED92-4C94-AFBF-F6FEAACC728E} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {BC45BBCE-6CC6-4A88-B041-5901A268DF9A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-07] (Google Inc -> Google Inc.) Task: {C4A0A3C2-C07A-49D6-A6BD-B98E05BE3C5E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {D2CF56E7-DE13-4D78-B0ED-8CC2DF418887} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D36B819E-5F76-4634-A539-B933654C31E2} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {E383AEAE-8368-47FD-9A7A-3C46C5492A08} - \Microsoft\Windows\Setup\EOSNotify2 -> Geen bestand <==== AANDACHT Task: {E4340D3B-89CC-42F0-AADB-296D44E8A637} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe Task: {E7C41615-4004-4FDF-98B5-88F068CC8748} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {EB12E173-E259-4E63-8398-F4CD1623FCC7} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {EB51F4A4-A5F1-4AA3-BB2F-ABC7581CC8D0} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {EBCCD42F-6BD4-48B0-B082-5EE1ABC978B6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F0BA8F88-4D39-4EE8-934B-958C73DBA70F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [374152 2020-07-09] (Microsoft Corporation -> Microsoft Corporation) Task: {F3E10B12-F04E-4245-BEE5-6F19CABF4CBB} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe Task: {F9D32C66-0883-4D39-B20E-A9F696500B5F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Task: {FC60885B-998A-4F49-9579-E167A25387CF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation) Task: {FCA61CEA-1AB6-4D55-AF6F-754E52B0FB08} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {FE9B67DE-6AEE-4E44-AFF5-0749838DA8BB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 89.101.251.229 89.101.251.228 Tcpip\..\Interfaces\{315FA1DD-AD03-4236-9955-261FAD8C70BE}: [DhcpNameServer] 89.101.251.229 89.101.251.228 Tcpip\..\Interfaces\{3B72707B-1A95-4A8D-B639-CDB0EA41DE37}: [DhcpNameServer] 89.101.251.229 89.101.251.228 Edge: ====== DownloadDir: Edge DefaultProfile: Default Edge Profile: C:\Users\Johan\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-24] FireFox: ======== FF DefaultProfile: j77njbby.default FF ProfilePath: C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\j77njbby.default [2020-11-23] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-10-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1216156.dll [2015-01-09] (Adobe Systems, Inc.) [Bestand niet getekend] FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2019-12-02] (Citrix Systems, Inc. -> Citrix Systems, Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2015-10-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) [Bestand niet getekend] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-10-22] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3157429923-292206502-2485843891-1001: @adobe.com/Acrobat,version=5.1 -> C:\Program Files (x86)\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll [2002-08-11] (Adobe Systems Inc.) [Bestand niet getekend] Chrome: ======= CHR Profile: C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default [2020-11-23] CHR Extension: (Presentaties) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25] CHR Extension: (Documenten) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25] CHR Extension: (Google Drive) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-15] CHR Extension: (YouTube) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-08] CHR Extension: (Google Search) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-04-15] CHR Extension: (Spreadsheets) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-25] CHR Extension: (Offline Documenten) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-06] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-15] CHR Extension: (Gmail) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30] CHR Extension: (Chrome Media Router) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-06] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.) S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-12] (Adobe Inc. -> Adobe) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7211968 2018-08-10] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3051928 2020-05-12] (Microsoft Corporation -> Microsoft Corporation) S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-08-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S4 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP) S4 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.) S4 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [55000 2017-02-16] (Plays.tv, LLC -> Copyright (c) 2017 Plays.tv, LLC) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-09] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 e1express; C:\WINDOWS\System32\drivers\e1e6032e.sys [300544 2019-12-07] (Microsoft Windows -> Intel Corporation) R3 MpKsle826ef6f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9B2CBD27-078F-41A6-839A-90D2B999672E}\MpKslDrv.sys [47336 2020-11-24] (Microsoft Windows -> Microsoft Corporation) R1 vbdenum; C:\WINDOWS\System32\drivers\vbdenum.sys [119432 2019-07-24] (Citrix Systems, Inc. -> Citrix Systems, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-11-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429288 2020-11-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-09] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-11-24 17:53 - 2020-11-24 17:56 - 000023177 _____ C:\Users\Johan\Downloads\FRST.txt 2020-11-24 17:53 - 2020-11-24 17:55 - 000000000 ____D C:\FRST 2020-11-24 17:28 - 2020-11-24 17:51 - 002295808 _____ (Farbar) C:\Users\Johan\Downloads\FRST64.exe 2020-11-23 16:37 - 2020-11-23 16:37 - 030469496 _____ (Piriform Software Ltd) C:\Users\Johan\Downloads\ccsetup574.exe 2020-11-23 08:02 - 2020-11-23 08:02 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-11-23 08:02 - 2020-11-23 08:02 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2020-11-23 08:01 - 2020-11-23 08:01 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-11-23 08:01 - 2020-11-23 08:01 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2020-11-23 08:01 - 2020-11-23 08:01 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe 2020-11-18 10:33 - 2020-11-18 10:33 - 000000000 ____D C:\ProgramData\ATI 2020-11-18 10:32 - 2020-11-18 10:32 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2020-11-18 10:27 - 2020-11-18 10:27 - 000000020 ___SH C:\Users\Johan\ntuser.ini 2020-11-18 10:25 - 2020-11-23 16:38 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-11-18 10:25 - 2020-11-23 16:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-11-18 10:25 - 2020-11-18 10:26 - 000003602 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-11-18 10:25 - 2020-11-18 10:26 - 000003504 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-11-18 10:25 - 2020-11-18 10:26 - 000003456 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater 2020-11-18 10:25 - 2020-11-18 10:26 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3157429923-292206502-2485843891-1000 2020-11-18 10:25 - 2020-11-18 10:25 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2020-11-18 10:25 - 2020-11-18 10:25 - 000003378 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-11-18 10:25 - 2020-11-18 10:25 - 000003280 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-11-18 10:25 - 2020-11-18 10:25 - 000003280 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2020-11-18 10:25 - 2020-11-18 10:25 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3157429923-292206502-2485843891-1001 2020-11-18 10:25 - 2020-11-18 10:25 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2020-11-18 10:25 - 2020-11-18 10:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD 2020-11-18 10:25 - 2020-11-18 10:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform 2020-11-18 10:25 - 2020-11-18 10:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard 2020-11-18 10:24 - 2020-11-18 10:25 - 000011433 _____ C:\WINDOWS\diagwrn.xml 2020-11-18 10:24 - 2020-11-18 10:25 - 000011433 _____ C:\WINDOWS\diagerr.xml 2020-11-18 10:15 - 2020-11-23 16:29 - 001925532 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-11-18 10:03 - 2020-11-18 10:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2020-11-18 10:03 - 2020-11-18 10:03 - 000000000 ____D C:\Program Files\ATI Technologies 2020-11-18 10:03 - 2020-11-18 10:03 - 000000000 ____D C:\Program Files (x86)\ATI Technologies 2020-11-18 10:02 - 2020-11-23 17:02 - 000000000 ____D C:\Users\Johan 2020-11-18 10:02 - 2020-11-18 10:23 - 000000000 ____D C:\Users\Gebruiker 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\Sjablonen 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\Netwerkprinteromgeving 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\Mijn documenten 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\Menu Start 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\Documents\Mijn video's 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\Documents\Mijn muziek 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\Documents\Mijn afbeeldingen 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Johan\AppData\Local\Geschiedenis 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\Sjablonen 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\Netwerkprinteromgeving 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\Mijn documenten 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\Menu Start 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\Documents\Mijn video's 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\Documents\Mijn muziek 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\Documents\Mijn afbeeldingen 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's 2020-11-18 10:02 - 2020-11-18 10:02 - 000000000 _SHDL C:\Users\Gebruiker\AppData\Local\Geschiedenis 2020-11-18 10:02 - 2020-11-18 10:01 - 000000000 ____D C:\Users\Johan\AppData\Roaming\ATI 2020-11-18 10:02 - 2020-11-18 10:01 - 000000000 ____D C:\Users\Johan\AppData\Local\ATI 2020-11-18 10:02 - 2020-11-18 10:01 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\ATI 2020-11-18 10:02 - 2020-11-18 10:01 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\ATI 2020-11-18 10:02 - 2019-12-07 10:10 - 000001105 _____ C:\Users\Johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-11-18 10:02 - 2019-12-07 10:10 - 000001105 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-11-18 10:01 - 2020-11-18 10:01 - 000000000 ____D C:\Users\Default\AppData\Roaming\ATI 2020-11-18 10:01 - 2020-11-18 10:01 - 000000000 ____D C:\Users\Default\AppData\Local\ATI 2020-11-18 10:01 - 2020-11-18 10:01 - 000000000 ____D C:\Users\Default User\AppData\Roaming\ATI 2020-11-18 10:01 - 2020-11-18 10:01 - 000000000 ____D C:\Users\Default User\AppData\Local\ATI 2020-11-18 09:56 - 2020-11-24 17:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-11-18 09:55 - 2020-11-23 16:22 - 000008192 ___SH C:\DumpStack.log.tmp 2020-11-18 09:55 - 2020-11-23 16:18 - 000523008 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-11-18 09:54 - 2020-11-18 10:27 - 000000000 ____D C:\Windows.old 2020-11-18 09:47 - 2020-11-18 09:54 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2020-11-18 09:47 - 2020-11-18 09:47 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines 2020-11-18 09:42 - 2020-11-18 09:46 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2020-11-18 09:42 - 2020-11-18 09:42 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2020-11-18 09:38 - 2020-11-18 09:38 - 000000000 ____D C:\ProgramData\ssh 2020-11-18 09:28 - 2020-11-18 09:28 - 000580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2020-11-18 09:28 - 2020-11-18 09:28 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2020-11-18 09:27 - 2020-11-18 09:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-11-18 09:27 - 2020-11-18 09:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-11-18 09:27 - 2020-11-18 09:27 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-11-18 09:27 - 2020-11-18 09:27 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2020-11-18 09:27 - 2020-11-18 09:27 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2020-11-18 09:27 - 2020-11-18 09:27 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax 2020-11-18 09:27 - 2020-11-18 09:27 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax 2020-11-18 09:27 - 2020-11-18 09:27 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2020-11-18 09:27 - 2020-11-18 09:27 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2020-11-18 09:27 - 2020-11-18 09:27 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl 2020-11-18 09:26 - 2020-11-18 09:26 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2020-11-18 09:26 - 2020-11-18 09:26 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb 2020-11-18 09:26 - 2020-11-18 09:26 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl 2020-11-18 09:26 - 2020-11-18 09:26 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll 2020-11-18 09:26 - 2020-11-18 09:26 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2020-11-18 09:25 - 2020-11-18 09:25 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll 2020-11-18 09:25 - 2020-11-18 09:25 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll 2020-11-18 09:25 - 2020-11-18 09:25 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2020-11-18 09:25 - 2020-11-18 09:25 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll 2020-11-18 09:25 - 2020-11-18 09:25 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll 2020-11-18 09:25 - 2020-11-18 09:25 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2020-11-18 09:25 - 2020-11-18 09:25 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2020-11-18 09:25 - 2020-11-18 09:25 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl 2020-11-18 09:25 - 2020-11-18 09:25 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll 2020-11-18 09:25 - 2020-11-18 09:25 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv 2020-11-18 09:24 - 2020-11-18 09:24 - 001822256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-11-18 09:24 - 2020-11-18 09:24 - 001393472 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-11-18 09:24 - 2020-11-18 09:24 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl 2020-11-18 09:24 - 2020-11-18 09:24 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2020-11-18 09:24 - 2020-11-18 09:24 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2020-11-18 09:24 - 2020-11-18 09:24 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2020-11-18 09:23 - 2020-11-18 09:23 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2020-11-18 09:23 - 2020-11-18 09:23 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2020-11-18 09:23 - 2020-11-18 09:23 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll 2020-11-18 09:23 - 2020-11-18 09:23 - 000645120 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2020-11-18 09:23 - 2020-11-18 09:23 - 000306176 _____ C:\WINDOWS\system32\HeatCore.dll 2020-11-18 09:23 - 2020-11-18 09:23 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb 2020-11-18 09:23 - 2020-11-18 09:23 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll 2020-11-18 09:23 - 2020-11-18 09:23 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll 2020-11-18 09:22 - 2020-11-18 09:22 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2020-11-18 09:22 - 2020-11-18 09:22 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2020-11-18 09:22 - 2020-11-18 09:22 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2020-11-18 09:22 - 2020-11-18 09:22 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2020-11-18 09:22 - 2020-11-18 09:22 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2020-11-18 09:22 - 2020-11-18 09:22 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2020-11-18 09:22 - 2020-11-18 09:22 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2020-11-18 09:22 - 2020-11-18 09:22 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll 2020-11-18 09:22 - 2020-11-18 09:22 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv 2020-11-18 09:22 - 2020-11-18 09:22 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2020-11-18 09:10 - 2020-11-18 09:10 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml 2020-11-18 09:10 - 2020-11-18 09:10 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\WINDOWS\system32\msmq 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\WINDOWS\system32\BestPractices 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\Program Files\Reference Assemblies 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\Program Files\MSBuild 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\Program Files (x86)\MSBuild 2020-11-18 09:06 - 2020-11-18 09:06 - 000000000 ____D C:\inetpub 2020-11-17 15:40 - 2020-11-17 15:40 - 000000899 _____ C:\Users\Johan\Downloads\launch (71).ica 2020-11-16 09:20 - 2020-11-16 09:20 - 000000899 _____ C:\Users\Johan\Downloads\launch (69).ica 2020-11-16 09:19 - 2020-11-16 09:20 - 000000899 _____ C:\Users\Johan\Downloads\launch (68).ica 2020-11-10 15:12 - 2020-11-10 15:12 - 000000899 _____ C:\Users\Johan\Downloads\launch (67).ica 2020-11-10 15:09 - 2020-11-10 15:09 - 000000899 _____ C:\Users\Johan\Downloads\launch (66).ica 2020-11-10 15:09 - 2020-11-10 15:09 - 000000899 _____ C:\Users\Johan\Downloads\launch (65).ica 2020-11-09 08:35 - 2020-11-23 16:40 - 000000000 ___DC C:\WINDOWS\Panther 2020-11-09 07:58 - 2020-11-09 07:58 - 000000000 ___HD C:\$WinREAgent 2020-11-03 12:40 - 2020-11-03 12:40 - 000000899 _____ C:\Users\Johan\Downloads\launch (64).ica ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-11-24 17:59 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-11-24 17:26 - 2017-03-15 18:02 - 000000000 ____D C:\Users\Johan\AppData\Local\Citrix 2020-11-24 10:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-11-24 09:51 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2020-11-24 09:51 - 2015-10-09 15:23 - 000000000 ____D C:\Program Files\CCleaner 2020-11-23 16:38 - 2015-10-09 15:24 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-11-23 16:30 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2020-11-23 16:29 - 2019-12-07 16:12 - 000826710 _____ C:\WINDOWS\system32\perfh013.dat 2020-11-23 16:29 - 2019-12-07 16:12 - 000172306 _____ C:\WINDOWS\system32\perfc013.dat 2020-11-23 16:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2020-11-23 16:14 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2020-11-23 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-11-23 08:34 - 2015-02-09 09:48 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-11-23 08:34 - 2015-02-09 09:47 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-11-23 08:12 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2020-11-23 08:12 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-11-23 07:46 - 2020-06-16 08:16 - 000002431 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-11-23 07:46 - 2020-06-16 08:16 - 000002269 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2020-11-19 08:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat 2020-11-18 10:46 - 2020-01-23 13:40 - 000000000 ____D C:\Users\Johan\AppData\Local\Packages 2020-11-18 10:46 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2020-11-18 10:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2020-11-18 10:29 - 2020-01-23 13:41 - 000000000 ___RD C:\Users\Johan\3D Objects 2020-11-18 10:29 - 2020-01-14 09:06 - 000000000 ____D C:\ProgramData\Packages 2020-11-18 10:29 - 2020-01-13 23:56 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-11-18 10:26 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT 2020-11-18 10:26 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2020-11-18 10:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2020-11-18 10:23 - 2016-09-19 17:22 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-11-18 10:05 - 2020-01-13 23:55 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\Packages 2020-11-18 10:00 - 2016-08-04 17:48 - 000000000 ____D C:\AMD 2020-11-18 09:55 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2020-11-18 09:54 - 2020-10-06 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy Video Maker 2020-11-18 09:54 - 2020-05-29 08:28 - 000000000 ____D C:\Program Files\UNP 2020-11-18 09:54 - 2019-12-07 16:12 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep 2020-11-18 09:54 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files\Windows Sidebar 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\IME 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\schemas 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-11-18 09:54 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2020-11-18 09:54 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2020-11-18 09:54 - 2017-03-15 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlaysTV 2020-11-18 09:54 - 2016-10-26 08:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake 2020-11-18 09:54 - 2016-10-02 13:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2020-11-18 09:54 - 2016-09-19 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-11-18 09:54 - 2016-09-05 12:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support 2020-11-18 09:54 - 2016-07-20 08:48 - 000000000 ____D C:\Program Files\AMD 2020-11-18 09:54 - 2016-01-25 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth 2020-11-18 09:54 - 2015-11-11 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPEG4 Direct Maker 2020-11-18 09:54 - 2015-11-04 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2020-11-18 09:54 - 2015-10-09 15:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2020-11-18 09:54 - 2015-02-09 13:18 - 000000000 ____D C:\WINDOWS\SysWOW64\Lang 2020-11-18 09:54 - 2015-02-09 12:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2020-11-18 09:54 - 2015-02-09 10:35 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4 2020-11-18 09:54 - 2015-02-09 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2020-11-18 09:54 - 2015-02-09 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2020-11-18 09:54 - 2015-02-09 09:59 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe 2020-11-18 09:54 - 2015-02-09 09:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfraRecorder 2020-11-18 09:54 - 2015-02-09 09:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2020-11-18 09:54 - 2015-02-09 09:40 - 000000000 ____D C:\WINDOWS\SysWOW64\x64 2020-11-18 09:54 - 2009-07-14 04:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicyUsers 2020-11-18 09:54 - 2009-07-14 04:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2020-11-18 09:54 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2020-11-18 09:47 - 2016-07-20 08:51 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies 2020-11-18 09:47 - 2015-11-03 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2020-11-18 09:47 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\Microsoft Games 2020-11-18 09:38 - 2019-12-07 16:15 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2020-11-18 09:38 - 2019-12-07 16:15 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2020-11-18 09:38 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2020-11-18 09:36 - 2019-12-07 16:15 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2020-11-18 09:36 - 2019-12-07 16:15 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2020-11-18 09:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2020-11-18 09:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2020-11-18 09:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2020-11-18 09:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2020-11-18 09:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2020-11-18 09:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2020-11-18 09:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2020-11-18 09:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2020-11-18 09:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI 2020-11-11 15:05 - 2015-02-06 16:57 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-11-11 15:05 - 2015-02-06 16:57 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-11-09 07:57 - 2020-01-13 23:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2020-11-09 07:54 - 2016-03-04 11:49 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-11-03 12:44 - 2010-11-21 04:27 - 000795000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================