Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 17-04-2021 Gestart door flami (Beheerder) op DESKTOP-TIJPHM2 (Acer Aspire TC-605) (19-04-2021 10:46:38) Gestart vanaf C:\Users\flami\Downloads Geladen Profielen: flami Platform: Windows 10 Home Versie 1909 18363.1500 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe (Microsoft Windows -> ) C:\WINDOWS\System32\OpenSSH\ssh-agent.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\MusNotifyIcon.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (Open-Shell) [Bestand niet getekend] C:\Program Files\Open-Shell\StartMenu.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [224768 2019-10-26] (Open-Shell) [Bestand niet getekend] HKLM\...\Policies\Explorer: [NoRecentDocsNetHood] 1 GroupPolicy: Restrictie ? <==== AANDACHT Policies: C:\ProgramData\NTUSER.pol: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0248A74C-8EFE-4D35-A08C-F064391F4021} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {235799BC-E753-4830-8581-BDD90DDB6DAC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {290F038B-0BF5-449C-A9DD-075D9FCF43DF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2AE6E9BA-5B24-4E35-BC59-77E98A5D771E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {30CD4CA9-3222-4C4F-8B40-482D222635D1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {390DBB8B-4480-4E69-85D0-222D8AEC391D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {3B9128DF-AFBB-4856-B85B-B491BC634B07} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Antivirus Emergency Update" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\CreateExplorerShellUnelevatedTask" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {3E06CCC2-BA1E-4802-A877-967BB702F3EA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE Task: {41B3898B-592C-474C-8301-D0209B9AB431} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe Task: {4535017C-D929-4405-851A-F6BA6B23BB0B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe Task: {4CDD75FF-2790-4315-804D-5F01FDAA4E8C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {53AEF052-47EC-4A40-934F-5CFF47B647E9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696816 2021-03-25] (Mozilla Corporation -> Mozilla Foundation) Task: {6B575F46-7562-4720-86A7-C4CCF7C8F28F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {765BC70C-861D-43EE-A222-698342970985} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe Task: {9D2EE5D6-CCC2-4FEF-B33F-0F7C16589B91} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe Task: {BE85002C-F54A-4A68-8844-20BB53477BE5} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EA64E3C7-5044-4897-ABDB-0402E7E69434} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EAB32ADA-42B9-4A1F-A229-5F7303C98DFB} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe Task: {FD380C27-1598-43E1-8C3E-9B86187E6A2C} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d8a9655d-316b-4df0-92d3-94e5fec1ff59}: [DhcpNameServer] 192.168.1.1 HKLM\System\...\Parameters\PersistentRoutes: [104.87.88.177,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [104.89.242.39,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [104.96.147.3,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [111.221.29.177,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [111.221.29.253,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [131.253.34.230,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [131.253.40.37,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [131.253.61.100,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [131.253.61.64,255.255.255.255,0.0.0.0,1] HKLM\System\...\Parameters\PersistentRoutes: [131.253.61.68,255.255.255.255,0.0.0.0,1] PersistentRoutes: Er zijn 95 PersistentRoutes. Edge: ======= Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] FireFox: ======== FF DefaultProfile: 8maxltrb.default-1574339924015 FF ProfilePath: C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015 [2021-04-19] FF Homepage: Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015 -> hxxps://yandex.ru/?clid=2224022 FF NewTab: Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015 -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2020-12-31 01:10:54&bName= FF HomepageOverride: Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015 -> Enabled: homeutil@yandex.ru FF HomepageOverride: Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015 -> Enabled: qwantcomforfirefox@jetpack FF Extension: (Facebook Container) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\@contain-facebook.xpi [2020-09-30] FF Extension: (Стартовая — Яндекс) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\homeutil@yandex.ru.xpi [2021-04-15] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2021-04-15] FF Extension: (Qwant) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\qwantcomforfirefox@jetpack.xpi [2021-04-15] FF Extension: (uBlock Origin) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\uBlock0@raymondhill.net.xpi [2021-04-15] FF Extension: (Colorful cubes) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\{168c7cf2-8d10-460d-94f3-6482b8602cc2}.xpi [2020-07-28] FF Extension: (gray leaf) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\{979aae3a-31db-479d-b7d5-95054b5a33ff}.xpi [2020-07-28] FF Extension: (Video DownloadHelper) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-19] FF Extension: (Northern Lake by MaDonna) - C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\Extensions\{fcebb804-5eb9-43d9-a12a-30f6ca1b9b1b}.xpi [2020-07-28] FF SearchPlugin: C:\Users\flami\AppData\Roaming\Mozilla\Firefox\Profiles\8maxltrb.default-1574339924015\searchplugins\My Bing Search.xml [2020-12-31] FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => niet gevonden FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => niet gevonden FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-09-16] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Bestand niet getekend] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-09-16] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Bestand niet getekend] FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-14] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [384280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-27] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-27] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [Bestand niet getekend] R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2015-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [245304 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2021-03-30] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) R3 splitcam_hd_driver; C:\WINDOWS\System32\drivers\splitcam_hd_driver.sys [38000 2020-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [45024 2018-04-09] (ExprsVPN LLC -> The OpenVPN Project) S3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [237312 2020-02-19] (Oracle Corporation -> Oracle Corporation) U5 vsock; C:\Windows\System32\Drivers\vsock.sys [105912 2020-08-11] (VMware, Inc. -> VMware, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-03-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420072 2021-03-27] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-27] (Microsoft Windows -> Microsoft Corporation) U1 aswbdisk; geen ImagePath U1 avgbdisk; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-04-19 10:46 - 2021-04-19 10:47 - 000023531 _____ C:\Users\flami\Downloads\FRST.txt 2021-04-19 10:45 - 2021-04-19 10:45 - 002298368 _____ (Farbar) C:\Users\flami\Downloads\FRST64.exe 2021-04-17 02:17 - 2021-04-17 02:17 - 000000000 ____D C:\ProgramData\RogueKiller 2021-04-17 01:43 - 2021-04-17 01:43 - 000000876 _____ C:\Users\flami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PortableApps.com Platform.lnk 2021-04-17 01:32 - 2021-04-17 01:32 - 000000000 ____D C:\Users\flami\AppData\Roaming\QtProject 2021-04-17 01:31 - 2021-04-17 01:34 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 12 2021-04-17 01:31 - 2019-11-08 11:15 - 003600896 _____ C:\WINDOWS\system32\pwNative.exe 2021-04-17 01:31 - 2019-11-08 11:15 - 000012504 _____ C:\WINDOWS\system32\pwdspio.sys 2021-04-17 01:31 - 2019-11-08 10:14 - 000019152 _____ C:\WINDOWS\system32\pwdrvio.sys 2021-04-16 23:50 - 2021-04-16 23:55 - 000000000 ____D C:\ProgramData\SecTaskMan 2021-04-16 20:31 - 2021-04-18 15:11 - 000000000 ___HD C:\$WINDOWS.~BT 2021-04-16 20:13 - 2021-04-16 23:55 - 000000000 ___HD C:\$GetCurrent 2021-04-16 19:57 - 2021-04-16 19:57 - 000000000 ___HD C:\$SysReset 2021-04-16 19:06 - 2021-04-16 19:06 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2021-04-16 19:06 - 2017-09-16 19:17 - 000135800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2021-04-16 19:06 - 2017-07-20 19:21 - 000905504 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-04-16 19:06 - 2017-07-20 19:21 - 000776992 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-04-16 19:06 - 2017-07-20 19:21 - 000578848 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-04-16 19:06 - 2017-07-20 19:21 - 000477472 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-04-16 19:03 - 2021-04-16 19:10 - 000008192 ___SH C:\DumpStack.log.tmp 2021-04-16 09:37 - 2021-04-16 20:39 - 000000000 ____D C:\WINDOWS\Panther 2021-04-16 09:28 - 2021-04-16 09:28 - 000000000 ___HD C:\$WinREAgent 2021-04-15 03:28 - 2021-04-15 03:29 - 000000000 ____D C:\Users\flami\Documents\QupZillaPortable 2021-04-15 03:28 - 2021-04-15 03:28 - 000000000 ____D C:\Users\flami\Documents\PrivateBrowsingByPortableApps 2021-04-15 03:28 - 2021-04-15 03:28 - 000000000 ____D C:\Users\flami\Documents\Photo Supreme x64 2021-04-15 03:28 - 2021-04-15 03:28 - 000000000 ____D C:\Users\flami\Documents\Photo Glamour 2021-04-15 03:28 - 2021-04-15 03:28 - 000000000 ____D C:\Users\flami\Documents\K-MeleonPortable 2021-04-15 03:27 - 2021-04-15 03:27 - 000000000 ____D C:\Users\flami\Documents\7-ZipPortable 2021-04-15 02:32 - 2021-04-15 02:33 - 000000000 ____D C:\Users\flami\Downloads\SyMenu 2021-04-15 01:53 - 2021-04-15 01:53 - 000000378 _____ C:\Users\flami\Downloads\rules.txt 2021-04-14 23:12 - 2021-04-15 01:51 - 000000500 _____ C:\Users\flami\Documents\unwanted.txt 2021-04-14 23:01 - 2021-04-14 23:01 - 000000069 _____ C:\Users\flami\Documents\google.txt 2021-04-14 11:14 - 2021-04-14 11:14 - 001758672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-04-14 11:14 - 2021-04-14 11:14 - 000232760 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2021-04-14 11:14 - 2021-04-14 11:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2021-04-07 10:24 - 2021-04-07 10:24 - 000309104 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys 2021-04-07 10:23 - 2021-04-07 10:23 - 000263888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys 2021-04-07 10:23 - 2021-04-07 10:23 - 000224880 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys 2021-04-07 10:23 - 2021-04-07 10:23 - 000115744 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys 2021-04-02 21:51 - 2021-04-16 21:00 - 000000000 ____D C:\Users\flami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-04-02 21:51 - 2021-04-16 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-04-01 21:36 - 2021-04-01 21:36 - 000000000 ____D C:\ProgramData\Razer 2021-04-01 21:35 - 2021-04-16 21:00 - 000000000 ____D C:\Program Files (x86)\Razer 2021-04-01 21:35 - 2020-10-20 23:31 - 000079376 _____ (Razer Inc) C:\WINDOWS\system32\RazerS2S3Coinstaller.dll 2021-03-30 18:59 - 2021-03-30 18:59 - 000099152 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys 2021-03-30 18:59 - 2021-03-30 18:59 - 000000000 ____D C:\Program Files\Common Files\AV 2021-03-30 18:58 - 2021-04-16 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2021-03-30 18:58 - 2021-04-01 23:58 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2021-03-30 18:58 - 2021-03-30 18:58 - 000002197 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2021-03-30 18:58 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll 2021-03-30 18:58 - 2021-02-19 21:08 - 001042712 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2021-03-30 18:58 - 2021-02-19 21:08 - 000514840 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys 2021-03-27 23:16 - 2021-04-16 21:00 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2021-03-27 23:16 - 2021-03-30 18:55 - 000000000 ____D C:\Program Files (x86)\Panda Security 2021-03-27 23:16 - 2021-03-30 18:54 - 000000000 ____D C:\Users\flami\AppData\Roaming\Panda Security 2021-03-27 23:14 - 2021-03-30 18:54 - 000000000 ____D C:\ProgramData\Panda Security 2021-03-25 21:01 - 2021-03-25 21:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-03-25 18:37 - 2021-04-11 22:43 - 000000000 ____D C:\Program Files\Mozilla Firefox ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-04-19 10:46 - 2020-03-08 01:44 - 000000000 ____D C:\FRST 2021-04-19 10:44 - 2020-09-11 18:31 - 000000000 ____D C:\Users\flami\AppData\LocalLow\Mozilla 2021-04-19 10:44 - 2019-11-21 15:06 - 000000000 ____D C:\ProgramData\Mozilla 2021-04-19 10:39 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-04-19 10:33 - 2017-12-05 08:37 - 000000000 ____D C:\ProgramData\NVIDIA 2021-04-19 10:32 - 2019-11-21 19:57 - 001771832 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-04-19 10:32 - 2019-03-19 14:33 - 000786140 _____ C:\WINDOWS\system32\perfh013.dat 2021-04-19 10:32 - 2019-03-19 14:33 - 000154170 _____ C:\WINDOWS\system32\perfc013.dat 2021-04-19 10:32 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2021-04-19 10:27 - 2020-04-03 18:40 - 000001134 _____ C:\WINDOWS\system32\config\VSMIDK 2021-04-19 10:27 - 2019-11-21 19:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-04-18 22:49 - 2019-11-21 20:21 - 000000000 ____D C:\Users\flami\AppData\Local\OpenShell 2021-04-18 22:49 - 2019-03-19 06:37 - 000262144 _____ C:\WINDOWS\system32\config\BBI 2021-04-18 22:31 - 2019-11-21 19:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-04-18 19:45 - 2019-03-19 06:37 - 000065536 _____ C:\WINDOWS\system32\config\ELAM 2021-04-18 15:24 - 2020-01-28 20:33 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-04-18 15:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-04-18 15:05 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2021-04-17 06:09 - 2017-12-05 11:35 - 000000000 ____D C:\Program Files\CCleaner 2021-04-17 03:39 - 2017-12-05 13:24 - 000000000 ____D C:\Users\flami\AppData\Local\transmission 2021-04-16 23:40 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-04-16 23:39 - 2021-02-27 00:34 - 000000000 ____D C:\Users\flami\Downloads\new photo's 2021-04-16 21:49 - 2019-11-21 19:57 - 000001908 _____ C:\WINDOWS\diagwrn.xml 2021-04-16 21:49 - 2019-11-21 19:57 - 000001908 _____ C:\WINDOWS\diagerr.xml 2021-04-16 21:42 - 2017-12-05 08:20 - 000008192 __RSH C:\BOOTSECT.BAK 2021-04-16 21:39 - 2017-12-05 08:20 - 000000001 ___SH C:\BOOTNXT 2021-04-16 21:00 - 2021-02-23 01:24 - 000000000 ____D C:\Users\flami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ON1 2021-04-16 21:00 - 2021-01-20 00:18 - 000000000 ____D C:\WINDOWS\system32\%Data% 2021-04-16 21:00 - 2021-01-20 00:17 - 000000000 ____D C:\WINDOWS\SysWOW64\%Data% 2021-04-16 21:00 - 2020-12-24 06:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO 2021-04-16 21:00 - 2020-08-03 14:07 - 000000000 ____D C:\Program Files\UNP 2021-04-16 21:00 - 2020-04-03 18:40 - 000000000 ____D C:\WINDOWS\system32\HvsiSettingsProviders 2021-04-16 21:00 - 2019-11-27 21:48 - 000000000 ____D C:\Users\flami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DC++ 2021-04-16 21:00 - 2019-11-21 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2021-04-16 21:00 - 2019-11-21 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open-Shell 2021-04-16 21:00 - 2019-11-21 19:48 - 000000000 ____D C:\Users\flami 2021-04-16 21:00 - 2019-11-21 15:26 - 000000000 ____D C:\WINDOWS\oem 2021-04-16 21:00 - 2019-11-21 14:51 - 000000000 ____D C:\Program Files\Intel 2021-04-16 21:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-04-16 21:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\spool 2021-04-16 21:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-04-16 21:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2021-04-16 21:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ServiceState 2021-04-16 21:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-04-16 21:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Help 2021-04-16 21:00 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-04-16 21:00 - 2018-01-21 05:33 - 000000000 __RSD C:\WINDOWS\system32\WindowsDevicePortal 2021-04-16 21:00 - 2017-12-05 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2021-04-16 21:00 - 2017-12-05 11:40 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-04-16 21:00 - 2017-12-05 08:36 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-04-16 21:00 - 2017-12-05 08:31 - 000000000 ____D C:\Users\flami\AppData\Local\TileDataLayer 2021-04-16 21:00 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-04-16 21:00 - 2017-03-18 23:03 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2021-04-16 20:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Registration 2021-04-16 20:30 - 2018-01-21 04:29 - 000000036 _____ C:\WINDOWS\progress.ini 2021-04-16 20:26 - 2020-12-30 20:57 - 000000262 __RSH C:\ProgramData\ntuser.pol 2021-04-16 20:06 - 2017-12-05 08:31 - 000000000 ____D C:\Users\flami\AppData\Local\ConnectedDevicesPlatform 2021-04-16 19:24 - 2019-11-21 20:16 - 000000000 ____D C:\ProgramData\Packages 2021-04-16 19:23 - 2018-04-13 23:42 - 000000000 ___RD C:\Users\flami\3D Objects 2021-04-16 19:14 - 2018-04-13 23:37 - 000023076 _____ C:\WINDOWS\system32\emptyregdb.dat 2021-04-16 19:06 - 2017-12-05 08:36 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-04-14 21:22 - 2021-01-25 17:49 - 000000000 ____D C:\Users\flami\AppData\Roaming\vlc 2021-04-14 11:27 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-04-14 11:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources 2021-04-14 11:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-04-14 11:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-04-14 11:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-04-14 11:18 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-04-14 11:18 - 2017-12-05 11:38 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-04-14 11:14 - 2017-12-05 08:20 - 000411270 __RSH C:\bootmgr 2021-04-10 01:22 - 2021-02-23 01:23 - 000000000 ____D C:\Users\flami\AppData\Roaming\ON1 2021-04-10 01:22 - 2021-02-23 01:23 - 000000000 ____D C:\ProgramData\ON1 2021-04-02 21:51 - 2020-02-14 16:37 - 000000000 ____D C:\Users\flami\AppData\Local\D3DSCache 2021-04-02 21:51 - 2017-12-07 18:04 - 000000000 ____D C:\Program Files\WinRAR 2021-03-30 18:59 - 2021-01-18 10:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2021-03-30 18:59 - 2021-01-17 03:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2021-03-29 09:36 - 2019-11-22 00:32 - 000000000 ____D C:\Users\flami\AppData\Local\PlaceholderTileLogoFolder 2021-03-28 01:44 - 2018-04-13 23:27 - 000000000 ____D C:\Users\flami\AppData\Local\Packages 2021-03-27 23:40 - 2020-10-25 01:14 - 000257976 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-03-27 23:38 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-03-27 23:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-03-27 23:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-03-27 23:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-03-27 23:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-03-27 23:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning 2021-03-27 23:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-03-27 23:15 - 2019-11-21 19:57 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-03-26 10:23 - 2017-12-05 09:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-03-25 21:01 - 2017-12-05 09:48 - 000000965 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-03-22 03:17 - 2019-11-27 21:48 - 000000000 ____D C:\Users\flami\AppData\Roaming\DC++ 2021-03-22 03:17 - 2019-11-27 21:48 - 000000000 ____D C:\Users\flami\AppData\Local\DC++ 2021-03-21 14:33 - 2017-12-05 10:43 - 000000000 ____D C:\ProgramData\AVAST Software 2021-03-20 18:45 - 2021-01-20 21:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2021-03-20 18:21 - 2021-01-20 00:54 - 000003250 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update 2021-03-20 18:21 - 2020-01-28 20:33 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-03-20 18:21 - 2019-11-21 20:51 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:51 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:51 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:51 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:51 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:51 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:51 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:51 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:50 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 20:50 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-20 18:21 - 2019-11-21 19:57 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask ==================== Bestanden in de root van sommige mappen ======== 2020-12-31 01:53 - 2021-01-17 21:12 - 000000042 _____ () C:\Users\flami\AppData\Roaming\MCVi2UserDetail.ini 2021-02-05 22:48 - 2021-02-05 22:48 - 000000078 _____ () C:\Users\flami\AppData\Roaming\PE.dat 2021-02-19 12:17 - 2021-02-19 12:17 - 000000036 _____ () C:\Users\flami\AppData\Local\housecall.guid.cache 2020-12-31 03:06 - 2020-12-31 03:06 - 000000697 _____ () C:\Users\flami\AppData\Local\recently-used.xbel 2019-11-21 21:06 - 2020-12-29 01:43 - 000007605 _____ () C:\Users\flami\AppData\Local\resmon.resmoncfg 2021-02-19 18:58 - 2021-02-19 18:58 - 000000010 _____ () C:\Users\flami\AppData\Local\sponge.last.runtime.cache ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================