Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 03-08-2021 Gestart door Edwin (Beheerder) op DESKTOP-NSQE8H4 (Acer Aspire E1-771) (07-08-2021 11:46:10) Gestart vanaf C:\Users\Edwin\Downloads Geladen Profielen: Edwin & edwin_6fip4lx Platform: Windows 10 Enterprise LTSC 2019 Versie 1809 17763.1397 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Amazon.com Services LLC -> Amazon.com Inc.) C:\Users\Edwin\AppData\Local\Amazon Drive\AmazonPhotos.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupUI.exe <3> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <87> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17763.1990_none_56b487e79942e5c0\TiWorker.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2016-01-25] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [2766648 2021-08-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5296864 2021-07-24] (Adobe Inc. -> Adobe Systems Inc.) HKU\S-1-5-21-680801753-4117142981-4112970672-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-07-24] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-680801753-4117142981-4112970672-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-07-24] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-680801753-4117142981-4112970672-1001\...\Run: [Amazon Photos] => C:\Users\Edwin\AppData\Local\Amazon Drive\AmazonPhotos.exe [10302664 2021-07-29] (Amazon.com Services LLC -> Amazon.com Inc.) HKU\S-1-5-21-680801753-4117142981-4112970672-1002\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2020-07-24] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-680801753-4117142981-4112970672-1002\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-07-24] (Apple Inc. -> Apple Inc.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65160 2021-07-24] (Adobe Inc. -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.131\Installer\chrmstp.exe [2021-08-05] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{AC76BA86-0000-0000-7760-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat DC\Esl\Aiod.dll [2021-07-24] (Adobe Inc. -> Adobe Systems, Inc.) IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll Startup: C:\Users\Edwin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SABnzbd.lnk [2020-08-22] ShortcutTarget: SABnzbd.lnk -> E:\SABnzb\SABnzbd.exe () [Bestand niet getekend] ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0A7B21BD-3975-4F3D-B45E-DECD1749F2A3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {0CC5FD2D-FE87-4150-AFCB-033E23E3FDC0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1E931D61-D893-40F2-81EE-A01CBA4C8F11} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {274442EB-F7B9-4A07-BCBA-C35C6A57AE5D} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2020-07-24] (Apple Inc. -> Apple Inc.) Task: {3A94F0AB-1E61-4218-A44D-063083FEDD04} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-22] (Google LLC -> Google LLC) Task: {689A8113-FEB8-4F43-9294-7CEDA229FEF9} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {726B40E8-75E5-4C35-9850-1E17B5FC62E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {72C47087-0295-4E77-A1F8-1F861C14D196} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {77542036-F721-4266-A603-7C21D008D48E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {8125FD4A-8D6A-4525-BB96-FC2CDA8E63ED} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation) Task: {8DE93937-7464-4B4A-8ED8-D7F1112FD311} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [6150968 2021-07-26] (AVG Technologies USA, LLC -> AVG Technologies) Task: {999AC6F3-B657-481A-92C5-DEC3D34B475E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {99EBA24C-6987-4932-B4C9-A19ACB59C9A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A9672A53-F138-4B78-9D03-F096706C3874} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation) Task: {AEA8B8FC-21D5-4C16-B9F4-CC1D3ABCE42F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {BFEA783F-04B5-44B1-A870-6C2BD1833210} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E3B6BD06-BFA1-41B5-9237-128AB6CE95FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-22] (Google LLC -> Google LLC) Task: {E530AAB3-8A7F-4E24-B33E-BCA3D4B1EF21} - System32\Tasks\AVG\AVG TuneUp BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [4755256 2021-08-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp\Setup\.." --configpath "C:\Program Files\AVG\TuneUp\Setup" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid a4886e52-a9b6-4d97-baca-1e1ea1c96c3f (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 100.100.1.1 100.90.1.1 192.168.1.1 Tcpip\..\Interfaces\{b93b7f51-f90a-4186-9ca1-53d1bd30d0eb}: [DhcpNameServer] 100.100.1.1 100.90.1.1 192.168.1.1 Edge: ======= Edge Profile: C:\Users\Edwin\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-02] FireFox: ======== FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-07-30] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default [2021-08-07] CHR Notifications: Default -> hxxps://board.streamboard.tv; hxxps://calendar.google.com; hxxps://infocif.os.tc; hxxps://www.ad.nl; hxxps://www.facebook.com; hxxps://www.reddit.com CHR StartupUrls: Default -> "hxxps://www.nu.nl/","hxxps://mijn.tmi.nl/flexbureau/","hxxps://portal.zorgzuster.nl/agenda","hxxps://accounts.google.com/ServiceLogin?service=cl&passive=1209600&osid=1&continue=hxxps://calendar.google.com/calendar/u/0/r/week&followup=hxxps://calendar.google.com/calendar/u/0/r/week&scc=1","hxxps://www.facebook.com/","hxxps://www.doneeractie.nl/","hxxps://vamsys.io/login","hxxps://support.vryr.eu/tickets.php","hxxps://erp.dutchmedicalgroup.nl/extranet/employees/login/?sessionExpired=false&_securedURL=%2Fextranet%2Fmessages%2FviewItems%3F","hxxps://broederdevriesambulancedienst.doczeroacademy.com/auth/login?signin=5500e791dd5e7f8ad710fff4442cac78","hxxps://www.ryanair.com/nl/nl","hxxps://mijn.ing.nl/login","hxxps://www.caixabank.es/particular/home/particulares_es.html","hxxps://www.flightradar24.com/52.07,5.41/9","hxxp://192.168.1.144:8754/index.html","hxxp://192.168.1.144/radar/","hxxp://192.168.1.144/tar1090/?icao=48436d","hxxp://192.168.1.144/graphs1090/","hxxps://www.the-newgeneration.net/login/?ref=aHR0cHM6Ly93d3cudGhlLW5ld2dlbmVyYXRpb24ubmV0L3RvcGljLzkxODUxLW1vdmF2aS12aWRlby1lZGl0b3ItcGx1cy0yMDIwLW11bHRpbGFuZ3VhZ2UteDY0LXRoZS1nbGFkaWF0b3IvP3RhYj1jb21tZW50cw==#comment-1678265","hxxps://www.hetcontrolpanel.nl/?o=%2Fdashboard#/","hxxps://www.tweaknews.eu/nl","hxxp://panel.xtra-code.net/login.php","hxxps://www.marktplaats.nl/account/login.html?target=%2Fmy-account%2Fsell%2Findex.html","hxxps://www.dsw.nl/consumenten/uitgelogd","hxxps://www.pd3rfr.nl/home/shack/rx-rig","hxxps://forum.flightradar24.com/search?searchJSON=%7B%22authorid%22%3A%5B%2291501%22%5D%2C%22view%22%3A%22topic%22%2C%22channel%22%3A%222%22%2C%22exclude_type%22%3A%5B%22vBForum_PrivateMessage%22%5D%7D","hxxp://router.asus.com/Main_Login.asp","hxxps://www.nzbserver.com/?search%5Btree%5D=cat2_zz_a0&sortdir=DESC&sortby=stamp&search%5Bvalue%5D%5B%5D=filesize%3A%3E%3ADEF%3A0&search%5Bvalue%5D%5B%5D=filesize%3A%3C%3ADEF%3A274877906944&search%5Bvalue%5D%5B%5D=Title%3A%3D%3ADEF%3Avideo+editor","hxxps://www.dreamosat-forum.com/board/","hxxps://www.linuxsat-support.com/filebase/file/617-oscam-11-693-ipk/","hxxps://openpli.org/download/vuplus/Duo2","hxxps://www.dropbox.com/login?cont=https%3A%2F%2Fwww.dropbox.com%2Fhome","hxxps://mail.altf3.nl/?_task=mail&_err=session","hxxps://www.wefact.nl/klein-bedrijf/","hxxps://www.litebit.eu/nl/account/wallets","hxxps://www.avis.nl/#","hxxps://www.avis.com/en/business-programs/miles-points-partners/airlines/air-france-flying-blue","hxxps://www.hertz.nl/rentacar/reservation/","hxxps://skyteamvirtual.org/login","hxxps://www.funda.nl/koop/nieuwleusen/huis-41324759-plaggenslag-24/","hxxps://forums.x-plane.org/index.php?/forums/topic/185685-zibo-install-guide-training-checklist/","hxxps://euidp.aholddelhaize.com/isam/sps/auth?PartnerId=https%3A%2F%2Fsam.ahold.com%2Fisam%2Fsps%2FAD_Europe_SAM_SP%2Fsaml20","hxxps://www.linuxsat-support.com/thread/136820-oscam-for-teamblue-6-3-gigablue-hd-800-se/","hxxps://oppstap.tcg-minerva.nl/training/list/all","hxxps://scb.itslearning.com/index.aspx?SessionExpired=3","hxxps://dreamboxedit.com/en/2020/06/05/dreamboxedit-7-2-1-0-windows/","hxxps://www.detransponder.nl/kanalenlijsten/kanalenlijst-hans-van-2-juli-2021/","hxxps://earth.google.com/web/search/Ambonstraat+24,+Delft/@52.02296167,4.35523937,6.54108158a,615.64645364d,35y,-38.25462479h,44.99997131t,0r/data=CigiJgokCbUdisK_A0pAESZXgMiGAkpAGRrwSSJpcRFAIcRR5eq9YBFA","hxxps://www.lyngsat.com/packages/Cyfrowy-Polsat.html","hxxps://www.youtube.com/watch?v=o9AKj76VRvE&t=1356s" CHR Extension: (Presentaties) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-22] CHR Extension: (Documenten) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-22] CHR Extension: (Google Drive) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-02] CHR Extension: (YouTube) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-22] CHR Extension: (Adobe Acrobat) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-08-06] CHR Extension: (Spreadsheets) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-22] CHR Extension: (iCloud-bladwijzers) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2020-08-22] CHR Extension: (Offline Documenten) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-05] CHR Extension: (OPPSTAP) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmfnllbinibionhccnpiphbnfpehagnh [2021-08-02] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-06] CHR Extension: (PDF Viewer) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2020-08-22] CHR Extension: (Amazon Cloud Drive) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\onblnbjlcjnjhabpifmmobpednoicjbn [2021-08-02] CHR Extension: (Gmail) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-06] CHR Extension: (Chrome Media Router) - C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-06] CHR Profile: C:\Users\Edwin\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-22] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [15031096 2021-08-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10566536 2020-08-05] (Microsoft Corporation -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6114840 2020-08-22] (Microsoft Windows Publisher -> Microsoft Corporation) S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13147152 2020-08-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-08-07 11:43 - 2021-08-07 11:43 - 002300416 _____ (Farbar) C:\Users\Edwin\Downloads\Niet bevestigd 480191.crdownload 2021-08-06 22:30 - 2021-08-06 22:37 - 000030192 _____ C:\Users\Edwin\Downloads\Addition.txt 2021-08-06 22:29 - 2021-08-06 22:29 - 000000000 ____D C:\Users\Edwin\AppData\Local\DBG 2021-08-06 22:21 - 2021-08-06 22:23 - 000000000 ____D C:\AdwCleaner 2021-08-06 22:20 - 2021-08-07 11:51 - 000021395 _____ C:\Users\Edwin\Downloads\FRST.txt 2021-08-06 22:20 - 2021-08-06 22:21 - 008553680 _____ (Malwarebytes) C:\Users\Edwin\Downloads\adwcleaner_8.3.0.exe 2021-08-06 22:19 - 2021-08-07 11:48 - 000000000 ____D C:\FRST 2021-08-06 22:13 - 2021-08-06 22:14 - 002300416 _____ (Farbar) C:\Users\Edwin\Downloads\FRST64.exe 2021-08-06 22:00 - 2021-08-06 22:00 - 000176680 _____ C:\Users\Edwin\Downloads\1 lege huurovereenkomst.xlsx 2021-08-06 21:46 - 2021-08-07 10:48 - 000001231 _____ C:\Users\Edwin\Desktop\Amazon Backup.lnk 2021-08-06 21:45 - 2021-08-06 21:45 - 000042189 _____ C:\Users\Edwin\Downloads\08-21.xlsm 2021-08-06 21:43 - 2021-08-06 21:43 - 000001219 _____ C:\Users\Edwin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Photos.lnk 2021-08-06 21:42 - 2021-08-06 21:44 - 000000000 ____D C:\Users\Edwin\AppData\Local\Amazon Drive 2021-08-06 21:35 - 2021-08-06 21:36 - 000457536 _____ C:\Windows\system32\FNTCACHE.DAT 2021-08-06 21:32 - 2021-08-06 21:32 - 000000000 ____D C:\ProgramData\Package Cache 2021-08-06 21:21 - 2021-08-06 21:47 - 000000000 ____D C:\Users\Edwin\AppData\Roaming\Amazon Cloud Drive 2021-08-06 21:11 - 2021-08-06 21:12 - 002030736 _____ (Amazon) C:\Users\Edwin\Downloads\AmazonPhotosSetup.exe 2021-08-06 21:10 - 2021-08-06 21:10 - 000042092 _____ C:\Users\Edwin\Downloads\07-21 (1).xlsm 2021-08-06 21:07 - 2021-08-06 21:08 - 000042092 _____ C:\Users\Edwin\Downloads\07-21.xlsm 2021-08-06 21:03 - 2021-08-06 21:22 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\CrashDumps 2021-08-05 22:44 - 2021-08-05 22:44 - 000007942 _____ C:\Users\Edwin\Downloads\Loonstrook__110 AMBU WEEK_R015553_30_2021_1.pdf 2021-08-05 19:05 - 2021-08-05 19:05 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\DBG 2021-08-03 22:16 - 2021-08-03 22:16 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\LocalLow\Adobe 2021-08-03 22:15 - 2021-08-03 22:17 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\Adobe 2021-08-03 22:15 - 2021-08-03 22:15 - 000039240 _____ C:\Users\edwin_6fip4lx\Downloads\Statement_Jul 2021.pdf 2021-08-02 22:54 - 2021-08-02 22:54 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Roaming\AVG 2021-08-02 22:54 - 2021-08-02 22:54 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\D3DSCache 2021-08-02 22:54 - 2021-08-02 22:54 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\CEF 2021-08-02 22:08 - 2021-08-02 22:08 - 000002063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG TuneUp.lnk 2021-08-02 22:08 - 2021-08-02 22:08 - 000002051 _____ C:\Users\Public\Desktop\AVG TuneUp.lnk 2021-08-02 22:08 - 2021-08-02 22:08 - 000000000 ____D C:\Windows\system32\Tasks\AVG 2021-08-02 22:08 - 2021-08-02 22:08 - 000000000 ____D C:\Users\Edwin\AppData\Roaming\AVG 2021-08-02 22:08 - 2021-08-02 22:08 - 000000000 ____D C:\Users\Edwin\AppData\Local\CEF 2021-08-02 22:07 - 2021-08-02 22:07 - 000000000 ____D C:\Windows\system32\gf2engine 2021-08-02 22:06 - 2021-07-26 13:13 - 000036120 _____ (Avast Software) C:\Windows\system32\icarus_rvrt.exe 2021-08-02 22:05 - 2021-08-02 22:05 - 000000000 ____D C:\Program Files\Common Files\AVG 2021-08-02 22:05 - 2021-08-02 22:05 - 000000000 ____D C:\Program Files\AVG 2021-08-02 22:04 - 2021-08-06 21:37 - 000000000 ____D C:\ProgramData\AVG 2021-08-02 22:02 - 2021-08-02 22:02 - 001190120 _____ (AVG Technologies) C:\Users\Edwin\Downloads\avg_tuneup_online_setup.exe 2021-08-02 21:48 - 2021-08-02 21:48 - 000001772 _____ C:\Users\Edwin\Downloads\oscam.server 2021-07-24 07:39 - 2021-07-24 07:39 - 000065160 _____ (Adobe Systems Inc) C:\Windows\system32\AdobePDF.dll 2021-07-24 07:39 - 2021-07-24 07:39 - 000035992 _____ (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-08-07 11:37 - 2020-08-21 17:51 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-08-07 11:31 - 2020-08-22 21:35 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-07 11:27 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps 2021-08-07 11:27 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\AppReadiness 2021-08-07 11:22 - 2020-08-21 19:05 - 000000000 ____D C:\Users\Edwin\AppData\Local\Packages 2021-08-07 11:16 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-08-07 10:57 - 2018-09-15 08:23 - 000000000 ____D C:\Windows\CbsTemp 2021-08-07 10:53 - 2020-08-21 19:11 - 000004198 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{9E16979A-8185-4BDA-95AF-8F5CFB794C43} 2021-08-06 22:29 - 2020-08-23 21:46 - 000002672 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0 2021-08-06 21:43 - 2020-08-21 18:01 - 001771832 _____ C:\Windows\system32\PerfStringBackup.INI 2021-08-06 21:43 - 2018-09-15 17:42 - 000787406 _____ C:\Windows\system32\perfh013.dat 2021-08-06 21:43 - 2018-09-15 17:42 - 000154388 _____ C:\Windows\system32\perfc013.dat 2021-08-06 21:43 - 2018-09-15 08:31 - 000000000 ____D C:\Windows\INF 2021-08-06 21:40 - 2020-08-23 21:46 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-08-06 21:38 - 2020-08-21 19:30 - 000000000 __SHD C:\Users\Edwin\IntelGraphicsProfiles 2021-08-06 21:36 - 2020-08-21 17:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-08-06 21:35 - 2018-09-15 07:09 - 000262144 _____ C:\Windows\system32\config\BBI 2021-08-06 21:34 - 2020-08-23 19:33 - 000002702 _____ C:\Windows\system32\Tasks\Apple Diagnostics 2021-08-06 21:24 - 2020-08-23 19:41 - 000000000 ___RD C:\Users\Edwin\iCloudDrive 2021-08-06 21:04 - 2020-08-23 21:45 - 000003542 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2021-08-05 22:42 - 2020-08-23 19:28 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\Packages 2021-08-05 22:40 - 2020-08-23 19:32 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\PlaceholderTileLogoFolder 2021-08-05 19:36 - 2020-08-22 21:38 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-08-05 19:36 - 2020-08-22 21:38 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-08-05 19:25 - 2020-08-22 21:35 - 000003578 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-05 19:25 - 2020-08-22 21:35 - 000003454 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-08-05 19:22 - 2020-08-21 17:52 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-08-05 19:11 - 2020-08-23 21:43 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk 2021-08-05 19:11 - 2020-08-23 21:43 - 000002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2021-08-05 19:10 - 2020-08-23 19:35 - 000000000 ___RD C:\Users\edwin_6fip4lx\iCloudDrive 2021-08-05 19:04 - 2020-08-23 19:28 - 000000000 __SHD C:\Users\edwin_6fip4lx\IntelGraphicsProfiles 2021-08-04 14:13 - 2020-08-23 19:28 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\Google 2021-08-03 22:17 - 2020-08-23 19:28 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Roaming\Adobe 2021-08-03 22:03 - 2020-08-21 19:14 - 000002431 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-08-03 22:01 - 2020-08-23 19:32 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Roaming\Apple Computer 2021-08-02 22:51 - 2020-08-23 19:28 - 000000000 ____D C:\Users\edwin_6fip4lx\AppData\Local\ConnectedDevicesPlatform 2021-08-02 22:40 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\NDF 2021-08-02 22:37 - 2020-08-29 22:57 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-08-02 22:25 - 2020-08-21 19:12 - 000003662 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-08-02 22:25 - 2020-08-21 19:12 - 000003438 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-08-02 22:23 - 2020-08-29 22:58 - 000000000 ____D C:\Users\Edwin\AppData\Roaming\TeamViewer 2021-08-02 22:23 - 2020-08-22 22:46 - 000000000 ____D C:\Users\Edwin\AppData\Local\sabnzbd 2021-08-02 22:23 - 2020-08-21 18:51 - 000000000 ____D C:\Windows\Panther 2021-08-02 21:46 - 2020-08-21 19:36 - 000799104 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe ==================== Bestanden in de root van sommige mappen ======== 2020-08-23 21:43 - 2020-08-23 21:43 - 000000410 _____ () C:\Users\Edwin\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================