Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 20.01.2019 Gestart door Frits (Beheerder) op FRITS-PC (23-01-2019 12:23:52) Gestart vanaf C:\Users\Frits\Downloads Geladen Profielen: Frits (Beschikbare Profielen: Frits) Platform: Windows 7 Home Premium Service Pack 1 (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: FF) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe () C:\Program Files (x86)\Polar\Daemon\polard.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-14] (Realtek Semiconductor) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-22] (AVAST Software) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrictie <==== AANDACHT HKU\S-1-5-21-2380815200-2053266589-3261178889-1000\...\MountPoints2: K - K:\AUTORUN.EXE HKU\S-1-5-21-2380815200-2053266589-3261178889-1000\...\MountPoints2: {3e8b1518-9af8-11e6-a9ce-806e6f6e6963} - E:\Launcher.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2019-01-22] (Google Inc.) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.130.3 195.130.131.3 Tcpip\..\Interfaces\{2F52D5E4-0166-4D0A-A65B-1A86D9F6457A}: [DhcpNameServer] 195.130.130.3 195.130.131.3 HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.0.120,1] Internet Explorer: ================== BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: zohy74d9.default FF ProfilePath: C:\Users\Frits\AppData\Roaming\Mozilla\Firefox\Profiles\zohy74d9.default [2019-01-23] FF Homepage: Mozilla\Firefox\Profiles\zohy74d9.default -> hxxp://www.hln.be/ FF Extension: (Touch VPN) - C:\Users\Frits\AppData\Roaming\Mozilla\Firefox\Profiles\zohy74d9.default\Extensions\touch-vpn@anchorfree.com.xpi [2019-01-22] FF Extension: (Geen Naam) - C:\Users\Frits\AppData\Roaming\Mozilla\Firefox\Profiles\zohy74d9.default\Extensions\{60B7679C-BED9-11E5-998D-8526BB8E7F8B}.xpi.gxtjltie [2019-01-22] [niet getekend] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-27] () FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-27] () FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-03-16] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-03-16] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-22] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-22] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.) Chrome: ======= CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Profile: C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default [2019-01-22] CHR Extension: (Presentaties) - C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-22] CHR Extension: (Docs) - C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-22] CHR Extension: (Google Drive) - C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-22] CHR Extension: (YouTube) - C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-22] CHR Extension: (Adobe Acrobat) - C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-01-22] CHR Extension: (Spreadsheets) - C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-22] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-01-22] CHR Extension: (Gmail) - C:\Users\Frits\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-01-22] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [551896 2019-01-03] (Protection Technology) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7834368 2019-01-22] (AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357816 2019-01-22] (AVAST Software) R2 Polar Daemon; C:\Program Files (x86)\Polar\Daemon\polard.exe [419536 2012-12-12] () S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [3854000 2019-01-03] (Protection Technology) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37304 2019-01-22] (AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [203488 2019-01-22] (AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [223056 2019-01-22] (AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [196264 2019-01-22] (AVAST Software) R0 aswblog; C:\Windows\System32\drivers\aswblog.sys [320888 2019-01-22] (AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [58160 2019-01-22] (AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [239808 2019-01-22] (AVAST Software) S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46584 2019-01-22] (AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42488 2019-01-22] (AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [166792 2019-01-22] (AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111992 2019-01-22] (AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88144 2019-01-22] (AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1034056 2019-01-22] (AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [474648 2019-01-22] (AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [218056 2019-01-22] (AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [380144 2019-01-22] (AVAST Software) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) ======== (Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.) 2019-01-23 12:23 - 2019-01-23 12:24 - 000010831 _____ C:\Users\Frits\Downloads\FRST.txt 2019-01-23 12:23 - 2019-01-23 12:23 - 002428416 _____ (Farbar) C:\Users\Frits\Downloads\FRST64.exe 2019-01-23 12:23 - 2019-01-23 12:23 - 000000000 ____D C:\FRST 2019-01-23 12:18 - 2019-01-23 12:18 - 011547760 _____ (Bitdefender LLC) C:\Users\Frits\Downloads\BDGandCrabDecryptTool.exe 2019-01-22 20:59 - 2019-01-22 12:31 - 000009138 _____ C:\Users\Frits\Documents\GXTJLTIE-DECRYPT.txt 2019-01-22 20:43 - 2019-01-22 20:43 - 000000078 _____ C:\Users\Frits\Documents\nmr.txt 2019-01-22 20:41 - 2019-01-22 20:41 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-01-22 20:41 - 2019-01-22 20:41 - 000002279 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-01-22 20:40 - 2019-01-22 20:46 - 000003490 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2019-01-22 20:40 - 2019-01-22 20:46 - 000003362 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2019-01-22 20:39 - 2019-01-22 20:39 - 000002079 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2019-01-22 20:39 - 2019-01-22 20:39 - 000000000 ____D C:\Users\Frits\AppData\Roaming\AVAST Software 2019-01-22 20:39 - 2019-01-22 20:39 - 000000000 ____D C:\Users\Frits\AppData\Local\AVAST Software 2019-01-22 20:39 - 2019-01-22 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2019-01-22 20:38 - 2019-01-22 20:38 - 001034056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000474648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000380144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000361352 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2019-01-22 20:38 - 2019-01-22 20:38 - 000320888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswblog.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000239808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000223056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000218056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000203488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000196264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000166792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000111992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000088144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000058160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000046584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000042488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000037304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2019-01-22 20:38 - 2019-01-22 20:38 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2019-01-22 20:38 - 2019-01-22 20:38 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software 2019-01-22 20:38 - 2019-01-22 20:38 - 000000000 ____D C:\Program Files\Common Files\AVAST Software 2019-01-22 20:37 - 2019-01-22 20:37 - 000000000 ____D C:\Program Files\AVAST Software 2019-01-22 20:36 - 2019-01-22 20:38 - 000000000 ____D C:\ProgramData\AVAST Software 2019-01-22 20:36 - 2019-01-22 20:36 - 007450264 _____ (AVAST Software) C:\Users\Frits\Downloads\avast_free_antivirus_setup_online.exe 2019-01-22 20:32 - 2019-01-22 20:32 - 000000000 ____D C:\Windows\pss 2019-01-22 20:05 - 2019-01-22 20:05 - 000000000 ____D C:\sh5ldr 2019-01-22 20:04 - 2019-01-22 20:04 - 000000000 ____D C:\Program Files\EnigmaSoft 2019-01-22 13:00 - 2019-01-22 20:31 - 000000000 ____D C:\Program Files\Remo Recover 4.0 2019-01-22 13:00 - 2019-01-22 13:00 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Remo 2019-01-22 12:22 - 2019-01-22 12:55 - 000000000 ____D C:\Program Files (x86)\ProxyGate 2019-01-22 12:21 - 2019-01-22 12:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One System Care 2019-01-22 12:21 - 2019-01-22 12:55 - 000000000 ____D C:\Program Files (x86)\OneSystemCare 2019-01-22 12:21 - 2019-01-22 12:28 - 000000000 ____D C:\Users\Frits\AppData\Roaming\One System Care 2019-01-22 12:21 - 2019-01-22 12:21 - 000000000 ____D C:\ProgramData\{9E693B6A-6C93-E97C-EB71-FF65EB96A634} 2019-01-22 12:21 - 2019-01-22 12:21 - 000000000 ____D C:\ProgramData\{03BA2889-7F70-74AF-0862-2CF8088575A9} 2019-01-22 12:20 - 2019-01-22 12:20 - 000000000 ____D C:\Users\Frits\AppData\Local\Survarium 2019-01-22 12:19 - 2019-01-22 12:55 - 000000000 ____D C:\Program Files (x86)\Survarium 2019-01-22 12:19 - 2019-01-22 12:19 - 000000000 ____D C:\Users\Frits\AppData\Local\Chrome 2019-01-22 12:14 - 2019-01-22 12:55 - 000000000 ____D C:\Program Files (x86)\SafeIP 2019-01-22 12:14 - 2019-01-22 12:55 - 000000000 ____D C:\Program Files (x86)\AceMoney 2019-01-22 12:14 - 2019-01-22 12:28 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Microleaves 2019-01-22 12:14 - 2019-01-22 12:16 - 000000000 ____D C:\ProgramData\Rayte 2019-01-22 12:14 - 2019-01-22 12:14 - 000000000 ____D C:\ProgramData\50Y2BUL5G0ZLA5 2019-01-22 12:14 - 2019-01-22 12:14 - 000000000 ____D C:\Program Files (x86)\Microleaves 2019-01-03 19:47 - 2019-01-03 19:47 - 003854000 _____ (Protection Technology) C:\Windows\system32\Drivers\appdrv01.sys 2019-01-03 19:47 - 2019-01-03 19:47 - 000551896 _____ (Protection Technology) C:\Windows\system32\appdrvrem01.exe 2019-01-03 18:48 - 2019-01-22 12:28 - 000000000 ____D C:\Users\Frits\Documents\Pro Cycling Manager 2010 2019-01-03 18:48 - 2019-01-22 12:28 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Pro Cycling Manager 2010 2019-01-03 18:46 - 2019-01-03 18:46 - 000002067 _____ C:\Users\Public\Desktop\GameCenter.lnk 2019-01-03 18:46 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2019-01-03 18:46 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2019-01-03 18:46 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2019-01-03 18:45 - 2019-01-03 18:45 - 000002490 _____ C:\Users\Public\Desktop\Pro Cycling Manager - Seizoen 2010.lnk 2019-01-03 18:35 - 2019-01-03 18:46 - 000000000 ____D C:\Program Files (x86)\Cyanide ==================== Een maand (gewijzigd) ======== (Als een item is opgenomen in de fixlist, word de map of het bestand verplaatst.) 2019-01-23 12:23 - 2011-04-12 14:00 - 000691490 _____ C:\Windows\system32\perfh013.dat 2019-01-23 12:23 - 2011-04-12 14:00 - 000130026 _____ C:\Windows\system32\perfc013.dat 2019-01-23 12:23 - 2009-07-14 06:13 - 001523502 _____ C:\Windows\system32\PerfStringBackup.INI 2019-01-23 12:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2019-01-23 12:22 - 2009-07-14 05:45 - 000022208 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-01-23 12:22 - 2009-07-14 05:45 - 000022208 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-01-23 12:14 - 2017-05-24 09:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2019-01-23 12:14 - 2016-11-22 17:29 - 000000000 ____D C:\Users\Frits\AppData\LocalLow\Mozilla 2019-01-23 12:14 - 2016-10-25 23:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-01-23 12:14 - 2016-10-25 22:31 - 000000000 ____D C:\ProgramData\NVIDIA 2019-01-23 12:14 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-01-22 20:41 - 2018-12-19 20:17 - 000000000 ____D C:\Program Files (x86)\Google 2019-01-22 20:41 - 2017-06-03 14:57 - 000000000 ____D C:\Users\Frits\AppData\Local\Google 2019-01-22 20:32 - 2016-10-25 22:25 - 000000000 ____D C:\Users\Frits 2019-01-22 20:31 - 2018-12-18 11:03 - 000000000 ____D C:\Users\Frits\Documents\Kinderliedjes - De 60 meest populaire kinderliedjes 2017 2019-01-22 20:31 - 2016-10-28 13:10 - 000000000 ____D C:\KaM Remake 2019-01-22 20:31 - 2016-10-26 02:07 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Adobe 2019-01-22 20:31 - 2016-10-26 00:28 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Anvsoft 2019-01-22 20:31 - 2016-10-26 00:17 - 000000000 ____D C:\Users\Frits\AppData\Roaming\BitTorrent 2019-01-22 20:31 - 2016-10-25 23:57 - 000000000 ____D C:\Users\Frits\AppData\Roaming\AVG 2019-01-22 20:31 - 2016-10-25 23:35 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Mozilla 2019-01-22 20:31 - 2011-04-12 14:10 - 000000000 ___RD C:\Users\Public\Recorded TV 2019-01-22 20:31 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF 2019-01-22 20:31 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration 2019-01-22 12:55 - 2018-01-07 13:09 - 000000000 ____D C:\Users\Frits\AppData\LocalLow\Adobe 2019-01-22 12:28 - 2017-05-27 10:35 - 000000000 ____D C:\Users\Frits\Documents\Any Video Converter 2019-01-22 12:28 - 2016-11-22 14:19 - 000000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2019-01-22 12:28 - 2016-11-22 14:19 - 000000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2019-01-22 12:28 - 2016-11-19 11:15 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Canon 2019-01-22 12:28 - 2016-10-28 13:12 - 000000000 ____D C:\Users\Frits\AppData\Roaming\NVIDIA 2019-01-22 12:28 - 2016-10-28 11:02 - 000000000 ____D C:\Users\Frits\AppData\Roaming\MPC-HC 2019-01-22 12:28 - 2016-10-26 10:35 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Macromedia 2019-01-22 12:28 - 2016-10-26 00:39 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Polar WebSync 2019-01-22 12:28 - 2016-10-25 23:57 - 000000000 ____D C:\Users\Frits\AppData\Roaming\TuneUp Software 2019-01-22 12:28 - 2016-10-25 22:25 - 000000000 ____D C:\Users\Frits\AppData\Roaming\Media Center Programs 2019-01-22 12:28 - 2011-04-12 14:10 - 000000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs 2019-01-22 12:28 - 2011-04-12 14:10 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs 2019-01-22 12:22 - 2009-07-14 04:20 - 000000000 ____D C:\PerfLogs 2019-01-22 12:17 - 2018-06-19 15:12 - 000267664 _____ C:\Users\Frits\Downloads\Tickets Sven en Jens.pdf 2019-01-22 12:17 - 2016-10-25 22:25 - 000000560 ___SH C:\Users\Frits\ntuser.ini.gxtjltie 2019-01-22 12:16 - 2018-11-06 20:10 - 000381826 _____ C:\Users\Frits\Documents\IMG_20181106_0002.pdf.gxtjltie 2019-01-05 13:00 - 2018-01-07 13:09 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-01-03 18:45 - 2017-08-26 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cyanide 2019-01-03 16:20 - 2016-10-25 23:47 - 000000000 ___RD C:\Users\Frits\Desktop\PC Cleaning Tools 2019-01-03 16:17 - 2017-08-28 13:52 - 000000000 ____D C:\Program Files (x86)\Worms Armageddon v3.7.2.1 ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\Windows\system32\winlogon.exe => Bestand is getekend C:\Windows\system32\wininit.exe => Bestand is getekend C:\Windows\SysWOW64\wininit.exe => Bestand is getekend C:\Windows\explorer.exe => Bestand is getekend C:\Windows\SysWOW64\explorer.exe => Bestand is getekend C:\Windows\system32\svchost.exe => Bestand is getekend C:\Windows\SysWOW64\svchost.exe => Bestand is getekend C:\Windows\system32\services.exe => Bestand is getekend C:\Windows\system32\User32.dll => Bestand is getekend C:\Windows\SysWOW64\User32.dll => Bestand is getekend C:\Windows\system32\userinit.exe => Bestand is getekend C:\Windows\SysWOW64\userinit.exe => Bestand is getekend C:\Windows\system32\rpcss.dll => Bestand is getekend C:\Windows\system32\dnsapi.dll => Bestand is getekend C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend C:\Windows\system32\dllhost.exe => Bestand is getekend C:\Windows\SysWOW64\dllhost.exe => Bestand is getekend C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2019-01-15 17:49 ==================== Eind van FRST.txt ============================