Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 15-05.2019 01 Gestart door rita (Beheerder) op ERWIN (Packard Bell ENLE11BZ) (16-05-2019 17:55:15) Gestart vanaf C:\Users\rita\Desktop Geladen Profielen: rita (Beschikbare Profielen: rita & Gast) Platform: Windows 10 Home Versie 1803 17134.706 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Edge Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\BBDaemon.exe () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\BBService.exe () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\BrytonBridge2.exe () [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe () [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe () [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19031.17720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe () [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices, Inc. -> ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Advanced Micro Devices, Inc.) [Bestand niet getekend] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (Dritek System Inc. -> Dritek System INC.) C:\Windows\RfBtnSvc64.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\72.4.136\QtWebEngineProcess.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\72.4.136\QtWebEngineProcess.exe (Facebook, Inc. -> Facebook Inc.) C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 4620 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.SmartMonitor.exe (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe (Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\rita\AppData\Local\Microsoft\BingSvc\BingSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\rita\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Qualcomm Atheros -> Atheros) [Bestand niet getekend] C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [706440 2015-09-28] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261000 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [76600 2019-03-09] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5537600 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\Run: [Facebook Update] => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-10-19] (Facebook, Inc. -> Facebook Inc.) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\Run: [HP Officejet 4620 series (NET)] => C:\Program Files\HP\HP Officejet 4620 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\Run: [BingSvc] => C:\Users\rita\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (Microsoft Corporation -> © 2015 Microsoft Corporation) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-03-13] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53540200 2019-03-26] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\Policies\Explorer: [] HKU\S-1-5-21-455634102-3971962441-1493714179-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\DEAARD~1.SCR [10638336 2013-10-22] () [Bestand niet getekend] HKLM\Software\...\AppCompatFlags\Custom\chrome.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] -> HKLM\Software\...\AppCompatFlags\Custom\explorer.zza: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] -> HKLM\Software\...\AppCompatFlags\Custom\iexplore.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] -> HKLM\Software\Microsoft\Active Setup\Installed Components: [{8237E44A-0054-442C-B6B6-EA0509993955}] -> C:\Program Files (x86)\Google\Chrome Beta\Application\75.0.3770.38\Installer\chrmstp.exe [2019-05-16] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-07] (Google LLC -> Google Inc.) HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2019-03-09] (McAfee, Inc. -> McAfee, LLC.) Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BrytonBridge2.lnk [2017-02-18] ShortcutTarget: BrytonBridge2.lnk -> C:\Program Files (x86)\BrytonBridge2\BrytonBridge2.exe () [Bestand niet getekend] FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {05C020B1-46CA-4BA7-80E2-89A72020DA66} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-455634102-3971962441-1493714179-1001Core => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-10-19] (Facebook, Inc. -> Facebook Inc.) Task: {0C5E1890-9493-4032-8754-B33D08A39DE9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3837008 2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Task: {1B407A2D-AB73-46DF-B1E5-742A00622E5B} - System32\Tasks\{7E363E3F-BDFC-43DD-B474-8063D18A6AF8} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\rita\SkyDrive\Documenten\Education 2.5.4.9380\setup.exe" -d "C:\Users\rita\SkyDrive\Documenten\Education 2.5.4.9380" Task: {32D44C84-DF6B-4020-B9F2-9064336AC7B4} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [39568 2012-06-21] (Acer Incorporated -> ) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {364B088E-3CAD-43C9-BECA-1D12A0FF7965} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2925960 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) Task: {47238C0A-AE41-47E9-9C04-D88C26D800F6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_137_pepper.exe [1332736 2018-01-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {4937F43A-61A4-404D-AF39-410B58685384} - System32\Tasks\Power Management => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5314192 2012-10-23] (Acer Incorporated -> Acer Incorporated) Task: {494BA159-6DDE-4B42-B5F7-754AC16BAE11} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation) Task: {567CDFCD-D4CA-412D-8F72-4C36B5B4661C} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {5B881B55-9289-4553-892B-1DFFCED40768} - System32\Tasks\{2522551F-65FB-4163-969D-21A79F1EE7AC} => "c:\windows\system32\launchwinapp.exe" hxxp://ui.skype.com/ui/0/7.7.64.103/nl/go/help.faq.installer?LastError=1618 Task: {5E2C0485-BA38-40E3-8712-F0BC744CF49D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-455634102-3971962441-1493714179-1001UA => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-10-19] (Facebook, Inc. -> Facebook Inc.) Task: {67EBACFF-E126-4F7F-8CF7-22A49AE52FBA} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe Task: {6FDFC4E5-03E9-4A02-8EC8-70FF6C202C54} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-16] (Adobe Inc. -> Adobe) Task: {73A7A68E-F14E-43C4-9FC7-04B0C550189C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26196056 2019-04-26] (Microsoft Corporation -> Microsoft Corporation) Task: {749B8F35-C3DB-4A50-8BBF-A4A238849474} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26196056 2019-04-26] (Microsoft Corporation -> Microsoft Corporation) Task: {75D9C616-4257-42BC-BA55-E96FD1DA1809} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [132445408 2019-05-14] (Microsoft Corporation -> Microsoft Corporation) Task: {783E365C-9FD9-4C02-8ED5-51B622F6FF4E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.) Task: {7C5A1BFF-436E-4666-AD13-A322E32E9C97} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1097304 2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Task: {7F8CC220-EA29-42CA-A450-E5C1DFD40C95} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-16] (Adobe Inc. -> Adobe) Task: {8A7CC985-0E43-4AA1-A10E-47560F09D6FC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2368808 2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Task: {8FBD9F28-45C4-411D-A324-2D755D9E3075} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-11] (Dropbox, Inc -> Dropbox, Inc.) Task: {979E233F-8401-4BDE-80A2-1AD0686EB2A2} - System32\Tasks\HPCustParticipation HP Officejet 4620 series => C:\Program Files\HP\HP Officejet 4620 series\Bin\HPCustPartic.exe [4119656 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) Task: {9925C05F-39EA-412D-BB9C-80B949836062} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {9AE0A513-ABF2-42E9-8356-15A115D22FAB} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2368808 2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Task: {9CECFADB-CE10-448A-8103-BD528CF46235} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3837008 2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Task: {AF67BF2B-3241-4046-BD57-E178FB7DCF56} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd) Task: {BD5B7706-67C5-4293-BFFD-E27F020F0A18} - System32\Tasks\HP-Online updateprogramma => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) Task: {C24A1950-FA38-4291-9C59-1641FAD05817} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.) Task: {CE700991-9986-40F6-97A0-67AAB39D2138} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {CE9DB532-69B2-44E1-BE43-8CD6F4D902FA} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2380088 2019-04-03] (AVAST Software s.r.o. -> AVAST Software) Task: {D2090FD1-92D2-49A9-8182-06129A4A566A} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\osfinstaller.exe [115488 2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Task: {D79813FD-E4E0-4D90-BD56-17ADDCF9CD27} - System32\Tasks\S-1-5-21-455634102-3971962441-1493714179-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [132608 2018-12-08] (Microsoft Windows -> Microsoft Corporation) Task: {D976D0A1-D641-4999-ACC8-80842506A540} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-11] (Dropbox, Inc -> Dropbox, Inc.) Task: {E96B4819-8368-412B-A674-0196DCF86FE1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.) Task: {F4340BCB-9E1F-4F93-B8AA-992EB58278FA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd) Task: {FEEC37B2-F9A1-4503-B0ED-EF7B62C78A5F} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [3356816 2012-11-06] (Acer Incorporated -> ) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-455634102-3971962441-1493714179-1001Core.job => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-455634102-3971962441-1493714179-1001UA.job => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 195.130.130.5 195.130.131.5 Tcpip\..\Interfaces\{a57513ea-3fa5-4418-8b52-f88f33c94c7a}: [DhcpNameServer] 10.104.7.160 10.123.172.17 Tcpip\..\Interfaces\{ccef640c-e12a-4f3e-9947-ec0eb061d6aa}: [DhcpNameServer] 195.130.130.5 195.130.131.5 Internet Explorer: ================== HKU\S-1-5-21-455634102-3971962441-1493714179-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SL5M&ocid=SL5MDHP&osmkt=nl-be HKU\S-1-5-21-455634102-3971962441-1493714179-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.google.com/ hxxp://www.kaagent.be/ SearchScopes: HKU\S-1-5-21-455634102-3971962441-1493714179-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23] (McAfee, Inc. -> Intel Security) BHO: Bing Bar Helper -> {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation -> Microsoft Corporation.) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH) BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security) BHO-x32: Bing Bar Helper -> {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation -> Microsoft Corporation.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Geen Naam -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Geen bestand BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH) Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation -> Microsoft Corporation.) Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23] (McAfee, Inc. -> Intel Security) Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation -> Microsoft Corporation.) Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security) Toolbar: HKU\S-1-5-21-455634102-3971962441-1493714179-1001 -> True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23] (McAfee, Inc. -> Intel Security) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Geen bestand FireFox: ======== FF DefaultProfile: up9830xo.default-1452197924475-1555115266755 FF ProfilePath: C:\Users\rita\AppData\Roaming\Mozilla\Firefox\Profiles\up9830xo.default-1452197924475-1555115266755 [2019-05-16] FF Extension: (eID België) - C:\Users\rita\AppData\Roaming\Mozilla\Firefox\Profiles\up9830xo.default-1452197924475-1555115266755\Extensions\belgiumeid@eid.belgium.be.xpi [2019-04-13] FF Extension: (Avast Online Security) - C:\Users\rita\AppData\Roaming\Mozilla\Firefox\Profiles\up9830xo.default-1452197924475-1555115266755\Extensions\wrc@avast.com.xpi [2019-04-16] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-16] (Adobe Inc. -> ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-16] (Adobe Inc. -> ) FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-05-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\rita\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-04] (Visan Industries -> RocketLife, LLP) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-455634102-3971962441-1493714179-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\rita\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited) FF Plugin HKU\S-1-5-21-455634102-3971962441-1493714179-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\rita\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-01-26] (Unity Technologies ApS -> Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Users\rita\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2014-10-13] Chrome: ======= CHR Profile: C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default [2019-05-14] CHR Extension: (Presentaties) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-13] CHR Extension: (Documenten) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-13] CHR Extension: (Google Drive) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-03-13] CHR Extension: (YouTube) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-13] CHR Extension: (Adobe Acrobat) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-12-13] CHR Extension: (Spreadsheets) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-13] CHR Extension: (Offline Documenten) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-19] CHR Extension: (Avast Online Security) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-12-19] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-19] CHR Extension: (Gmail) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-03-13] CHR Extension: (Chrome Media Router) - C:\Users\rita\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-19] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx StartMenuInternet: Google Chrome Beta - C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 0219581558021838mcinstcleanup; C:\ProgramData\McInstTemp0219581558021838\McInst.exe [939432 2018-12-16] (McAfee, Inc. -> McAfee, Inc.) R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [244736 2015-02-28] (Microsoft Windows Hardware Compatibility Publisher -> AMD) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-02-28] (Advanced Micro Devices, Inc.) [Bestand niet getekend] R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [104840 2015-09-28] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6660888 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [362488 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122728 2017-09-04] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) R2 BBService; C:\Program Files (x86)\BrytonBridge2\BBService.exe [68096 2014-03-03] () [Bestand niet getekend] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11146240 2019-04-26] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-11] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-11] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) S3 DeviceFastLaneService; C:\Program Files\Packard Bell\Packard Bell Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-17] (Acer Incorporated -> Acer Incorporated) S3 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated -> Acer Incorporated) S3 GoogleChromeBetaElevationService; C:\Program Files (x86)\Google\Chrome Beta\Application\75.0.3770.38\elevation_service.exe [1098224 2019-05-15] (Google LLC -> Google LLC) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company -> Hewlett-Packard Company) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes) R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-03-22] (Dritek System Inc. -> Dritek System INC.) R2 TrueKey; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.) R2 TrueKeyScheduler; C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.) R2 TrueKeyServiceHelper; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe [194168 2019-03-09] (McAfee, Inc. -> McAfee, LLC.) R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2018-04-13] (Reason Software Company Inc. -> Reason Software Company Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\NisSrv.exe [3856504 2019-04-10] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MsMpEng.exe [113992 2019-04-10] (Microsoft Corporation -> Microsoft Corporation) R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-08-01] (Qualcomm Atheros -> Atheros) [Bestand niet getekend] ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [81000 2017-03-27] (Microsoft Windows Hardware Compatibility Publisher -> ) R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [20300800 2015-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [611328 2015-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> ) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166848 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1031000 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476776 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-04-16] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-04-17] (AVAST Software s.r.o. -> AVAST Software) R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4233728 2018-04-12] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.) S3 AtiDCM; C:\AMD\WU-CCC2\ccc2_install\Support64\atdcm64a.sys [28416 2014-03-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) S1 ccSet_NARA; C:\WINDOWS\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation -> Symantec Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-04-12] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-05-15] (Malwarebytes Corporation -> Malwarebytes) R3 Ps2Kb2Hid; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [26736 2013-03-22] (Dritek System Inc. -> Dritek System Inc.) U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [865216 2019-03-01] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [424384 2019-03-01] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ssudobex; C:\WINDOWS\system32\DRIVERS\ssudobex.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2019-03-21] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.) R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [57000 2012-06-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [343520 2019-04-10] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [68576 2019-04-10] (Microsoft Windows -> Microsoft Corporation) S3 cpuz140; \??\C:\Users\rita\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [X] <==== AANDACHT ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) ======== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-05-16 17:55 - 2019-05-16 18:00 - 000043493 _____ C:\Users\rita\Desktop\FRST.txt 2019-05-16 17:50 - 2019-05-16 17:50 - 000000000 ____D C:\ProgramData\McInstTemp0219581558021838 2019-05-15 22:24 - 2019-05-15 22:30 - 000421388 _____ C:\WINDOWS\Minidump\051519-51015-01.dmp 2019-05-15 22:23 - 2019-05-15 22:23 - 208947110 _____ C:\WINDOWS\MEMORY.DMP 2019-05-15 20:20 - 2019-05-15 20:50 - 000000000 ____D C:\FRST 2019-05-15 20:08 - 2019-05-15 20:09 - 002434560 _____ (Farbar) C:\Users\rita\Desktop\FRST64.exe 2019-05-14 23:17 - 2019-05-14 23:17 - 021315608 _____ (Piriform Software Ltd) C:\Users\rita\Downloads\ccsetup557.exe 2019-05-10 21:44 - 2019-05-15 22:25 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2019-05-08 18:47 - 2019-05-08 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-05-08 17:45 - 2019-05-08 17:45 - 000000000 ___HD C:\OneDriveTemp 2019-05-07 21:51 - 2019-05-07 21:51 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2019-05-05 09:35 - 2019-05-05 10:04 - 000000000 ____D C:\Users\rita\Documents\Italie 2019-05-02 17:58 - 2019-05-02 17:58 - 000188957 _____ C:\Users\rita\Downloads\VK De Weirt De Graeve (D2190090_270).zip 2019-05-02 17:43 - 2019-05-02 17:43 - 000002506 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype voor Bedrijven.lnk 2019-05-02 17:43 - 2019-05-02 17:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office-hulpprogramma's 2019-05-02 16:34 - 2019-05-02 16:34 - 000000000 ____D C:\Program Files (x86)\Teams Installer 2019-04-28 09:50 - 2019-05-02 17:43 - 000002491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2019-04-28 09:50 - 2019-05-02 17:43 - 000002484 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2019-04-28 09:50 - 2019-05-02 17:43 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2019-04-28 09:50 - 2019-05-02 17:43 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2019-04-28 09:50 - 2019-05-02 17:43 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2019-04-28 09:50 - 2019-05-02 17:43 - 000002417 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2019-04-28 09:50 - 2019-05-02 17:43 - 000002403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2019-04-26 11:06 - 2019-04-26 11:10 - 000000000 ____D C:\Users\rita\Documents\Samsung gsm 2019-04-26 09:20 - 2019-05-15 22:25 - 000000000 ____D C:\ProgramData\McInstTemp0134061556263206 2019-04-25 21:37 - 2019-02-13 07:47 - 001909560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll 2019-04-16 18:55 - 2019-04-16 18:54 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe ==================== Een maand (gewijzigd) ======== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-05-16 17:55 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-05-16 17:53 - 2018-07-08 12:45 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update 2019-05-16 17:52 - 2016-11-19 16:57 - 000000000 ____D C:\Users\rita\AppData\LocalLow\Mozilla 2019-05-16 17:50 - 2013-10-20 20:20 - 000000000 ___RD C:\Users\rita\SkyDrive 2019-05-16 17:49 - 2016-11-19 15:58 - 000000000 ____D C:\Program Files (x86)\McAfee 2019-05-16 17:48 - 2018-07-08 11:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-05-16 07:13 - 2018-07-08 12:45 - 000003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2019-05-16 07:13 - 2018-07-08 12:45 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2019-05-16 07:13 - 2018-07-08 12:45 - 000003280 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2019-05-16 07:13 - 2018-07-08 12:45 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update 2019-05-16 07:13 - 2018-07-08 12:45 - 000002858 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-455634102-3971962441-1493714179-1001 2019-05-16 07:13 - 2018-07-08 12:45 - 000002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2019-05-16 07:13 - 2018-07-08 12:45 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software 2019-05-16 06:12 - 2016-10-19 19:44 - 000000000 ____D C:\Users\rita\AppData\Local\CrashDumps 2019-05-15 22:36 - 2017-11-27 00:32 - 000000000 ____D C:\Users\rita\AppData\Local\AVAST Software 2019-05-15 22:31 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-05-15 22:30 - 2018-07-08 11:40 - 000000000 ____D C:\Users\rita 2019-05-15 22:24 - 2018-07-10 17:59 - 000000000 ____D C:\WINDOWS\Minidump 2019-05-15 22:24 - 2018-07-08 12:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-05-15 22:24 - 2018-07-08 11:31 - 000421992 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-05-15 22:24 - 2018-02-18 21:00 - 000000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat 2019-05-15 22:24 - 2014-01-17 18:00 - 000000000 ____D C:\ProgramData\BrytonBridge 2019-05-15 22:22 - 2013-09-26 23:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-05-15 21:00 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-05-15 20:15 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-05-14 23:20 - 2016-07-16 11:42 - 000000875 _____ C:\Users\Public\Desktop\CCleaner.lnk 2019-05-14 23:03 - 2016-01-04 20:57 - 000000000 ____D C:\Program Files\CCleaner 2019-05-14 22:09 - 2013-09-01 05:49 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-05-14 21:43 - 2013-09-01 05:49 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-05-14 21:27 - 2015-11-09 01:09 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-05-13 23:30 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-05-12 21:57 - 2016-12-30 22:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2019-05-12 21:57 - 2013-09-26 23:09 - 000001017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-05-10 21:43 - 2019-02-27 08:17 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2019-05-10 10:16 - 2019-03-15 19:20 - 000000000 ____D C:\Users\rita\Documents\verkoop huis ouders 2019-05-10 10:16 - 2018-02-17 06:59 - 000000000 ____D C:\Users\rita\AppData\Local\Packages 2019-05-09 19:21 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF 2019-05-08 18:56 - 2019-04-12 17:58 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-05-08 18:51 - 2016-10-11 20:46 - 000000000 ____D C:\Program Files (x86)\Dropbox 2019-05-08 17:43 - 2018-07-08 11:40 - 000002409 _____ C:\Users\rita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-05-07 20:03 - 2018-12-19 21:57 - 000002333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-05-07 20:03 - 2018-12-19 21:57 - 000002292 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-05-04 12:35 - 2016-12-09 13:12 - 000000000 ____D C:\Program Files\Microsoft Office 2019-05-04 01:53 - 2018-11-18 21:50 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-05-04 01:53 - 2018-11-18 21:50 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2019-05-03 20:47 - 2013-09-05 10:12 - 000037888 _____ C:\Users\rita\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2019-05-03 19:10 - 2015-07-15 16:11 - 000000000 ____D C:\Users\rita\AppData\Local\CutePDF Writer 2019-05-02 18:14 - 2016-09-22 16:25 - 000000000 ____D C:\Users\rita\AppData\Local\ConnectedDevicesPlatform 2019-05-02 16:15 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-04-26 09:22 - 2016-11-19 16:39 - 000001205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk 2019-04-26 09:22 - 2016-11-19 16:39 - 000001191 _____ C:\Users\Public\Desktop\True Key.lnk 2019-04-26 09:10 - 2018-02-18 20:58 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper 2019-04-26 09:08 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-04-25 21:51 - 2018-01-13 10:12 - 000000000 ____D C:\Program Files\rempl 2019-04-22 21:16 - 2018-07-08 12:05 - 001767124 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-04-22 21:16 - 2018-04-12 18:01 - 000785364 _____ C:\WINDOWS\system32\perfh013.dat 2019-04-22 21:16 - 2018-04-12 18:01 - 000153682 _____ C:\WINDOWS\system32\perfc013.dat 2019-04-17 21:07 - 2018-02-17 05:40 - 000385848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2019-04-16 19:40 - 2018-04-11 23:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2019-04-16 19:33 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender 2019-04-16 19:33 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput 2019-04-16 19:33 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-04-16 19:08 - 2013-09-26 23:09 - 000001005 _____ C:\Users\Public\Desktop\Firefox.lnk 2019-04-16 19:04 - 2018-07-08 12:45 - 000004678 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier 2019-04-16 19:01 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-04-16 19:01 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-04-16 18:58 - 2019-04-12 20:33 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum 2019-04-16 18:58 - 2018-02-17 05:40 - 000476776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2019-04-16 18:55 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-04-16 18:54 - 2019-02-13 18:40 - 000257832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys 2019-04-16 18:54 - 2018-10-19 19:59 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2019-04-16 18:54 - 2018-02-17 05:40 - 000220640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2019-04-16 18:54 - 2018-02-17 05:40 - 000166848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2019-04-16 18:54 - 2018-02-17 05:40 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2019-04-16 18:54 - 2018-02-17 05:40 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2019-04-16 18:53 - 2019-01-14 20:40 - 000254128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2019-04-16 18:53 - 2019-01-04 13:34 - 000320624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys 2019-04-16 18:53 - 2019-01-04 13:34 - 000196000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2019-04-16 18:53 - 2019-01-04 13:34 - 000057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2019-04-16 18:53 - 2019-01-04 13:34 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2019-04-16 18:53 - 2018-02-17 05:40 - 001031000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2019-04-16 18:53 - 2018-02-17 05:40 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys ==================== Bestanden in de root van sommige mappen ======= 2017-10-15 21:40 - 2017-10-15 21:40 - 000000259 _____ () C:\ProgramData\fontcacheev1.dat 2017-04-13 10:52 - 2017-04-13 10:52 - 007639040 _____ () C:\Program Files (x86)\GUT9B6D.tmp 2013-09-05 10:12 - 2019-05-03 20:47 - 000037888 _____ () C:\Users\rita\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-07-10 16:41 - 2019-01-12 13:23 - 000007605 _____ () C:\Users\rita\AppData\Local\resmon.resmoncfg ==================== SigCheck =============================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ============================