-
February 22nd, 2022, 12:25 PM
#16
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-3199363119-606788724-3210624172-1001 -> hxxp://www.google.com
Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden]
Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden]
Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden]
Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Site\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-22]
Edge DownloadDir: Default -> C:\downloads
Edge Notifications: Default -> hxxps://bdhze4.bruperchrophone.com; hxxps://bruperchrophone.com; hxxps://nze0xw.bruperchrophone.com; hxxps://postimg.cc
Edge HomePage: Default -> hxxp://teamos-hkrg.com/
Edge StartupUrls: Default -> "hxxp://www.freyavc.be/"
Edge Extension: (Adblocker FX) - C:\Users\Site\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jdlhgepapnpjdlcmiifmgicgeejaoplm [2021-12-13]
Edge Extension: (Proper Menubar for Microsoft Edge) - C:\Users\Site\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mdffgnflikkenkkjhkgojbgkjabknlob [2021-12-10]
Edge Extension: (AdBlock - de beste advertentieblokker) - C:\Users\Site\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-01-27]
Edge Extension: (uBlock Origin) - C:\Users\Site\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2022-02-15]
FireFox:
========
FF DefaultProfile: zohd4e5d.default
FF DefaultProfile: ihuowfwg.default-1599389619436
FF DefaultProfile: lrxa4rzr.default
FF ProfilePath: C:\Users\Site\AppData\Roaming\Mozilla\SeaMonkey\Profiles\zohd4e5d.default [2022-02-22]
FF Extension: (DOM Inspector) - C:\Users\Site\AppData\Roaming\Mozilla\SeaMonkey\Profiles\zohd4e5d.default\Extensions\inspector@mozilla.org.xpi [2020-10-21] [Verouderd] [niet getekend]
FF Extension: (ChatZilla) - C:\Users\Site\AppData\Roaming\Mozilla\SeaMonkey\Profiles\zohd4e5d.default\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}.xpi [2020-10-21] [Verouderd] [niet getekend]
FF Extension: (Lightning) - C:\Users\Site\AppData\Roaming\Mozilla\SeaMonkey\Profiles\zohd4e5d.default\Extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}.xpi [2020-10-21] [Verouderd] [niet getekend]
FF ProfilePath: C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436 [2022-02-22]
FF DownloadDir: C:\downloads
FF Homepage: Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436 -> hxxp://freyavc.be/
FF NewTab: Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436 -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-11-28 08:43:54&bName=
FF Extension: (WebTranslate) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\98a81af4-fb95-4bd5-addd-72e6d3957dde@webtranslate.fr.xpi [2020-11-12]
FF Extension: (AdGuard-advertentieblokkeerder) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\adguardadblocker@adguard.com.xpi [2021-12-17]
FF Extension: (eID België) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\belgiumeid@eid.belgium.be.xpi [2021-03-04]
FF Extension: (AdGuard Browser Assistent) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\browserassistant@adguard.com.xpi [2022-02-10]
FF Extension: (English (Australian) Dictionary) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\en-AU@dictionaries.addons.mozilla.org.xpi [2020-10-13]
FF Extension: (To Google Translate) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-22]
FF Extension: (Google Translator for Firefox) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\translator@zoli.bod.xpi [2020-09-06]
FF Extension: (Webpagina's vertalen) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2021-09-15]
FF Extension: (ImTranslator: Vertaler, Woordenboek, Spraak) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2021-12-20]
FF Extension: (Fall Puppy) - C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\Extensions\{b74e6c60-9306-4a5a-b1cd-6911d5b44181}.xpi [2020-09-06]
FF SearchPlugin: C:\Users\Site\AppData\Roaming\Mozilla\Firefox\Profiles\ihuowfwg.default-1599389619436\searchplugins\My Bing Search.xml [2020-11-28]
FF ProfilePath: C:\Users\Site\AppData\Roaming\Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\lrxa4rzr.default [2021-12-13]
FF NetworkProxy: Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\lrxa4rzr.default -> type", 0
FF HKU\S-1-5-21-3199363119-606788724-3210624172-1001\...\Firefox\Extensions: [{31C8B8A4-6712-4A47-B378-2BE78B8EE9E1}] - C:\Program Files (x86)\Bigasoft\Video Downloader Pro\extensions\3.23.6.7807\BVDFirefoxExt
FF Extension: (Bigasoft Video Downloader Pro) - C:\Program Files (x86)\Bigasoft\Video Downloader Pro\extensions\3.23.6.7807\BVDFirefoxExt [2021-06-08] [Verouderd] [niet getekend]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2017-03-06] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-01-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-01-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2017-03-06] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2017-03-06] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3199363119-606788724-3210624172-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2017-03-06] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
Chrome:
=======
CHR Profile: C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default [2022-02-13]
CHR DownloadDir: C:\downloads
CHR Extension: (Presentaties) - C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-07]
CHR Extension: (Documenten) - C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-07]
CHR Extension: (YouTube) - C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-07]
CHR Extension: (Spreadsheets) - C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-07]
CHR Extension: (Offline Documenten) - C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-16]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-08]
CHR Extension: (Gmail) - C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-16]
CHR Extension: (Chrome Media Router) - C:\Users\Site\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-16]
CHR HKLM-x32\...\Chrome\Extension: [jpnkpjikgipojkofgjjkfgdhfanggcdm] - C:\Program Files (x86)\Bigasoft\Video Downloader Pro\extensions\3.23.6.7807\BVDChromeExt.crx [2021-06-08]
Opera:
=======
OPR Profile: C:\Users\Site\AppData\Roaming\Opera Software\Opera Stable [2022-02-19]
OPR DownloadDir: C:\downloads
OPR StartupUrls: Opera Stable -> "hxxp://freyavc.be/"
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Site\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-02-10]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Site\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-12-08]
Brave:
=======
BRA Profile: C:\Users\Site\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-02-19]
BRA Extension: (Google Translate) - C:\Users\Site\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-11-27]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Site\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2020-11-27]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Site\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2020-11-27]
BRA Extension: (Brave Ad Block Updater (EasyList Dutch)) - C:\Users\Site\AppData\Local\BraveSoftware\Brave-Browser\User Data\fbmjnabmpmfnfknjmbegjmjigmelggmf [2020-11-27]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Site\AppData\Local\BraveSoftware\Brave-Browser\User Data\gigpfioocjkgbjgoonldcifaeajkbdln [2020-11-27]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Site\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2020-11-27]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Site\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbk*** [2020-11-27]
==================== Services (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-12-07] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [129296 2017-11-21] (Performix LLC -> Performix LLC)
S3 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-11-27] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-11-27] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [143488 2021-11-05] (RCS LT, UAB -> RCS LT)
S3 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [151168 2021-11-05] (RCS LT, UAB -> RCS LT)
R2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [4054248 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
S3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusServiceUltra.exe [6950256 2018-11-16] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2973616 2022-01-31] (Comodo Security Solutions -> Comodo)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [395024 2016-12-27] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Bestand niet getekend]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Bestand niet getekend]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Bestand niet getekend]
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 Macromedia Licensing Service; C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [68096 2017-12-09] () [Bestand niet getekend]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [452576 2016-02-09] (Malwarebytes Corporation -> Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [901088 2016-02-09] (Malwarebytes Corporation -> Malwarebytes Corporation)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 Red Giant Service; C:\Program Files\Red Giant\Services\Red Giant Service.exe [8559192 2021-02-13] (Red Giant LLC -> Red Giant LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136536 2022-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SmrtService; C:\ProgramData\SmartGuard\lineage2\smrt3d\release\Data\e6faec4029e859da6c12b982e144d0117ae8c763\smrtsvc64.exe [6616416 2020-04-05] (Eikonect Software SL -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\UniConverter\Transfer\DriverInstall.exe [111344 2020-02-10] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsig.inf_amd64_0f23ad8529e377b6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsig.inf_amd64_0f23ad8529e377b6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [81000 2017-03-27] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Bestand niet getekend]
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2019-10-23] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-10-01] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-10-01] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [30264 2020-08-30] (Disc Soft Ltd -> Disc Soft Ltd)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [36280 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [85424 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUEDKEPM; C:\WINDOWS\System32\drivers\EUEDKEPM.sys [33712 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
S3 GridinSoftInetSecurityDriver; C:\WINDOWS\system32\DRIVERS\gsInetSecurity.sys [107784 2021-02-20] (GridinSoft, LLC -> GridinSoft LLC)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28424 2018-04-16] (Glarysoft LTD -> Glarysoft Ltd)
S3 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [176008 2021-09-30] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender LLC)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-02-09] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [21208 2020-10-05] (北京铠信神州科技有限责任公司 -> )
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2022-01-15] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 Secdrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [10848 2000-03-13] () [Bestand niet getekend]
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [207344 2019-05-07] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 TrojanKillerDriver; C:\WINDOWS\System32\DRIVERS\gtkdrv.sys [38216 2021-04-09] (GridinSoft, LLC -> GridinSoft LLC)
S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [615840 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [438520 2022-02-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-15] (Microsoft Windows -> Microsoft Corporation)
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een maand (aangemaakt) (gefilterd) =========
(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)
2022-02-22 16:44 - 2022-02-22 16:46 - 000050288 _____ C:\Users\Site\Desktop\FRST.txt
2022-02-22 16:43 - 2022-02-22 16:43 - 002020352 _____ (Farbar) C:\Users\Site\Desktop\FRST.exe
2022-02-22 13:43 - 2022-02-22 16:45 - 000000000 ____D C:\FRST
2022-02-21 17:00 - 2022-02-21 17:00 - 002312192 _____ (Farbar) C:\Users\Site\Desktop\FRST64.exe
2022-02-20 20:13 - 2022-02-20 20:30 - 000231256 _____ C:\WINDOWS\ntbtlog.txt
2022-02-20 20:13 - 2022-02-20 20:13 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2022-02-20 11:40 - 2022-02-20 11:40 - 000000000 ____D C:\Users\Site\AppData\Local\RCS_LT
2022-02-20 11:38 - 2022-02-20 11:38 - 000001959 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk
2022-02-20 11:38 - 2022-02-20 11:38 - 000001953 _____ C:\Users\Public\Desktop\Combo Cleaner.lnk
2022-02-20 11:37 - 2022-02-20 11:54 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner
2022-02-20 11:11 - 2022-02-20 11:12 - 003594016 _____ (RCS LT) C:\Users\Site\Desktop\CCSetup.exe
2022-02-19 22:05 - 2022-02-20 10:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-02-17 18:48 - 2022-02-17 23:42 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-16 21:52 - 2022-02-16 21:54 - 000000000 ____D C:\Users\Site\Documents\ShareX
2022-02-16 21:39 - 2022-02-16 21:43 - 000007637 _____ C:\Users\Site\AppData\Local\Resmon.ResmonCfg
2022-02-14 13:10 - 2022-02-14 13:10 - 000000736 _____ C:\Users\Site\Desktop\Gas Station Simulator.lnk
2022-02-12 00:50 - 2022-02-12 00:50 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-12 00:49 - 2022-02-12 00:49 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-12 00:48 - 2022-02-12 00:48 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-12 00:48 - 2022-02-12 00:48 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-12 00:48 - 2022-02-12 00:48 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-12 00:07 - 2022-02-12 00:07 - 000000000 ___HD C:\$WinREAgent
2022-02-11 17:26 - 2022-02-11 17:30 - 000000000 ____D C:\Users\Site\AppData\Roaming\YT Applications
2022-02-11 17:26 - 2022-02-11 17:26 - 000000000 ____D C:\Program Files (x86)\YT Applications
2022-02-11 17:17 - 2022-02-11 17:17 - 000000000 ____D C:\Users\Site\AppData\Roaming\Muziza
2022-02-11 17:17 - 2022-02-11 17:17 - 000000000 ____D C:\Program Files (x86)\Muziza
2022-02-11 17:08 - 2022-02-11 17:08 - 000000000 ____D C:\Program Files (x86)\Any Video Software
2022-02-10 22:28 - 2022-02-10 22:28 - 000000000 ____D C:\Users\Site\Documents\Any Video Converter Ultimate
2022-02-10 22:28 - 2022-02-10 22:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2022-02-10 22:26 - 2022-02-10 22:28 - 000000000 ____D C:\Users\Site\AppData\Roaming\Anvsoft
2022-02-10 22:26 - 2022-02-10 22:26 - 000000000 ____D C:\Program Files (x86)\Anvsoft
2022-02-08 16:51 - 2022-02-08 16:51 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-06 19:17 - 2022-02-06 19:17 - 000000000 ____D C:\Users\Site\AppData\Local\Sifu
2022-02-03 00:32 - 2022-02-03 00:32 - 000000000 ____D C:\Users\Site\AppData\Local\Lake
2022-02-02 17:01 - 2022-02-02 17:01 - 000000000 ____D C:\Users\Site\.swt
2022-02-02 16:58 - 2022-02-09 17:43 - 000000000 ____D C:\Users\Site\AppData\Roaming\Azureus
2022-01-31 13:38 - 2022-01-31 13:38 - 000000000 ____D C:\Users\Site\Documents\FLiNGTrainer
2022-01-28 20:19 - 2022-01-28 20:19 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-01-28 20:19 - 2022-01-28 20:19 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-01-28 20:19 - 2022-01-28 20:19 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-01-28 20:19 - 2022-01-28 20:19 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-01-28 20:19 - 2022-01-28 20:19 - 001466000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-01-28 20:19 - 2022-01-28 20:19 - 001432312 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-01-28 20:19 - 2022-01-28 20:19 - 001432312 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-01-28 20:19 - 2022-01-28 20:19 - 001207440 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-01-28 20:19 - 2022-01-28 20:19 - 001144552 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-01-28 20:19 - 2022-01-28 20:19 - 001144552 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-01-28 20:16 - 2022-01-28 20:16 - 001528448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-01-28 20:16 - 2022-01-28 20:16 - 001179584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-01-28 20:16 - 2022-01-28 20:16 - 000795264 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-01-28 20:16 - 2022-01-28 20:16 - 000714880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-01-28 20:16 - 2022-01-28 20:16 - 000638912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-01-28 20:15 - 2022-01-28 20:15 - 008610432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-01-28 20:15 - 2022-01-28 20:15 - 002121360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-01-28 20:15 - 2022-01-28 20:15 - 001602704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-01-28 20:15 - 2022-01-28 20:15 - 000985024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-01-28 20:15 - 2022-01-28 20:15 - 000794552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-01-28 20:15 - 2022-01-28 20:15 - 000710800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-01-28 20:15 - 2022-01-28 20:15 - 000455808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-01-28 20:14 - 2022-01-28 20:14 - 007715256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-01-28 20:14 - 2022-01-28 20:14 - 005726336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-01-28 20:14 - 2022-01-28 20:14 - 005098112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-01-28 20:14 - 2022-01-28 20:14 - 002932864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-01-28 20:13 - 2022-01-28 20:13 - 000850872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-01-28 20:11 - 2022-01-28 20:11 - 006459952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-01-28 12:28 - 2022-01-28 12:28 - 000089185 _____ C:\WINDOWS\system32\nvinfo.pb
2022-01-28 12:28 - 2022-01-28 12:28 - 000040920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-01-26 13:44 - 2022-01-26 13:44 - 000000000 ____D C:\Users\Site\Documents\DyingLight
2022-01-26 13:44 - 2022-01-26 13:44 - 000000000 ____D C:\ProgramData\Steam
2022-01-26 13:43 - 2022-01-26 13:43 - 000002409 _____ C:\Users\Site\Desktop\DyingLightGame.exe - Snelkoppeling.lnk
==================== Een maand (gewijzigd) ==================
(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)
2022-02-22 16:51 - 2017-12-09 22:48 - 000000000 ____D C:\Users\Site\AppData\LocalLow\Mozilla
2022-02-22 16:50 - 2018-04-10 17:20 - 000000000 ____D C:\ProgramData\Adguard
2022-02-22 16:49 - 2020-08-02 18:21 - 000004196 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D20F559A-B73D-4BA0-B837-52F19354B9E8}
2022-02-22 16:47 - 2022-01-06 20:12 - 000000000 ____D C:\Users\Site\AppData\Roaming\uTorrent
2022-02-22 16:42 - 2017-12-07 16:02 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2022-02-22 16:38 - 2020-08-02 17:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-22 16:17 - 2016-10-01 15:13 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-22 14:24 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-22 13:58 - 2018-02-06 19:53 - 000000000 ____D C:\Program Files\CCleaner
2022-02-22 13:56 - 2017-12-08 23:07 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-22 13:54 - 2020-08-02 17:45 - 000000000 ____D C:\Users\Site
2022-02-22 13:54 - 2020-08-02 17:39 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-22 13:53 - 2020-08-02 18:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-22 13:53 - 2018-04-10 17:20 - 000000000 ____D C:\Program Files (x86)\Adguard
2022-02-22 13:15 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-22 12:36 - 2019-10-26 13:04 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-21 16:50 - 2020-03-07 14:07 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-02-20 20:50 - 2017-12-11 16:58 - 000000000 ____D C:\Users\Site\AppData\LocalLow\Adblock Plus for IE
2022-02-20 20:30 - 2021-04-14 12:18 - 000000000 ____D C:\Users\Site\AppData\Roaming\qbXaRsGNRzCBGbJrwDm
2022-02-20 20:22 - 2021-04-05 14:20 - 000000000 ____D C:\Users\Site\AppData\Roaming\hmSNIxvgariSG
2022-02-20 20:13 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-20 11:38 - 2016-10-01 16:54 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-02-20 10:27 - 2017-12-09 22:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-19 13:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-19 13:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-19 12:02 - 2021-12-10 13:49 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-19 11:08 - 2017-12-09 18:33 - 000000000 ____D C:\Users\Site\AppData\Local\CrashDumps
2022-02-19 11:04 - 2021-01-22 11:48 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-18 12:02 - 2019-12-13 12:50 - 000000000 ____D C:\Users\Site\AppData\Local\Sidebar7
2022-02-17 20:23 - 2021-10-09 19:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-17 20:22 - 2020-09-06 12:13 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-02-17 13:05 - 2017-12-07 23:03 - 000000000 ____D C:\Temp
2022-02-17 12:55 - 2016-07-16 12:47 - 000000327 _____ C:\WINDOWS\win.ini
2022-02-17 12:55 - 2016-07-16 12:47 - 000000245 _____ C:\WINDOWS\system.ini
2022-02-17 12:49 - 2021-06-08 13:03 - 000000000 ____D C:\Users\Site\AppData\Roaming\Bigasoft Video Downloader Pro
2022-02-17 11:31 - 2020-11-27 16:14 - 000002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2022-02-17 10:54 - 2018-01-31 22:44 - 000000000 ____D C:\Program Files\Opera
2022-02-16 22:17 - 2020-08-02 18:21 - 000004162 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1557328410
2022-02-16 22:17 - 2019-05-08 16:13 - 000001203 _____ C:\Users\Site\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-browser.lnk
2022-02-16 13:54 - 2021-04-16 16:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-02-15 13:45 - 2018-03-01 14:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-15 13:14 - 2020-08-02 17:40 - 000900904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-14 22:20 - 2021-01-18 11:40 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-13 22:11 - 2021-12-18 11:54 - 000002672 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2022-02-13 22:10 - 2020-08-02 18:21 - 000002534 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-4B4C28E7D96F8E9D15B46C1A8D7CB621
2022-02-13 21:49 - 2021-03-06 15:27 - 000000000 ____D C:\Users\Site\Documents\RanchSimulator
2022-02-13 21:38 - 2018-03-05 14:53 - 000192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2022-02-12 17:01 - 2020-08-02 18:02 - 001771332 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-12 17:01 - 2019-12-07 16:14 - 000785966 _____ C:\WINDOWS\system32\perfh013.dat
2022-02-12 17:01 - 2019-12-07 16:14 - 000154094 _____ C:\WINDOWS\system32\perfc013.dat
2022-02-12 00:59 - 2019-12-07 16:17 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-12 00:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-12 00:59 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-12 00:58 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-12 00:48 - 2020-08-02 17:45 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-11 15:12 - 2018-10-08 18:52 - 000000000 ____D C:\Users\Site\AppData\Roaming\Media Player Classic
2022-02-11 13:03 - 2017-12-24 19:51 - 000000000 ____D C:\Program Files (x86)\Digiarty
2022-02-11 12:42 - 2017-12-24 19:51 - 000000000 ____D C:\Users\Site\AppData\Roaming\Digiarty
2022-02-11 11:02 - 2016-10-01 16:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-11 10:41 - 2016-10-02 13:23 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-10 18:12 - 2018-03-25 12:24 - 000000000 ____D C:\Users\Site\.cache
2022-02-09 19:58 - 2017-12-08 23:46 - 000000000 ____D C:\Users\Site\AppData\Local\ElevatedDiagnostics
2022-02-09 17:41 - 2020-08-24 17:34 - 000000000 ____D C:\WINDOWS\Minidump
2022-02-09 15:24 - 2020-03-25 17:25 - 000000000 ____D C:\Program Files (x86)\MediaHuman
2022-02-09 14:39 - 2018-09-23 00:55 - 000000000 ____D C:\Program Files (x86)\DCoder Image Source
2022-02-07 17:01 - 2019-07-21 17:29 - 000000000 ____D C:\Program Files (x86)\Comodo
2022-02-05 15:49 - 2018-10-25 15:13 - 000000000 ____D C:\Users\Site\AppData\Roaming\vlc
2022-02-03 19:24 - 2021-01-23 23:02 - 000000000 ____D C:\Users\Site\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MAGIX VEGAS
2022-02-03 00:39 - 2019-01-05 17:40 - 000000000 ____D C:\Users\Site\AppData\Roaming\RenPy
2022-02-03 00:22 - 2019-01-05 16:30 - 000000000 ____D C:\Users\Site\AppData\Local\User Data
2022-02-03 00:17 - 2018-04-05 12:17 - 000000000 ____D C:\Users\Site\AppData\Local\Game
2022-02-03 00:08 - 2021-01-23 23:03 - 000000000 ____D C:\Users\Site\AppData\Roaming\4k
2022-02-01 17:02 - 2017-12-07 18:12 - 011498990 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2022-01-31 19:36 - 2019-02-05 17:38 - 000000000 ____D C:\Users\Site\GAMES
2022-01-28 20:11 - 2019-12-04 01:59 - 007612320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-01-28 12:28 - 2019-12-04 01:59 - 000127968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2022-01-27 21:39 - 2021-12-10 13:47 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-27 21:39 - 2021-12-10 13:47 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Bestanden in de root van sommige mappen ========
2019-07-21 17:42 - 2019-04-16 12:30 - 000447680 _____ (COMODO) C:\ProgramData\cmdres.dll
2018-03-06 14:21 - 2022-01-02 19:50 - 000000259 _____ () C:\ProgramData\fontcacheev1.dat
2019-01-11 00:34 - 2019-01-11 00:34 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2019-01-11 00:34 - 2019-01-11 00:34 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2019-02-04 19:50 - 2019-02-04 19:13 - 000000407 _____ () C:\Program Files\File Explorer.lnk
2017-12-07 14:14 - 2009-10-23 23:00 - 005811712 _____ (reFX) C:\Program Files (x86)\Nexus.dll
2019-05-25 16:24 - 2019-12-20 13:36 - 000000132 _____ () C:\Users\Site\AppData\Roaming\Adobe GIF Format CS6 Prefs
2020-12-15 23:06 - 2021-04-28 20:56 - 000012288 _____ () C:\Users\Site\AppData\Roaming\emp.bin
2021-02-08 19:31 - 2021-02-08 19:34 - 000000128 _____ () C:\Users\Site\AppData\Roaming\winscp.rnd
2020-05-09 12:30 - 2021-01-24 23:06 - 000000615 _____ () C:\Users\Site\AppData\Local\oobelibMkey.log
2020-11-07 23:46 - 2020-11-07 23:46 - 000000861 _____ () C:\Users\Site\AppData\Local\recently-used.xbel
2022-02-16 21:39 - 2022-02-16 21:43 - 000007637 _____ () C:\Users\Site\AppData\Local\Resmon.ResmonCfg
2020-05-07 19:20 - 2020-05-07 19:20 - 000000003 _____ () C:\Users\Site\AppData\Local\updater.log
==================== SigCheck ============================
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
==================== Einde van FRST.txt ========================
-
February 22nd, 2022, 12:29 PM
#17
Sir Broni these are the 2 txt lists that the program FRS have made on my desktop
also wat i wanted to ask or wanted to tell you
you will see some Russian txt from programs my son use here please let them stand they are safe
oh and you will also see that windefender had some problems here ... that is because i use comodo internet security suite
thank you Sir for the help to check this machine
i will come and see in a few day's how it id done
-
February 23rd, 2022, 03:58 AM
#18
Download RogueKiller from one of the following links and save it to your Desktop:
Link 1
Link 2
- Close all the running programs
- Double click on downloaded setup.exe file to install the program.
- Click on Start Scan button.
- Click on another Start Scan button.
- Wait until the Status box shows Scan Finished
- Click on Remove Selected.
- Wait until the Status box shows Deleting Finished.
- Click on Report and copy/paste the content of the Notepad into your next reply.
- RKreport.txt could also be found on your desktop.
- If more than one log is produced post all logs.
Please download Malwarebytes to your desktop.
- Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
- Then click Finish.
- Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
- If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
- When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
- Restart your computer when prompted to do so.
- The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.
Please download AdwCleaner by Xplode and save to your Desktop.
- Double click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8/10 users right-click and select Run As Administrator - The tool will start to update the database if one is required.
- Click on the Scan button.
- AdwCleaner will begin...be patient as the scan may take some time to complete.
- After the scan has finished, click on the Logfile button.
- A window will open which lists the logs of your scans.
- Click on the Scan tab.
- Double-click the most recent scan which will be at the top of the list....the log will appear.
- Review the results...see note below
- After reviewing the log, click on the Clean button.
- Press OK when asked to close all programs and follow the onscreen prompts.
- Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
- After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
- To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
- Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
- A copy of all logfiles are saved to C:\AdwCleaner.
-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.
-
February 23rd, 2022, 08:03 AM
#19
Sir Broni i'm sorry to tell you that my computer is total loss (broke)
the HDD that was my C: drive was connected with a IDE cable and was 14 years old ...
this morning i got a update from microsoft and when the computer restart then it dod nothing anymore ...
So i went to the computer shop here in brugge (belgium) and have order a new one
I9 12900KF cpu 64GB DDR5
I thank you my friend for your help and info on this ...
And ones Again my friend Sorry that my computer (I7) is broke down ...
i will have ùy new computer on friday evening then i need to install everything again
-
February 23rd, 2022, 09:49 AM
#20
sitew: Before you install any games and/or any of the Russian programs you mentioned earlier be sure
your antivirus is up and running to try to avoid the infection(s) that you had on your now broken computer.
Also well worth doing google searches on those programs to see if others have had malware issues with them.
I would also check any install files with an online virus checker before you run them. This is a good one:
https://www.virustotal.com/gui/home/upload
And having a good backup program installed would be highest on my list of things to do first on the new
computer.
eg: https://www.easeus.com/backup-software/ has a good free version and Acronis
https://www.acronis.com/en-eu/products/true-image/ is excellent but not free.
Good luck
VirtualDr email notices are not working.
Check back regularly for responses.
_____________________
cat lovers click here
-
February 23rd, 2022, 10:31 AM
#21
I'm sorry and good luck with your new machine
-
February 24th, 2022, 05:07 PM
#22
Hi Sir Broni i'm now on the laptop from My Wife
these is the configuration from my new machine
i have ordered my new computer today
total cost 6000 euro's include tax
computer name MANTICORE-I i9-12900KF CPU
ram 64GB ddr5
HDD 's 4TB QVO
HDD 's SSD 970 EVO PLUS NVMe M2 2TB
HDD 's SSD 870 QVO 4TB intern 2.5" SATA
screen card : NVIDIA RTX3080TI 12GB W1
Be Quiet! CPU Cooler DARK ROCK PRO 4 ( instead Water Cooling )
Logitech G413 Mech Keyboard Carbon NLB
i will have this beast Friday evening
-
February 24th, 2022, 05:49 PM
#23
Nice machine
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|