Hallo,
Sinds vandaag wilt mijn pc ineens niet meer windows 7 laden. Ik zie wel het beginscherm van windows maar daarna blijft het vastzitten. Kan alleen nog maar in safemode opstarten.
Ik heb al een malware scan gedaan en een disccleaner.
Hopelijk kan iemand mij hiermee helpen.
De FRST txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-06-2017
Ran by TEK (administrator) on TEK-PC (10-06-2017 21:03:12)
Running from C:\Users\TEK\Downloads
Loaded Profiles: TEK (Available Profiles: TEK)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8781568 2016-02-06] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-31] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2313408 2016-04-07] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WindowsDefender] => -
HKLM-x32\...\Winlogon: [Userinit] userinit.exe,,c:\program files (x86)\microsoft\watermark.exe
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [UTB Install] => C:\Users\TEK\Documents\Twitch bot\Ultimate Twitch Bot 3\Ultimate Twitch Bot 3.exe [867840 2017-01-20] (BluNET)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Discord] => C:\Users\TEK\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-01-17] (Apple Inc.)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27793888 2017-05-05] (Skype Technologies S.A.)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Windows Defender] => -
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [script_fcbd] => "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Startup: C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2014-11-29]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
GroupPolicy: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8C679C55-0A47-430F-A982-44458F016E4B}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{C756F9EF-B6D1-4337-9371-151C61A11027}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.nl/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 5x0xux9d.default
FF ProfilePath: C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default [2017-06-10]
FF Homepage: Mozilla\Firefox\Profiles\5x0xux9d.default -> hxxps://mysearch.avg.com/?cid={0836F4F2-F4ED-4F0A-A0B2-A6D25BE3D7EC}&mid=08bc1f58ab0647cd866a295fe0cf5912-0af4a39d448fb34092c460b6126e2dbd25421ef5&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-07-18 13:00:04&v=4.2.1.951&pid=wtu&sg=&sap=hp
FF Extension: (Hide My Ass! Web Proxy) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\extension@hidemyass.com.xpi [2015-12-12]
FF Extension: (YouTube™ Flash® Player) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi [2017-01-09]
FF Extension: (AVG SafePrice) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\sp@avg.com.xpi [2016-11-19]
FF Extension: (Video DownloadHelper) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-02]
FF Extension: (Flash and Video Download) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2017-02-01]
FF SearchPlugin: C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\searchplugins\hma-proxy.xml [2015-12-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://google.nl/"
CHR Profile: C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default [2017-06-10]
CHR Extension: (BetterTTV) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2017-04-21]
CHR Extension: (Adblock Plus) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-06-09]
CHR Extension: (AdBlock) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-10]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-06-05]
CHR Extension: (Twitch Now) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2017-05-28]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Chrome Media Router) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-06]
CHR HKU\S-1-5-21-4167156354-4277329575-767256593-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-14] ()
S2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2013-07-29] (ASUSTeK Computer Inc.)
S2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.03\AsusFanControlService.exe [1690424 2013-11-21] (ASUSTeK Computer Inc.)
S2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-05-31] (AVG Technologies CZ, s.r.o.)
S2 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation)
S2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-05-03] (NVIDIA Corporation)
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.2.0.5\WsAppService.exe [411648 2016-03-31] (Wondershare) [File not signed]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-04-06] ()
S1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-09-15] ()
S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-21] (MCCI Corporation)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2017-04-13] ()
S3 camfilt2; C:\Windows\System32\DRIVERS\camfilt2.sys [139264 2007-08-29] (Guillemot Corporation)
S1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-01-12] (REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-05-25] (Huawei Technologies Co., Ltd.)
S3 kinonivd; C:\Windows\System32\DRIVERS\kinonivd.sys [2782848 2014-11-12] (Windows (R) Win 7 DDK provider)
S3 KINONI_Wave; C:\Windows\System32\drivers\kinonivad.sys [23040 2014-11-12] (Windows (R) Win 7 DDK provider)
S3 ks2m2avs; C:\Windows\System32\Drivers\ks2m2avs.sys [359120 2013-07-24] (Native Instruments GmbH)
S3 ks2m2usb_svc; C:\Windows\System32\Drivers\ks2m2usb.sys [85200 2013-07-24] (Native Instruments GmbH)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2017-04-13] ()
S2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [188312 2017-06-10] (Malwarebytes)
S3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-06-10] (Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [44960 2017-06-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [252832 2017-06-10] (Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-06-10] (Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation)
S3 OM0530; C:\Windows\System32\Drivers\ov530vx.sys [172928 2007-07-13] (OmniVision Technology Inc.)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2017-05-11] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.)
S3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 hmatap; system32\DRIVERS\hmatap.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-10 21:03 - 2017-06-10 21:03 - 00020724 _____ C:\Users\TEK\Downloads\FRST.txt
2017-06-10 20:43 - 2017-06-10 21:03 - 00000000 ____D C:\FRST
2017-06-10 20:42 - 2017-06-10 20:42 - 02437120 _____ (Farbar) C:\Users\TEK\Downloads\FRST64.exe
2017-06-10 20:39 - 2017-06-10 20:39 - 00127248 _____ C:\Users\TEK\AppData\Local\GDIPFONTCACHEV1.DAT
2017-06-10 20:20 - 2017-06-10 20:20 - 00000000 ____D C:\Users\TEK\AppData\Local\ElevatedDiagnostics
2017-06-10 20:15 - 2017-06-10 20:28 - 00081760 _____ C:\Windows\ntbtlog.txt
2017-06-10 19:57 - 2017-06-10 20:00 - 05169896 _____ C:\Windows\system32\FNTCACHE.DAT
2017-06-10 18:48 - 2017-06-10 18:48 - 00000000 _____ C:\Users\TEK\AppData\Local\{CC4816CA-2CD0-4F88-A85D-7D3D00EAADA8}
2017-06-10 18:47 - 2017-06-10 20:00 - 00000000 ___HD C:\Users\Public\Documents\AdobeGC
2017-06-10 16:15 - 2017-06-10 16:15 - 104313268 _____ C:\Users\TEK\Downloads\Video 10-06-17 15 43 00.mov
2017-06-09 22:23 - 2017-06-09 22:26 - 865137681 _____ C:\Users\TEK\Downloads\Shenmue The Movie - English - Xbox Edition DVD.mp4
2017-06-09 14:54 - 2017-06-09 14:55 - 10742911 _____ C:\Users\TEK\Downloads\18840608_1840143796249993_4917829358845952000_n.mp4
2017-06-07 16:50 - 2017-06-07 16:50 - 51049177 _____ C:\Users\TEK\Downloads\Particle %2F liquid case study.mp4
2017-06-07 16:47 - 2017-06-07 16:47 - 89472657 _____ C:\Users\TEK\Downloads\The Space We Live In.mp4
2017-06-07 16:44 - 2017-06-07 16:44 - 22937979 _____ C:\Users\TEK\Downloads\Entering The Stronghold - Audio Visual Animation.mp4
2017-06-07 16:34 - 2017-06-07 16:34 - 07144489 _____ C:\Users\TEK\Downloads\Particles on Erlend.mp4
2017-06-07 16:19 - 2017-06-07 16:19 - 52446910 _____ C:\Users\TEK\Downloads\Oddly Satisfying Honey Video - Visual ASMR.mp4
2017-06-07 16:15 - 2017-06-07 16:15 - 46213466 _____ C:\Users\TEK\Downloads\Carbonated Galaxy.mp4
2017-06-07 16:12 - 2017-06-07 16:12 - 46318721 _____ C:\Users\TEK\Downloads\Melting Snow Closeup - 4k.mp4
2017-06-07 16:09 - 2017-06-07 16:10 - 16509892 _____ C:\Users\TEK\Downloads\Burning Light Bulbs in MACRO.mp4
2017-06-07 16:04 - 2017-06-07 16:05 - 44910618 _____ C:\Users\TEK\Downloads\Melting Crayon Art - 4k Macro Video - Relaxing.mp4
2017-06-07 15:25 - 2017-06-07 15:25 - 37948193 _____ C:\Users\TEK\Downloads\Playing With Steel Wool.mp4
2017-06-07 15:22 - 2017-06-07 15:23 - 39769450 _____ C:\Users\TEK\Downloads\Colors In Macro.mp4
2017-06-07 15:19 - 2017-06-07 15:20 - 50232716 _____ C:\Users\TEK\Downloads\Ink In Motion (1).mp4
2017-06-07 15:13 - 2017-06-07 15:14 - 77835222 _____ C:\Users\TEK\Downloads\INK DROPS 4K (ULTRA HD).mp4
2017-06-06 17:03 - 2017-06-06 17:05 - 168805516 _____ C:\Users\TEK\Downloads\TR-DYWM.7z
2017-06-06 16:50 - 2017-06-06 16:50 - 03052639 _____ C:\Users\TEK\Downloads\18145786_250052568803733_5538380557487964160_n (1).mp4
2017-06-06 16:38 - 2017-06-06 18:23 - 3814230375 _____ C:\Users\TEK\Desktop\Latin mix video.mp4
2017-06-05 11:46 - 2017-06-05 11:46 - 142065919 _____ C:\Users\TEK\Downloads\Evolution of Video Game Graphics 1962-2017.mp4
2017-06-05 11:43 - 2017-06-05 11:44 - 230116286 _____ C:\Users\TEK\Downloads\A Brief History of Video Games.mp4
2017-06-04 15:35 - 2017-06-04 15:35 - 01080870 _____ C:\Users\TEK\Downloads\[Guru3D.com]-DDU.zip
2017-06-04 11:52 - 2017-06-04 11:52 - 01931969 _____ C:\Users\TEK\Downloads\ProcessExplorer.zip
2017-06-03 21:05 - 2017-06-03 21:06 - 02012725 _____ C:\Users\TEK\Downloads\18801596_2031617246864087_3592303538203525120_n.mp4
2017-06-03 13:55 - 2017-06-10 18:47 - 00188312 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-06-03 13:54 - 2017-06-10 20:28 - 00252832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-06-03 13:54 - 2017-06-10 20:28 - 00044960 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-06-03 13:54 - 2017-06-10 19:58 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-06-03 13:54 - 2017-06-10 19:58 - 00084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-06-03 13:54 - 2017-06-03 13:54 - 00001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-06-03 13:54 - 2017-06-03 13:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-06-03 13:53 - 2017-06-10 20:28 - 00077376 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-06-03 13:53 - 2017-06-03 13:53 - 00000000 ____D C:\Program Files\Malwarebytes
2017-06-03 13:37 - 2017-06-03 17:16 - 00000000 ____D C:\Users\TEK\AppData\Roaming\SimpleStar
2017-06-03 00:22 - 2017-05-18 07:21 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-06-03 00:20 - 2017-05-18 09:33 - 40201848 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 35349440 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 35282040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 17426520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 14271608 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-06-03 00:20 - 2017-05-18 09:33 - 11056456 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 11027968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 10551072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 09248328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 09014976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 08808488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 03437688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 03020920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 01988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438233.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 01606592 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438233.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 01055680 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00993912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00964216 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00914880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00688968 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00609912 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00577728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00507688 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00499320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00426128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00406736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-06-02 22:19 - 2017-06-02 22:19 - 00000000 ____D C:\Users\TEK\AppData\Local\FormulaFusion
2017-06-02 22:04 - 2017-06-02 22:04 - 00003816 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1496433852
2017-06-02 22:04 - 2017-06-02 22:04 - 00001093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-06-02 22:04 - 2017-06-02 22:04 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Opera Software
2017-06-02 22:04 - 2017-06-02 22:04 - 00000000 ____D C:\Users\TEK\AppData\Local\Opera Software
2017-06-02 22:03 - 2017-06-02 22:04 - 00000000 ____D C:\Program Files\Opera
2017-06-02 13:20 - 2017-06-02 13:22 - 27593947 _____ C:\Users\TEK\Downloads\hd0993.mov
2017-06-02 13:16 - 2017-06-02 13:18 - 15536297 _____ C:\Users\TEK\Downloads\hd0536.mov
2017-06-02 13:16 - 2017-06-02 13:17 - 09878883 _____ C:\Users\TEK\Downloads\bokeh-H264 75.mov
2017-06-02 13:16 - 2017-06-02 13:17 - 08121873 _____ C:\Users\TEK\Downloads\Bokeh Background 2-H264 75 (1).mov
2017-06-02 13:15 - 2017-06-02 13:27 - 124213312 _____ C:\Users\TEK\Downloads\hd0969.mov
2017-06-02 13:15 - 2017-06-02 13:16 - 08121873 _____ C:\Users\TEK\Downloads\Bokeh Background 2-H264 75.mov
2017-06-02 13:15 - 2017-06-02 13:15 - 01348662 _____ C:\Users\TEK\Downloads\cometebyGY.mp4
2017-06-02 13:14 - 2017-06-02 13:15 - 09084977 _____ C:\Users\TEK\Downloads\VUMetersBlueVidevo.mov
2017-06-02 13:14 - 2017-06-02 13:15 - 07254392 _____ C:\Users\TEK\Downloads\overlay_14.mp4
2017-06-02 13:13 - 2017-06-02 13:17 - 34885046 _____ C:\Users\TEK\Downloads\NewsBackground1Videvo.mov
2017-06-02 13:12 - 2017-06-02 13:13 - 07807367 _____ C:\Users\TEK\Downloads\Apocalyptic.mp4
2017-06-01 21:30 - 2017-06-01 21:30 - 00000000 ____D C:\Users\TEK\AppData\LocalLow\FustyGame
2017-05-31 23:55 - 2017-06-03 01:23 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2017-05-31 23:51 - 2017-06-03 01:23 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2017-05-31 23:50 - 2017-06-03 01:23 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2017-05-31 23:49 - 2017-05-31 23:49 - 00000000 ____D C:\Users\TEK\AppData\Local\Micro-Star_Int'l_Co.,_Ltd
2017-05-31 21:59 - 2017-06-03 14:05 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-05-31 21:59 - 2017-05-31 21:59 - 00000000 ____D C:\Users\TEK\AppData\Roaming\TeamViewer
2017-05-30 22:36 - 2017-05-30 22:36 - 00277173 _____ C:\Users\TEK\Downloads\Declaratie formulier.xlsx
2017-05-29 21:51 - 2017-05-29 21:51 - 14398676 _____ C:\Users\TEK\Downloads\Tweet feat. Missy Elliott - Oops (Oh My).mp4
2017-05-29 21:50 - 2017-05-29 21:55 - 16547728 _____ C:\Users\TEK\Downloads\Donell Jones - U Know Whats Up.mp4
2017-05-29 21:50 - 2017-05-29 21:50 - 60185599 _____ C:\Users\TEK\Downloads\Aaliyah - Are You That Somebody (Official HD Video).mp4
2017-05-29 21:49 - 2017-05-29 21:49 - 16224045 _____ C:\Users\TEK\Downloads\Lauryn Hill - Ex-Factor.mp4
2017-05-29 21:48 - 2017-05-29 21:48 - 24173212 _____ C:\Users\TEK\Downloads\Color Me Badd - I Adore Mi Amor (Video).mp4
2017-05-29 21:46 - 2017-05-29 21:47 - 18908360 _____ C:\Users\TEK\Downloads\Maxwell - Ascension (Dont Ever Wonder).mp4
2017-05-29 21:42 - 2017-05-29 21:43 - 22330443 _____ C:\Users\TEK\Downloads\Case - Happily Ever After.mp4
2017-05-29 21:40 - 2017-05-29 21:40 - 13260732 _____ C:\Users\TEK\Downloads\Mint Condition - Breakin My Heart (Pretty Brown Eyes).mp4
2017-05-29 21:37 - 2017-05-29 21:37 - 23006451 _____ C:\Users\TEK\Downloads\R. Kelly - I Cant Sleep Baby (If I).mp4
2017-05-29 21:36 - 2017-05-29 21:36 - 18933752 _____ C:\Users\TEK\Downloads\Sade - No Ordinary Love.mp4
2017-05-29 21:35 - 2017-05-29 21:35 - 17929403 _____ C:\Users\TEK\Downloads\Tyrese - Sweet Lady.mp4
2017-05-29 21:34 - 2017-05-29 21:34 - 12350483 _____ C:\Users\TEK\Downloads\Tevin Campbell - Can We Talk.mp4
2017-05-29 21:33 - 2017-05-29 21:37 - 20323749 _____ C:\Users\TEK\Downloads\Joe - I Wanna Know.mp4
2017-05-29 21:32 - 2017-05-29 21:33 - 18349434 _____ C:\Users\TEK\Downloads\Keith Sweat - Twisted (Official Video).mp4
2017-05-29 21:31 - 2017-05-29 21:32 - 39253373 _____ C:\Users\TEK\Downloads\Color Me Badd - I Wanna Sex You Up.mp4
2017-05-29 21:29 - 2017-05-29 21:29 - 20502150 _____ C:\Users\TEK\Downloads\Kelis - Caught Out There.mp4
2017-05-29 21:28 - 2017-05-29 21:28 - 22609492 _____ C:\Users\TEK\Downloads\Dru Hill - How Deep Is Your Love.mp4
2017-05-29 21:28 - 2017-05-29 21:28 - 18120712 _____ C:\Users\TEK\Downloads\Montell Jordan - Get It On Tonite.mp4
2017-05-29 21:27 - 2017-05-29 21:27 - 21510272 _____ C:\Users\TEK\Downloads\Aaliyah - If Your Girl Only Knew.mp4
2017-05-29 21:27 - 2017-05-29 21:27 - 11454340 _____ C:\Users\TEK\Downloads\Janet Jackson - Got till Its Gone.mp4
2017-05-29 21:26 - 2017-05-29 21:26 - 22142506 _____ C:\Users\TEK\Downloads\Guy - Do Me Right ft. Heavy D.mp4
2017-05-29 21:26 - 2017-05-29 21:26 - 21956295 _____ C:\Users\TEK\Downloads\Babyface - This Is For The Lover In You.mp4
2017-05-29 21:25 - 2017-05-29 21:25 - 22162589 _____ C:\Users\TEK\Downloads\Bell Biv DeVoe - Do Me! (Remix).mp4
2017-05-29 21:24 - 2017-05-29 21:24 - 22159736 _____ C:\Users\TEK\Downloads\New Edition - Hit Me Off.mp4
2017-05-29 21:24 - 2017-05-29 21:24 - 14989664 _____ C:\Users\TEK\Downloads\Groove Theory - TELL ME (Album Version).mp4
2017-05-29 21:23 - 2017-05-29 21:23 - 15818305 _____ C:\Users\TEK\Downloads\Monica - Dont Take It Personal (Just One Of Dem Days).mp4
2017-05-29 21:22 - 2017-05-29 21:33 - 22052704 _____ C:\Users\TEK\Downloads\Soul For Real - Candy Rain.mp4
2017-05-29 21:22 - 2017-05-29 21:23 - 25795027 _____ C:\Users\TEK\Downloads\Next - Too Close.mp4
2017-05-29 21:21 - 2017-05-29 21:21 - 14869762 _____ C:\Users\TEK\Downloads\Usher - You Make Me Wanna.mp4
2017-05-29 21:20 - 2017-05-29 21:23 - 08847296 _____ C:\Users\TEK\Downloads\Mary J blige - Real Love.mp4
2017-05-29 21:19 - 2017-05-29 21:19 - 24964619 _____ C:\Users\TEK\Downloads\Blackstreet - No Diggity ft. Dr. Dre Queen Pen.mp4
2017-05-28 22:25 - 2017-05-28 22:25 - 78579710 _____ C:\Users\TEK\Downloads\New York in 4K.mp4
2017-05-28 22:25 - 2017-05-28 22:25 - 49962601 _____ C:\Users\TEK\Downloads\Chicago in 4k.mp4
2017-05-28 22:24 - 2017-05-28 22:24 - 57167267 _____ C:\Users\TEK\Downloads\Quito Ecuador in 4K.mp4
2017-05-28 22:23 - 2017-05-28 22:24 - 69818989 _____ C:\Users\TEK\Downloads\Barcelona in 4K.mp4
2017-05-28 22:22 - 2017-05-28 22:23 - 67579377 _____ C:\Users\TEK\Downloads\Vienna in 4K.mp4
2017-05-28 22:22 - 2017-05-28 22:22 - 62659670 _____ C:\Users\TEK\Downloads\Punta Cana in 4K.mp4
2017-05-28 22:21 - 2017-05-28 22:21 - 71225883 _____ C:\Users\TEK\Downloads\London in 4K.mp4
2017-05-28 22:20 - 2017-05-28 22:20 - 62006368 _____ C:\Users\TEK\Downloads\Bruges in 4K.mp4
2017-05-28 22:19 - 2017-05-28 22:20 - 67552614 _____ C:\Users\TEK\Downloads\Miami in 4K.mp4
2017-05-28 02:14 - 2017-05-28 02:14 - 00000000 ____D C:\Users\TEK\Documents\Vanquish
2017-05-26 23:05 - 2017-05-26 23:05 - 00000720 _____ C:\Users\TEK\Desktop\Vanquish.lnk
2017-05-26 23:05 - 2017-05-26 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vanquish
2017-05-25 00:35 - 2017-05-25 00:35 - 00000744 __RSH C:\ProgramData\ntuser.pol
2017-05-24 20:23 - 2017-05-24 20:23 - 00008922 _____ C:\Users\TEK\Documents\Expermental hiphop.m3u8
2017-05-21 22:38 - 2017-05-21 22:54 - 00000556 _____ C:\Users\TEK\Desktop\Fundamentally ill DJ beatmaker online course.txt
2017-05-21 21:29 - 2017-05-21 22:01 - 00000000 ____D C:\ProgramData\mgs
2017-05-21 21:29 - 2017-05-21 21:29 - 00000000 ____D C:\Microgaming
2017-05-21 16:47 - 2017-05-21 16:58 - 00000000 ____D C:\Users\TEK\Documents\GTA Vice City User Files
2017-05-21 16:27 - 2017-05-21 16:27 - 00001229 _____ C:\Users\Public\Desktop\Grand Theft Auto Vice City.lnk
2017-05-21 16:27 - 2017-05-21 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ
2017-05-21 16:24 - 2017-05-21 16:24 - 00000000 ____D C:\Program Files (x86)\Mr DJ
2017-05-20 18:48 - 2017-05-20 18:48 - 00002847 _____ C:\Windows\SysWOW64\servers.def.vpx
2017-05-20 18:48 - 2017-05-20 18:48 - 00000446 _____ C:\Windows\SysWOW64\prod-pgm.vpx
2017-05-20 18:47 - 2017-05-20 18:47 - 00000039 _____ C:\Windows\SysWOW64\Stats.ini
2017-05-19 21:31 - 2017-06-10 21:02 - 00000016 _____ C:\Windows\SysWOW64\dmlconf.dat
2017-05-19 21:29 - 2017-06-09 00:14 - 00000000 __SHD C:\Users\TEK\AppData\Local\.#
2017-05-14 21:34 - 2017-05-14 21:35 - 164739803 _____ C:\Users\TEK\Downloads\Makers Gamers Street Fighter.mp4
2017-05-14 03:15 - 2017-05-14 03:16 - 42301731 _____ C:\Users\TEK\Downloads\Icons - Mortal Kombat - Part 2.mp4
2017-05-14 03:13 - 2017-05-14 03:14 - 40715853 _____ C:\Users\TEK\Downloads\Icons - Mortal Kombat - Part 1.mp4
2017-05-14 03:09 - 2017-05-14 03:10 - 29807425 _____ C:\Users\TEK\Downloads\Mortal Kombat - History of Fatalities [Part 1].mp4
2017-05-13 02:57 - 2017-05-13 02:57 - 00000000 ____D C:\Users\TEK\AppData\Local\StreetFighterV_NewCFNBeta
2017-05-11 15:36 - 2017-05-11 15:36 - 00235298 _____ C:\Users\TEK\Downloads\BAX-PACK-4097502.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-10 20:23 - 2014-11-26 02:11 - 00000000 ____D C:\Program Files (x86)\Steam
2017-06-10 20:17 - 2015-12-30 14:22 - 00000000 ____D C:\Users\TEK\AppData\Local\CrashDumps
2017-06-10 20:16 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-10 20:03 - 2009-07-14 06:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-06-10 20:03 - 2009-07-14 06:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-06-10 20:00 - 2016-03-01 20:21 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-10 19:23 - 2014-11-28 01:12 - 00000000 ____D C:\Users\TEK\Documents\My Games
2017-06-10 19:21 - 2015-10-10 12:52 - 00000000 ____D C:\Users\TEK\Documents\FILES
2017-06-10 19:09 - 2014-11-27 00:04 - 00000000 ____D C:\Users\TEK\AppData\Roaming\uTorrent
2017-06-10 19:08 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-06-10 18:01 - 2014-11-26 04:37 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Skype
2017-06-10 17:28 - 2016-03-04 00:54 - 00000000 ____D C:\Users\TEK\Downloads\Timbaland - King Stays King - HotNewHipHop
2017-06-10 15:23 - 2016-09-21 07:54 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2017-06-10 02:43 - 2017-01-03 17:24 - 00000000 ____D C:\Users\TEK\AppData\Roaming\obs-studio
2017-06-10 02:00 - 2014-11-28 18:02 - 00000000 ____D C:\Users\TEK\AppData\Local\Adobe
2017-06-10 01:52 - 2014-11-26 01:32 - 00000000 ____D C:\Users\TEK
2017-06-09 19:39 - 2014-11-29 07:42 - 00001463 _____ C:\Users\TEK\ggpo-ng.ini
2017-06-09 19:30 - 2014-11-29 07:47 - 00006577 _____ C:\Users\TEK\ggpofba-ng.bkp.ini
2017-06-06 01:49 - 2014-11-26 01:57 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-06 01:17 - 2014-12-01 16:47 - 00000000 ____D C:\Users\TEK\AppData\Roaming\vlc
2017-06-05 00:33 - 2017-01-27 21:46 - 00000000 ____D C:\Users\TEK\AppData\Roaming\discord
2017-06-05 00:29 - 2009-07-14 07:08 - 00032566 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-06-03 20:13 - 2015-04-11 17:42 - 00000000 ____D C:\Users\TEK\Downloads\Sleeping Dogs OST
2017-06-03 20:07 - 2015-02-23 15:37 - 00000000 ____D C:\Users\TEK\Downloads\Roy Ayers
2017-06-03 16:54 - 2014-11-29 06:03 - 00000000 ____D C:\Program Files (x86)\MagicDisc
2017-06-03 16:50 - 2016-08-08 18:49 - 00000000 ____D C:\Users\TEK\AppData\Local\Microsoft Windows
2017-06-03 13:53 - 2014-11-26 04:45 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-06-03 13:53 - 2014-11-26 04:45 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-06-03 13:43 - 2016-01-12 16:51 - 00000000 ____D C:\ProgramData\ProductData
2017-06-03 13:42 - 2016-01-12 16:50 - 00002878 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (TEK)
2017-06-03 13:42 - 2016-01-12 16:50 - 00000000 ____D C:\ProgramData\IObit
2017-06-03 12:40 - 2014-11-27 08:37 - 00007602 _____ C:\Users\TEK\AppData\Local\Resmon.ResmonCfg
2017-06-03 00:50 - 2017-03-10 18:34 - 00000126 _____ C:\Users\TEK\Desktop\mobiel nummers.txt
2017-06-03 00:46 - 2016-01-17 23:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-06-03 00:46 - 2016-01-17 23:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-06-03 00:23 - 2016-12-27 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-06-03 00:23 - 2015-02-20 20:37 - 00000000 ____D C:\Temp
2017-06-03 00:23 - 2014-11-26 03:03 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-03 00:22 - 2016-03-24 23:48 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-06-02 21:55 - 2016-01-17 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-06-02 14:27 - 2016-01-12 16:50 - 00000000 ____D C:\Users\TEK\AppData\Roaming\IObit
2017-06-02 14:27 - 2014-11-25 04:28 - 00000000 ____D C:\AdwCleaner
2017-06-01 23:42 - 2015-06-24 21:44 - 00000000 ____D C:\Users\TEK\AppData\Local\Ubisoft Game Launcher
2017-05-31 23:55 - 2015-01-15 14:02 - 00000000 ____D C:\Windows\SysWOW64\directx
2017-05-31 00:43 - 2009-07-14 04:34 - 00000614 _____ C:\Windows\win.ini
2017-05-31 00:43 - 2009-07-14 04:34 - 00000241 _____ C:\Windows\system.ini
2017-05-31 00:37 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-05-31 00:30 - 2016-07-18 16:53 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-05-29 15:31 - 2015-12-09 13:13 - 00000000 ____D C:\ProgramData\Avg
2017-05-29 15:31 - 2014-11-26 01:58 - 00000000 ____D C:\Program Files (x86)\AVG
2017-05-28 11:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2017-05-27 12:35 - 2009-07-14 07:13 - 00786622 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-25 00:34 - 2009-07-14 05:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2017-05-24 20:17 - 2014-12-02 02:43 - 00000000 ____D C:\Program Files (x86)\Winamp
2017-05-22 23:47 - 2014-11-26 03:10 - 00000000 ____D C:\Users\TEK\AppData\Local\NVIDIA Corporation
2017-05-21 16:47 - 2015-01-20 19:46 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-05-20 19:25 - 2016-02-09 13:46 - 00000000 ____D C:\ProgramData\Origin
2017-05-20 19:25 - 2016-02-09 13:46 - 00000000 ____D C:\ProgramData\Electronic Arts
2017-05-20 18:46 - 2015-12-09 21:53 - 00000000 ____D C:\Users\TEK\AppData\Local\AvgSetupLog
2017-05-20 18:24 - 2017-05-03 00:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sega
2017-05-20 18:05 - 2017-04-10 04:27 - 00159496 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgstm.sys.149529634620201
2017-05-18 21:50 - 2016-08-03 16:52 - 00000000 ____D C:\Users\TEK\Desktop\BEATKITCHEN FILES
2017-05-18 09:33 - 2017-05-10 23:31 - 28593088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-05-18 09:33 - 2017-04-08 18:22 - 16436488 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-05-18 09:33 - 2016-12-27 13:04 - 00491208 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-05-18 09:33 - 2016-12-27 13:03 - 03603672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-05-18 09:33 - 2016-08-22 15:18 - 00042897 _____ C:\Windows\system32\nvinfo.pb
2017-05-18 09:33 - 2016-03-01 20:19 - 20066768 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-05-18 09:33 - 2016-03-01 20:19 - 13402816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-05-18 09:33 - 2016-03-01 20:19 - 04090016 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-05-18 07:55 - 2016-12-27 13:05 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-05-18 07:48 - 2016-03-01 20:20 - 06437824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 02479736 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 01762936 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 00548984 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 00392312 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 00069752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-05-16 22:44 - 2014-11-26 04:37 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-05-16 22:44 - 2014-11-26 04:36 - 00000000 ____D C:\ProgramData\Skype
2017-05-16 22:37 - 2017-03-09 20:35 - 00003246 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2017-05-16 22:37 - 2017-03-09 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-05-16 20:09 - 2016-03-01 20:20 - 07993157 _____ C:\Windows\system32\nvcoproc.bin
2017-05-11 12:42 - 2015-01-27 19:37 - 00000034 _____ C:\Users\TEK\AppData\Roaming\AdobeWLCMCache.dat
2017-05-11 00:48 - 2016-05-05 22:07 - 00163644 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\SysWOW64\Drivers\SECDRV.SYS
2017-05-11 00:44 - 2015-12-02 21:48 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Sega
2017-05-11 00:42 - 2014-11-26 01:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
==================== Files in the root of some directories =======
2015-01-27 19:37 - 2017-05-11 12:42 - 0000034 _____ () C:\Users\TEK\AppData\Roaming\AdobeWLCMCache.dat
2016-01-12 14:47 - 2016-01-12 14:47 - 0159200 ____T () C:\Users\TEK\AppData\Roaming\CrashRpt1402.dll
2015-06-14 14:48 - 2015-06-14 14:48 - 212585352 _____ () C:\Users\TEK\AppData\Local\ACCCx3_1_0_108.zip.aamdownload
2015-06-14 14:48 - 2015-06-14 14:48 - 0002489 _____ () C:\Users\TEK\AppData\Local\ACCCx3_1_0_108.zip.aamdownload.aamd
2015-07-30 18:45 - 2017-02-10 13:15 - 0001456 _____ () C:\Users\TEK\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-11-30 23:20 - 2014-11-30 23:20 - 0000000 ___SH () C:\Users\TEK\AppData\Local\LumaEmu
2014-11-27 08:37 - 2017-06-03 12:40 - 0007602 _____ () C:\Users\TEK\AppData\Local\Resmon.ResmonCfg
2017-06-10 18:48 - 2017-06-10 18:48 - 0000000 _____ () C:\Users\TEK\AppData\Local\{CC4816CA-2CD0-4F88-A85D-7D3D00EAADA8}
2014-11-27 01:21 - 2014-11-27 01:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-04 13:20
==================== End of FRST.txt ============================