Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 20-06-2021 Gestart door Passer (Beheerder) op EIGEN (ASUS All Series) (23-06-2021 15:10:45) Gestart vanaf C:\Users\Passer\Desktop Geladen Profielen: Passer Platform: Windows 10 Home Versie 21H1 19043.1055 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) () [Bestand niet getekend] C:\Program Files\Rainlendar2\Rainlendar2.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.31\aaHMSvc.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe (Corel Corporation -> Corel Corporation) C:\Program Files (x86)\Corel\WordPerfect Office X8\Programs\ps180.exe (Corel Corporation -> Corel Corporation) C:\Program Files (x86)\Corel\WordPerfect Office X8\Programs\wpwin18.exe (DonationCoder.com -> DonationCoder) C:\Program Files (x86)\ScreenshotCaptor\ScreenshotCaptor.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe (IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe <2> (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\LAClient\laclient.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LogiAppBroker.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\laclient.exe (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe (MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9> (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Softdeluxe) [Bestand niet getekend] C:\Program Files\Free Download Manager\helperservice.exe (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe (voidtools -> voidtools) C:\Portables\Everything\Everything.exe <2> (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-21] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3952096 2020-03-11] (Logitech -> Logitech, Inc.) HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1668000 2021-06-09] (Logitech Inc -> Logitech, Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288672 2021-05-21] (IDSA Production signing key 2021 -> Intel) HKU\S-1-5-21-1932565159-2512956902-953908438-1002\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [3392512 2021-03-19] () [Bestand niet getekend] HKU\S-1-5-21-1932565159-2512956902-953908438-1002\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5686120 2021-05-10] (Tonec Inc. -> Tonec Inc.) HKU\S-1-5-21-1932565159-2512956902-953908438-1002\...\Run: [Screenshot Captor] => C:\Program Files (x86)\ScreenshotCaptor\ScreenshotCaptor.exe [9455296 2020-01-02] (DonationCoder.com -> DonationCoder) HKU\S-1-5-21-1932565159-2512956902-953908438-1002\...\Policies\Explorer: [NoSaveSettings] 0 HKU\S-1-5-21-1932565159-2512956902-953908438-1002\...\Policies\Explorer: [NoPreviewPane] 0 HKU\S-1-5-21-1932565159-2512956902-953908438-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [581120 2021-04-09] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\Canon MG5300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAT.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55872 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5300 series: C:\WINDOWS\system32\CNMLMAT.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5300 series XPS: C:\WINDOWS\system32\CNMXLMAT.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Bestand niet getekend] IFEO\CompatTelRunner.exe: [Debugger] %windir%\System32\taskkill.exe Startup: C:\Users\Passer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\firefox.exe.lnk [2020-05-01] <==== AANDACHT ShortcutTarget: firefox.exe.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) <==== AANDACHT Startup: C:\Users\Passer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outlook.exe.lnk [2019-04-03] <==== AANDACHT ShortcutTarget: Outlook.exe.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.EXE (Microsoft Corporation -> Microsoft Corporation) <==== AANDACHT GroupPolicy: Restrictie ? <==== AANDACHT HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT HKU\.DEFAULT\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT HKU\S-1-5-21-1932565159-2512956902-953908438-1002\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Microsoft\Edge: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {05680ECB-0F66-4271-A3FA-E4A5F677915B} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2311536 2020-10-22] (Microsoft Corporation -> Microsoft) Task: {082A24AB-D43A-42CA-9674-4D6E60C8B020} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1932565159-2512956902-953908438-500 => C:\Users\Passer\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {10D5B4E7-46CA-44E3-ADE0-682F8EF22FD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {11081C39-3B6F-4253-BC84-A0F222B8EDCD} - System32\Tasks\CorelUpdateHelperTask-E527EBDBC17BDED9005BDD1DDD9E7A26 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe Task: {2315FB6D-A149-4DEF-9A6D-93F53846D74F} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> ) Task: {24B138F1-CE19-4542-BB0D-FAD17C7D282B} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Safer-Networking Ltd\Spybot Anti-Beacon\Spybot3AntiBeacon.exe Task: {2818B323-1D66-46FA-85B8-C0683CBB8546} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [3071672 2015-10-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {28B5F024-3A67-4B4C-BB41-F7199740999E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2D02FAAE-6247-41A8-9400-D5F5D1946587} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Free Download Manager\helperservice.exe [144896 2021-01-18] (Softdeluxe) [Bestand niet getekend] Task: {32FFBD08-7980-4727-AA8C-A9D55E3BE157} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4132E9D7-65CD-416D-9D02-F6114127C8F0} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1910128 2020-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {477F95BE-E6E7-4E4F-97F9-0588B3270F2C} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [3071672 2015-10-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {4CBB43C7-DD04-455D-907F-1655199F2B3F} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1910128 2020-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {5FC75BBE-DED3-4C45-8D05-9E70B7DA781B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation) Task: {60822386-868C-4478-B32A-EA99A101489C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {62BC07A8-9E76-45B3-8B73-7F948F2AF3D2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-31] (Google Inc -> Google Inc.) Task: {67AAF1E6-2C99-4530-8473-5604AE6C2640} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098928 2020-08-02] (Intel(R) Software Development Products -> Intel Corporation) Task: {6A10A15E-2919-4767-A1A2-306878BF2AE8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6FCBF31D-8D1B-48CD-B3D9-6FDC39C31149} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform) Task: {7AC101F2-0B36-4AE8-8F04-D52A5423F449} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation) Task: {7BF1D924-C1D6-46DB-8190-6776ADA17628} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32624 2020-10-22] (Microsoft Corporation -> Microsoft) Task: {7C780B82-D55C-4E9A-ABDA-AE944F9475AE} - System32\Tasks\2BrightSparks\SyncBackFree\EIGEN-Passer\SyncBackFree Images G - M => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [72934480 2021-06-01] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) Task: {94A240F9-04A9-497B-8BAD-15D727EA8F40} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {9C198802-EC42-47CB-9617-4E08885C0C07} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd) Task: {9C664705-A1DC-4612-B4DE-BDB173C311C6} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2020-12-28] () [Bestand niet getekend] Task: {9C7BD637-06BA-47B2-BD71-B2A156990A48} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {9DA22C21-7D95-443C-B566-7CEA2A718831} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098928 2020-08-02] (Intel(R) Software Development Products -> Intel Corporation) Task: {9F181003-0315-47A1-9329-134ECD48DC3F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-16] (Mozilla Corporation -> Mozilla Foundation) Task: {A4D71C6C-6CD4-47FC-AFB5-60DB4B163B6B} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [12288 2015-10-13] () [Bestand niet getekend] Task: {AFB375C0-11B9-4312-8A8C-0DF6B024EBDE} - System32\Tasks\2BrightSparks\SyncBackFree\EIGEN-Passer\SyncBackFree Tijdschriften E ➽ K => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [72934480 2021-06-01] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) Task: {BBCE2630-DB74-41D1-9CAF-A8A95CE2B72A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-31] (Google Inc -> Google Inc.) Task: {E081A338-DB1D-4603-81D9-99B37F4582B0} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2434424 2020-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {EB38A0E9-372F-44C6-AC8C-58C115AE7E14} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {F19CB18C-686B-4CB8-9E0A-83889070816D} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2434424 2020-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {F9D5782E-0588-4952-88D5-5436C52834CC} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\Free Download Manager\winwfpmonitor.exe (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 195.130.130.5 195.130.131.5 Tcpip\..\Interfaces\{70dace81-b632-4ba0-9428-8d8d4e61197d}: [NameServer] 208.67.222.222,208.67.220.220 Tcpip\..\Interfaces\{70dace81-b632-4ba0-9428-8d8d4e61197d}: [DhcpNameServer] 195.130.130.5 195.130.131.5 Edge: ======= DownloadDir: E:\= Verzonden pdf's Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> EdgeExtension_TonecIncIDMIntegrationModule_e7b5mm5d3r6v2 => C:\Program Files\WindowsApps\TonecInc.IDMIntegrationModule_6.36.5.0_neutral__e7b5mm5d3r6v2 [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Profile 1 Edge Profile: C:\Users\Passer\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2021-06-08] Edge Profile: C:\Users\Passer\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-06-22] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Passer\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-06-14] Edge Extension: (IDM Integration Module) - C:\Users\Passer\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2021-03-11] Edge HKU\S-1-5-21-1932565159-2512956902-953908438-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2021-05-10] Edge HKU\S-1-5-21-1932565159-2512956902-953908438-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2021-05-10] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: f34ftyyw.default FF ProfilePath: C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default [2021-06-23] FF DownloadDir: E:\Mijn documenten\Downloads FF Homepage: Mozilla\Firefox\Profiles\f34ftyyw.default -> hxxp://www.radioswissclassic.ch/en FF Notifications: Mozilla\Firefox\Profiles\f34ftyyw.default -> hxxps://www.pc-helpforum.be; hxxps://tweakers.net FF Extension: (The Stream Detector) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\@m3u8link.xpi [2021-05-30] FF Extension: (CanvasBlocker) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\CanvasBlocker@kkapsner.de.xpi [2021-06-22] FF Extension: (To Google Translate) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-22] FF Extension: (Privacy Badger) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-06-10] FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\langpack-nl@firefox.mozilla.org.xpi [2021-06-01] FF Extension: (IDM Integration Module) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2021-03-06] FF Extension: (Woordenboek Nederlands) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\nl-NL@dictionaries.addons.mozilla.org.xpi [2021-05-16] FF Extension: (uBlock Origin) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\uBlock0@raymondhill.net.xpi [2021-06-22] FF Extension: (Malwarebytes Browser Guard) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-06-11] FF Extension: (Brisk Brown) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\{7d1e3400-bbf6-4603-9e6b-8318acf84c6b}.xpi [2019-07-09] FF Extension: (Logitech SetPoint) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2020-08-17] FF Extension: (Open in MS Edge™) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\{94782f74-1a58-4332-a803-00006221a9d0}.xpi [2021-02-10] FF Extension: (Flash and Video Download) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2020-06-09] FF Extension: (Video DownloadHelper) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-17] FF Extension: (Bypass Paywalls Clean) - C:\Users\Passer\AppData\Roaming\Mozilla\Firefox\Profiles\f34ftyyw.default\Extensions\{d133e097-46d9-4ecc-9903-fa6a722a6e0e}.xpi [2021-06-21] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-02-04] [niet getekend] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat\Browser\WCFirefoxExtn [2020-06-06] [Verouderd] [niet getekend] FF HKU\S-1-5-21-1932565159-2512956902-953908438-1002\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2021-03-05] FF HKU\S-1-5-21-1932565159-2512956902-953908438-1002\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Passer\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\Passer\AppData\Roaming\IDM\idmmzcc5 [2018-05-28] [Verouderd] [niet getekend] FF HKU\S-1-5-21-1932565159-2512956902-953908438-1002\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Verouderd] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VLC\npvlc.dll [2021-06-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.13 -> C:\Program Files (x86)\VLC\npvlc.dll [2021-06-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VLC\npvlc.dll [2021-06-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.15 -> C:\Program Files (x86)\VLC\npvlc.dll [2021-06-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=3.0.9.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Passer\AppData\Local\Google\Chrome\User Data\Default [2021-06-08] CHR Extension: (IDM Integration Module) - C:\Users\Passer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-02-20] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2021-05-10] CHR HKU\S-1-5-21-1932565159-2512956902-953908438-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2021-05-10] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2021-05-10] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936456 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> ) R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.31\aaHMSvc.exe [975832 2017-01-25] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [43656 2020-12-04] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R2 Everything; C:\Program Files\Everything\Everything.exe [2261600 2021-05-12] (voidtools -> voidtools) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-28] (Malwarebytes Inc -> Malwarebytes) R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R3 VssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{2DFF8311-414F-48CB-9AC8-73B736B40FAC} [21312 2021-04-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15368 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-03-31] (Malwarebytes Inc -> Malwarebytes) R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [74296 2020-11-27] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) S3 EUBAKUP0; C:\WINDOWS\system32\drivers\EUBAKUP0.sys [74296 2020-11-27] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [53304 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 EUBKMON0; C:\WINDOWS\system32\drivers\EUBKMON0.sys [53304 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [22784 2020-02-24] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [341760 2020-02-24] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) S3 EUFDDISK0; C:\WINDOWS\system32\drivers\EUFDDISK0.sys [341760 2020-02-24] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) S3 GPUIO; C:\Program Files (x86)\Common Files\InstallShield\Driver\9\Intel 32\690b33e1-0462-4e84-9bea-c7552b45432a.sys [27120 2018-12-09] (ASUSTeK Computer Inc. -> ) R0 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-22] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-23] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69016 2021-06-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-22] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-06-23] (Malwarebytes Inc -> Malwarebytes) R3 MpKsl64e992d5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{82367CB0-A37C-4CEE-807C-A91B678F2A2C}\MpKslDrv.sys [107744 2021-06-23] (Microsoft Windows -> Microsoft Corporation) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-06-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425184 2021-06-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-12] (Microsoft Windows -> Microsoft Corporation) S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-06-23 15:10 - 2021-06-23 15:11 - 000034310 _____ C:\Users\Passer\Desktop\FRST.txt 2021-06-23 15:10 - 2021-06-23 15:10 - 002300416 _____ (Farbar) C:\Users\Passer\Desktop\FRST64.exe 2021-06-23 08:15 - 2021-06-23 08:15 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2021-06-23 08:15 - 2021-06-23 08:15 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2021-06-23 08:15 - 2021-06-23 08:15 - 000069016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2021-06-22 21:38 - 2021-06-22 21:38 - 000001337 _____ C:\Users\Passer\Desktop\screenshots - Snelkoppeling.lnk 2021-06-22 20:51 - 2021-06-22 20:51 - 000000214 _____ C:\Users\Passer\Desktop\Prospekt Zero Demo.url 2021-06-22 17:45 - 2021-06-22 17:45 - 000000214 _____ C:\Users\Passer\Desktop\Xen Forces 1 Breath of Xen.url 2021-06-22 17:19 - 2021-06-22 17:19 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-06-22 17:19 - 2021-06-22 17:19 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-06-21 11:25 - 2021-06-21 11:25 - 000011453 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-06-19 08:27 - 2021-06-19 08:27 - 000004096 ___SH C:\{B55D4A4E-AE53-4D4F-835B-5B4F78697F5D}.CBM 2021-06-16 20:39 - 2021-06-16 20:39 - 000001346 _____ C:\Users\Passer\Desktop\HL2 - EP2.lnk 2021-06-16 12:41 - 2021-06-16 12:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-06-15 15:13 - 2021-06-15 15:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org 2021-06-15 15:13 - 2021-06-15 15:13 - 000000000 ____D C:\Program Files (x86)\Xiph.Org 2021-06-14 17:43 - 2021-06-14 17:43 - 000000000 ____D C:\Users\Passer\AppData\Local\Deployment 2021-06-11 12:53 - 2021-06-11 12:53 - 000000197 _____ C:\Users\Passer\Desktop\Half-Life 2 Episode Two - beginnen met Aerial harassment.url 2021-06-08 20:27 - 2021-06-08 20:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-06-08 20:27 - 2021-06-08 20:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-06-08 20:17 - 2021-06-08 20:17 - 000000000 ____D C:\WINDOWS\PCHEALTH 2021-06-03 08:59 - 2021-06-03 08:59 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-06-03 08:59 - 2021-06-03 08:59 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-06-03 08:59 - 2021-06-03 08:59 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-06-03 08:59 - 2021-06-03 08:59 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-06-03 08:59 - 2021-06-03 08:59 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-06-03 08:59 - 2021-06-03 08:59 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-06-03 08:59 - 2021-06-03 08:59 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-06-03 08:59 - 2021-06-03 08:59 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-06-03 08:59 - 2021-06-03 08:59 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-06-03 08:59 - 2021-06-03 08:59 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-06-03 08:59 - 2021-06-03 08:59 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-06-03 08:59 - 2021-06-03 08:59 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-06-03 08:59 - 2021-06-03 08:59 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-06-03 08:59 - 2021-06-03 08:59 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-06-03 08:59 - 2021-06-03 08:59 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-05-31 09:26 - 2021-05-31 09:26 - 000000316 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog 2021-05-29 10:33 - 2021-05-29 10:33 - 000038436 _____ C:\Users\Passer\AppData\Roaming\Door komma's gescheiden waarden.ADR 2021-05-26 08:26 - 2021-05-26 08:26 - 000001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk 2021-05-26 08:26 - 2021-05-26 08:26 - 000000000 ____D C:\Program Files (x86)\Intel 2021-05-25 20:41 - 2021-05-25 20:42 - 000000989 _____ C:\Users\Passer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Uninstall The Network.lnk ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-06-23 15:11 - 2018-09-25 09:35 - 000000000 ____D C:\FRST 2021-06-23 15:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration 2021-06-23 14:33 - 2021-05-19 10:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-06-23 14:33 - 2018-05-28 20:48 - 000000000 ____D C:\Users\Passer\AppData\LocalLow\Mozilla 2021-06-23 12:40 - 2020-06-29 10:54 - 000000000 ____D C:\Program Files\CCleaner 2021-06-23 12:00 - 2021-05-19 10:53 - 000003544 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update1 2021-06-23 12:00 - 2021-05-19 10:53 - 000003534 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update2 2021-06-23 11:23 - 2021-01-06 12:18 - 000000000 ____D C:\Users\Passer\AppData\Roaming\vlc 2021-06-23 10:59 - 2018-05-29 20:16 - 000000000 ____D C:\Users\Passer\.rainlendar2 2021-06-23 10:15 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-06-23 08:35 - 2020-07-18 09:04 - 000000359 _____ C:\Users\Passer\Desktop\Te doen.txt 2021-06-23 08:22 - 2021-05-19 10:52 - 001771392 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-06-23 08:22 - 2019-12-07 17:12 - 000785828 _____ C:\WINDOWS\system32\perfh013.dat 2021-06-23 08:22 - 2019-12-07 17:12 - 000153956 _____ C:\WINDOWS\system32\perfc013.dat 2021-06-23 08:22 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-06-23 08:15 - 2021-05-19 10:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-06-23 08:15 - 2020-05-28 08:13 - 000008192 ___SH C:\DumpStack.log.tmp 2021-06-22 21:47 - 2019-12-07 11:03 - 000131072 _____ C:\WINDOWS\system32\config\BBI 2021-06-22 21:47 - 2018-05-28 20:56 - 000000000 ____D C:\Users\Passer\AppData\Roaming\DMCache 2021-06-22 20:30 - 2018-06-01 20:19 - 000000000 ____D C:\Program Files\Canon 2021-06-22 20:30 - 2018-05-29 09:24 - 000000000 ____D C:\Program Files (x86)\Canon 2021-06-22 16:13 - 2020-08-27 16:16 - 000000000 ____D C:\Users\Passer\AppData\Local\CrashDumps 2021-06-22 09:59 - 2018-05-29 14:26 - 000000000 ____D C:\Users\Passer\AppData\Roaming\Capture2Text 2021-06-22 09:43 - 2018-05-28 20:43 - 000000000 ____D C:\Users\Passer\AppData\Local\Packages 2021-06-21 11:40 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-06-21 11:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-06-21 08:34 - 2021-05-19 10:53 - 000003176 _____ C:\WINDOWS\system32\Tasks\klcp_update 2021-06-21 08:34 - 2018-07-05 17:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2021-06-21 08:34 - 2018-07-05 17:17 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2021-06-20 15:32 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-06-20 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-06-20 15:25 - 2020-09-27 09:54 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-06-19 12:39 - 2021-05-19 10:53 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-06-19 12:39 - 2018-05-29 13:49 - 000000000 ____D C:\ProgramData\TEMP 2021-06-19 12:39 - 2018-05-29 13:49 - 000000000 ____D C:\Program Files (x86)\SpywareBlaster 2021-06-19 08:22 - 2021-05-22 08:36 - 000000000 ____D C:\WINDOWS\system32\config\regsave 2021-06-19 08:22 - 2020-10-31 09:52 - 000287232 ___SH C:\EUMONBMP.SYS 2021-06-17 06:53 - 2021-04-16 20:21 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-06-17 06:53 - 2018-05-28 20:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-06-16 12:41 - 2020-09-05 19:48 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-06-15 15:13 - 2018-05-30 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icecream Screen Recorder 2021-06-15 15:13 - 2018-05-30 11:14 - 000000000 ____D C:\Program Files (x86)\Icecream Screen Recorder 2021-06-15 15:11 - 2020-03-28 12:21 - 000000000 ____D C:\Users\Passer\log 2021-06-14 17:43 - 2020-06-21 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2021-06-14 17:42 - 2020-06-21 17:26 - 000000000 ____D C:\Program Files\Logitech 2021-06-14 17:28 - 2020-01-31 11:53 - 000000000 ____D C:\Program Files (x86)\FlashIntegro 2021-06-14 17:28 - 2018-05-28 20:30 - 000000000 ____D C:\ProgramData\Package Cache 2021-06-13 21:01 - 2021-05-19 10:25 - 000000000 ____D C:\Users\Passer 2021-06-12 19:57 - 2018-05-28 20:56 - 000000000 ____D C:\Users\Passer\AppData\Roaming\IDM 2021-06-12 08:21 - 2020-09-27 09:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-06-11 17:41 - 2021-02-23 22:43 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-06-08 20:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-06-08 20:34 - 2021-05-19 10:46 - 000547984 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-06-08 20:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-06-08 20:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-06-08 20:21 - 2018-05-29 08:23 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-06-08 20:18 - 2018-05-29 08:22 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-06-08 20:18 - 2018-05-28 21:12 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2021-06-08 20:17 - 2018-04-12 01:38 - 000000167 _____ C:\WINDOWS\win.ini 2021-06-08 14:49 - 2020-05-11 09:29 - 000000376 _____ C:\Users\Passer\Desktop\Huidig topic.txt 2021-06-06 10:07 - 2021-02-17 13:38 - 000001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everything.lnk 2021-06-06 10:07 - 2021-02-17 13:38 - 000000000 ____D C:\Program Files\Everything 2021-06-06 10:07 - 2021-01-14 12:30 - 000000000 ____D C:\Users\Passer\AppData\Roaming\Everything 2021-06-06 10:07 - 2020-01-22 10:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 2021-06-06 10:07 - 2020-01-22 10:51 - 000000000 ____D C:\Program Files (x86)\MPC-HC 2021-06-03 09:46 - 2020-08-11 17:18 - 000001407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackFree.lnk 2021-06-03 09:29 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-06-03 09:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-06-03 09:02 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-06-03 08:12 - 2018-05-28 20:45 - 000000000 ____D C:\Users\Passer\AppData\Local\PlaceholderTileLogoFolder 2021-06-01 09:37 - 2019-01-29 18:22 - 000000000 ____D C:\ProgramData\Mozilla 2021-06-01 09:31 - 2020-03-03 10:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2021-06-01 09:31 - 2020-02-20 12:03 - 000000000 ____D C:\Program Files\CrystalDiskInfo 2021-05-28 20:52 - 2020-07-01 12:58 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-05-26 20:55 - 2018-12-10 10:37 - 000000000 ____D C:\Users\Passer\AppData\Local\ElevatedDiagnostics 2021-05-25 07:48 - 2021-02-23 22:43 - 000725304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2021-05-25 07:48 - 2021-02-23 22:43 - 000470328 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll ==================== Bestanden in de root van sommige mappen ======== 2021-05-29 10:33 - 2021-05-29 10:33 - 000038436 _____ () C:\Users\Passer\AppData\Roaming\Door komma's gescheiden waarden.ADR 2018-12-07 12:36 - 2018-12-07 12:36 - 000000120 _____ () C:\Users\Passer\AppData\Roaming\FixVTS.ini 2018-05-28 21:14 - 2018-06-09 08:31 - 000000058 _____ () C:\Users\Passer\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat 2019-06-04 09:40 - 2020-07-29 09:32 - 000007602 _____ () C:\Users\Passer\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================