Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 14-11-2021 Gestart door Richard (Beheerder) op DELL_I2_WIN-PC (Dell Inc. Inspiron 560) (15-11-2021 21:09:54) Gestart vanaf C:\Users\Richard\Downloads Geladen Profielen: Richard Platform: Microsoft Windows 10 Home Versie 20H2 19042.1348 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Edge Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4> (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe <3> (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1188.1\AVGBrowserCrashHandler.exe (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1188.1\AVGBrowserCrashHandler64.exe (Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow64.exe (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <27> (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Ours Technology Inc. -> ) C:\Users\Richard\AppData\Roaming\Acer\AcerEXTEND\FunctModules\{01F85638-2B29-4193-8D9F-081F6C20D592}\OtiVolumeLaunchPC.exe (Ours Technology Inc. -> Acer) C:\Users\Richard\AppData\Roaming\Acer\AcerEXTEND\ExImg\ImageRoot\ADLoader.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-06-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-10-22] (Corel Corporation -> Corel Corporation) HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436704 2019-10-22] (Corel Corporation -> WinZip Computing, S.L.) HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe [4003640 2021-10-20] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [168376 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-20] (Logitech Inc -> Logitech, Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-290964387-4162526659-560491130-1001\...\Run: [LaunchList] => C:\Program Files (x86)\Pinnacle\Studio 11\LaunchList2.exe [145496 2007-03-21] (Pinnacle Systems GmbH -> Pinnacle Systems) HKU\S-1-5-21-290964387-4162526659-560491130-1001\...\Run: [AcerEXTENDPkg] => C:\Users\Richard\AppData\Roaming\Acer\AcerEXTEND\ExImg\ImageRoot\ADLoader.exe [558856 2015-04-22] (Ours Technology Inc. -> Acer) HKU\S-1-5-21-290964387-4162526659-560491130-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1023536 2021-02-19] (Digital Wave Ltd -> Digital Wave Ltd) HKU\S-1-5-21-290964387-4162526659-560491130-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-290964387-4162526659-560491130-1001\...\Run: [MicrosoftEdgeAutoLaunch_E6E0F87A7AA9D36D919DF1D4B38CE2F3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\WINDOWS\system32\hpinkstsC211LM.dll [333496 2013-01-08] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\WINDOWS\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\95.0.12827.71\Installer\chrmstp.exe [2021-11-12] (AVG Technologies USA, LLC -> AVG Technologies) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2020-06-06] ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing) Startup: C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk [2021-11-15] ShortcutAndArgument: Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN53957388061T;CONNECTION=USB;MONITOR=1; HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {01B19B17-FF67-4695-9EFC-E880B070A7B1} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {0C24B438-A4FC-4D38-AAE1-6D8F625FE1A2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Geen bestand) Task: {11997A7F-B99F-41D0-9B96-2DB2416B7D49} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Geen bestand) Task: {1D188FBA-D0C9-4AA9-AEC6-313A4407F876} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201656 2021-11-12] (AVG Technologies USA, LLC -> AVG Technologies) Task: {1FFA56A7-5337-4572-9625-73077B86A0CF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd) Task: {217C8E80-D814-4FA6-AED6-39CFC624FD5C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Geen bestand) Task: {233F8F89-5B8F-4F72-9497-54D39FA74A5F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Geen bestand) Task: {2FEE868A-0006-4B9A-85E4-BF963C2780B6} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-04-30] (AVG Technologies USA, LLC -> AVG Technologies) Task: {3D709254-4665-417A-A24C-88A2B2EC05AB} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2498752 2021-11-01] (AVG Technologies USA, LLC -> AVG Technologies) Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {49EF62B4-402E-4672-AE92-F60EC616465F} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201656 2021-11-12] (AVG Technologies USA, LLC -> AVG Technologies) Task: {4B362CDB-CF9A-4DFA-BE2F-F13E42FF9A92} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {4CEC39CC-5380-4D30-B7D1-554A0CB30738} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Geen bestand) Task: {57A274C8-3F1B-4183-9D14-6CDAA7B9FDBD} - System32\Tasks\AVG\AVG Driver Updater Update => C:\Program Files\Common Files\AVG\Icarus\avg-du\icarus.exe [6412600 2021-10-14] (AVG Technologies USA, LLC -> AVG Technologies) Task: {5B282F05-1F93-4D3A-9C26-DC90D5185A04} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-10-22] (Corel Corporation -> Corel Corporation) Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {64AB9B52-A370-429A-BF12-E6803FB5BE1B} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-10-22] (Corel Corporation -> Corel Corporation) Task: {65B4E7C1-7FED-4801-8FB4-F976F0D4F234} - System32\Tasks\AVG\AVG Driver Updater BugReport => C:\Program Files\AVG\Driver Updater\AvBugReport.exe [4754744 2021-10-20] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 149 --programpath "C:\Program Files\AVG\Driver Updater\Setup\.." --configpath "C:\Program Files\AVG\Driver Updater\Setup" --path "C:\ProgramData\AVG\Driver Updater\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid 3059cae8-65ea-4a42-bfd2-0b52382e184d Task: {70714C57-EE0A-4C6F-9E04-2A28216D8531} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [5745672 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) Task: {71D87F88-065B-4CCC-BF5A-6F16A4EFBE39} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Geen bestand) Task: {7CD5A1A3-B7E2-4843-B755-EAF168749D9F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Geen bestand) Task: {7CF87A3C-1933-4D3F-928D-EB4EDEF3B11E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {7F4A89D7-3008-469F-9DAE-47890B5816B1} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Geen bestand) Task: {8713D646-0A0E-4FBB-A73A-A5C5AE18FD72} - System32\Tasks\HP AR Program Upload - 1020a17e86434732a3f2009bc1d920791dd74cdfbbf04958a6a57f27694b7458 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {8F5DF0B1-DB99-4184-BCD0-478EF913FCE2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {922A8E81-275F-42EE-8D48-262687368315} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Geen bestand) Task: {9919FCF2-06DD-4119-AE47-38CFEB9707C3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (Geen bestand) Task: {994B437B-FFC1-4130-A73C-4F51D9A30EDA} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Geen bestand) Task: {996DCB22-DBA4-41B7-9C99-BB328960CEC3} - System32\Tasks\HP Photo Creations Communicator => C:\Users\Richard\AppData\Roaming\HP Photo Creations\Communicator.exe [186080 2016-11-19] (RocketLife -> ) Task: {A0A3E00E-B576-4326-B12F-EA064269F7DA} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Geen bestand) Task: {A119B4A0-EC87-42E2-8041-E5395916B548} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5008312 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) Task: {AAEB2CE1-281A-4967-892F-F57FDB5C8304} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {AFB782CC-F3F7-4ABA-9035-5450D47D61BD} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B266C003-5A0F-45ED-91AE-E18F9F9E55B5} - System32\Tasks\HP AR Program Upload - d6d81576550242039315f750dc5062186a9600ff94b748078626c031fc13f82b => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {B41CF096-AC91-4C95-93FF-FFBDB0115B02} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Geen bestand) Task: {C1C09738-B44E-492F-830D-E467C39C1C96} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Geen bestand) Task: {C8017AA8-46D2-4228-BEB1-06A29FB5B906} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {C91F9446-AEA2-4ECE-9469-D561198ED8A6} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Geen bestand) Task: {CFBCF70B-365D-4DA0-82A2-52AFFD893329} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Geen bestand) Task: {D2EA2292-1FCE-41A5-B575-63B61926A829} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Geen bestand) Task: {D5FB0197-B620-46A2-B0A3-C662444D3D91} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-10-22] (Corel Corporation -> Corel Corporation) Task: {D6D19D3F-5BE8-4FE4-AF70-DDBCEE437B47} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Geen bestand) Task: {D6F31052-05F5-4955-B269-D187F626EB7A} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Geen bestand) Task: {D7CD79DC-B7ED-4CCA-A23D-29C48D02DBF8} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {E5139260-73EB-4283-A01D-3CD99821C60D} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2498752 2021-11-01] (AVG Technologies USA, LLC -> AVG Technologies) Task: {E5FFA54E-6327-4F66-B5C4-63669F24D0C0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {E60B3FDB-6E97-491E-9B0F-D4D076F60D31} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform) Task: {E7E73A55-C9C2-4615-9D64-F0D4ACA32127} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Geen bestand) Task: {E9A53AD5-9D41-46C3-BCD9-5BAAECB3BF3D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Geen bestand) Task: {EE1A5DAC-F9C0-441B-B20B-FEA7823373F7} - System32\Tasks\CCleanerSkipUAC - Richard => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd) Task: {EFDBE1A2-3BFC-4EB9-B91A-DCB73E5018EA} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Geen bestand) Task: {F19DD8BD-44C6-4A4B-A240-F1E46D823EA4} - System32\Tasks\HP AR Program Upload - 868d2c2a43c64203bed73303a70acd4681440b56fdf7433991b62d0ab22ad4df => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {FB8CFEFB-6FD4-4A34-895B-7826AF1FD80C} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {FEA8A6EF-6E1D-4C45-ADF0-E57DC64582CA} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job => C:\Users\Richard\AppData\Roaming\HP Photo Creations\Communicator.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.131.5 195.130.130.5 Tcpip\..\Interfaces\{3f59818c-220e-4ac0-9bbf-313d7fa4a386}: [DhcpNameServer] 195.130.131.5 195.130.130.5 Edge: ======= Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\Richard\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-15] Edge HomePage: Default -> hxxps://mysearch.avg.com/?cid=%7BBD61989A-A754-4CBF-B8A8-0DC4317DDA94%7D&mid=40faaaf28ddf47ccb383d16c2263183e-ae9253913e94ec8fb2222c10c16ef8393cea85e8&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-12-10%2000:13:16&v=4.1.8.599&pid=wtu&sg=&sap=hp FireFox: ======== FF DefaultProfile: 4h68uc07.default FF ProfilePath: C:\Users\Richard\AppData\Roaming\TomTom\HOME\Profiles\g0c200zz.default [2020-06-05] FF ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\4h68uc07.default [2021-11-15] FF Notifications: Mozilla\Firefox\Profiles\4h68uc07.default -> hxxp://www.pc-helpforum.be; hxxps://www.pc-helpforum.be; hxxps://eu.winnernotification.com; hxxps://www.evendelen.net; hxxps://www.facebook.com; hxxps://www.hln.be; hxxps://www.nieuwsblad.be; hxxps://nl.softonic.com FF Extension: (eID Belgiƫ) - C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\4h68uc07.default\Extensions\belgiumeid@eid.belgium.be.xpi [2020-12-15] FF Extension: (Browser update) - C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\4h68uc07.default\Extensions\tozon121@mailfence.com.xpi [2018-12-26] [UpdateUrl:hxxps://ex-mom.my/swex/new/three/be/updates.json] FF Extension: (Mailto-optie) - C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\4h68uc07.default\Extensions\{1bb59a2d-0fb8-49b3-9350-93878d53b043}.xpi [2020-12-15] FF Extension: (Connective signing extension) - C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\4h68uc07.default\Extensions\{4f643bc8-78f5-49c6-8efd-78ee30289f0b}.xpi [2019-01-21] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-07-19] [niet getekend] FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.) [Bestand niet getekend] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1188.1\npAvgBrowserUpdate3.dll [2021-11-12] (AVG Technologies USA, LLC -> AVG Technologies) FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1188.1\npAvgBrowserUpdate3.dll [2021-11-12] (AVG Technologies USA, LLC -> AVG Technologies) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-290964387-4162526659-560491130-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Richard\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-08-19] (Visan Industries -> RocketLife, LLP) FF Plugin HKU\S-1-5-21-290964387-4162526659-560491130-1001: connective.be/BrowserPlugin -> C:\Users\Richard\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-07-17] (Connective n.v.) [Bestand niet getekend] Chrome: ======= CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201656 2021-11-12] (AVG Technologies USA, LLC -> AVG Technologies) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [713656 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [460728 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8413296 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201656 2021-11-12] (AVG Technologies USA, LLC -> AVG Technologies) S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\95.0.12827.71\elevation_service.exe [1713672 2021-11-01] (AVG Technologies USA, LLC -> AVG Technologies) R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [437800 2021-02-19] (Digital Wave Ltd -> Digital Wave Ltd) R2 DriverUpdSvc; C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe [6581560 2021-10-20] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-11-09] (McAfee, LLC -> McAfee, LLC) S2 PCLEPCI; C:\WINDOWS\SysWOW64\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [Bestand niet getekend] S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [35872 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [222264 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [367728 2021-11-15] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [250456 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [99432 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [21960 2021-09-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [41504 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [184800 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [539144 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [107976 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [83040 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [852352 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [557784 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [214496 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [317840 2021-11-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] R3 CMUAC; C:\WINDOWS\System32\drivers\CMUAC.sys [661760 2015-08-30] (WDKTestCert chou,130795027549068093 -> C-MEDIA) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-28] (Intel Corporation -> Intel Corporation) R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49152 2021-04-16] (Microsoft Windows -> Microsoft Corporation) [Bestand niet getekend] S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-11-15 21:09 - 2021-11-15 21:12 - 000031761 _____ C:\Users\Richard\Downloads\FRST.txt 2021-11-15 21:09 - 2021-11-15 21:11 - 000000000 ____D C:\FRST 2021-11-15 21:07 - 2021-11-15 21:08 - 002311680 _____ (Farbar) C:\Users\Richard\Downloads\FRST64 (3).exe 2021-11-15 21:07 - 2021-11-15 21:07 - 002311680 _____ (Farbar) C:\Users\Richard\Downloads\Niet bevestigd 837750.crdownload 2021-11-15 21:05 - 2021-11-15 21:05 - 002311680 _____ (Farbar) C:\Users\Richard\Downloads\Niet bevestigd 9653.crdownload 2021-11-15 20:44 - 2021-11-15 20:44 - 002311680 _____ (Farbar) C:\Users\Richard\Downloads\Niet bevestigd 814161.crdownload 2021-11-15 08:26 - 2021-11-15 08:26 - 011103886 _____ C:\Users\Richard\Downloads\VID-20210609-WA0004.mp4 2021-11-13 08:04 - 2021-11-13 08:04 - 012748148 _____ C:\Users\Richard\Downloads\Gigliola Cinquetti aos 70 anos com som1.mp4 2021-11-13 08:01 - 2021-11-13 08:01 - 010659862 _____ C:\Users\Richard\Downloads\muziek.mp4 2021-11-13 07:58 - 2021-11-13 07:58 - 013399798 _____ C:\Users\Richard\Downloads\VID-20200425-WA00041.mp4 2021-11-13 07:57 - 2021-11-13 07:57 - 005426982 _____ C:\Users\Richard\Downloads\VIDEO-2021-08-07-20-41-27.mp4 2021-11-12 18:17 - 2021-11-12 18:17 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-11-12 18:17 - 2021-11-12 18:17 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-11-12 18:16 - 2021-11-12 18:16 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-12 18:15 - 2021-11-12 18:15 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-11-12 17:41 - 2021-11-12 17:41 - 000000000 ___HD C:\$WinREAgent 2021-11-12 09:00 - 2021-11-12 09:00 - 000003826 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) 2021-11-12 09:00 - 2021-11-12 09:00 - 000003242 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Logon) 2021-11-12 09:00 - 2021-11-12 09:00 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk 2021-11-12 08:59 - 2021-11-12 08:59 - 000003572 _____ C:\WINDOWS\system32\Tasks\AVGUpdateTaskMachineUA 2021-11-12 08:59 - 2021-11-12 08:59 - 000003448 _____ C:\WINDOWS\system32\Tasks\AVGUpdateTaskMachineCore 2021-11-12 08:59 - 2021-11-12 08:59 - 000000000 ____D C:\Program Files (x86)\AVG 2021-11-11 08:57 - 2021-11-11 08:58 - 011292370 _____ C:\Users\Richard\Downloads\Skating_duo-111.mp4 2021-11-11 08:48 - 2021-11-11 08:48 - 000336824 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe 2021-11-11 08:48 - 2021-11-11 08:48 - 000214496 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys 2021-11-10 19:48 - 2021-11-10 19:48 - 000113475 _____ C:\Users\Richard\Downloads\SMS440884921-101121-180133.PDF 2021-11-10 14:13 - 2021-11-10 14:13 - 000083212 _____ C:\Users\Richard\Downloads\mrprt11315.PDF 2021-11-10 13:58 - 2021-11-10 13:58 - 000083616 _____ C:\Users\Richard\Downloads\mrprt07139.PDF 2021-11-10 13:58 - 2021-11-10 13:58 - 000083616 _____ C:\Users\Richard\Downloads\mrprt07139 (2).PDF 2021-11-10 13:58 - 2021-11-10 13:58 - 000083616 _____ C:\Users\Richard\Downloads\mrprt07139 (1).PDF 2021-11-10 08:36 - 2021-11-10 08:36 - 013424159 _____ C:\Users\Richard\Downloads\VID-20200924-WA00641.mp4 2021-11-10 08:35 - 2021-11-10 08:35 - 003376201 _____ C:\Users\Richard\Downloads\VID-20200811-WA00001.mp4 2021-11-10 08:31 - 2021-11-10 08:31 - 014013056 _____ C:\Users\Richard\Downloads\Nid de cobras.mp4 2021-11-08 09:42 - 2021-11-08 09:42 - 000011396 _____ C:\Users\Richard\Downloads\BEOBANK.pdf 2021-11-08 09:33 - 2021-11-08 09:33 - 000011396 _____ C:\Users\Richard\Documents\BEOBANK.pdf 2021-11-08 09:32 - 2021-11-08 09:32 - 000007407 _____ C:\Users\Richard\Downloads\K01U21309A021291 (2).pdf 2021-11-08 09:31 - 2021-11-08 09:31 - 000007407 _____ C:\Users\Richard\Downloads\K01U21309A021291 (1).pdf 2021-11-08 09:10 - 2021-11-08 09:10 - 000124729 _____ C:\Users\Richard\Downloads\Factuur_VKHA0979_20211108_085036.pdf 2021-11-07 10:41 - 2021-11-07 10:41 - 000128082 _____ C:\Users\Richard\Downloads\Checkin_6446.pdf 2021-11-07 02:00 - 2021-11-07 02:00 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-11-07 02:00 - 2021-11-07 02:00 - 000000000 ____D C:\Program Files\PCHealthCheck 2021-11-06 07:19 - 2021-11-06 07:19 - 000007407 _____ C:\Users\Richard\Downloads\K01U21309A021291.pdf 2021-11-06 07:12 - 2021-11-06 07:12 - 009170283 _____ C:\Users\Richard\Downloads\VID-meztelen divatbemutato_.mp4 2021-11-06 07:11 - 2021-11-06 07:11 - 004722603 _____ C:\Users\Richard\Downloads\Het ruikt lekker1.mp4 2021-11-06 07:10 - 2021-11-06 07:10 - 008721546 _____ C:\Users\Richard\Downloads\VID-20210410-WA0000.mp4 2021-11-06 07:07 - 2021-11-06 07:07 - 013834229 _____ C:\Users\Richard\Downloads\Danseurs aux ballons (1).mp4 2021-11-06 07:04 - 2021-11-06 07:04 - 012591182 _____ C:\Users\Richard\Downloads\Peintureen direct.mp4 2021-11-06 07:01 - 2021-11-06 07:01 - 007788828 _____ C:\Users\Richard\Downloads\fitness.mp4 2021-11-06 07:00 - 2021-11-06 07:00 - 002426100 _____ C:\Users\Richard\Downloads\test embauche.mp4 2021-11-06 07:00 - 2021-11-06 07:00 - 001170940 _____ C:\Users\Richard\Downloads\213afffb-2bc6-4cdd-83ef-ab3f7261a0f8.MP4 2021-11-06 06:59 - 2021-11-06 06:59 - 001463526 _____ C:\Users\Richard\Downloads\Schadestaat_6446.pdf 2021-11-06 06:58 - 2021-11-06 06:59 - 000137861 _____ C:\Users\Richard\Downloads\Checkout_6446.pdf 2021-11-06 06:56 - 2021-11-06 06:57 - 000134094 _____ C:\Users\Richard\Downloads\Contract_6446.pdf 2021-11-06 03:34 - 2021-10-08 11:00 - 000160376 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys 2021-11-05 08:54 - 2021-11-05 08:54 - 006261556 _____ C:\Users\Richard\Downloads\TROUWRING TERUG!!!!!.MP4 2021-11-05 08:53 - 2021-11-05 08:53 - 003383653 _____ C:\Users\Richard\Downloads\Groen! lid verso sigaretroker.mp4 2021-11-05 08:52 - 2021-11-05 08:52 - 004499562 _____ C:\Users\Richard\Downloads\Echt gebeurd.MP4 2021-11-05 08:51 - 2021-11-05 08:51 - 005174418 _____ C:\Users\Richard\Downloads\VID-20210711-WA0014.mp4 2021-11-05 08:51 - 2021-11-05 08:51 - 005174418 _____ C:\Users\Richard\Downloads\VID-20210711-WA0014 (1).mp4 2021-11-04 08:59 - 2021-11-04 08:59 - 000083616 _____ C:\Users\Richard\Downloads\mrprt19771.PDF 2021-11-04 08:52 - 2021-11-04 08:52 - 000083614 _____ C:\Users\Richard\Downloads\mrprt21532.PDF 2021-11-03 08:37 - 2021-11-03 08:37 - 000098857 _____ C:\Users\Richard\Downloads\Covid-19 - Quarantine certificate (2).pdf 2021-11-03 08:33 - 2021-11-03 08:33 - 000103627 _____ C:\Users\Richard\Downloads\Covid-19 - Quarantine certificate (1).pdf 2021-11-03 08:32 - 2021-11-03 08:32 - 000103627 _____ C:\Users\Richard\Downloads\Covid-19 - Quarantine certificate.pdf 2021-11-02 15:28 - 2021-11-02 15:29 - 000000000 ____D C:\Users\Richard\Documents\aanvraag zorg 2021-11-02 09:48 - 2021-11-02 09:48 - 012403919 _____ C:\Users\Richard\Downloads\bluffant.mp4 2021-10-31 07:46 - 2021-10-31 07:46 - 013827724 _____ C:\Users\Richard\Downloads\LOL.mp4 2021-10-30 16:33 - 2021-10-30 16:33 - 000058862 _____ C:\Users\Richard\Downloads\COVID-19 Vaccinatiecertificaat 2021-06-12 (3).pdf 2021-10-30 16:33 - 2021-10-30 16:33 - 000058862 _____ C:\Users\Richard\Downloads\COVID-19 Vaccinatiecertificaat 2021-06-12 (2).pdf 2021-10-30 16:28 - 2021-10-30 16:28 - 000137253 _____ C:\Users\Richard\Downloads\Bericht van wijziging - handicap 2021.pdf 2021-10-30 16:28 - 2021-10-30 16:28 - 000047780 _____ C:\Users\Richard\Downloads\Bericht in MyMinfin.pdf 2021-10-30 16:28 - 2021-10-30 16:28 - 000047780 _____ C:\Users\Richard\Downloads\Bericht in MyMinfin (1).pdf 2021-10-30 16:26 - 2021-10-30 16:26 - 000089296 _____ C:\Users\Richard\Downloads\Fiscale fiche (1).pdf 2021-10-30 16:23 - 2021-10-30 16:23 - 000058862 _____ C:\Users\Richard\Downloads\COVID-19 Vaccinatiecertificaat 2021-06-12 (1).pdf 2021-10-24 07:58 - 2021-10-24 07:58 - 012599416 _____ C:\Users\Richard\Downloads\birds can dance francoise.mp4 2021-10-24 07:58 - 2021-10-24 07:58 - 012344888 _____ C:\Users\Richard\Downloads\VID-20170811-WA00021111.mp4 2021-10-22 18:59 - 2021-10-22 18:59 - 000081714 _____ C:\Users\Richard\Downloads\afspraakUZGENT46491188.pdf 2021-10-20 08:17 - 2021-10-20 08:17 - 011828772 _____ C:\Users\Richard\Downloads\Stad onderwater in Dubai .mp4 2021-10-18 15:57 - 2021-10-18 15:57 - 008406372 _____ C:\Users\Richard\Downloads\Funny Owls1.mp4 2021-10-18 07:31 - 2021-10-18 07:31 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-10-18 07:30 - 2021-10-18 07:30 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll 2021-10-18 07:30 - 2021-10-18 07:30 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-10-18 07:29 - 2021-10-18 07:29 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2021-10-16 06:22 - 2021-10-16 06:22 - 000054952 _____ C:\Users\Richard\Downloads\708009351802.pdf ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-11-15 21:10 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-15 20:40 - 2021-04-16 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-11-15 19:28 - 2021-04-16 19:45 - 000004198 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{99E9234B-AD5A-4D8E-9AE8-FAAFCC0430C4} 2021-11-15 16:12 - 2017-06-12 20:46 - 000000000 ____D C:\Program Files\CCleaner 2021-11-15 12:49 - 2020-12-27 08:22 - 000367728 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys 2021-11-15 10:39 - 2017-01-23 16:01 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-15 10:38 - 2017-01-23 16:01 - 000000000 ____D C:\Users\Richard\AppData\Local\Google 2021-11-15 08:28 - 2021-08-19 16:41 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Richard 2021-11-15 08:28 - 2021-04-27 06:29 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d732eea1c18076 2021-11-15 08:28 - 2021-04-16 19:45 - 000003602 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-11-15 08:28 - 2021-04-16 19:45 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-11-15 08:28 - 2021-04-16 19:45 - 000003378 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-11-15 08:28 - 2021-04-16 19:45 - 000003094 _____ C:\WINDOWS\system32\Tasks\Java Platform SE Auto Updater 2021-11-15 08:28 - 2021-04-16 19:45 - 000003044 _____ C:\WINDOWS\system32\Tasks\HP AR Program Upload - d6d81576550242039315f750dc5062186a9600ff94b748078626c031fc13f82b 2021-11-15 08:28 - 2021-04-16 19:45 - 000003044 _____ C:\WINDOWS\system32\Tasks\HP AR Program Upload - 868d2c2a43c64203bed73303a70acd4681440b56fdf7433991b62d0ab22ad4df 2021-11-15 08:28 - 2021-04-16 19:45 - 000003044 _____ C:\WINDOWS\system32\Tasks\HP AR Program Upload - 1020a17e86434732a3f2009bc1d920791dd74cdfbbf04958a6a57f27694b7458 2021-11-15 08:28 - 2021-04-16 19:45 - 000003044 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update 2021-11-15 08:28 - 2021-04-16 19:45 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-11-15 08:28 - 2021-04-16 19:45 - 000002976 _____ C:\WINDOWS\system32\Tasks\HP Photo Creations Communicator 2021-11-15 08:28 - 2021-04-16 19:45 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-290964387-4162526659-560491130-1001 2021-11-15 08:28 - 2021-04-16 19:45 - 000002706 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Deskjet 2540 series 2021-11-15 08:28 - 2021-04-16 19:45 - 000002696 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2 2021-11-15 08:28 - 2021-04-16 19:45 - 000002694 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3 2021-11-15 08:28 - 2021-04-16 19:45 - 000002694 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1 2021-11-15 08:28 - 2021-04-16 19:45 - 000002216 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-11-15 08:28 - 2021-04-16 19:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2021-11-15 08:28 - 2015-10-12 16:21 - 000000444 _____ C:\WINDOWS\Tasks\HP Photo Creations Communicator.job 2021-11-15 07:16 - 2020-09-04 08:58 - 000002421 _____ C:\Users\Richard\Desktop\AcerEXTEND.lnk 2021-11-14 11:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-14 09:46 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-14 09:43 - 2020-06-07 15:01 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-14 09:43 - 2020-06-07 15:01 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-11-13 07:45 - 2021-04-16 19:35 - 002008050 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-11-13 07:45 - 2019-12-07 16:12 - 000861620 _____ C:\WINDOWS\system32\perfh013.dat 2021-11-13 07:45 - 2019-12-07 16:12 - 000182770 _____ C:\WINDOWS\system32\perfc013.dat 2021-11-13 07:45 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-11-13 07:39 - 2015-10-24 08:00 - 000000000 ____D C:\ProgramData\Avg 2021-11-13 07:38 - 2021-04-16 19:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-11-13 07:38 - 2021-04-16 19:18 - 000008192 ___SH C:\DumpStack.log.tmp 2021-11-12 20:45 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-11-12 20:42 - 2021-04-16 19:18 - 000464168 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-11-12 20:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-11-12 20:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-11-12 18:26 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-12 17:30 - 2015-08-10 19:43 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2021-11-12 09:01 - 2018-05-19 17:47 - 000000000 ____D C:\Users\Richard\AppData\Local\AVG 2021-11-11 18:57 - 2015-08-10 20:17 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-11-11 18:53 - 2015-08-10 20:17 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-11-11 08:49 - 2020-12-27 08:22 - 000317840 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys 2021-11-11 08:48 - 2021-03-29 09:58 - 000035872 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000852352 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000557784 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000539144 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000372336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys.163697696204601 2021-11-11 08:48 - 2020-12-27 08:22 - 000250456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000222264 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000184800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000107976 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000099432 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000083040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys 2021-11-11 08:48 - 2020-12-27 08:22 - 000041504 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys 2021-11-11 08:48 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-11-07 08:54 - 2015-08-23 13:11 - 000000000 ____D C:\Users\Richard\AppData\Roaming\HpUpdate 2021-11-05 10:12 - 2021-04-16 17:05 - 000002431 _____ C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-11-04 11:20 - 2017-12-12 19:54 - 000000000 ____D C:\Users\Richard\AppData\Local\Packages 2021-10-21 15:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-10-18 20:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-10-18 20:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-10-18 20:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-10-18 20:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-10-18 20:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack ==================== Bestanden in de root van sommige mappen ======== 2019-12-05 20:43 - 2019-12-05 21:00 - 036109581 _____ (FalcoWare, Inc. ) C:\Program Files (x86)\FalcoImageStudioSetup.exe 2016-01-31 10:51 - 2016-01-31 10:51 - 000000298 _____ () C:\Users\Richard\AppData\Local\config.ini 2018-08-02 16:44 - 2018-08-02 16:44 - 000003584 _____ () C:\Users\Richard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-01-31 10:51 - 2016-01-31 10:51 - 000000000 _____ () C:\Users\Richard\AppData\Local\simedit.log ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================