Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 27-12-2021 Gestart door Johnny (Beheerder) op DESKTOP-3MIIP83 (ASUS All Series) (03-01-2022 07:59:12) Gestart vanaf C:\Users\AGAIN\Desktop Geladen Profielen: Johnny Platform: Microsoft Windows 10 Home Versie 21H2 19044.1415 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) () [Bestand niet getekend] C:\Program Files (x86)\eaZyLink\eaZySvr.exe (ASUSTeK Computer Inc. -> ) [Bestand niet getekend] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.19\AsusFanControlService.exe (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Corsair Components, Inc. -> Corsair Components, Inc.) C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe (Corsair Components, Inc. -> Corsair Components, Inc.) C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe (Creative Technology Ltd) [Bestand niet getekend] C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe (Creative Technology Ltd) [Bestand niet getekend] C:\Program Files (x86)\Creative\Software Update 3\SoftAuto.exe (DTS, Inc. -> DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) [Bestand niet getekend] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel(R) Intel Network Drivers -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Logitech -> Logitech, Inc.) C:\Program Files\Logitech\SolarApp\L4301_Solar.exe (Logitech Inc -> Logitech) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOverlay.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3> (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe (Logitech Inc -> Logitech, Inc.) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOptionsMgr.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <25> (NortonLifeLock Inc. -> Broadcom) C:\Program Files\Norton Security\Engine\22.21.11.46\NortonSecurity.exe <2> (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.21.11.46\nsWscSvc.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe <2> (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Zetes nv/sa -> ) C:\Program Files (x86)\eaZyLink\eaZyLink.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2109064 2019-11-27] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8841472 2016-06-17] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1454336 2016-06-17] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-10-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [935288 2009-09-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [324976 2010-05-21] (Flexera Software, Inc. -> Flexera Software, Inc.) HKLM-x32\...\Run: [Bonus.SSR.FR12] => C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1472312 2014-01-30] (ABBYY PRODUCTION LLC -> ABBYY Production LLC.) [Bestand niet getekend] HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [RuneApps Alt1] => C:\Users\AGAIN\AppData\Local\Alt1Toolkit\app-1.5.6\Runeapps.Alt1.exe [1597440 2020-10-02] (RuneApps) [Bestand niet getekend] HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [CorsairLink4] => C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe [27146448 2018-03-30] (Corsair Components, Inc. -> Corsair Components, Inc.) HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35519888 2019-06-20] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-12-09] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [HP OfficeJet Pro 8710 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\ScanToPCActivationApp.exe [3770504 2018-04-06] (Hewlett Packard -> HP Inc.) HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [SoftAuto.exe] => C:\Program Files (x86)\Creative\Software Update 3\SoftAuto.exe [405504 2008-08-13] (Creative Technology Ltd) [Bestand niet getekend] HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [Discord] => C:\Users\AGAIN\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\AGAIN\AppData\Local\Microsoft\Teams\Update.exe [2459304 2021-12-16] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1639232374-763448831-3005767150-1001\...\MountPoints2: {34ef429e-460e-11e8-93ce-3010b39ca39e} - "H:\setup.EXE" /AUTORUN Startup: C:\Users\AGAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk [2021-12-03] ShortcutTarget: Verzenden naar OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {007EF46F-F456-4EC4-A15F-121B8BE5FA16} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) Task: {05615B7C-8E07-42C0-B7C7-F1F4563D71AE} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2353000 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {066522DB-3396-48B2-A8B2-4B94F296AF55} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4074344 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) Task: {09325375-3EF1-458C-88F0-4C695ECE051B} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1112576 2017-05-19] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.) Task: {0BFE8F72-0B7A-4C67-B884-31DD0AB678C0} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.21.11.46\SymErr.exe [108752 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc) Task: {0D775CDA-7566-45EE-B6D4-643579D01306} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation) Task: {0DD7D085-90FE-4ECB-8A20-8CB7DC8C5907} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1639232374-763448831-3005767150-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4074344 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) Task: {1033D02E-FBB7-4AA1-B75B-F01F994F12B2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {10B8D11B-3CD1-4396-81B9-5255AE39AAE5} - System32\Tasks\HPCustParticipation HP OfficeJet Pro 8710 => C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\HPCustPartic.exe [6439048 2018-04-06] (Hewlett Packard -> HP Inc.) Task: {12E0E725-0F31-44A3-ACB0-9147F7C8506A} - System32\Tasks\Norton Security with Backup\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.19.8.65\SymErr.exe /analyze (Geen bestand) Task: {29E093E3-10C4-429B-A2AA-6F9A981C65A7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {2B7E29B4-71E1-4DFE-B153-0069F89DE375} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {399C0DEF-67A6-47B4-BB90-EAEC4F2A1643} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation) Task: {442B283F-C65E-4B76-8B52-987D438257FF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd) Task: {4BCC265E-1B11-48E2-83F5-C5A9D9B8EB27} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.21.9.25\SymErr.exe /analyze (Geen bestand) Task: {5E774DCF-FADA-4010-86E4-221A957F9A87} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {64A95AD7-85E4-4EFE-A70F-4955064BF376} - System32\Tasks\Norton Security with Backup\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.19.8.65\SymErr.exe /ui (Geen bestand) Task: {6B5DF7DA-04C5-43B4-A8AD-1F91777E3810} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {78146EB4-635B-439A-A84E-4698AD50AA07} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {812D563C-7B01-4336-ACC6-42EC51A2B59D} - System32\Tasks\Opera scheduled Autoupdate 1511702072 => C:\Users\AGAIN\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Geen bestand) Task: {81AF57AB-C1B9-4F88-87B2-18CD03475085} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6332312 2021-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {8324E4E5-8DB5-4CDC-8258-D559ABA5D192} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.21.11.46\SymErr.exe [108752 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc) Task: {83C10806-B9FE-4C3D-A3C6-78EB4F0BAAFC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {83C22956-D28E-4569-BFD4-DB5C4BE22896} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation) Task: {87C889D0-258C-4D6C-BE74-13833348819E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {91E29326-1199-4038-9F3C-8BFC49B94F18} - System32\Tasks\Norton Security with Backup\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.19.8.65\SymErr.exe /submit (Geen bestand) Task: {A015022A-94BD-4FC5-86FC-33975E22D75E} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.21.9.25\SymErr.exe /submit (Geen bestand) Task: {A04FA5A9-257B-4925-BCF8-BB838017A344} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.21.9.25\SymErr.exe /ui (Geen bestand) Task: {ACFAC1C6-9095-4BEF-9925-7AA072616C41} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {CBAB6041-D0BE-402A-844A-8EF38D3ECC9E} - System32\Tasks\NortonCleanupTask => C:\Users\AGAIN\Desktop\LoginImporter\utils\NortonCleanup.bat (Geen bestand) Task: {D9410F4B-D1A7-4CD4-A88D-8CF02B27BBBE} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.21.11.46\SymErr.exe [108752 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc) Task: {DE1AD4C9-32EF-45A5-A55E-63C0DA804C8C} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.21.11.46\WSCStub.exe [646520 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {E0E1519A-0553-4462-86B8-B0A1EFA5B1DF} - System32\Tasks\GPU Tweak II => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [12798568 2019-02-22] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) Task: {E192E2B1-7954-4D55-A6C7-4546903E9CFA} - System32\Tasks\Opera scheduled assistant Autoupdate 1547213271 => C:\Users\AGAIN\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\AGAIN\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {E29B7841-6425-4AB6-B2E2-A57CA35DA023} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {F6D5B16D-DD9B-4E6C-95C7-ADA379D7B99B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {FC109D34-1723-44BA-BFE2-7224C6301F49} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {FE495B1D-D254-4028-8D91-1C8B5E6A8790} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6332312 2021-12-19] (Microsoft Corporation -> Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: 127.0.0.1 eazylink.zetes.be Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d2a3d921-1280-4170-b85c-8d601efab719}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\AGAIN\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-03] Edge Notifications: Default -> hxxps://www.loudersound.com Edge Extension: (Connective signing extension) - C:\Users\AGAIN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2021-02-24] FireFox: ======== FF DefaultProfile: xam8r6tf.default-1514726411934 FF ProfilePath: C:\Users\AGAIN\AppData\Roaming\Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934 [2022-01-03] FF Homepage: Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934 -> hxxp://www.nieuwsblad.be/ FF Notifications: Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934 -> hxxps://www.hln.be; hxxps://www.pornrabbit.com FF Extension: (eID Belgiƫ) - C:\Users\AGAIN\AppData\Roaming\Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934\Extensions\belgiumeid@eid.belgium.be.xpi [2021-03-04] FF Extension: (Norton Password Manager) - C:\Users\AGAIN\AppData\Roaming\Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934\Extensions\idsafe@norton.com.xpi [2021-10-29] FF Extension: (Norton Safe Search) - C:\Users\AGAIN\AppData\Roaming\Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934\Extensions\nortonsafesearch_ul_2@symantec.com.xpi [2021-08-27] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/ds_modified/updates.json] FF Extension: (Norton Safe Web) - C:\Users\AGAIN\AppData\Roaming\Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934\Extensions\nortonsafeweb@symantec.com.xpi [2021-12-15] FF Extension: (Connective signing extension) - C:\Users\AGAIN\AppData\Roaming\Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934\Extensions\{4f643bc8-78f5-49c6-8efd-78ee30289f0b}.xpi [2019-04-08] FF Extension: (Bulk Image Downloader) - C:\Users\AGAIN\AppData\Roaming\Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934\Extensions\{524B8EF8-C312-11DB-8039-536F56D89593}.xpi [2021-05-24] FF Extension: (Video DownloadHelper) - C:\Users\AGAIN\AppData\Roaming\Mozilla\Firefox\Profiles\xam8r6tf.default-1514726411934\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-02] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-12-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin HKU\S-1-5-21-1639232374-763448831-3005767150-1001: connective.be/BrowserPlugin -> C:\Users\AGAIN\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2020-12-17] (Connective n.v.) [Bestand niet getekend] Chrome: ======= CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] (ASUSTeK Computer Inc. -> ) R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-09-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] (ASUSTeK Computer Inc. -> ) [Bestand niet getekend] R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.19\AsusFanControlService.exe [396088 2015-04-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation) R3 CLink4Service; C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe [34512 2018-03-30] (Corsair Components, Inc. -> Corsair Components, Inc.) R2 CTDevice_Srv; C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe [61440 2007-04-02] (Creative Technology Ltd) [Bestand niet getekend] S3 CTUPnPSv; C:\Program Files (x86)\Creative\Creative Centrale\CTUPnPSv.exe [64000 2008-05-21] (Creative Technology Ltd) [Bestand niet getekend] R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3606120 2018-04-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [249328 2016-06-17] (DTS, Inc. -> DTS, Inc) R2 eaZyLink; C:\Program Files (x86)\eaZyLink\eaZySvr.exe [518656 2017-05-04] () [Bestand niet getekend] S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncHelper.exe [3280760 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [Bestand niet getekend] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [Bestand niet getekend] R2 L4301_Solar; C:\Program Files\Logitech\SolarApp\L4301_Solar.exe [405744 2013-01-30] (Logitech -> Logitech, Inc.) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11104832 2021-12-09] (Logitech Inc -> Logitech, Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7462200 2021-07-05] (Malwarebytes Inc -> Malwarebytes) R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.21.11.46\NortonSecurity.exe [343336 2021-12-13] (NortonLifeLock Inc. -> Broadcom) R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.21.11.46\nsWscSvc.exe [1059176 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.230.1107.0004\OneDriveUpdaterService.exe [3737976 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts) S3 RoxMediaDBVHS; C:\Program Files (x86)\Common Files\Roxio Shared\VHStoDVD\SharedCOM\RoxMediaDBVHS.exe [1112720 2012-07-30] (Corel Corporation -> Corel Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] (ASUSTeK Computer Inc. -> ) S3 ASMTFilter; C:\Windows\SysWow64\drivers\asmtufdriver.sys [24792 2014-06-13] (ASMedia Technology Inc. -> hxxp://www.asmedia.com.tw) R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] (ASUSTeK Computer Inc. -> ) S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation -> MCCI Corporation) R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\BASHDefs\20211227.011\BHDrvx64.sys [2018784 2021-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\ccSetx64.sys [192256 2021-12-13] (Symantec Corporation -> Symantec Corporation) R3 cpuz146; C:\WINDOWS\temp\cpuz146\cpuz146_x64.sys [52824 2022-01-03] (CPUID -> CPUID) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-04-22] (Disc Soft Ltd -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-04-22] (Disc Soft Ltd -> Disc Soft Ltd) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [509904 2021-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [145376 2021-11-10] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-03-28] (Malwarebytes Inc -> Malwarebytes) S3 GPUIO; C:\Program Files (x86)\Common Files\InstallShield\Driver\9\Intel 32\690b33e1-0462-4e84-9bea-c7552b45432a.sys [27120 2017-11-26] (ASUSTeK Computer Inc. -> ) R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\IPSDefs\20211231.061\IDSvia64.sys [1480144 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-24] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-24] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-24] (Logitech Inc -> Logitech) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-12-10] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2022-01-03] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69016 2022-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-07-02] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2022-01-03] (Malwarebytes Inc -> Malwarebytes) S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\nsvst.sys [56080 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [94576 2022-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com) R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-10-16] (Corel Corporation -> Corel Corporation) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\SRTSP64.SYS [892600 2021-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\SRTSPX64.SYS [48824 2021-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\SYMEFASI64.SYS [2030768 2021-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\SymELAM.sys [31984 2021-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation) R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [93152 2021-08-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.16.1.4\SymPlatform\SymEvnt.sys [712432 2021-07-13] (Symantec Corporation -> Symantec Corporation) R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\Ironx64.SYS [319152 2021-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\symnets.sys [575344 2021-12-13] (Symantec Corporation -> Symantec Corporation) S3 USB28xxBGA; C:\WINDOWS\system32\DRIVERS\emBDA64A.sys [738328 2012-05-04] (Kworld Computer Co., Ltd. -> eMPIA Technology, Inc.) S3 USB28xxOEM; C:\WINDOWS\system32\DRIVERS\emOEM64A.sys [1226136 2012-05-04] (Kworld Computer Co., Ltd. -> eMPIA Technology, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\wpCtrlDrv.sys [1015760 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-01-03 07:59 - 2022-01-03 07:59 - 000034606 _____ C:\Users\AGAIN\Desktop\FRST.txt 2022-01-03 07:56 - 2022-01-03 07:56 - 002311168 _____ (Farbar) C:\Users\AGAIN\Desktop\FRST64.exe 2022-01-03 07:47 - 2022-01-03 07:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation 2022-01-03 07:32 - 2022-01-03 07:32 - 000094576 ____H (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCMON24.SYS 2022-01-03 07:32 - 2021-12-16 18:30 - 005209984 ____N (Sysinternals - www.sysinternals.com) C:\Users\AGAIN\Desktop\Procmon.exe 2022-01-03 07:32 - 2021-12-16 18:30 - 002737016 ____N (Sysinternals - www.sysinternals.com) C:\Users\AGAIN\Desktop\Procmon64a.exe 2022-01-03 07:32 - 2021-12-16 18:30 - 002691464 ____N (Sysinternals - www.sysinternals.com) C:\Users\AGAIN\Desktop\Procmon64.exe 2022-01-03 07:32 - 2021-12-16 18:30 - 000063582 ____N C:\Users\AGAIN\Desktop\procmon.chm 2022-01-03 07:24 - 2022-01-03 07:24 - 000000000 ____D C:\Users\AGAIN\AppData\LocalLow\IGDump 2022-01-03 07:03 - 2022-01-03 07:03 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-01-03 07:03 - 2022-01-03 07:03 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2022-01-03 07:03 - 2022-01-03 07:03 - 000069016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2021-12-29 15:54 - 2021-12-29 21:11 - 000000000 ____D C:\ProgramData\TEMP 2021-12-29 15:54 - 2021-12-29 15:54 - 000000000 ____D C:\Users\AGAIN\AppData\Local\KutoolsforExcel 2021-12-29 15:53 - 2021-12-29 15:53 - 000000000 ____D C:\Users\AGAIN\OneDrive\Documenten\Kutools for Excel 2021-12-29 15:53 - 2021-12-29 15:53 - 000000000 ____D C:\Users\AGAIN\AppData\Roaming\Kutools for Excel 2021-12-29 15:46 - 2021-12-29 15:46 - 000000000 ____D C:\Users\AGAIN\AppData\Roaming\ExtendOffice.com 2021-12-24 07:28 - 2021-12-24 07:28 - 000000000 ____D C:\Users\AGAIN\AppData\Local\Norton 2021-12-24 07:18 - 2022-01-03 07:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton 360 2021-12-24 07:12 - 2022-01-02 09:00 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security 2021-12-24 07:12 - 2021-12-24 07:12 - 000003378 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration 2021-12-17 16:26 - 2021-12-17 16:26 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-12-17 07:17 - 2021-12-17 07:17 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-12-17 07:17 - 2021-12-17 07:17 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-12-17 07:16 - 2021-12-17 07:16 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-12-17 07:16 - 2021-12-17 07:16 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-12-17 07:11 - 2021-12-17 07:11 - 000000000 ___HD C:\$WinREAgent 2021-12-16 21:33 - 2021-12-24 07:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software 2021-12-16 21:33 - 2021-12-16 21:33 - 000000000 ____D C:\ProgramData\NCH Software 2021-12-16 21:27 - 2021-12-16 21:27 - 000000000 ____D C:\Users\AGAIN\AppData\Local\OneDrive 2021-12-16 21:21 - 2021-11-16 19:36 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2021-12-13 14:35 - 2021-12-15 06:55 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2021-12-13 14:35 - 2021-12-13 14:35 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1639232374-763448831-3005767150-1001 2021-12-10 07:08 - 2021-12-10 07:08 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-12-10 07:08 - 2021-12-10 07:08 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk 2021-12-10 07:08 - 2021-12-10 07:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2021-12-04 22:57 - 2021-12-04 22:57 - 000000000 ____D C:\Users\AGAIN\AppData\Roaming\DataRecommendations 2021-12-04 22:57 - 2021-12-04 22:57 - 000000000 ____D C:\Users\AGAIN\AppData\Local\DataRecommendation ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-01-03 07:59 - 2019-07-02 17:33 - 000000000 ____D C:\Users\AGAIN\AppData\Local\LGHUB 2022-01-03 07:59 - 2017-12-07 22:44 - 000000000 ____D C:\FRST 2022-01-03 07:49 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-01-03 07:25 - 2019-02-16 12:54 - 000000000 ____D C:\ProgramData\Mozilla 2022-01-03 07:24 - 2017-11-26 11:40 - 000000000 ____D C:\Users\AGAIN\AppData\LocalLow\Mozilla 2022-01-03 07:14 - 2021-03-24 23:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-01-03 07:09 - 2021-03-24 23:19 - 001771328 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-01-03 07:09 - 2019-12-07 16:12 - 000785798 _____ C:\WINDOWS\system32\perfh013.dat 2022-01-03 07:09 - 2019-12-07 16:12 - 000153926 _____ C:\WINDOWS\system32\perfc013.dat 2022-01-03 07:09 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-01-03 07:05 - 2021-03-24 23:18 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{49DA3A46-048A-4F2D-9B52-6A69CAE968C4} 2022-01-03 07:04 - 2021-10-09 09:57 - 000000000 ____D C:\Users\AGAIN\AppData\Roaming\discord 2022-01-03 07:03 - 2021-10-09 10:19 - 000000000 ____D C:\Users\AGAIN\AppData\Local\Discord 2022-01-03 07:03 - 2021-03-24 23:18 - 000003096 _____ C:\WINDOWS\system32\Tasks\GPU Tweak II 2022-01-03 07:03 - 2019-07-02 17:33 - 000000000 ____D C:\Users\AGAIN\AppData\Roaming\LGHUB 2022-01-03 07:03 - 2019-03-02 21:36 - 000000000 ____D C:\ProgramData\NVIDIA 2022-01-03 07:02 - 2021-07-02 06:07 - 000008192 ___SH C:\DumpStack.log.tmp 2022-01-03 07:02 - 2021-03-24 23:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-01-02 21:55 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-01-02 21:54 - 2017-11-26 11:51 - 000000000 ____D C:\Program Files (x86)\CorsairLink4 2022-01-02 21:32 - 2017-11-26 14:28 - 000000000 ____D C:\Users\AGAIN\AppData\Roaming\vlc 2022-01-02 20:57 - 2019-12-07 10:03 - 000016384 _____ C:\WINDOWS\system32\config\ELAM 2022-01-02 17:19 - 2017-11-26 12:48 - 000000000 ____D C:\Program Files (x86)\Steam 2022-01-02 12:11 - 2017-11-26 11:51 - 000000000 ____D C:\ProgramData\CLink4 2022-01-02 09:00 - 2018-11-10 22:32 - 000002429 _____ C:\Users\Public\Desktop\Norton Security.lnk 2022-01-01 17:16 - 2018-05-19 09:55 - 000000000 ____D C:\Users\AGAIN\AppData\Local\D3DSCache 2022-01-01 14:53 - 2021-03-24 23:15 - 000000000 ____D C:\Users\AGAIN 2022-01-01 14:51 - 2020-02-23 15:34 - 000000000 ___HD C:\ProgramData\{A16967D8-8459-420A-8C25-9C9A247D348E} 2022-01-01 14:51 - 2020-02-23 15:34 - 000000000 ___HD C:\ProgramData\{26D901A1-2540-4430-81DC-0317F01BD7BE} 2022-01-01 14:51 - 2019-01-12 21:32 - 000000000 ____D C:\Users\AGAIN\AppData\Local\Alt1Toolkit 2022-01-01 14:51 - 2018-04-22 10:47 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite 2022-01-01 14:51 - 2017-11-26 14:14 - 000000000 ____D C:\Users\AGAIN\AppData\Roaming\uTorrent 2022-01-01 14:50 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-01-01 14:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration 2022-01-01 14:41 - 2017-12-02 13:41 - 000000000 ____D C:\Users\AGAIN\AppData\Local\Jagex 2021-12-31 22:31 - 2017-11-26 15:19 - 000000000 ____D C:\Users\AGAIN\AppData\Local\CrashDumps 2021-12-29 15:56 - 2017-11-26 11:36 - 000000000 ____D C:\Users\AGAIN\AppData\Local\Packages 2021-12-29 15:45 - 2019-04-15 17:03 - 000000000 ____D C:\Users\AGAIN\AppData\Local\BitTorrentHelper 2021-12-28 21:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-12-28 20:23 - 2021-07-13 17:32 - 000000000 ____D C:\Users\AGAIN\AppData\LocalLow\Norton 2021-12-24 07:38 - 2017-11-26 13:53 - 000000000 ____D C:\Program Files\Common Files\AV 2021-12-24 07:28 - 2017-11-26 13:27 - 000000000 ____D C:\ProgramData\Norton 2021-12-24 07:15 - 2018-07-02 17:34 - 000000000 ____D C:\ProgramData\Packages 2021-12-24 07:12 - 2018-11-10 22:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64 2021-12-21 21:34 - 2017-12-02 13:41 - 000000000 ____D C:\ProgramData\Jagex 2021-12-21 21:30 - 2017-11-26 11:53 - 000000000 ____D C:\Users\AGAIN\AppData\Local\PlaceholderTileLogoFolder 2021-12-19 12:57 - 2017-11-26 14:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-12-18 21:34 - 2020-06-08 20:41 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-12-17 16:26 - 2021-03-24 23:13 - 000513664 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-12-17 16:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-12-17 10:12 - 2017-12-31 13:52 - 000000000 ____D C:\Users\AGAIN\dwhelper 2021-12-17 10:06 - 2018-03-23 13:56 - 000000000 ____D C:\Users\AGAIN\OneDrive\Documenten\VHS to DVD 2021-12-17 07:18 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-12-17 07:11 - 2017-11-26 12:00 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-12-17 07:09 - 2017-11-26 12:00 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-12-16 21:35 - 2021-12-03 11:58 - 000002364 _____ C:\Users\AGAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-12-16 21:35 - 2021-12-03 11:58 - 000002356 _____ C:\Users\AGAIN\Desktop\Microsoft Teams.lnk 2021-12-16 21:21 - 2021-03-24 23:18 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2021-03-24 23:18 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2021-03-24 23:18 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2021-03-24 23:18 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2021-03-24 23:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2021-03-24 23:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2021-03-24 23:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2021-03-24 23:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2021-03-24 23:18 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-16 21:21 - 2017-11-26 11:40 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-12-16 21:21 - 2017-11-26 11:40 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-12-16 21:21 - 2017-11-26 11:40 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-12-16 20:46 - 2017-11-26 12:51 - 000000000 ____D C:\Program Files (x86)\Origin 2021-12-13 14:35 - 2021-12-03 11:36 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2021-12-13 14:35 - 2021-12-03 11:36 - 000002134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-12-13 13:03 - 2017-11-26 12:50 - 000000000 ____D C:\ProgramData\Origin 2021-12-13 13:02 - 2017-11-26 12:50 - 000000000 ____D C:\Users\AGAIN\AppData\Local\Origin 2021-12-11 22:40 - 2017-11-26 11:36 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-12-11 16:01 - 2019-12-07 22:30 - 000000000 ____D C:\Users\AGAIN\AppData\Roaming\dvdcss 2021-12-11 15:28 - 2021-03-24 23:18 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-12-11 15:28 - 2021-03-24 23:18 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-12-10 07:08 - 2020-11-21 13:20 - 000000000 ____D C:\Program Files\LGHUB 2021-12-10 07:07 - 2017-11-26 14:18 - 000000000 ____D C:\Program Files\CCleaner 2021-12-08 08:19 - 2019-03-29 14:18 - 001294024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll 2021-12-08 08:19 - 2018-05-27 20:05 - 002851840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2021-12-08 08:19 - 2018-05-27 20:05 - 002197504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2021-12-05 11:38 - 2020-08-21 22:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== Bestanden in de root van sommige mappen ======== 2021-06-06 11:22 - 2022-01-03 07:24 - 000094957 _____ () C:\Users\AGAIN\AppData\Roaming\.BEID_0.log 2017-12-10 22:17 - 2019-03-01 16:35 - 000728064 _____ () C:\Users\AGAIN\AppData\Local\file__0.localstorage 2017-12-25 17:49 - 2017-12-25 17:49 - 000000017 _____ () C:\Users\AGAIN\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================