Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 14-02-2022 01 Gestart door Leo (Beheerder) op DESKTOP-H2G7JK4 (Hewlett-Packard 700-509nb) (17-02-2022 20:43:50) Gestart vanaf C:\Users\Leo\Desktop Geladen Profielen: Leo Platform: Microsoft Windows 10 Home Versie 21H2 19044.1526 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe <2> (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <2> (C:\Program Files\Adobe\Adobe Photoshop 2022\Photoshop.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files\Adobe\Adobe Photoshop 2022\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe <6> (C:\Program Files\Adobe\Adobe Photoshop 2022\Photoshop.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Photoshop 2022\Required\Plug-ins\Spaces\Adobe Spaces Helper.exe <2> (C:\Program Files\Adobe\Adobe Photoshop 2022\Photoshop.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Adobe\Microsoft\EdgeWebView\msedgewebview2.exe <6> (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (DriverStore\FileRepository\u0359160.inf_amd64_2abe2598d9a3141f\B358802\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0359160.inf_amd64_2abe2598d9a3141f\B358802\atieclxx.exe (explorer.exe ->) (Adobe Inc. -> Adobe) C:\Program Files\Adobe\Adobe Photoshop 2022\Photoshop.exe (explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\55.0.3.0\crashpad_handler.exe <3> (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (VideoLAN -> VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <17> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0359160.inf_amd64_2abe2598d9a3141f\B358802\atiesrxx.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel Corporation) [Bestand niet getekend] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe (services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (services.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe <6> (svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe (svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtHDVBg_SOUNDEDGE] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-05-20] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8849152 2016-05-20] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1890664 2016-01-14] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1761120 2015-12-07] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2017-10-20] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2022-02-14] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35646080 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Leo\AppData\Local\Microsoft\Teams\Update.exe [2489016 2022-02-15] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\MountPoints2: {2fab507e-8fdb-11e5-9184-2c337a5e1b68} - "E:\LaunchU3.exe" -a HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\MountPoints2: {b5523ca3-c087-11e5-9191-2c337a5e1b68} - "K:\LaunchU3.exe" -a HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.) HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\WINDOWS\system32\hpinkstsC211LM.dll [333496 2013-01-08] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\WINDOWS\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-15] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logo Calibration Loader.lnk [2020-02-15] ShortcutTarget: Logo Calibration Loader.lnk -> C:\Program Files (x86)\GretagMacbeth\i1\Eye-One Match 3\CalibrationLoader\CalibrationLoader.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [Bestand niet getekend] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ProfileReminder.lnk [2020-02-15] ShortcutTarget: ProfileReminder.lnk -> C:\Program Files (x86)\GretagMacbeth\i1\Eye-One Match 3\ProfileReminder.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [Bestand niet getekend] Startup: C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ExploitedCollegeGirls - #Episode 90923 Raw Sex\Luminar AI.lnk [2021-11-06] ShortcutTarget: Luminar AI.lnk -> C:\Program Files\Skylum\Luminar AI\Luminar AI.exe (Skylum Software USA, Inc. -> Skylum) Startup: C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ExploitedCollegeGirls - #Episode 90923 Raw Sex\Luminar Neo.lnk [2022-02-17] ShortcutTarget: Luminar Neo.lnk -> C:\Program Files\Skylum\Luminar Neo\Luminar Neo.exe (Skylum Software USA, Inc. -> Skylum) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {048B129E-D416-4DC0-9D48-340E69D96FD4} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209272 2022-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {07A3AA8B-90AB-44E1-A04B-B009AE477374} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {1EEE00DF-2A65-4D81-8D55-7A2477F6E9EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (Geen bestand) Task: {26E89039-0CCE-4717-AD1D-FE44BEDBFA50} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (Geen bestand) Task: {311609B2-C373-4B3B-87C4-B51D55B52836} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209272 2022-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {31D16ED8-D538-4A27-8B11-55B8B0C6EFDA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (Geen bestand) Task: {3F51AAF9-A9D9-4B56-B013-718C026A280D} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-09-09] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {50BF5349-2A6A-4FF6-960C-40BEACF58409} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2022-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {527F4FCE-CA45-4121-951D-C3D6066EFFA7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-18] (Google Inc -> Google Inc.) Task: {60E2558F-A57C-4D16-97A4-2200B0A65205} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Geen bestand) Task: {686B4256-AE0D-4BCC-A4D6-4366B598F348} - System32\Tasks\CCleanerSkipUAC - Leo => C:\Program Files\CCleaner\CCleaner.exe [29764224 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {71DB3ACB-3A39-436D-B0E6-0ACBB09BB7F2} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1645240 2020-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {7F58A35E-001E-4945-ABB6-5B9AA624EC8D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (Geen bestand) Task: {7FD65191-2391-44DA-8F50-08EB9329ACD5} - System32\Tasks\Durée de vie => C:\Mireille\Statique.exe (Geen bestand) Task: {848B5799-9E41-48BD-9170-2D351F15191F} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => J:\Windows Driver Kit\Common7\IDE\VSIXAutoUpdate.exe (Geen bestand) Task: {88723A85-D0F1-4C39-A4D7-876453A91926} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (Geen bestand) Task: {8C6B9913-9977-42F4-9245-606E0CABA9FD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (Geen bestand) Task: {8CF7DCE6-34D5-45C1-BE48-2E79A813EC67} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [5745672 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) Task: {957E246E-F451-4BA5-8E53-FD54F321C953} - System32\Tasks\Office 2019 Re-Activation => C:\Users\Leo\Downloads\ActO19-v2.cmd -renewalonly Task: {97F27DDF-F0BA-4FB0-980C-D421FF3A2509} - System32\Tasks\HPCeeScheduleForLeo => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2017-10-20] (Hewlett-Packard Company -> Hewlett-Packard) Task: {994F35F8-DAF8-4C34-BE4E-0AA8A2D4BF1F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r /m (Geen bestand) Task: {99B260A6-F522-4A7B-B7ED-C8D5AA949FB5} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (Geen bestand) Task: {9D744415-5A45-4E9C-929C-79B90CB9CEE0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1645240 2020-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {B2D079DD-300C-4DBA-8AF0-4939D3D8360E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {B866E375-B623-4E18-8AB2-4A3BD6B96F59} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-18] (Google Inc -> Google Inc.) Task: {BEE6B253-CECE-497F-B7B3-A4B61038906F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23564744 2022-01-27] (Microsoft Corporation -> Microsoft Corporation) Task: {C12FF522-ADF6-474B-BFFB-5685383777C2} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-09-09] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {D8D7DA0C-1983-40BF-8A89-818DC1A932AE} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1645240 2020-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {E301BCC4-2493-4985-B6E0-9F7720FC6B52} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2022-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\AMDInstallLauncher" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\AMDLinkUpdate" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\Antivirus Emergency Update" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\CCleanerSkipUAC - Leo" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\CreateExplorerShellUnelevatedTask" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\Durée de vie" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\HPCeeScheduleForLeo" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\HPCustParticipation HP Deskjet 2540 series" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\ModifyLinkUpdate" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\Office 2019 Re-Activation" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\PrivaZer_SkipUAC" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\StartCN" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\StartDVR" /ENABLE Task: {E70A7C77-3AF7-48A9-AFAA-6D087F29B7B0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE Task: {E9B5DE4C-682D-4352-BD88-F3A4D47FF3EA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-02-14] (Piriform Software Ltd -> Piriform) Task: {EC104632-18B7-49A1-BF1E-63E068A23DE7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {F2D39DDA-00D8-4076-8F6D-5E941EA938A9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {F6A61FCD-18F9-4197-9291-AC97C6CD529A} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files (x86)\PrivaZer\PrivaZer.exe [20978280 2022-01-20] (Goversoft LLC -> Goversoft LLC) Task: {FB319DDA-83AA-4ACB-BD2E-D22DF416974D} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe -mode=scheduled (Geen bestand) Task: {FB8550BC-A8BE-4061-9158-7E3CE791DF92} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23564744 2022-01-27] (Microsoft Corporation -> Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\HPCeeScheduleForLeo.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.131.4 195.130.130.4 Tcpip\..\Interfaces\{12cfad31-46c1-422f-bbc9-9385e9262228}: [DhcpNameServer] 195.130.131.4 195.130.130.4 Tcpip\..\Interfaces\{6e7498c5-e31e-46ad-ba34-0e38fb70c6d0}: [DhcpNameServer] 195.130.131.133 195.130.130.5 Tcpip\..\Interfaces\{f820e062-eedd-4fe9-9e03-c0f309b2820e}: [DhcpNameServer] 195.130.131.4 195.130.130.4 Edge: ======= Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] FireFox: ======== FF DefaultProfile: 9x54um78.default-1476091533538-1631823801386 FF ProfilePath: C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386 [2022-02-17] FF Homepage: Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386 -> hxxps://www.standaard.be/ FF Notifications: Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386 -> hxxps://www.instagram.com; hxxps://www.youtube.com; hxxps://www.streamwijzer.be FF Extension: (Facebook Container) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\@contain-facebook.xpi [2021-09-17] FF Extension: (AdBlocker Ultimate) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\adblockultimate@adblockultimate.net.xpi [2021-12-10] FF Extension: (eID België) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\belgiumeid@eid.belgium.be.xpi [2021-09-17] FF Extension: (Exif Viewer) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\exif_viewer@mozilla.doslash.org.xpi [2021-09-17] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2022-02-01] FF Extension: (Malwarebytes Browser Guard) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-02-17] FF Extension: (Connective signing extension) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\{4f643bc8-78f5-49c6-8efd-78ee30289f0b}.xpi [2022-01-03] FF Extension: (Beste Prijs - Test Aankoop) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\{cd9c77fb-d9ac-4ca6-826e-fdc913cab733}.xpi [2021-09-17] FF Extension: (Adblock Plus - gratis adblocker) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\9x54um78.default-1476091533538-1631823801386\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-11-23] FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => niet gevonden FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => niet gevonden FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-11-18] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.15 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-02-14] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-01-24] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-01-24] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-11-18] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-11-18] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-02-14] (Adobe Inc. -> Adobe Systems) FF Plugin HKU\S-1-5-21-3412851300-2870964825-4123225172-1002: connective.be/BrowserPlugin -> C:\Users\Leo\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2021-07-05] (Connective n.v.) [Bestand niet getekend] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-09-17] <==== AANDACHT (Gericht op * .cfg bestand) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-09-17] <==== AANDACHT Chrome: ======= CHR Profile: C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default [2022-02-17] CHR HomePage: Default -> hxxp://www.destandaard.be/ CHR StartupUrls: Default -> "hxxp://www.standaard.be/" CHR Extension: (Presentaties) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-22] CHR Extension: (Safe Torrent Scanner) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-01-25] CHR Extension: (Kaspersky Protection) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-25] CHR Extension: (Google Drive) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-22] CHR Extension: (Kaspersky Password Manager) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2022-01-25] CHR Extension: (Spreadsheets) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-22] CHR Extension: (Offline Documenten) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-25] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-01-25] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-22] CHR Extension: (Gmail) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-22] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844528 2022-02-14] (Adobe Inc. -> Adobe Inc.) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe [184768 2021-09-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9483240 2022-01-27] (Microsoft Corporation -> Microsoft Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2017-10-20] (Intel Corporation) [Bestand niet getekend] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Bestand niet getekend] S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-09-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-22] (Malwarebytes Inc -> Malwarebytes) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19256 2020-10-15] (Microsoft Windows -> Microsoft Corporation) S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19256 2020-10-15] (Microsoft Windows -> Microsoft Corporation) R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [308088 2016-01-14] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-05-20] (Martin Malik - REALiX -> REALiX(tm)) R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [689976 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1507648 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [272168 2022-02-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [287904 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [319720 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115968 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [229248 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-09-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-11] (Malwarebytes Inc -> Malwarebytes) R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation) S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-09-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [433384 2021-09-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-19] (Microsoft Windows -> Microsoft Corporation) U1 avgbdisk; geen ImagePath S3 npf; \??\C:\Users\Leo\AppData\Local\Temp\HouseCall\tmase\nmap\npf\x64\npf.sys [X] <==== AANDACHT ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-02-17 20:43 - 2022-02-17 20:46 - 000046549 _____ C:\Users\Leo\Desktop\FRST.txt 2022-02-17 20:43 - 2022-02-17 20:45 - 000000000 ____D C:\FRST 2022-02-17 20:41 - 2022-02-17 20:41 - 002312192 _____ (Farbar) C:\Users\Leo\Desktop\FRST64.exe 2022-02-17 16:52 - 2022-02-17 16:52 - 006755624 _____ () C:\Users\Leo\Downloads\LuminarNeoSetup.exe 2022-02-17 13:03 - 2022-02-17 13:03 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-02-17 00:57 - 2022-02-17 01:00 - 000000000 ____D C:\Users\Leo\Downloads\TK8 video's 2022-02-16 22:34 - 2022-02-16 22:39 - 000000000 ____D C:\Users\Leo\AppData\LocalLow\uTorrent 2022-02-16 22:34 - 2022-02-16 22:37 - 000000000 ____D C:\Users\Leo\Downloads\(2022) Beach House - Once Twice Melody [FLAC] 2022-02-15 15:43 - 2022-02-15 15:43 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2022-02-15 13:04 - 2022-02-15 13:04 - 000001142 _____ C:\Users\Leo\Desktop\TK8-Instructions-Manual.pdf - Snelkoppeling.lnk 2022-02-14 19:54 - 2022-02-14 19:59 - 000000000 ____D C:\Users\Leo\Downloads\Stretch- rug- wandel_en fietsroutes 2022-02-14 17:02 - 2022-02-14 17:02 - 000002292 _____ C:\Users\Leo\Desktop\Lumenzia User Guide.pdf - Snelkoppeling.lnk 2022-02-14 01:29 - 2022-02-14 01:29 - 000001353 _____ C:\Users\Leo\Desktop\Adobe Creative Cloud.lnk 2022-02-14 01:28 - 2022-02-14 01:28 - 000001679 _____ C:\Users\Leo\Desktop\Photoshop.exe - Snelkoppeling.lnk 2022-02-14 01:26 - 2022-02-14 01:26 - 000000993 _____ C:\Users\Leo\Desktop\Adobe Bridge 2022.lnk 2022-02-14 01:21 - 2022-02-14 01:21 - 000000993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge 2022.lnk 2022-02-14 01:18 - 2022-02-14 01:18 - 000001052 _____ C:\Users\Leo\Desktop\Adobe Lightroom Classic.lnk 2022-02-14 01:18 - 2022-02-14 01:18 - 000001052 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk 2022-02-14 01:08 - 2022-02-14 01:08 - 000001031 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2022.lnk 2022-02-14 00:50 - 2022-02-17 13:06 - 000000000 ___RD C:\Users\Leo\Creative Cloud Files 2022-02-14 00:39 - 2022-02-14 00:39 - 000001353 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2022-02-14 00:35 - 2022-02-14 00:35 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo 2022-02-13 23:57 - 2022-02-13 23:58 - 008540344 _____ (Malwarebytes) C:\Users\Leo\Downloads\adwcleaner_8.3.1.exe 2022-02-13 14:56 - 2022-02-13 14:57 - 000452520 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-02-13 14:56 - 2022-02-13 14:56 - 000000000 ____D C:\WINDOWS\Panther 2022-02-12 14:08 - 2022-02-12 14:16 - 000000000 ____D C:\Users\Leo\Downloads\Inventing.Anna.S01.COMPLETE.720p.NF.WEBRip.x264-GalaxyTV[TGx] 2022-02-10 00:16 - 2022-02-10 00:17 - 000000000 ____D C:\ProgramData\DxO 2022-02-10 00:16 - 2022-02-10 00:16 - 000000000 ____D C:\ProgramData\DxO Labs 2022-02-10 00:16 - 2022-02-10 00:16 - 000000000 ____D C:\Program Files\DxO 2022-02-09 16:00 - 2022-02-17 13:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-02-09 15:37 - 2022-02-10 12:06 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-02-09 15:29 - 2022-02-09 15:29 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2022-02-09 15:29 - 2022-02-09 15:29 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-02-09 15:27 - 2022-02-09 15:27 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-02-09 15:27 - 2022-02-09 15:27 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2022-02-09 15:27 - 2022-02-09 15:27 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-02-09 14:51 - 2022-02-09 14:51 - 000000000 ___HD C:\$WinREAgent 2022-02-07 17:47 - 2022-02-07 17:48 - 000000000 ____D C:\Users\Leo\Downloads\LUT's and textures 2022-02-04 14:39 - 2022-02-04 14:41 - 000000000 ____D C:\Users\Leo\Downloads\Lumenzia Greg Benz panels 2022-02-03 23:58 - 2022-02-03 23:58 - 000000901 _____ C:\Users\Leo\Desktop\µTorrent.lnk 2022-02-03 23:43 - 2022-02-03 23:43 - 000000000 ____D C:\Users\Leo\AppData\Local\Adaware 2022-02-03 21:16 - 2022-02-03 21:17 - 000000000 ____D C:\Users\Leo\Downloads\Affinity Photo manual 2022-02-02 13:59 - 2022-02-02 13:59 - 000001008 _____ C:\Users\Leo\Desktop\Canon Eos 90d manual - Snelkoppeling (2).lnk 2022-02-02 12:54 - 2022-02-05 16:53 - 000000000 ____D C:\Users\Leo\Downloads\Canon Eos 90d manual 2022-02-01 13:48 - 2022-02-01 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2022-01-25 21:05 - 2022-01-25 21:05 - 000502717 _____ C:\Users\Leo\Desktop\bookmarks-2022-01-25.json 2022-01-18 19:09 - 2022-01-18 19:09 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-02-17 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-02-17 20:42 - 2020-09-26 17:54 - 000003240 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForLeo 2022-02-17 20:42 - 2018-04-07 10:44 - 000000356 _____ C:\WINDOWS\Tasks\HPCeeScheduleForLeo.job 2022-02-17 20:30 - 2017-12-02 18:37 - 000000000 ____D C:\Users\Leo\AppData\Local\Packages 2022-02-17 20:29 - 2018-05-02 15:44 - 000000000 ____D C:\Users\Leo\AppData\Local\D3DSCache 2022-02-17 20:23 - 2015-11-18 19:50 - 000000000 ____D C:\Program Files (x86)\Google 2022-02-17 20:01 - 2016-11-18 14:09 - 000000000 ____D C:\Users\Leo\AppData\LocalLow\Mozilla 2022-02-17 19:40 - 2020-09-26 17:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-02-17 17:33 - 2015-11-21 17:47 - 000000000 ____D C:\Users\Leo\Documents\Wachtwoorden 2022-02-17 17:04 - 2022-01-14 15:29 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Luminar Neo 2022-02-17 16:59 - 2022-01-14 15:36 - 000001204 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Luminar Neo.lnk 2022-02-17 16:59 - 2022-01-14 15:36 - 000001198 _____ C:\Users\Public\Desktop\Luminar Neo.lnk 2022-02-17 16:59 - 2019-11-14 22:40 - 000000000 ____D C:\Program Files\Skylum 2022-02-17 16:52 - 2022-01-14 15:29 - 000000000 ____D C:\ProgramData\Luminar Neo 2022-02-17 13:57 - 2020-08-13 21:14 - 000000000 ____D C:\Users\Leo\AppData\Roaming\vlc 2022-02-17 13:10 - 2020-06-26 18:53 - 000000000 ____D C:\Program Files\CCleaner 2022-02-17 13:05 - 2021-05-21 10:35 - 000003122 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher 2022-02-17 13:04 - 2022-01-08 16:10 - 000003108 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2022-02-17 13:03 - 2020-09-26 17:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-02-17 13:03 - 2020-09-26 17:17 - 000008192 ___SH C:\DumpStack.log.tmp 2022-02-17 13:03 - 2015-11-20 23:54 - 000000000 ____D C:\Users\Leo\AppData\Roaming\WTablet 2022-02-17 01:06 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-02-17 01:06 - 2017-05-15 12:21 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2022-02-17 01:03 - 2021-03-24 23:31 - 000000000 ____D C:\Users\Leo\AppData\Roaming\uTorrent 2022-02-16 22:34 - 2019-05-25 18:26 - 000000000 ____D C:\Users\Leo\AppData\Local\BitTorrentHelper 2022-02-16 22:22 - 2019-07-08 21:41 - 000000000 ____D C:\Users\Leo\Downloads\Nieuw Zuid_parkzicht 2 2022-02-16 22:18 - 2020-09-26 17:54 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-02-16 22:18 - 2020-06-26 18:53 - 000000830 _____ C:\Users\Public\Desktop\CCleaner.lnk 2022-02-16 13:55 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-02-16 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-02-15 22:19 - 2020-12-22 20:07 - 000002365 _____ C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2022-02-15 21:25 - 2021-06-22 13:59 - 000002234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-02-15 21:25 - 2021-06-22 13:59 - 000002193 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-02-15 16:25 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-02-15 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-02-15 15:42 - 2020-11-18 10:54 - 000000000 ____D C:\Program Files\Microsoft Office 2022-02-15 13:13 - 2016-08-10 19:01 - 000000000 ____D C:\Users\Leo\Downloads\Tony Kuyper- Sean Bagshaw 2022-02-15 13:07 - 2019-04-04 10:56 - 000000000 ____D C:\Users\Leo\Downloads\Papa 2022-02-15 12:24 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-02-15 12:23 - 2021-02-19 20:09 - 000088328 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpnpflt.sys 2022-02-15 12:22 - 2021-09-19 16:29 - 001049864 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2022-02-15 12:22 - 2021-09-19 16:29 - 000522504 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys 2022-02-15 12:22 - 2021-02-19 20:09 - 000325400 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys 2022-02-15 12:22 - 2021-02-19 20:09 - 000294680 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kneps.sys 2022-02-15 12:22 - 2021-02-19 20:09 - 000150280 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwfp.sys 2022-02-15 12:22 - 2021-02-19 20:08 - 000237288 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\cm_km.sys 2022-02-15 12:22 - 2021-02-19 20:08 - 000206600 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klbackupflt.sys 2022-02-15 12:22 - 2021-02-19 20:08 - 000119568 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kldisk.sys 2022-02-15 12:22 - 2021-02-19 20:08 - 000107328 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klmouflt.sys 2022-02-15 12:22 - 2021-02-19 20:08 - 000105280 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klbackupdisk.sys 2022-02-15 12:22 - 2021-02-19 20:08 - 000104728 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klkbdflt.sys 2022-02-15 12:22 - 2021-02-19 20:08 - 000090896 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klim6.sys 2022-02-15 12:22 - 2021-02-19 20:08 - 000078088 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpd.sys 2022-02-15 01:24 - 2020-09-26 17:23 - 000000000 ____D C:\Users\Leo 2022-02-15 01:22 - 2020-08-08 14:42 - 000000000 ____D C:\Users\Leo\AppData\Local\CrashDumps 2022-02-14 12:46 - 2020-09-26 17:36 - 001925588 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-02-14 12:46 - 2019-12-07 16:12 - 000826710 _____ C:\WINDOWS\system32\perfh013.dat 2022-02-14 12:46 - 2019-12-07 16:12 - 000172306 _____ C:\WINDOWS\system32\perfc013.dat 2022-02-14 01:57 - 2020-06-18 13:40 - 000000000 ____D C:\Users\Leo\AppData\Local\PrivaZer 2022-02-14 01:40 - 2020-07-23 16:09 - 000000000 ____D C:\ProgramData\Adobe 2022-02-14 01:29 - 2020-07-23 16:13 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Adobe 2022-02-14 01:21 - 2020-05-13 22:22 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-02-14 01:18 - 2020-01-01 22:58 - 000000000 ____D C:\Program Files\Adobe 2022-02-14 00:50 - 2020-07-23 16:09 - 000000000 ____D C:\Users\Leo\AppData\Local\Adobe 2022-02-14 00:48 - 2020-01-01 22:58 - 000000000 ____D C:\Program Files (x86)\Adobe 2022-02-14 00:38 - 2019-03-06 21:14 - 000000000 ____D C:\ProgramData\Package Cache 2022-02-13 23:54 - 2021-05-01 09:27 - 000000000 ____D C:\Users\Leo\AppData\LocalLow\IGDump 2022-02-13 22:18 - 2021-08-12 14:00 - 000001077 _____ C:\Users\Public\Desktop\Photo Supreme 6.lnk 2022-02-13 20:26 - 2020-07-24 21:55 - 000001456 _____ C:\Users\Leo\AppData\Local\Adobe Save for Web 13.0 Prefs 2022-02-13 17:59 - 2020-06-29 16:44 - 000000000 ____D C:\Users\Leo\AppData\LocalLow\Temp 2022-02-12 14:33 - 2015-11-18 16:43 - 000000000 ____D C:\Users\Leo\Downloads\MUZIEK 2022-02-10 12:06 - 2015-11-16 20:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-02-10 00:17 - 2018-02-27 19:50 - 000000000 ____D C:\Users\Leo\AppData\Local\DxO 2022-02-09 16:01 - 2021-09-10 09:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-02-09 16:01 - 2019-01-31 09:17 - 000000000 ____D C:\ProgramData\Mozilla 2022-02-09 16:00 - 2019-04-12 16:21 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-02-09 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-02-09 15:42 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2022-02-09 15:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-02-09 15:27 - 2020-09-26 17:21 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-02-09 14:49 - 2015-11-16 20:46 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-02-09 14:44 - 2015-11-16 20:46 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-02-03 23:57 - 2021-03-24 23:30 - 000000000 ____D C:\Users\Leo\AppData\Local\UT008 2022-02-03 20:47 - 2019-03-09 12:25 - 000000000 ____D C:\Users\Leo\Downloads\Fotografie 2022-02-01 21:34 - 2019-06-10 21:34 - 000000000 ____D C:\Users\Leo\Documents\Adobe 2022-02-01 13:48 - 2020-03-16 21:49 - 000001390 _____ C:\Users\Public\Desktop\Skype.lnk 2022-01-31 18:48 - 2021-08-31 16:14 - 000002024 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2022-01-31 18:48 - 2021-08-31 16:14 - 000001866 _____ C:\Users\Default\Desktop\Google Slides.lnk 2022-01-31 18:48 - 2021-08-31 16:14 - 000001866 _____ C:\Users\Default\Desktop\Google Sheets.lnk 2022-01-31 18:48 - 2021-08-31 16:14 - 000001854 _____ C:\Users\Default\Desktop\Google Docs.lnk 2022-01-29 16:39 - 2020-11-25 23:47 - 000002296 _____ C:\Users\Leo\Desktop\HP Deskjet 2540 series.lnk 2022-01-26 12:09 - 2020-09-20 11:30 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-01-24 22:58 - 2020-01-16 21:30 - 000165600 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2022-01-24 22:58 - 2019-02-21 21:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2022-01-24 22:58 - 2019-02-21 21:34 - 000000000 ____D C:\Program Files (x86)\Java 2022-01-24 20:33 - 2016-08-27 22:30 - 000000000 ____D C:\Users\Leo\AppData\Local\SquirrelTemp 2022-01-24 12:31 - 2020-02-07 00:56 - 000000000 ____D C:\Users\Leo\Downloads\Facturen 2022-01-22 22:40 - 2021-09-27 11:07 - 000002000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-01-22 22:40 - 2021-09-27 11:07 - 000001988 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-01-22 22:40 - 2021-09-27 11:06 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-01-22 22:40 - 2021-09-27 11:06 - 000000000 ____D C:\Program Files\Malwarebytes 2022-01-21 13:18 - 2020-09-26 17:54 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-01-21 13:18 - 2020-09-26 17:54 - 000003454 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-01-20 13:58 - 2020-06-18 13:40 - 000000000 ____D C:\Program Files (x86)\PrivaZer 2022-01-20 13:53 - 2018-06-06 17:31 - 000000000 ____D C:\Users\Leo\AppData\Roaming\DxO 2022-01-19 01:32 - 2020-12-15 12:56 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Luminar AI 2022-01-19 01:28 - 2017-01-29 17:10 - 000000000 ____D C:\Program Files\Affinity 2022-01-19 00:49 - 2019-02-25 21:21 - 000000012 _____ C:\Users\Leo\AppData\Roaming\channelChoice.ini 2022-01-18 19:09 - 2021-07-15 17:37 - 000001932 _____ C:\Users\Leo\Desktop\Zoom.lnk 2022-01-18 19:09 - 2020-03-29 15:51 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Zoom ==================== Bestanden in de root van sommige mappen ======== 2015-11-16 21:34 - 2015-11-16 21:34 - 000000000 _____ () C:\Program Files (x86)\Common Files\AMD 2021-02-19 19:58 - 2021-07-04 20:52 - 000100060 _____ () C:\Users\Leo\AppData\Roaming\.BEID_0.log 2021-02-26 09:04 - 2022-02-17 13:07 - 000062593 _____ () C:\Users\Leo\AppData\Roaming\.BEID_1.log 2019-02-25 21:21 - 2022-01-19 00:49 - 000000012 _____ () C:\Users\Leo\AppData\Roaming\channelChoice.ini 2016-05-18 13:18 - 2016-05-19 14:55 - 000040843 _____ () C:\Users\Leo\AppData\Roaming\ConEmu.xml 2017-07-04 23:03 - 2020-09-12 17:12 - 000000028 _____ () C:\Users\Leo\AppData\Roaming\kulerdata.json 2020-07-24 21:55 - 2022-02-13 20:26 - 000001456 _____ () C:\Users\Leo\AppData\Local\Adobe Save for Web 13.0 Prefs 2021-09-20 23:53 - 2021-09-20 23:53 - 000445990 _____ () C:\Users\Leo\AppData\Local\ars.cache 2021-09-20 23:55 - 2021-09-20 23:55 - 000910229 _____ () C:\Users\Leo\AppData\Local\census.cache 2016-04-29 11:00 - 2020-10-26 12:34 - 000004608 _____ () C:\Users\Leo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-10-09 13:25 - 2020-10-09 13:56 - 000021768 _____ () C:\Users\Leo\AppData\Local\digikamrc 2019-08-20 21:48 - 2019-08-20 21:48 - 000000036 _____ () C:\Users\Leo\AppData\Local\housecall.guid.cache 2019-02-20 16:43 - 2020-01-01 22:58 - 000003280 _____ () C:\Users\Leo\AppData\Local\oobelibMkey.log 2019-06-08 19:17 - 2019-06-08 19:17 - 000000218 _____ () C:\Users\Leo\AppData\Local\recently-used.xbel 2016-05-03 09:39 - 2016-05-03 09:39 - 000000017 _____ () C:\Users\Leo\AppData\Local\resmon.resmoncfg 2019-08-20 21:52 - 2021-09-20 23:26 - 000000010 _____ () C:\Users\Leo\AppData\Local\sponge.last.runtime.cache ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================