Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 07-10-2022 01 Gestart door Sean (Beheerder) op MSI (MSI MS-7817) (08-10-2022 06:52:40) Gestart vanaf D:\Bewaren\bureaublad Geladen Profielen: Sean Platform: Microsoft Windows 10 Pro Versie 21H2 19044.2075 (X64) Taal: Engels (Verenigde Staten) -> Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe (C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\OUTLOOK.EXE (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10> (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4a922d3e93437ff6\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [410728 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM\...\Policies\Explorer: [NoDrives] 4194304 HKLM\...\Policies\Explorer: [AllowOnlineTips] 0 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrictie <==== AANDACHT HKU\S-1-5-21-1301745139-1219763072-805054973-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3187384 2017-12-13] (Unified Intents AB -> Unified Intents AB) HKU\S-1-5-21-1301745139-1219763072-805054973-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [146944768 2022-09-09] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-1301745139-1219763072-805054973-1001\...\Policies\system: [DisableLockWorkstation] 0 HKU\S-1-5-21-1301745139-1219763072-805054973-1001\...\MountPoints2: {fb1b2cb4-9dfc-11eb-812d-448a5b2db4e5} - "E:\OnePlus_setup.exe" /s HKU\S-1-5-21-1301745139-1219763072-805054973-1001\...\MountPoints2: {fc21c1f6-490d-11ec-82f1-448a5b2db4e5} - "E:\OnePlus_setup.exe" /s HKLM\...\Windows x64\Print Processors\BJ Print Processor4: C:\Windows\System32\spool\prtprocs\x64\CNBPP4.DLL [84992 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon MP160 Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD83.DLL [27136 2006-09-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\BJ Language Monitor4: C:\WINDOWS\system32\CNBLM4.DLL [267776 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP160: C:\WINDOWS\system32\CNMLM83.DLL [235520 2008-04-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\WINDOWS\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\106.0.5249.91\Installer\chrmstp.exe [2022-10-01] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{f64945df-4fa9-4068-a2fb-61af319edd33}] -> C:\WINDOWS\system32\rdpcredentialprovider.dll [2022-09-21] (Microsoft Windows -> Microsoft Corporation) IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll GroupPolicy: Restrictie ? <==== AANDACHT Policies: C:\ProgramData\NTUSER.pol: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {056CBD8E-384F-4114-A028-5BA032F61946} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {1151D808-B4F2-4EB8-BDC9-15ECC99A5F81} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {22BE72DB-C5DD-4FC6-9798-F9FF5B0FE857} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c (Geen bestand) Task: {26D612BC-5514-428D-8F6B-D2AA775400A1} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {29CAA231-204A-4279-9E90-EC488C012FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Geen bestand) Task: {3BD48097-67E4-48E1-91AB-ABF443DF6C3E} - System32\Tasks\Microsoft\Windows\PLA\System\{6C18F713-2F38-4E7B-B8FE-875BDB7447D7}_System Diagnostics => Command(1): C:\WINDOWS\system32\rundll32.exe -> C:\WINDOWS\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {3BD48097-67E4-48E1-91AB-ABF443DF6C3E} - System32\Tasks\Microsoft\Windows\PLA\System\{6C18F713-2F38-4E7B-B8FE-875BDB7447D7}_System Diagnostics => Command(2): C:\WINDOWS\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{6C18F713-2F38-4E7B-B8FE-875BDB7447D7}_System Diagnostics" Task: {44983C74-8A35-4105-9B58-A90E408C66E5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {62B938DC-9D3A-4F75-B466-D9D28EE403F7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {65D5DE7D-CF87-4ADC-954A-6A1AC9414FD2} - System32\Tasks\Microsoft\Windows\PLA\System\{22B1985F-56BF-4F47-8CAF-8CFDD12EEC20}_System Diagnostics => Command(1): C:\WINDOWS\system32\rundll32.exe -> C:\WINDOWS\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {65D5DE7D-CF87-4ADC-954A-6A1AC9414FD2} - System32\Tasks\Microsoft\Windows\PLA\System\{22B1985F-56BF-4F47-8CAF-8CFDD12EEC20}_System Diagnostics => Command(2): C:\WINDOWS\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{22B1985F-56BF-4F47-8CAF-8CFDD12EEC20}_System Diagnostics" Task: {7BB03EE7-669E-411E-BE44-16997FB0FFB6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {7BD28A77-7B7F-4A15-9491-39D23FACAC38} - System32\Tasks\Microsoft\Windows\PLA\System\{CCC646A3-B8C6-4B49-9901-EBDFA4C8624E}_System Diagnostics => Command(1): C:\WINDOWS\system32\rundll32.exe -> C:\WINDOWS\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {7BD28A77-7B7F-4A15-9491-39D23FACAC38} - System32\Tasks\Microsoft\Windows\PLA\System\{CCC646A3-B8C6-4B49-9901-EBDFA4C8624E}_System Diagnostics => Command(2): C:\WINDOWS\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{CCC646A3-B8C6-4B49-9901-EBDFA4C8624E}_System Diagnostics" Task: {8099E449-6CE7-48E6-BEC2-896992386F98} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {8236B509-E31A-4E60-B3F8-2C2144593AC8} - System32\Tasks\Microsoft\Windows\PLA\System\{30A1269C-72A0-4E6F-8CB5-5810F9388A5F}_System Diagnostics => Command(1): C:\WINDOWS\system32\rundll32.exe -> C:\WINDOWS\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {8236B509-E31A-4E60-B3F8-2C2144593AC8} - System32\Tasks\Microsoft\Windows\PLA\System\{30A1269C-72A0-4E6F-8CB5-5810F9388A5F}_System Diagnostics => Command(2): C:\WINDOWS\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{30A1269C-72A0-4E6F-8CB5-5810F9388A5F}_System Diagnostics" Task: {94F20F49-516E-423F-9A82-915B8EB7ACB3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9B4ED4F9-3664-487E-9862-35DBEA44C818} - System32\Tasks\Microsoft\Windows\PLA\System\{7FD5554E-014C-4079-B45B-2AEDB34ED4FF}_System Diagnostics => Command(1): C:\WINDOWS\system32\rundll32.exe -> C:\WINDOWS\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {9B4ED4F9-3664-487E-9862-35DBEA44C818} - System32\Tasks\Microsoft\Windows\PLA\System\{7FD5554E-014C-4079-B45B-2AEDB34ED4FF}_System Diagnostics => Command(2): C:\WINDOWS\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{7FD5554E-014C-4079-B45B-2AEDB34ED4FF}_System Diagnostics" Task: {C3C92615-4CAB-406F-B42E-7C8CF6B66358} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {D5CC2AAE-A321-49D8-9631-34601755C4F6} - System32\Tasks\Microsoft\Windows\PLA\System\{3EAC782B-FB56-480A-A8D6-164CBA1D2D7B}_System Diagnostics => Command(1): C:\WINDOWS\system32\rundll32.exe -> C:\WINDOWS\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {D5CC2AAE-A321-49D8-9631-34601755C4F6} - System32\Tasks\Microsoft\Windows\PLA\System\{3EAC782B-FB56-480A-A8D6-164CBA1D2D7B}_System Diagnostics => Command(2): C:\WINDOWS\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{3EAC782B-FB56-480A-A8D6-164CBA1D2D7B}_System Diagnostics" Task: {E1EAFA40-75E8-40E5-A643-33196539A39C} - System32\Tasks\Microsoft\Windows\PLA\System\{5BF2BADA-93AC-4C6D-BF8B-1CE4678D8141}_System Diagnostics => Command(1): C:\WINDOWS\system32\rundll32.exe -> C:\WINDOWS\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {E1EAFA40-75E8-40E5-A643-33196539A39C} - System32\Tasks\Microsoft\Windows\PLA\System\{5BF2BADA-93AC-4C6D-BF8B-1CE4678D8141}_System Diagnostics => Command(2): C:\WINDOWS\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{5BF2BADA-93AC-4C6D-BF8B-1CE4678D8141}_System Diagnostics" Task: {F7ADC48A-71FE-41BC-A997-A1A56EC0CDFA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FD76CAB0-8652-4974-8CA7-027FAF3DD1F5} - System32\Tasks\Microsoft\Windows\PLA\System\{C9B1B2A1-5127-4E65-B743-DBC85CE7C765}_System Diagnostics => Command(1): C:\WINDOWS\system32\rundll32.exe -> C:\WINDOWS\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {FD76CAB0-8652-4974-8CA7-027FAF3DD1F5} - System32\Tasks\Microsoft\Windows\PLA\System\{C9B1B2A1-5127-4E65-B743-DBC85CE7C765}_System Diagnostics => Command(2): C:\WINDOWS\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{C9B1B2A1-5127-4E65-B743-DBC85CE7C765}_System Diagnostics" (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.130.5 195.130.131.5 Tcpip\..\Interfaces\{11613ca9-8ef6-4f84-89e4-53292a59c25e}: [DhcpNameServer] 195.130.130.5 195.130.131.5 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <==== AANDACHT Edge: ======= DownloadDir: D:\bewaren\downloads Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge Profile: C:\Users\Sean\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-05] FireFox: ======== FF DefaultProfile: 7d5ui232.default-1465644564137 FF ProfilePath: C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137 [2022-10-08] FF Homepage: Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137 -> hxxps://www.google.be/ FF Notifications: Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137 -> hxxps://www.tomtom.com; hxxps://meet.google.com FF Extension: (eID België) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\belgiumeid@eid.belgium.be.xpi [2021-03-04] FF Extension: (eID Extension) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\eid-chrome-extension@e-contract.be.xpi [2021-12-11] [UpdateUrl:hxxps://www.e-contract.be/eid-chrome/releases/eid-chrome-extension-updates.json] FF Extension: (HTTPS Everywhere) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\https-everywhere-eff@eff.org.xpi [2022-05-25] [UpdateUrl:hxxps://www.eff.org/files/https-everywhere-updates.json] FF Extension: (Dashlane) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\jetpack-extension@dashlane.com.xpi [2022-09-21] [UpdateUrl:hxxps://ws1.dashlane.com/5/binaries/query?logins=&platform=firefox&target=ff_web_extension&format=json&version=] FF Extension: (Decentraleyes) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2022-02-01] FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2022-10-04] FF Extension: (uBlock Origin) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\uBlock0@raymondhill.net.xpi [2022-09-20] FF Extension: (TWP - Translate Web Pages) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2022-10-05] FF Extension: (YouTube NonStop) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\{0d7cafdd-501c-49ca-8ebb-e3341caaa55e}.xpi [2022-04-11] FF Extension: (Connective signing extension) - C:\Users\Sean\AppData\Roaming\Mozilla\Firefox\Profiles\7d5ui232.default-1465644564137\Extensions\{4f643bc8-78f5-49c6-8efd-78ee30289f0b}.xpi [2021-11-18] FF HKU\S-1-5-21-1301745139-1219763072-805054973-1001\...\Firefox\Extensions: [{442718d9-475e-452a-b3e1-fb1ee16b8e9f}] - C:\Users\Sean\AppData\Roaming\Dashlane\5.5.0.14947\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f} => niet gevonden FF Plugin: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-08-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-08-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.15 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Geen bestand] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin HKU\S-1-5-21-1301745139-1219763072-805054973-1001: connective.be/BrowserPlugin -> C:\Users\Sean\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2021-07-05] (Connective n.v.) [Bestand niet getekend] Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Sean\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-01-12] CHR Profile: C:\Users\Sean\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-10-07] CHR Notifications: Profile 1 -> hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://teams.microsoft.com CHR HomePage: Profile 1 -> hxxp://www.google.be/ CHR StartupUrls: Profile 1 -> "hxxps://oosterzele.bibliotheek.be/","hxxp://www.google.be/" CHR Extension: (QR-codegenerator) - C:\Users\Sean\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\afpbjjgbdimpioenaedcjgkaigggcdpp [2021-02-19] CHR Extension: (uBlock Origin) - C:\Users\Sean\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-09-29] CHR Extension: (HTTPS Everywhere) - C:\Users\Sean\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2022-05-26] CHR Extension: (Connective signing extension) - C:\Users\Sean\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2021-08-06] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Sean\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01] CHR Profile: C:\Users\Sean\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-12] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2019-10-15] (Microsoft Windows -> ) S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\106.0.5249.37\remoting_host.exe [74528 2022-09-12] (Google LLC -> Google LLC) S4 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616344 2020-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [422504 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [81512 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.) S4 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [224320 2022-09-12] (HP Inc. -> HP Inc.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Bestand niet getekend] S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-06-18] (Intel CASE -> ) S4 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10068736 2022-09-09] (Logitech Inc -> Logitech, Inc.) S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224192 2022-09-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-11-25] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-11-25] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 FvSvc; "C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe" -service [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4a922d3e93437ff6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4a922d3e93437ff6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2020-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2021-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2022-10-06] (CPUID S.A.R.L.U. -> CPUID) S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Power Technology -> Windows (R) Win 7 DDK provider) S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-15] (Power Technology -> Windows (R) Win 7 DDK provider) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-11-25] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) S3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 fiddrv64; geen ImagePath R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-06-08] (Martin Malik - REALiX -> REALiX(tm)) S3 iriuna0; C:\WINDOWS\system32\drivers\iriuna0.sys [46976 2021-04-06] (Iriun Oy -> Windows (R) Win 7 DDK provider) S3 iriunvid; C:\WINDOWS\System32\DriverStore\FileRepository\iriunvid.inf_amd64_e78ff291e21a1251\iriunvid.sys [162928 2021-11-27] (Iriun Oy -> Windows (R) Win 7 DDK provider) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [33528 2022-08-15] (WDKTestCert builder,132743893872553407 -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [21704 2022-08-15] (WDKTestCert builder,132743893872553407 -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [62904 2022-08-15] (WDKTestCert builder,132743893872553407 -> Logitech) S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-11-25] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 StillCam; C:\WINDOWS\system32\DRIVERS\serscan.sys [13312 2020-07-13] (Microsoft Corporation) [Bestand niet getekend] R3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2017-12-13] (Unified Intents AB -> Windows (R) Win 7 DDK provider) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [25704 2020-09-10] (WDKTestCert user,132375440089837053 -> Western Digital Technologies, Inc.) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation) S1 EneTechIo; \??\C:\WINDOWS\system32\drivers\ene.sys [X] S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-10-08 06:52 - 2022-10-08 06:53 - 000000000 ____D C:\FRST 2022-10-07 13:25 - 2022-10-07 13:25 - 000001377 _____ C:\Users\Sean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2022-10-07 13:25 - 2022-10-07 13:25 - 000000000 ____D C:\Users\Sean\AppData\Local\ESET 2022-10-07 10:59 - 2022-10-07 10:59 - 000000000 ____D C:\Users\DefaultAccount 2022-10-07 09:08 - 2022-10-07 09:08 - 000001829 _____ C:\Users\Sean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Return to Monkey Island.lnk 2022-10-07 08:01 - 2022-10-07 08:01 - 000000000 ____D C:\Games 2022-10-05 09:03 - 2022-10-05 09:03 - 000000000 ____D C:\Users\Sean\AppData\Local\DBG 2022-10-05 08:41 - 2020-09-10 11:15 - 000025704 _____ (Western Digital Technologies, Inc.) C:\WINDOWS\system32\Drivers\wdcsam64.sys 2022-10-04 18:50 - 2022-10-04 18:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-10-04 18:44 - 2022-10-05 09:02 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-09-21 07:11 - 2022-09-21 07:11 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-09-21 07:11 - 2022-09-21 07:11 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2022-09-21 07:11 - 2022-09-21 07:11 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-09-21 07:11 - 2022-09-21 07:11 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2022-09-21 07:11 - 2022-09-21 07:11 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2022-09-21 07:11 - 2022-09-21 07:11 - 000012251 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-09-15 05:40 - 2022-09-15 05:40 - 000000000 ____D C:\ProgramData\boost_interprocess 2022-09-15 05:38 - 2022-09-16 09:41 - 000000000 ____D C:\Program Files\dotnet 2022-09-15 05:37 - 2022-09-15 05:46 - 000000000 ____D C:\Users\Sean\AppData\Roaming\UI Launcher 2022-09-15 05:37 - 2022-09-15 05:37 - 000000000 ____D C:\Users\Sean\AppData\Roaming\Autodesk Access UI Host 2022-09-12 19:03 - 2022-09-12 19:03 - 000000000 ____D C:\Users\Sean\AppData\Roaming\Adobe 2022-09-12 19:01 - 2022-09-12 19:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2022-09-12 19:01 - 2022-09-12 19:01 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2022-09-10 08:02 - 2022-09-10 08:02 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll 2022-09-10 08:02 - 2022-09-10 08:02 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2022-09-10 08:02 - 2022-09-10 08:02 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-09-10 07:48 - 2022-09-10 07:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2022-09-10 07:48 - 2022-09-10 07:48 - 000000000 ____D C:\Program Files\LGHUB 2022-09-08 18:20 - 2022-09-08 18:20 - 000001214 _____ C:\Users\Sean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\scrcpy.lnk 2022-09-08 07:52 - 2022-09-08 18:20 - 000000000 ____D C:\Program Files\Scrcpy ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-10-08 06:50 - 2016-11-18 19:23 - 000000000 ____D C:\Users\Sean\AppData\LocalLow\Mozilla 2022-10-08 06:41 - 2020-07-13 20:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-10-07 22:00 - 2022-08-15 09:28 - 000000000 ____D C:\Users\Sean\AppData\Local\LGHUB 2022-10-07 21:40 - 2019-05-12 20:52 - 000000000 ____D C:\ProgramData\Unified Remote 2022-10-07 19:30 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-10-07 14:09 - 2018-03-11 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Switch 2022-10-07 09:07 - 2016-06-03 15:47 - 000000000 ____D C:\Users\Sean\AppData\Roaming\qBittorrent 2022-10-07 08:02 - 2018-05-12 13:51 - 000000000 ____D C:\Users\Sean\AppData\Local\D3DSCache 2022-10-06 22:49 - 2015-12-01 14:58 - 000000000 ____D C:\Users\Sean\AppData\Roaming\vlc 2022-10-06 21:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-10-06 20:29 - 2016-08-14 07:40 - 000000000 ____D C:\Users\Sean\AppData\Local\CrashDumps 2022-10-06 20:25 - 2022-08-15 09:28 - 000000000 ____D C:\Users\Sean\AppData\Roaming\LGHUB 2022-10-06 19:10 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-10-06 12:50 - 2020-07-13 20:51 - 001771396 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-10-06 12:50 - 2020-07-13 19:31 - 000785966 _____ C:\WINDOWS\system32\perfh013.dat 2022-10-06 12:50 - 2020-07-13 19:31 - 000154094 _____ C:\WINDOWS\system32\perfc013.dat 2022-10-06 12:50 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-10-06 12:42 - 2021-09-25 22:48 - 000000000 ____D C:\ProgramData\NVIDIA 2022-10-06 12:42 - 2020-07-13 20:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-10-06 12:42 - 2020-07-13 20:41 - 000008192 ___SH C:\DumpStack.log.tmp 2022-10-06 12:42 - 2020-07-13 19:47 - 000000000 ____D C:\Users\Sean 2022-10-06 09:50 - 2017-04-18 09:52 - 000000000 ____D C:\ProgramData\HP 2022-10-06 09:34 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-10-06 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-10-06 09:34 - 2017-12-04 18:51 - 000000000 ____D C:\Users\Sean\AppData\Local\Packages 2022-10-05 09:02 - 2015-12-01 14:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-10-05 09:01 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-10-05 06:59 - 2017-04-29 18:37 - 000000000 ____D C:\Program Files (x86)\Google 2022-10-04 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-10-01 00:19 - 2018-05-28 18:59 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-09-21 07:21 - 2020-07-13 20:41 - 000685080 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-09-21 07:20 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-09-21 07:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-09-21 07:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-09-21 07:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-09-21 07:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-09-21 07:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-09-21 07:17 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2022-09-21 07:17 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2022-09-21 07:11 - 2020-07-13 20:43 - 003012608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-09-19 19:00 - 2017-12-04 19:20 - 000000000 ____D C:\Users\Sean\AppData\Local\ElevatedDiagnostics 2022-09-16 09:41 - 2015-12-01 14:47 - 000000000 ____D C:\ProgramData\Package Cache 2022-09-16 09:34 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-09-16 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-09-16 08:32 - 2022-03-04 18:54 - 000000000 ____D C:\Program Files (x86)\dotnet 2022-09-16 08:30 - 2015-12-09 16:50 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-09-16 08:28 - 2015-12-09 16:50 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-09-15 05:37 - 2021-09-25 22:48 - 000000000 ____D C:\Users\Sean\AppData\Local\NVIDIA 2022-09-12 18:50 - 2020-06-21 15:56 - 000000000 ____D C:\Users\Sean\AppData\Local\PlaceholderTileLogoFolder 2022-09-10 08:22 - 2021-05-31 07:20 - 000000000 ____D C:\Program Files\Java 2022-09-10 08:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-09-10 08:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-09-10 08:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-09-10 08:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-09-10 08:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs ==================== Bestanden in de root van sommige mappen ======== 2020-09-22 18:58 - 2022-08-02 07:22 - 000100061 _____ () C:\Users\Sean\AppData\Roaming\.BEID_0.log 2020-11-11 18:55 - 2022-10-08 06:50 - 000081593 _____ () C:\Users\Sean\AppData\Roaming\.BEID_1.log 2021-05-13 21:40 - 2021-07-26 07:34 - 000012288 _____ () C:\Users\Sean\AppData\Roaming\emp.bin 2021-02-20 19:32 - 2021-02-22 08:11 - 000000292 _____ () C:\Users\Sean\AppData\Local\config.ini 2020-07-11 10:20 - 2020-07-11 10:20 - 001065984 _____ () C:\Users\Sean\AppData\Local\file__0.localstorage 2019-04-14 07:20 - 2019-04-14 07:20 - 000000218 _____ () C:\Users\Sean\AppData\Local\recently-used.xbel 2016-05-14 20:26 - 2019-04-28 08:35 - 000007597 _____ () C:\Users\Sean\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================