Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 11-12-2022 Gestart door HZ1RU (Beheerder) op DESKTOP-3G2NDPS (HP HP ProDesk 400 G6 SFF) (13-12-2022 10:05:26) Gestart vanaf C:\Users\HZ1RU\Downloads Geladen Profielen: HZ1RU Platform: Microsoft Windows 10 Pro Versie 22H2 19045.2251 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Edge Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\NetworkCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\BridgeCommunication.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12> (explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [Bestand niet getekend] C:\Program Files\Classic Shell\ClassicStartMenu.exe (explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <4> (explorer.exe ->) (Netresec AB -> NETRESEC) C:\Users\HZ1RU\Desktop\SystemTools\NetworkMiner_2-6\NetworkMiner.exe (explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe (explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe (explorer.exe ->) (Sysdig, Inc. -> The Wireshark developer community, hxxps://www.wireshark.org/) C:\Program Files\Wireshark\Wireshark.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13> (MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Conexant Systems LLC.) [Bestand niet getekend] C:\Windows\CxSvc\CxUtilSvc.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_c33d3226824e4250\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_6b6c15ad85118c76\HotkeyServiceDSU.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_6b6c15ad85118c76\LanWlanWwanSwitchingServiceDSU.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_42257e45eaa17009\HotKeyServiceUWP.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f37f66cf59feb38a\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f37f66cf59feb38a\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe (services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe (services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe (services.exe ->) (SMA Solar Technology AG -> Microsoft) C:\Program Files (x86)\SMA\Sunny Explorer\SMA.Multicasting.IGMP.QuerierService.exe (services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (services.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe (services.exe ->) (Synaptics Incorporated -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc64.exe (services.exe ->) (www.shadowexplorer.com) [Bestand niet getekend] C:\Program Files (x86)\ShadowExplorer\sesvc.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics) C:\ProgramData\Samsung Apps\Portable SSD\SamsungPortableSSDMon.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Bestand niet getekend] HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2109064 2020-02-06] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [54176 2019-12-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9923856 2022-11-24] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> ) HKLM-x32\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2006-08-25] (Macrovision Corporation) [Bestand niet getekend] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [LocalServiceControl] => C:\Program Files (x86)\LocalServiceComponents\LocalServiceControl.exe [475136 2022-09-19] (Hangzhou Hikvision Digital Tech.Co.,Ltd -> ) HKU\S-1-5-21-346357692-1366640249-2590671835-1001\...\Run: [Adobe Reader Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe" (Geen bestand) HKU\S-1-5-21-346357692-1366640249-2590671835-1001\...\Run: [electron.app.Fing] => C:\Program Files\Fing\Fing.exe --processStart "Fing.exe" --process-start-args "--hidden" (Geen bestand) HKU\S-1-5-21-346357692-1366640249-2590671835-1001\...\Run: [MicrosoftEdgeAutoLaunch_76D24832E639CBCC024845F344CF2ABE] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3877280 2022-12-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-346357692-1366640249-2590671835-1001\...\Run: [HP OfficeJet Pro 8710 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.) HKU\S-1-5-21-346357692-1366640249-2590671835-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [39936 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\108.0.5359.99\Installer\chrmstp.exe [2022-12-10] (Google LLC -> Google LLC) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0A96243A-8543-46E1-8C21-800E9ED6AF4F} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI Task: {11DE3A4D-F059-4ED8-9FC0-757C6D70D9D9} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [121595976 2022-09-01] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) Task: {15C003D7-C26D-412B-92F1-DF84D32743E0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-03] (Google LLC -> Google LLC) Task: {171DECCF-6BFF-4CF0-B986-BC97B799CEE9} - System32\Tasks\Samsung_PSSD_Registration => C:\ProgramData\Samsung Apps\Portable SSD\SamsungPortableSSDMon.exe [497752 2020-04-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics) Task: {379FFAE7-8045-4F96-AE94-D14B09F9F0CB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError Task: {398AFD7A-49FD-414A-B769-95C3608BD1BC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO Task: {3B0947DB-0ADB-4A09-9031-970861290A48} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF Task: {4540F6F1-8D25-4B05-BB1D-A2B6BFEC402A} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098928 2020-08-02] (Intel(R) Software Development Products -> Intel Corporation) Task: {4C3BBB65-3197-4039-9A3B-C4F0E2E82D38} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2022-08-18] () [Bestand niet getekend] Task: {4EA37502-C43C-436A-AD0C-673E67771BCE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4F54AEFE-5294-488B-BAF0-B9FEFFF26376} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {52AA032D-4AF0-43BD-925D-CC02DF486457} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1 Task: {5ED19E6A-BFE2-4E11-B19D-57C695B382DA} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags: Task: {A0077304-1646-4508-8422-5BCC2A9E9FA0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-03] (Google LLC -> Google LLC) Task: {A84B9773-D908-4C5E-83BF-F42B0553BE15} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {ABD79DFD-0EAA-402D-A1E4-1F4855F2C753} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice Task: {AE43EB5E-BB9B-4EF5-803C-B8817456C81A} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> ) Task: {BEEFFF97-F2A8-453C-A20A-1C7DE97E5714} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C67E50A0-C4EC-42D7-9000-893B6C1339FA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D96E1F72-15F0-49D0-8519-D28A5DA34AFE} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098928 2020-08-02] (Intel(R) Software Development Products -> Intel Corporation) Task: {DC1EBB1A-5F86-4921-978D-79CF3774AA3B} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {E675B879-1473-45C5-9459-023592BBC6D8} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2 Task: {EF9903E5-4E0A-44B6-B139-A44197B456AB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 1.1.1.1 Tcpip\..\Interfaces\{1f307480-32dc-439c-ae2a-66b5dd121733}: [DhcpNameServer] 8.8.8.8 1.1.1.1 Tcpip\..\Interfaces\{2ca94e2e-3b22-4682-81bc-58f21622e17b}: [DhcpNameServer] 8.8.8.8 1.1.1.1 Tcpip\..\Interfaces\{8d9b8200-e773-4286-9406-248cd11b39c6}: [DhcpNameServer] 8.8.8.8 1.1.1.1 Tcpip\..\Interfaces\{aa56ba2d-d83d-4cdf-8e01-bc549a7399d3}: [DhcpNameServer] 1.1.1.1 1.0.0.1 Edge: ======= DownloadDir: Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.19.0_neutral__d55gg7py3s0m0 [2022-10-30] Edge DefaultProfile: Default Edge Profile: C:\Users\HZ1RU\AppData\Local\Microsoft\Edge\User Data\Default [2022-12-13] Edge Notifications: Default -> hxxps://www.pc-helpforum.be Edge Extension: (Adblock Plus - gratis adblocker) - C:\Users\HZ1RU\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-11-24] Edge Profile: C:\Users\HZ1RU\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2022-10-14] FireFox: ======== FF DefaultProfile: imey1zli.default-1664279106683 FF ProfilePath: C:\Users\HZ1RU\AppData\Roaming\Mozilla\Firefox\Profiles\imey1zli.default-1664279106683 [2022-09-30] FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-22] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR Profile: C:\Users\HZ1RU\AppData\Local\Google\Chrome\User Data\Default [2022-12-13] CHR Notifications: Default -> hxxp://127.0.0.1; hxxps://calendar.google.com; hxxps://mail.google.com CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\HZ1RU\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-12-06] CHR Extension: (Thumbs DB Viewer (Thumbs.db)) - C:\Users\HZ1RU\AppData\Local\Google\Chrome\User Data\Default\Extensions\eajmcfpkadefdaijoidobidhiignapmi [2020-07-10] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\HZ1RU\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [761416 2022-09-01] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [86592 2022-11-14] (Synaptics Incorporated -> Conexant Systems LLC.) R2 CxUIUSvc; C:\WINDOWS\System32\CxUIUSvc64.exe [191360 2022-11-14] (Synaptics Incorporated -> Conexant Systems, Inc.) R2 CxUtilSvc; C:\Windows\CxSvc\CxUtilSvc.exe [166400 2019-12-07] (Conexant Systems LLC.) [Bestand niet getekend] R2 HotKeyServiceDSU; C:\WINDOWS\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_6b6c15ad85118c76\HotKeyServiceDSU.exe [698376 2022-06-17] (HP Inc. -> HP Inc.) R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_42257e45eaa17009\HotKeyServiceUWP.exe [1526184 2020-08-18] (HP Inc. -> HP Inc.) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\AppHelperCap.exe [791512 2022-11-29] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\DiagsCap.exe [790488 2022-11-29] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\NetworkCap.exe [787416 2022-11-29] (HP Inc. -> HP Inc.) S4 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [260256 2022-01-28] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_7bed1fa9ff4d1b5c\x64\SysInfoCap.exe [791512 2022-11-29] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_c33d3226824e4250\x64\TouchpointAnalyticsClientService.exe [493664 2022-09-28] (HP Inc. -> HP Inc.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Bestand niet getekend] R2 LanWlanWwanSwitchingServiceDSU; C:\WINDOWS\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_6b6c15ad85118c76\LanWlanWwanSwitchingServiceDSU.exe [587800 2022-06-17] (HP Inc. -> HP Inc.) S3 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_42257e45eaa17009\LanWlanWwanSwitchingServiceUWP.exe [782760 2020-08-18] (HP Inc. -> HP Inc.) R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [11072520 2022-11-24] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [371784 2022-09-01] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 SamsungRapidSvc; C:\WINDOWS\System32\RAPID\SamsungRapidSvc.exe [30504 2019-12-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224216 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 sesvc; C:\Program Files (x86)\ShadowExplorer\sesvc.exe [9216 2013-01-02] (www.shadowexplorer.com) [Bestand niet getekend] R2 SMA.Multicasting.IGMP.QuerierService.exe; C:\Program Files (x86)\SMA\Sunny Explorer\SMA.Multicasting.IGMP.QuerierService.exe [27608 2020-07-02] (SMA Solar Technology AG -> Microsoft) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) S3 VssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{8679F66E-6EC3-43EE-A65F-32D433F85EFD} [21312 2020-12-11] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) S2 Fing.Agent; C:\Program Files\Fing\resources\extraResources\fingagent.exe --servicemode Fing.Agent --agentroot "C:\Users\HZ1RU\AppData\Roaming" ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 airpcap; C:\WINDOWS\System32\drivers\airpcap.sys [504832 2014-03-04] (Riverbed Technology, Inc.) [Bestand niet getekend] S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 DRTWlanE; C:\WINDOWS\System32\drivers\Drtwlane.sys [9634328 2019-01-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-15] (HP Inc. -> HP Inc.) S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [21208 2021-01-02] (北京铠信神州科技有限责任公司 -> ) R3 MpKslaed8d66f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2C788816-D491-4C7A-B792-5D543744EE5E}\MpKslDrv.sys [214280 2022-12-12] (Microsoft Windows -> Microsoft Corporation) R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [77336 2022-08-19] (Insecure.Com LLC -> Insecure.Com LLC.) S4 npcap_wifi; C:\WINDOWS\system32\DRIVERS\npcap.sys [77336 2022-08-19] (Insecure.Com LLC -> Insecure.Com LLC.) S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [179416 2019-02-15] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) S3 RdrVmp; C:\WINDOWS\System32\drivers\RdrVmp.sys [34688 2019-11-07] (R-Tools Technology Inc. -> Copyright В© 2018 R-Tools Technology Inc.) S3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation) R0 SamsungRapidDiskFltr; C:\WINDOWS\System32\DRIVERS\SamsungRapidDiskFltr.sys [309752 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 SamsungRapidFSFltr; C:\WINDOWS\System32\DRIVERS\SamsungRapidFSFltr.sys [120280 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 Ser2pl; C:\WINDOWS\System32\drivers\ser2pl64.sys [258544 2019-08-01] (WDKTestCert charles-yeh,131345514351795974 -> Prolific Technology Inc.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [52872 2020-05-22] (Tomasz Moń -> USBPcap) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-12-13 10:05 - 2022-12-13 10:06 - 000026582 ____C C:\Users\HZ1RU\Downloads\FRST.txt 2022-12-13 10:04 - 2022-12-13 10:05 - 000000000 ___DC C:\FRST 2022-12-13 10:03 - 2022-12-13 10:04 - 002375680 ____C (Farbar) C:\Users\HZ1RU\Downloads\FRST64 (3).exe 2022-12-13 10:02 - 2022-12-13 10:02 - 002375680 ____C (Farbar) C:\Users\HZ1RU\Downloads\Niet bevestigd 609851.crdownload 2022-12-13 10:00 - 2022-12-13 10:00 - 002375680 ____C (Farbar) C:\Users\HZ1RU\Downloads\Niet bevestigd 245230.crdownload 2022-12-13 10:00 - 2022-12-13 10:00 - 002375680 ____C (Farbar) C:\Users\HZ1RU\Downloads\Niet bevestigd 170383.crdownload 2022-12-13 08:53 - 2022-12-13 08:55 - 364661029 ____C C:\Users\HZ1RU\Documents\13122022.pcap 2022-12-12 16:33 - 2022-12-12 16:33 - 222829754 ____C C:\Users\HZ1RU\Documents\12122022c.pcap 2022-12-12 11:50 - 2022-12-12 11:50 - 000639255 ____C C:\Users\HZ1RU\Documents\12122022b.pcap 2022-12-12 08:17 - 2022-12-12 08:22 - 1472613312 ____C C:\Users\HZ1RU\Documents\12122022.pcapng 2022-12-11 19:32 - 2022-12-11 19:32 - 000000963 ____C C:\Users\HZ1RU\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2022-12-11 19:32 - 2022-12-11 19:32 - 000000000 ___DC C:\Users\HZ1RU\Desktop\Tor Browser 2022-12-11 17:01 - 2022-12-11 17:01 - 001726258 ____C C:\Users\HZ1RU\Desktop\K022-011514-20221208 073151.pdf 2022-12-11 10:14 - 2022-12-11 10:14 - 002237610 ____C C:\Users\HZ1RU\Documents\11122022c.pcap 2022-12-11 09:55 - 2022-12-11 09:55 - 005194547 ____C C:\Users\HZ1RU\Documents\11122022b.pcap 2022-12-11 08:34 - 2022-12-11 08:38 - 3872532208 ____C C:\Users\HZ1RU\Documents\1122022.pcap 2022-12-09 15:16 - 2022-12-09 15:16 - 000685233 ____C C:\Users\HZ1RU\Documents\Documenten.72.pdf 2022-12-06 08:55 - 2022-12-06 09:10 - 000000000 ___DC C:\BRU 2022-12-06 07:44 - 2022-11-14 19:09 - 000191360 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\CxUIUSvc64.exe 2022-12-06 07:44 - 2022-11-14 19:09 - 000061168 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\CxPageMaster64.dll 2022-12-06 07:44 - 2022-11-14 19:08 - 001532704 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll 2022-12-06 07:44 - 2022-11-14 19:08 - 001518464 ____C (Synaptics Incorporated.) C:\WINDOWS\system32\CX64APO.dll 2022-12-06 07:44 - 2022-11-14 19:08 - 001076232 ____C (Synaptics Inc.) C:\WINDOWS\system32\CX64BPAPO.dll 2022-12-06 07:44 - 2022-11-14 19:08 - 000599864 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\CX64APO2.dll 2022-12-06 07:44 - 2022-11-14 19:08 - 000419624 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\CSpkExt64.dll 2022-12-05 10:10 - 2022-12-05 10:10 - 000003460 ____C C:\WINDOWS\system32\Tasks\npcapwatchdog 2022-12-05 10:10 - 2022-12-05 10:10 - 000001835 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk 2022-12-05 10:10 - 2022-12-05 10:10 - 000001823 ____C C:\Users\Public\Desktop\Wireshark.lnk 2022-12-05 10:10 - 2022-12-05 10:10 - 000000000 ___DC C:\WINDOWS\SysWOW64\Npcap 2022-12-05 10:10 - 2022-12-05 10:10 - 000000000 ___DC C:\WINDOWS\system32\Npcap 2022-12-05 10:10 - 2022-12-05 10:10 - 000000000 ___DC C:\Program Files\USBPcap 2022-12-05 10:05 - 2022-12-05 10:11 - 000000000 ___DC C:\Program Files\Wireshark 2022-12-02 07:20 - 2022-12-02 07:20 - 000000000 ___DC C:\WINDOWS\%LOCALAPPDATA% 2022-11-30 14:35 - 2022-11-30 14:35 - 000687434 ____C C:\Users\HZ1RU\Documents\Documenten.71.pdf 2022-11-28 17:13 - 2022-11-28 17:13 - 000003276 ____C C:\WINDOWS\system32\Tasks\MiniToolPartitionWizard 2022-11-28 17:13 - 2022-11-28 17:13 - 000001036 ____C C:\Users\Public\Desktop\MiniTool Partition Wizard.lnk 2022-11-28 17:13 - 2022-11-28 17:13 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12 2022-11-22 11:03 - 2022-11-22 11:03 - 000061653 ____C C:\Users\HZ1RU\Desktop\Brief betreffende de schade van_298522022_nl.pdf 2022-11-20 16:43 - 2022-11-20 16:43 - 000556116 ____C C:\Users\HZ1RU\Documents\Documenten.70.pdf 2022-11-16 17:08 - 2022-11-16 17:08 - 000841733 ____C C:\Users\HZ1RU\Documents\Documenten.69.pdf 2022-11-16 17:05 - 2022-11-16 17:05 - 000076188 ____C C:\Users\HZ1RU\Documents\Documenten51.3.pdf 2022-11-16 17:05 - 2022-11-16 17:05 - 000054725 ____C C:\Users\HZ1RU\Documents\Documenten51.1.pdf 2022-11-16 17:05 - 2022-11-16 17:05 - 000018222 ____C C:\Users\HZ1RU\Documents\Documenten51.4.pdf 2022-11-16 17:05 - 2022-11-16 17:05 - 000018036 ____C C:\Users\HZ1RU\Documents\Documenten51.2.pdf 2022-11-13 16:10 - 2022-11-13 16:10 - 000128028 ____C C:\Users\HZ1RU\Documents\Documenten51.pdf 2022-11-13 16:07 - 2022-11-13 16:07 - 000624008 ____C C:\Users\HZ1RU\Documents\Documenten.68.pdf 2022-11-13 16:00 - 2022-11-13 16:00 - 000577345 ____C C:\Users\HZ1RU\Documents\Documenten.67.pdf ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-12-13 09:52 - 2022-10-14 12:13 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code 2022-12-13 09:51 - 2022-10-14 12:13 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\Code 2022-12-13 09:43 - 2020-05-02 21:00 - 000000000 ___DC C:\Program Files (x86)\Google 2022-12-13 08:55 - 2016-11-15 18:20 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\vlc 2022-12-13 08:52 - 2020-12-11 18:41 - 000000000 ___DC C:\WINDOWS\system32\SleepStudy 2022-12-12 21:20 - 2016-11-18 19:42 - 000000000 ___DC C:\Users\HZ1RU\AppData\Local\ClassicShell 2022-12-12 21:18 - 2018-08-15 08:59 - 000000000 ___DC C:\Users\HZ1RU\AppData\Local\D3DSCache 2022-12-12 19:46 - 2022-05-06 17:29 - 000000594 ____C C:\Users\HZ1RU\ezpcopensdkconfig_9ffc4da769078eeb963f0897d728be4e.xml 2022-12-12 19:23 - 2019-12-07 10:14 - 000000000 ___DC C:\ProgramData\regid.1991-06.com.microsoft 2022-12-12 15:09 - 2019-12-07 10:14 - 000000000 __HDC C:\Program Files\WindowsApps 2022-12-12 15:09 - 2019-12-07 10:14 - 000000000 ___DC C:\WINDOWS\AppReadiness 2022-12-12 14:39 - 2018-10-06 15:03 - 000000000 ___DC C:\Users\HZ1RU\Desktop\SystemTools 2022-12-12 11:55 - 2021-02-01 11:44 - 000001431 ____C C:\Users\HZ1RU\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2022-12-12 11:49 - 2017-05-05 17:36 - 000000015 ____C C:\Users\HZ1RU\advanced_ip_scanner_Comments.bin 2022-12-12 11:49 - 2016-10-18 17:49 - 000000148 ____C C:\Users\HZ1RU\advanced_ip_scanner_Aliases.bin 2022-12-12 11:49 - 2016-10-18 17:47 - 000001704 ____C C:\Users\HZ1RU\advanced_ip_scanner_MAC.bin 2022-12-12 10:00 - 2017-05-04 15:42 - 000000000 ___DC C:\Users\HZ1RU\AppData\Local\CrashDumps 2022-12-12 08:26 - 2019-12-07 10:14 - 000000000 ___DC C:\WINDOWS\LiveKernelReports 2022-12-11 19:35 - 2017-12-28 11:12 - 000000000 ___DC C:\Users\HZ1RU\AppData\LocalLow\Mozilla 2022-12-11 19:32 - 2022-09-27 12:45 - 000000000 ___DC C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-12-10 13:20 - 2020-05-03 17:51 - 000002289 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-12-10 09:23 - 2019-12-07 10:13 - 000000000 ___DC C:\WINDOWS\INF 2022-12-10 08:21 - 2020-05-05 12:54 - 000002416 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-12-09 17:20 - 2019-04-19 19:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-12-09 15:16 - 2021-10-02 09:44 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\NAPS2 2022-12-09 15:15 - 2018-04-13 07:01 - 000000000 ___DC C:\Users\HZ1RU\Desktop\STSRvB 2022-12-06 09:20 - 2020-12-11 18:47 - 001773148 ____C C:\WINDOWS\system32\PerfStringBackup.INI 2022-12-06 09:20 - 2019-12-07 16:14 - 000785966 ____C C:\WINDOWS\system32\perfh013.dat 2022-12-06 09:20 - 2019-12-07 16:14 - 000154094 ____C C:\WINDOWS\system32\perfc013.dat 2022-12-06 09:14 - 2022-09-22 10:05 - 000000000 ___DC C:\Program Files (x86)\Mozilla Thunderbird 2022-12-06 09:14 - 2020-12-11 18:47 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT 2022-12-06 09:14 - 2020-06-24 09:56 - 000008192 ___SH C:\DumpStack.log.tmp 2022-12-06 09:14 - 2019-12-07 05:38 - 000000000 ___DC C:\WINDOWS\CxSvc 2022-12-06 09:14 - 2019-12-07 05:34 - 000000000 __HDC C:\Intel 2022-12-06 09:13 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-12-06 09:09 - 2018-01-18 22:19 - 000000000 ___DC C:\Users\HZ1RU\AppData\Local\Packages 2022-12-06 09:05 - 2022-10-14 14:05 - 000000000 ___DC C:\Program Files (x86)\Hard Disk Sentinel 2022-12-06 09:05 - 2016-11-14 13:47 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\Hewlett-Packard 2022-12-06 07:44 - 2020-05-02 11:13 - 000003737 ____C C:\WINDOWS\system32\InstallUtil.InstallLog 2022-12-05 12:01 - 2016-12-10 15:06 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\Wireshark 2022-12-05 10:10 - 2020-09-08 12:30 - 000000000 ___DC C:\Program Files\Npcap 2022-12-05 10:05 - 2019-12-07 05:37 - 000000000 ___DC C:\ProgramData\Package Cache 2022-12-04 09:41 - 2020-06-28 07:10 - 000001286 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk 2022-12-02 08:20 - 2021-01-23 14:54 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\Mazda 2022-11-28 19:33 - 2022-11-09 16:44 - 000001753 ____C C:\Users\HZ1RU\Desktop\Innova2.0.lnk 2022-11-28 17:14 - 2021-11-09 16:54 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\QtProject 2022-11-28 17:13 - 2021-11-09 16:53 - 000000000 ___DC C:\Program Files\MiniTool Partition Wizard 12 2022-11-25 19:03 - 2022-02-09 08:57 - 000127384 ____C C:\WINDOWS\Macrium Reflect Patch Log.txt 2022-11-25 10:04 - 2017-11-08 12:42 - 000000000 ___DC C:\Users\HZ1RU\.zenmap 2022-11-24 12:04 - 2022-10-26 13:10 - 000001476 ____C C:\Users\HZ1RU\Desktop\RStudio64.exe - Snelkoppeling (2).lnk 2022-11-23 10:18 - 2020-05-05 12:14 - 000000000 ___DC C:\D_Drive 2022-11-22 11:03 - 2022-09-15 07:16 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\com.adobe.dunamis 2022-11-21 11:06 - 2022-10-18 16:35 - 000000000 ___DC C:\Program Files (x86)\SecureRecovery for Windows 2022-11-21 11:06 - 2022-10-16 13:36 - 000000000 ___DC C:\Users\HZ1RU\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\(Default) 2022-11-21 11:05 - 2022-11-08 12:13 - 000000000 ___DC C:\Users\HZ1RU\AppData\Local\Windows Master 2022-11-21 11:05 - 2022-11-08 12:13 - 000000000 ___DC C:\Program Files\Microsoft PC Manager 2022-11-21 11:04 - 2021-12-03 18:55 - 000000000 ___DC C:\Program Files\MiniTool ShadowMaker 2022-11-19 18:06 - 2021-12-04 10:09 - 000000000 ___DC C:\Users\HZ1RU\Documents\Reflect 2022-11-18 18:40 - 2020-12-11 18:47 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-11-18 18:39 - 2022-10-13 07:26 - 000002081 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2022-11-14 19:08 - 2020-09-16 01:07 - 003854560 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\Drivers\CHDRT64.sys ==================== Bestanden in de root van sommige mappen ======== 2022-10-24 07:53 - 2022-10-26 08:56 - 000000487 ____C () C:\Users\HZ1RU\AppData\Local\ReclaiMe.config 2022-11-24 18:26 - 2022-11-25 08:22 - 000000143 ____C () C:\Users\HZ1RU\AppData\Local\zenmap.exe.log ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================