start:: CreateRestorePoint: CloseProcesses: HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrictie <==== AANDACHT HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrictie <==== AANDACHT HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Geen bestand) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Geen bestand) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Geen bestand) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2024-03-26] ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Geen bestand) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Geen bestand) Task: {B26F1AB7-CFAF-4FC2-8582-AB8D3FC04602} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Geen bestand) Task: {C02C701E-427E-4E17-BA2B-10AFDED0B6DA} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Geen bestand) Task: {C1B13FCA-E7E9-4F15-97AA-1CD463581ED3} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe ReadyToReboot (Geen bestand) Task: {7CF499F7-EC77-43A4-8321-31FC7928E078} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (Geen bestand) Task: {9DBC234B-968D-4FFB-985E-A068E346206C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Geen bestand) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Geen bestand) Edge Notifications: Default -> hxxps://59583xowfk2qei4689.kevaxj.co.in; hxxps://d2e5fxowfxoib3y823.kevaxj.co.in; hxxps://idujew.sbs; hxxps://meet.google.com; hxxps://tinder.com; hxxps://www.telegraaf.nl S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] 2024-03-26 11:02 - 2024-03-26 11:02 - 000000000 ____D C:\ProgramData\Norton 2024-03-26 10:34 - 2024-03-26 10:35 - 000000000 __RSD C:\Users\user\Documents\McAfee Kluizen 2024-03-26 10:34 - 2024-03-26 10:34 - 000000000 ____D C:\Users\user\AppData\Local\McAfee File Lock 2024-03-26 10:34 - 2021-07-27 04:19 - 000097696 ____N (McAfee, LLC) C:\WINDOWS\system32\Drivers\McPvDrv.sys 2024-03-26 10:31 - 2024-03-26 10:57 - 000000000 ____D C:\ProgramData\McInstTemp0162891711445478 2024-03-26 10:31 - 2024-03-26 10:57 - 000000000 ____D C:\Program Files\McAfee 2024-03-26 10:30 - 2024-03-26 10:57 - 000000000 ____D C:\Program Files\Common Files\McAfee 2024-03-26 10:25 - 2024-03-26 10:57 - 000000000 ____D C:\ProgramData\McAfee 2024-03-26 10:25 - 2024-03-26 10:25 - 005891472 _____ (McAfee, LLC) C:\Users\user\Downloads\mcafee_trial_setup_433.0207.3919_key.exe ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Geen bestand ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Geen bestand ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Geen bestand ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand AlternateDataStreams: C:\Users\user\Downloads\ccsetup622.exe:MBAM.Zone.Identifier [186] AlternateDataStreams: C:\Users\user\Downloads\ChromeSetup.exe:MBAM.Zone.Identifier [405] AlternateDataStreams: C:\Users\user\Downloads\FRST64 (1).exe:MBAM.Zone.Identifier [240] AlternateDataStreams: C:\Users\user\Downloads\MBSetup (1).exe:MBAM.Zone.Identifier [174] AlternateDataStreams: C:\Users\user\Downloads\mcafee_trial_setup_433.0207.3919_key.exe:MBAM.Zone.Identifier [198] FirewallRules: [TCP Query User{F07EEB2D-2260-433B-A7F4-E77B7931DFFA}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe => Geen bestand FirewallRules: [UDP Query User{7A0A599A-DF25-4C61-AE23-A4BA646F9C8B}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe => Geen bestand FirewallRules: [{851A4641-8FF9-41A0-98F6-377C45189271}] => (Allow) C:\Users\user\Desktop\Lightworks\ntcardvt.exe => Geen bestand FirewallRules: [{F440A543-760B-43E0-B04C-9B4AFE8170C3}] => (Allow) C:\Users\user\Desktop\Lightworks\ntcardvt.exe => Geen bestand EmptyTemp: End::