Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 19.04.2024 01 Gestart door Alain (Beheerder) op NEW-PC (ASUS System Product Name) (14-05-2024 09:39:59) Gestart vanaf C:\Users\Eigenaar\Downloads\FRST64.exe Geladen Profielen: Alain Platform: Microsoft Windows 11 Pro Versie 23H2 22631.3527 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\Cobian Backup 11\Cobian.exe ->) (Luis Cobian, CobianSoft) [Bestand niet getekend] C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.97\msedgewebview2.exe <6> (C:\Users\Eigenaar\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge-monitor.exe ->) (OneSpan North America Inc. -> VASCO Data Security) C:\Users\Eigenaar\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge.exe (DriverStore\FileRepository\cui_dch.inf_amd64_b887c7fe08960f6d\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b887c7fe08960f6d\igfxEM.exe (explorer.exe ->) (Luis Cobian, CobianSoft) [Bestand niet getekend] C:\Program Files (x86)\Cobian Backup 11\Cobian.exe (explorer.exe ->) (OneSpan North America Inc. -> VASCO Data Security) C:\Users\Eigenaar\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge-monitor.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <17> (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (CobianSoft, Luis Cobian) [Bestand niet getekend] C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe (services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (services.exe ->) (GuinpinSoft inc) [Bestand niet getekend] C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b887c7fe08960f6d\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_20c0d314be40f1f8\OneApp.IGCC.WinService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4241611fef09311c\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4241611fef09311c\IntelCpHeciSvc.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.24.3.2\NortonSecurity.exe <2> (services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.24.3.2\nsWscSvc.exe (services.exe ->) (Popcorn Time) [Bestand niet getekend] C:\Program Files (x86)\Popcorn Time\Updater.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_8369ad36cb6a9cd9\RtkAudUService64.exe (services.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe (services.exe ->) (Wondershare Technology Group Co.,Ltd -> wondershare) C:\ProgramData\Wondershare\wsServices\WsidService.exe (sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5435.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2418.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5435.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_8369ad36cb6a9cd9\RtkAudUService64.exe [3426152 2022-07-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrictie <==== AANDACHT HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrictie <==== AANDACHT HKU\S-1-5-21-387179814-2990267870-3396875002-1001\...\Run: [Cobian Backup 11] => C:\Program Files (x86)\Cobian Backup 11\Cobian.exe [720896 2012-12-05] (Luis Cobian, CobianSoft) [Bestand niet getekend] HKU\S-1-5-21-387179814-2990267870-3396875002-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-387179814-2990267870-3396875002-1001\...\Run: [DigipassNativeBridge] => C:\Users\Eigenaar\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge-monitor.exe [154392 2021-11-22] (OneSpan North America Inc. -> VASCO Data Security) HKU\S-1-5-21-387179814-2990267870-3396875002-1001\...\Run: [Shareaza] => C:\Program Files\Shareaza\Shareaza.exe [5904896 2017-09-18] (Shareaza Development Team) [Bestand niet getekend] HKU\S-1-5-21-387179814-2990267870-3396875002-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-387179814-2990267870-3396875002-1001\...\Run: [MP3Studio YouTube Downloader] => C:\Program Files (x86)\MP3Studio YouTube Downloader\MP3StudioDownloader.exe [2417552 2022-06-16] (ABLE SUN HOLDINGS LTD -> Able Sun Holdings Ltd.) [Bestand niet getekend] HKU\S-1-5-21-387179814-2990267870-3396875002-1001\...\Run: [Trust1Connector API] => C:\Users\Eigenaar\AppData\Local\Trust1Connector\t1c-launch.exe [4460072 2023-01-20] (Trust1Team BV -> ) HKU\S-1-5-21-387179814-2990267870-3396875002-1001\...\Run: [OSDownloaderUpdate] => C:\Program Files (x86)\OSDownloader\OSDownloaderUpdate.exe [3635712 2015-09-18] (Opensubtitles.org) [Bestand niet getekend] HKLM\...\Windows x64\Print Processors\Canon TS6300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDFQ.DLL [529408 2020-06-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon TS700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDFD.DLL [529408 2020-06-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon TS8100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDO.DLL [482816 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6300 series: C:\WINDOWS\system32\CNMLMFQ.DLL [959488 2020-06-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS700 series: C:\WINDOWS\system32\CNMLMFD.DLL [956928 2020-06-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS8100 series: C:\WINDOWS\system32\CNMLMDO.DLL [1302016 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{9F2C96A8-7938-4896-BA58-087CA29CFE66}] -> RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GV LicenseManager.lnk [2022-08-08] ShortcutTarget: GV LicenseManager.lnk -> C:\Program Files\Grass Valley\GV LicenseManager\AppMaintainer.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GV Video IO Hardware Driver.lnk [2023-04-19] ShortcutTarget: GV Video IO Hardware Driver.lnk -> C:\Program Files\Grass Valley\Video IO HW Driver\StormDiag.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HideVolumeOSD.lnk [2022-04-25] ShortcutTarget: HideVolumeOSD.lnk -> C:\Program Files (x86)\HideVolumeOSD\HideVolumeOSD.exe (Venturi) [Bestand niet getekend] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TSC_SI_13.lnk [2022-04-24] ShortcutTarget: TSC_SI_13.lnk -> C:\Program Files (x86)\TechSmith\Snagit 13\Snagit32.exe (TechSmith Corporation -> TechSmith Corporation) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ================= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {CA9ED135-6429-45FA-96AF-655E75DAEBB4} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {02FC693E-5FFC-41CD-A61E-8E9D585ECD83} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {E3C375D5-502A-43C0-9A9A-D17247931EF5} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.) Task: {A7E32F58-892A-441F-BF61-174F24C368B1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {9249F0DB-4BFF-4A8E-93A0-697879FBA284} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "5fbc5cca-a507-4a2d-95e5-f689a7656afa" --version "6.23.11010" --silent Task: {CF6698D6-4E07-4864-843B-7EC4AE7D88D2} - System32\Tasks\CCleanerSkipUAC - Alain => C:\Program Files\CCleaner\CCleaner.exe [39118752 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {42605F15-BF2E-437B-A9B3-599A3EC1A76F} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5439240 2024-04-24] (Microsoft Windows -> Microsoft Corporation) Task: {32AB8CB1-40BD-4374-ABA4-376AAEA8F11A} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2024-03-13] (Garmin International, Inc. -> ) Task: {D7D325AD-ED68-4EDF-A0CB-DB2043319314} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6462.0{3D5A90CC-EBB3-4C67-88D3-429271691A15} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC) Task: {B161A3D2-8CAF-4DE6-87DC-8060ABADF6DE} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2023-10-09] () [Bestand niet getekend] Task: {A9DDAA28-7846-4D48-997D-6E145427CC5B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28436048 2024-05-07] (Microsoft Corporation -> Microsoft Corporation) Task: {1F55ECDC-2E47-45CA-82D1-76C36A6ACFCB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28436048 2024-05-07] (Microsoft Corporation -> Microsoft Corporation) Task: {556CEB58-24E0-4EFB-864B-B3F3F7B74C97} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [220744 2024-05-11] (Microsoft Corporation -> Microsoft Corporation) Task: {89875094-41FB-478F-BB5F-FB25990BC99F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [220744 2024-05-11] (Microsoft Corporation -> Microsoft Corporation) Task: {0FB312CF-69BE-4520-8D1F-C07E11501521} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Geen bestand) Task: {25FCF09E-5C77-4ABF-93F2-0C01D565589D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Geen bestand) Task: {F1CFF538-4C32-4489-B9A6-1A12D4BF1430} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Geen bestand) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Geen bestand) Task: {6F6FB093-93CB-4D5D-846B-87C73983A8E2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-05-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (de data item heeft 6 meer tekens). Task: {FC4A38A4-044C-4550-9640-470D55320BC7} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-387179814-2990267870-3396875002-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-05-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (de data item heeft 6 meer tekens). Task: {A9AA5609-5103-47A1-A239-9248277DF47B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-01] (Mozilla Corporation -> Mozilla Foundation) Task: {4E8BD699-4A00-4147-A523-2F74BF849BF5} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.24.3.2\symerr.exe [379024 2024-04-05] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {304911B3-17E7-4AB4-8DEB-6E6EDC368678} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.24.3.2\symerr.exe [379024 2024-04-05] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {33097079-369B-4EE6-95C6-0F7D27DBB82E} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.24.3.2\symerr.exe [379024 2024-04-05] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {AF8CE150-971C-4074-9156-C67EB90F1BA3} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.24.3.2\symerr.exe [379024 2024-04-05] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {7607B6FF-AC91-47DE-841A-96A0B1C93711} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.24.3.2\symerr.exe [379024 2024-04-05] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {8C48BDD3-EDA7-43CE-8A95-7C2048F4CA80} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.24.3.2\symerr.exe [379024 2024-04-05] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {72B34A51-1EE4-4243-B75E-0ADE1CDBC6D6} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.24.3.2\WSCStub.exe [646520 2024-04-05] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {E1723372-5EC5-4A8F-B1F3-EC95425926A5} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2353000 2024-04-05] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {77BBE438-AC8B-4793-8988-84B75B9CB56B} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [70712 2017-05-12] (TechSmith Corporation -> TechSmith Corporation) -> C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\all (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.130.5 195.130.131.5 Tcpip\..\Interfaces\{75214506-98ee-4749-9ba9-1ca0109a037f}: [DhcpNameServer] 195.130.130.5 195.130.131.5 Tcpip\..\Interfaces\{75214506-98ee-4749-9ba9-1ca0109a037f}: [DhcpDomain] home Edge: ======= Edge Profile: C:\Users\Eigenaar\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-13] Edge Notifications: Default -> hxxps://www.facebook.com Edge HomePage: Default -> hxxp://178.116.208.117:8910/ Edge StartupUrls: Default -> "hxxps://mail.telenet.be/zimbra/mail?client=advanced#1" Edge Extension: (Offline Documenten) - C:\Users\Eigenaar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-28] Edge Extension: (Edge relevant text changes) - C:\Users\Eigenaar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26] Edge Extension: (AdBlock - de beste advertentieblokker) - C:\Users\Eigenaar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-04-26] FireFox: ======== FF DefaultProfile: xekccjun.default FF ProfilePath: C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1 [2024-05-14] FF Homepage: Mozilla\Firefox\Profiles\y5af9res.default-release-1 -> hxxps://mail.telenet.be/mail?client=advanced#1 FF Notifications: Mozilla\Firefox\Profiles\y5af9res.default-release-1 -> hxxps://www.pc-helpforum.be FF Extension: (Instantly grab and share videos as gifs!) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\@gfycat-creator.xpi [2024-04-26] FF Extension: (AdBlocker Ultimate) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\adblockultimate@adblockultimate.net.xpi [2024-02-20] FF Extension: (eID België) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\belgiumeid@eid.belgium.be.xpi [2024-03-30] FF Extension: (Cookie AutoDelete) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\CookieAutoDelete@kennydo.com.xpi [2023-10-14] FF Extension: (I don’t care about cookies) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-12-07] FF Extension: (AdBlock - de beste advertentieblokker) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2024-05-09] FF Extension: (Grammatica- & Spellingscontrole—LanguageTool) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\languagetool-webextension@languagetool.org.xpi [2024-03-20] FF Extension: (uBlock Origin) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\uBlock0@raymondhill.net.xpi [2024-04-11] FF Extension: (Connective signing extension) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\{4f643bc8-78f5-49c6-8efd-78ee30289f0b}.xpi [2023-10-31] FF Extension: (Logitech SetPoint) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\y5af9res.default-release-1\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2024-04-26] FF ProfilePath: C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\xekccjun.default [2023-09-24] FF ProfilePath: C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\akgy3psp.default-release-1691226367847 [2024-05-13] FF Homepage: Mozilla\Firefox\Profiles\akgy3psp.default-release-1691226367847 -> hxxps://mail.telenet.be/mail?client=advanced#1 FF Notifications: Mozilla\Firefox\Profiles\akgy3psp.default-release-1691226367847 -> hxxps://my.norton.com FF Extension: (Gfycat - Click to GIF) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\akgy3psp.default-release-1691226367847\Extensions\@gfycat-creator.xpi [2022-11-12] FF Extension: (AdBlocker Ultimate) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\akgy3psp.default-release-1691226367847\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-25] FF Extension: (eID België) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\akgy3psp.default-release-1691226367847\Extensions\belgiumeid@eid.belgium.be.xpi [2023-02-01] FF Extension: (Logitech SetPoint) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\akgy3psp.default-release-1691226367847\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2022-11-12] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2023-12-28] [Verouderd] [niet getekend] FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @java.com/DTPlugin,version=11.401.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.401.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-09-26] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin HKU\S-1-5-21-387179814-2990267870-3396875002-1001: connective.be/BrowserPlugin -> C:\Users\Eigenaar\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2021-07-05] (Connective n.v.) [Bestand niet getekend] Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-09-05] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65640 2013-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2023-11-09] (Apple Inc. -> Apple Inc.) R2 cbVSCService11; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [67584 2012-12-05] (CobianSoft, Luis Cobian) [Bestand niet getekend] S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe [9728 2023-05-01] (GuinpinSoft inc) [Bestand niet getekend] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14248120 2024-05-07] (Microsoft Corporation -> Microsoft Corporation) R2 DFWSIDService; C:\ProgramData\Wondershare\wsServices\WsidService.exe [3963120 2024-01-30] (Wondershare Technology Group Co.,Ltd -> wondershare) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-10-24] (EasyAntiCheat Oy -> Epic Games, Inc) S2 GoogleUpdaterInternalService126.0.6462.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC) S2 GoogleUpdaterService126.0.6462.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [446360 2022-04-27] (Canon Inc. -> ) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887344 2024-05-13] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-05-13] (Malwarebytes Inc. -> Malwarebytes) R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.24.3.2\NortonSecurity.exe [344888 2024-04-05] (NortonLifeLock Inc. -> NortonLifelock Inc.) R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.24.3.2\nsWscSvc.exe [1059176 2024-04-05] (NortonLifeLock Inc. -> NortonLifeLock Inc.) R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3658832 2019-06-28] (TechSmith Corporation -> TechSmith Corporation) R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2019-01-08] (Popcorn Time) [Bestand niet getekend] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.) R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.23.5.106\Definitions\BASHDefs\20240509.001\BHDrvx64.sys [1706496 2024-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\ccSetx64.sys [198288 2024-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44592 2024-05-13] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== AANDACHT S3 DSI_SiUSBXp_3_1; C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories) R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_e64afe811c7e4662\e1d.sys [607400 2022-07-29] (Intel Corporation -> Intel Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527832 2022-09-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 ElRawDisk; C:\WINDOWS\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2023-07-07] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-05-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.23.5.106\Definitions\IPSDefs\20240509.064\IDSvia64.sys [1554432 2024-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223184 2024-05-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-05-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt11.sys [234856 2024-05-14] (Malwarebytes Inc. -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-05-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-05-14] (Malwarebytes Inc. -> Malwarebytes) S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [21208 2023-01-13] (北京铠信神州科技有限责任公司 -> ) R0 mvs91xx; C:\WINDOWS\System32\drivers\mvs91xx.sys [342760 2021-07-07] (Marvell Semiconductor, Inc. -> Marvell Semiconductor, Inc.) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\nsvst.sys [57120 2024-04-05] (NortonLifeLock Inc. -> NortonLifeLock Inc.) S3 PHYMEM2; C:\Program Files\Leawo\PhotoIns\phymem_ext64.sys [27720 2022-09-27] (Shenzhen Moyea Software -> ) R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\SRTSP64.SYS [960640 2024-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\SRTSPX64.SYS [52864 2024-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\SYMEFASI64.SYS [2180248 2024-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\SymELAM.sys [36016 2024-04-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom) R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100344 2023-07-07] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.23.5.106\SymPlatform\SymEvnt.sys [934912 2024-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\Ironx64.SYS [306872 2024-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\symnets.sys [492720 2024-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2017-04-20] (The OpenVPN Project) [Bestand niet getekend] S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project) R2 UI5IFS; C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 11\IFS64.sys [40400 2022-06-30] (Ashampoo GmbH & Co. KG -> ) S3 VascoCCIDFlt; C:\WINDOWS\System32\drivers\VascoCCIDFlt.sys [13312 2013-06-26] (Vasco Data Security International GmbH -> VASCO Data Security) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) R1 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618030.002\wpCtrlDrv.sys [1016792 2024-04-05] (NortonLifeLock Inc. -> NortonLifeLock Inc.) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2024-05-14 09:39 - 2024-05-14 09:40 - 000036854 _____ C:\Users\Eigenaar\Downloads\FRST.txt 2024-05-14 09:39 - 2024-05-14 09:40 - 000000000 ____D C:\FRST 2024-05-14 09:39 - 2024-05-14 09:39 - 002394112 _____ (Farbar) C:\Users\Eigenaar\Downloads\FRST64.exe 2024-05-14 08:15 - 2024-05-14 08:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation 2024-05-14 07:54 - 2024-05-14 07:54 - 000802194 _____ C:\WINDOWS\system32\perfh013.dat 2024-05-14 07:54 - 2024-05-14 07:54 - 000159778 _____ C:\WINDOWS\system32\perfc013.dat 2024-05-14 06:50 - 2024-05-14 06:50 - 000234856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys 2024-05-14 06:50 - 2024-05-14 06:50 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2024-05-13 16:07 - 2024-05-14 06:03 - 000000000 ____D C:\Users\Eigenaar\AppData\Local\Malwarebytes 2024-05-13 16:07 - 2024-05-13 16:07 - 000002105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-05-13 16:07 - 2024-05-13 16:07 - 000002093 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2024-05-13 16:06 - 2024-05-13 16:06 - 002589624 ____N (Malwarebytes) C:\Users\Eigenaar\Downloads\MBSetup.exe 2024-05-13 16:06 - 2024-05-13 16:06 - 002589624 ____N (Malwarebytes) C:\Users\Eigenaar\Downloads\MBSetup(1).exe 2024-05-13 16:06 - 2024-05-13 16:06 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-05-13 16:06 - 2024-05-13 16:06 - 000000000 ____D C:\Program Files\Malwarebytes 2024-05-13 08:34 - 2024-05-13 08:34 - 008995336 ____N (Piriform Software Ltd) C:\Users\Eigenaar\Downloads\spsetup132.exe 2024-05-13 08:34 - 2024-05-13 08:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2024-05-13 08:34 - 2024-05-13 08:34 - 000000000 ____D C:\Program Files\Speccy 2024-05-13 08:09 - 2024-05-13 08:09 - 000000348 _____ C:\WINDOWS\PAGa4.dat 2024-05-13 08:07 - 2024-05-13 08:09 - 000000000 ____D C:\ProgramData\AOMEIPA 2024-05-13 08:07 - 2024-05-13 08:07 - 000001024 ____H C:\AMTAG.BIN 2024-05-13 08:07 - 2024-05-13 08:07 - 000000000 ____D C:\ProgramData\AomeiBR 2024-05-13 08:07 - 2023-10-10 11:11 - 000038320 _____ C:\WINDOWS\SysWOW64\ampa.sys 2024-05-13 08:06 - 2024-05-13 08:06 - 081305624 ____N (AOMEI International Network Limited. ) C:\Users\Eigenaar\Downloads\PAssist_Std_20240513.11835974.exe 2024-05-12 16:12 - 2024-05-12 16:12 - 000000000 ____D C:\ProgramData\HP 2024-05-12 16:12 - 2016-10-14 01:54 - 003399336 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPScanTEDrv_DJ2600.dll 2024-05-12 16:12 - 2016-10-14 01:54 - 000613544 _____ (HP Inc., LP) C:\WINDOWS\system32\HPWia2_DJ2600.dll 2024-05-12 16:12 - 2016-10-14 01:52 - 004800168 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_DJ2600_x64.dll 2024-05-12 16:12 - 2016-10-14 01:52 - 000783528 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_DJ2600_x64_DiscoveryLibDyn.dll 2024-05-12 16:12 - 2016-10-14 01:52 - 000588456 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPScanTEDrv_DJ2600_DiscoveryLibDyn.dll 2024-05-12 14:18 - 2024-05-12 14:18 - 032755018 ____N C:\Users\Eigenaar\Downloads\AIPhotoObjectEraserPro20-pv50gf.zip 2024-05-12 13:58 - 2024-05-12 13:58 - 048705416 ____N (Kerish Products LLP ) C:\Users\Eigenaar\Downloads\Kerish_PC_Doctor_4.95.exe 2024-05-12 11:45 - 2024-05-12 11:45 - 000203328 _____ C:\WINDOWS\system32\lc.dat 2024-05-12 09:07 - 2024-05-12 13:59 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC 2024-05-12 07:52 - 2024-05-12 07:52 - 000000000 _____ C:\wal7C618EFE 2024-05-10 08:56 - 2024-05-10 08:56 - 194197723 ____N C:\Users\Eigenaar\Downloads\facebook-alainpattyn16-10-5-2024-Xx3RhNqy.zip 2024-05-09 10:13 - 2024-05-09 10:13 - 000000000 ____D C:\Users\Eigenaar\Downloads\DataRecovery21-ui32xw 2024-05-09 10:12 - 2024-05-09 10:12 - 009543486 ____N C:\Users\Eigenaar\Downloads\DataRecovery21-ui32xw.zip 2024-05-08 11:34 - 2024-05-08 11:34 - 000072767 ____N C:\Users\Eigenaar\Downloads\Leaflet (NL)-2.pdf 2024-05-08 10:08 - 2024-05-08 10:08 - 000069554 ____N C:\Users\Eigenaar\Downloads\Bewijsstuk geneeskundige verzorging-5.pdf 2024-05-08 05:42 - 2024-05-08 05:42 - 000007851 ____N C:\Users\Eigenaar\Desktop\Alain BP Report 050824.pdf 2024-05-07 07:49 - 2024-05-07 07:49 - 000000000 ____D C:\Users\Eigenaar\Downloads\facebook-alainpattyn16-7-5-2024-f6sj6r03 2024-05-07 07:48 - 2024-05-07 07:48 - 194197723 ____N C:\Users\Eigenaar\Downloads\facebook-alainpattyn16-7-5-2024-f6sj6r03.zip 2024-05-07 07:32 - 2024-05-07 07:32 - 000000000 _____ C:\wal5AC6866D 2024-05-06 16:41 - 2024-05-06 16:41 - 000000000 ____D C:\Users\Eigenaar\Downloads\Efteling 2024-05-06 16:07 - 2024-05-06 16:07 - 003002880 ____N C:\Users\Eigenaar\Downloads\Cannes Festival 2017.pps3111(1).pps 2024-05-06 07:09 - 2024-05-06 07:09 - 000000049 ____N C:\Users\Eigenaar\Downloads\FACEBOOK-2FA-RecoveryCodes.txt 2024-05-04 15:28 - 2024-05-04 15:28 - 000000000 _____ C:\wal6DA3ED76 2024-05-04 15:28 - 2024-05-04 15:28 - 000000000 _____ C:\wal29314EEA 2024-05-04 15:28 - 2024-05-04 15:28 - 000000000 _____ C:\wal20A51233 2024-05-02 11:05 - 2024-04-30 14:02 - 097804473 ____N C:\Users\Eigenaar\Desktop\IMG_0001.MP4 2024-05-01 09:59 - 2024-05-01 09:59 - 000000000 _____ C:\wal331E9E66 2024-05-01 05:10 - 2024-05-05 23:18 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-04-30 14:34 - 2024-04-28 13:03 - 000243904 _____ C:\WINDOWS\SysWOW64\LargeNumbers.dll 2024-04-30 14:34 - 2024-04-28 13:03 - 000243904 _____ C:\WINDOWS\system32\LargeNumbers.dll 2024-04-30 10:49 - 2024-04-30 10:49 - 004333176 ____N (Alexander Roshal) C:\Users\Eigenaar\Downloads\winrar-x64-700nl.exe 2024-04-30 08:27 - 2024-04-28 13:03 - 000065656 _____ (Kerish Products) C:\WINDOWS\SysWOW64\GPUTemp.dll 2024-04-30 08:27 - 2024-04-28 13:03 - 000065656 _____ (Kerish Products) C:\WINDOWS\system32\GPUTemp.dll 2024-04-30 08:26 - 2024-04-30 08:26 - 000000000 ____D C:\ProgramData\Kerish Products 2024-04-27 09:01 - 2024-04-27 09:01 - 001187846 ____N C:\Users\Eigenaar\Downloads\SinoTrack GPS Tracker ST-901 User Manual - SinoTrack-GPS-Tracker-ST-901-User-Manual-1.pdf 2024-04-27 07:37 - 2024-04-27 07:37 - 000674890 ____N C:\Users\Eigenaar\Desktop\Sinotrack ST-901 Manual_ Installation, Operation & Troubleshooting.pdf 2024-04-27 07:30 - 2024-04-27 07:30 - 000860659 ____N C:\Users\Eigenaar\Downloads\st901b.pdf 2024-04-26 08:37 - 2024-04-26 08:37 - 000117695 ____N C:\Users\Eigenaar\Downloads\Kwitantie_betalingen_van_26-04-2024 (1).pdf 2024-04-26 08:17 - 2024-04-26 08:17 - 000117429 ____N C:\Users\Eigenaar\Downloads\Kwitantie_betalingen_van_26-04-2024.pdf 2024-04-26 08:11 - 2024-04-26 08:11 - 000000000 _____ C:\wal6A404604 2024-04-26 08:11 - 2024-04-26 08:11 - 000000000 _____ C:\wal5835A440 2024-04-26 08:11 - 2024-04-26 08:11 - 000000000 _____ C:\wal2F9A8C93 2024-04-24 10:42 - 2024-04-24 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutOut 8 2024-04-24 07:59 - 2024-04-24 07:59 - 000099731 ____N C:\Users\Eigenaar\Downloads\Betaling ledenbijdrage via domiciliëring.pdf 2024-04-22 11:26 - 2024-05-14 07:54 - 001803066 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-04-22 11:26 - 2024-04-22 11:26 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2024-04-22 11:24 - 2024-05-14 08:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton 360 2024-04-22 11:24 - 2024-05-14 06:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-04-22 11:24 - 2024-05-13 16:46 - 000003182 _____ C:\WINDOWS\system32\Tasks\TechSmith Updater 2024-04-22 11:24 - 2024-05-13 16:46 - 000002702 _____ C:\WINDOWS\system32\Tasks\Apple Diagnostics 2024-04-22 11:24 - 2024-05-13 16:46 - 000002656 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2024-04-22 11:24 - 2024-05-13 16:46 - 000002568 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 2024-04-22 11:24 - 2024-05-13 16:45 - 000003012 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2024-04-22 11:24 - 2024-05-13 16:45 - 000002312 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Alain 2024-04-22 11:24 - 2024-05-08 20:45 - 000003806 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{D83214DF-B5A4-435A-AAEA-E99E8B78688D} 2024-04-22 11:24 - 2024-05-08 20:45 - 000003682 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{7F9DEE26-13C0-4F3E-BB65-DDC44D88B7E3} 2024-04-22 11:24 - 2024-04-23 08:53 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2024-04-22 11:24 - 2024-04-22 11:24 - 000011433 _____ C:\WINDOWS\diagwrn.xml 2024-04-22 11:24 - 2024-04-22 11:24 - 000011433 _____ C:\WINDOWS\diagerr.xml 2024-04-22 11:24 - 2024-04-22 11:24 - 000003024 _____ C:\WINDOWS\system32\Tasks\klcp_update 2024-04-22 11:24 - 2024-04-22 11:24 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask 2024-04-22 11:24 - 2024-04-22 11:24 - 000002610 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration 2024-04-22 11:24 - 2024-04-22 11:24 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask 2024-04-22 11:24 - 2024-04-22 11:24 - 000000020 ___SH C:\Users\Eigenaar\ntuser.ini 2024-04-22 11:24 - 2024-04-22 11:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security 2024-04-22 11:24 - 2024-04-22 11:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software 2024-04-22 11:24 - 2024-04-22 11:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2024-04-22 11:24 - 2024-04-22 11:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem 2024-04-22 11:24 - 2024-04-22 11:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Abelssoft 2024-04-22 11:23 - 2024-04-22 11:23 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network 2024-04-22 11:20 - 2024-05-14 06:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-04-22 11:20 - 2024-04-24 07:02 - 005196280 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-04-22 11:12 - 2024-04-22 11:20 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Crypto 2024-04-22 11:12 - 2024-04-22 11:12 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\SystemCertificates 2024-04-22 11:12 - 2024-04-22 11:12 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Network 2024-04-22 11:12 - 2024-04-22 10:53 - 000522816 _____ (Belgian Government) C:\WINDOWS\system32\beidmdrv64.dll 2024-04-22 11:09 - 2024-04-22 11:20 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2024-04-22 11:08 - 2024-05-13 07:26 - 000000000 ____D C:\Users\Eigenaar 2024-04-22 11:08 - 2024-04-22 11:25 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows 2024-04-22 11:08 - 2024-04-22 11:20 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Spelling 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\Sjablonen 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\Netwerkprinteromgeving 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\Mijn documenten 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\Menu Start 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\Documents\Mijn video's 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\Documents\Mijn muziek 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\Documents\Mijn afbeeldingen 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 _SHDL C:\Users\Eigenaar\AppData\Local\Geschiedenis 2024-04-22 11:08 - 2024-04-22 11:08 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\CLR Security Config 2024-04-22 11:07 - 2024-04-22 11:09 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2024-04-22 11:06 - 2024-04-22 11:06 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs 2024-04-22 11:06 - 2024-04-22 11:06 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-04-22 11:06 - 2024-04-22 11:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\mde 2024-04-22 11:02 - 2024-04-22 11:02 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json 2024-04-22 11:02 - 2024-04-22 11:02 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-04-22 11:01 - 2024-04-22 11:01 - 000060462 _____ C:\WINDOWS\system32\ctac.json 2024-04-22 11:01 - 2024-04-22 11:01 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-04-22 10:58 - 2024-05-01 05:13 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2024-04-22 10:58 - 2024-04-22 10:58 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2024-04-22 10:58 - 2024-04-22 10:58 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp 2024-04-22 10:58 - 2024-04-22 10:58 - 000000000 ____D C:\WINDOWS\addins 2024-04-22 10:58 - 2024-04-22 10:58 - 000000000 ____D C:\Program Files\Reference Assemblies 2024-04-22 10:58 - 2024-04-22 10:58 - 000000000 ____D C:\Program Files\MSBuild 2024-04-22 10:58 - 2024-04-22 10:58 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2024-04-22 10:58 - 2024-04-22 10:58 - 000000000 ____D C:\Program Files (x86)\MSBuild 2024-04-22 10:50 - 2024-04-22 10:50 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2024-04-22 10:37 - 2024-05-12 14:03 - 000000000 ___DC C:\WINDOWS\Panther 2024-04-20 15:28 - 2024-04-20 15:28 - 000000000 _____ C:\wal7B8D8323 2024-04-20 15:28 - 2024-04-20 15:28 - 000000000 _____ C:\wal48AB4868 2024-04-20 15:28 - 2024-04-20 15:28 - 000000000 _____ C:\wal2D6D9547 2024-04-20 09:16 - 2024-04-20 09:16 - 000000000 _____ C:\wal7E889714 2024-04-20 09:16 - 2024-04-20 09:16 - 000000000 _____ C:\wal400BFD1A 2024-04-20 09:16 - 2024-04-20 09:16 - 000000000 _____ C:\wal11506A4E 2024-04-19 11:07 - 2024-04-19 11:10 - 000000000 ____D C:\Program Files (x86)\Gemoo 2024-04-19 11:07 - 2024-04-19 11:07 - 000000000 ____D C:\Users\Eigenaar\AppData\Local\Gemoo_Inc 2024-04-19 11:05 - 2024-04-19 11:05 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Gemoo 2024-04-19 07:10 - 2024-04-19 07:10 - 000117954 ____N C:\Users\Eigenaar\Downloads\Kwitantie_betalingen_van_17-04-2024-1.pdf 2024-04-18 11:48 - 2024-04-18 11:48 - 000117956 ____N C:\Users\Eigenaar\Downloads\Kwitantie_betalingen_van_17-04-2024.pdf 2024-04-18 06:31 - 2024-04-18 06:31 - 000083622 ____N C:\Users\Eigenaar\Downloads\vandamme.pdf 2024-04-17 11:28 - 2024-04-17 11:28 - 000000000 _____ C:\wal1D8CB228 2024-04-17 11:20 - 2024-04-17 11:20 - 000000000 _____ C:\wal6A7C9D89 2024-04-17 09:13 - 2024-04-17 09:13 - 000000000 _____ C:\wal0479837E 2024-04-16 09:02 - 2024-04-22 11:20 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Omron Health Management Software 2024-04-16 09:02 - 2024-04-16 09:02 - 000003295 ____N C:\Users\Eigenaar\Desktop\Omron Health Management Software.lnk 2024-04-16 09:02 - 2024-04-16 09:02 - 000000000 ____D C:\Program Files (x86)\Omron Healthcare 2024-04-16 08:58 - 2024-04-16 08:58 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\OMRON 2024-04-16 08:37 - 2024-04-16 08:47 - 000000000 ____D C:\temp 2024-04-16 08:35 - 2024-04-16 08:48 - 000000000 ____D C:\Program Files (x86)\SoundTells 2024-04-16 06:55 - 2024-04-16 06:55 - 000000000 _____ C:\wal76A213EA 2024-04-16 06:49 - 2024-04-22 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2024-04-16 06:49 - 2024-04-16 06:49 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Sun 2024-04-16 06:49 - 2024-04-16 06:49 - 000000000 ____D C:\Program Files (x86)\Java 2024-04-16 06:49 - 2023-12-19 13:01 - 000170624 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2024-04-15 08:27 - 2024-04-15 08:27 - 000000000 _____ C:\wal5307FFE2 2024-04-15 08:27 - 2024-04-15 08:27 - 000000000 _____ C:\wal44BFB4A2 2024-04-15 08:27 - 2024-04-15 08:27 - 000000000 _____ C:\wal2C0CDF98 ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2024-05-14 09:28 - 2022-04-13 10:49 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-05-14 09:27 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-05-14 07:54 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2024-05-14 06:51 - 2022-04-13 10:31 - 000012288 ___SH C:\DumpStack.log.tmp 2024-05-14 06:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-05-14 06:50 - 2020-12-11 19:40 - 000000000 ____D C:\Intel 2024-05-14 06:49 - 2022-05-07 07:17 - 000262144 _____ C:\WINDOWS\system32\config\BBI 2024-05-14 06:41 - 2020-12-21 14:33 - 000000000 ____D C:\Users\Eigenaar\Documents\Outlook-bestanden 2024-05-14 05:09 - 2020-12-13 10:43 - 000000000 ____D C:\Users\Eigenaar\Desktop\TOOLS 2024-05-14 04:29 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-05-13 17:52 - 2022-04-14 05:22 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Excel 2024-05-13 17:47 - 2020-12-13 17:23 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2024-05-13 16:48 - 2022-11-02 07:26 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2024-05-13 16:44 - 2022-04-13 12:54 - 000000000 ____D C:\Program Files\CCleaner 2024-05-13 16:06 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2024-05-13 08:07 - 2023-03-31 06:24 - 000000000 ____D C:\ProgramData\boost_interprocess 2024-05-13 06:36 - 2022-05-07 07:17 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2024-05-12 16:28 - 2022-04-22 19:47 - 000000000 ____D C:\Users\Eigenaar\AppData\Local\ElevatedDiagnostics 2024-05-12 14:20 - 2020-12-14 09:27 - 000000000 ____D C:\Users\Eigenaar\Desktop\FOTO 2024-05-12 14:03 - 2022-04-13 15:30 - 000000000 ____D C:\ProgramData\FLEXnet 2024-05-12 08:38 - 2022-04-13 10:50 - 000000000 ____D C:\Users\Eigenaar\AppData\Local\D3DSCache 2024-05-12 06:30 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-05-12 06:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-05-12 06:03 - 2022-09-23 08:54 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-05-11 05:38 - 2022-05-04 07:48 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2024-05-10 10:10 - 2022-04-13 16:38 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Word 2024-05-09 10:13 - 2024-01-21 08:12 - 000000000 ____D C:\Program Files (x86)\Coolmuster 2024-05-09 10:13 - 2023-05-21 10:30 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Coolmuster 2024-05-08 10:39 - 2022-04-20 16:24 - 000000000 ____D C:\ProgramData\CanonIJPLM 2024-05-07 07:03 - 2022-04-13 10:42 - 000000000 ____D C:\Users\Eigenaar\AppData\Local\Packages 2024-05-06 10:07 - 2022-04-13 10:32 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys 2024-05-05 23:18 - 2023-09-24 13:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-05-01 06:01 - 2023-09-24 13:46 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-04-30 10:49 - 2023-04-30 06:12 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2024-04-30 10:49 - 2023-04-30 06:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2024-04-30 10:49 - 2022-04-14 04:28 - 000000000 ____D C:\Program Files\WinRAR 2024-04-30 10:49 - 2022-04-13 10:42 - 000000000 ____D C:\ProgramData\Packages 2024-04-30 08:33 - 2023-07-10 06:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WorkinTool Data Recovery 2024-04-30 08:33 - 2022-04-04 05:00 - 000000000 ____D C:\Users\Eigenaar\vmlogs 2024-04-30 08:32 - 2022-12-18 08:51 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\dvdcss 2024-04-30 08:32 - 2022-12-06 13:45 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\DriverCure 2024-04-30 08:32 - 2022-05-13 05:40 - 000000000 ____D C:\ProgramData\TEMP 2024-04-30 08:32 - 2022-04-13 16:38 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Office 2024-04-29 07:11 - 2021-02-27 07:35 - 000000000 ____D C:\Users\Eigenaar\Documents\Legacy Family Tree 2024-04-25 09:26 - 2022-05-16 09:04 - 000000000 ____D C:\Users\Eigenaar\Desktop\VanBreda 2024-04-24 10:42 - 2022-05-13 05:44 - 000000000 ____D C:\Program Files\Franzis 2024-04-24 09:55 - 2020-12-12 16:07 - 000000000 ____D C:\Users\Eigenaar\Desktop\VIDEO 2024-04-24 09:51 - 2023-06-13 15:00 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\vlc 2024-04-24 07:18 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-04-24 07:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-04-24 07:01 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-04-24 07:01 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2024-04-24 07:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2024-04-24 07:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-04-24 07:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2024-04-24 07:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-04-24 07:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-04-24 07:00 - 2022-05-07 12:42 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents 2024-04-24 07:00 - 2022-05-07 12:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\UNP 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\BrowserCore 2024-04-24 07:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-04-24 07:00 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing 2024-04-24 06:59 - 2022-05-07 07:25 - 000077312 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll 2024-04-24 06:59 - 2022-05-07 07:24 - 000118784 _____ (Khronos Group) C:\WINDOWS\system32\opencl.dll 2024-04-23 08:55 - 2022-04-14 04:13 - 000000000 ____D C:\Users\Eigenaar\AppData\Local\CrashDumps 2024-04-23 07:05 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\appcompat 2024-04-22 16:57 - 2021-07-16 09:15 - 000000000 ____D C:\Users\Eigenaar\AppData\LocalLow\Norton 2024-04-22 11:25 - 2020-12-11 19:12 - 000000000 __RHD C:\Users\Public\AccountPictures 2024-04-22 11:24 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Windows NT 2024-04-22 11:23 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Media 2024-04-22 11:20 - 2024-04-13 07:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security 2024-04-22 11:20 - 2024-03-29 06:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID 2024-04-22 11:20 - 2024-03-04 11:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape 2024-04-22 11:20 - 2024-03-02 14:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2024-04-22 11:20 - 2024-01-28 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Do Your Data Recovery 7.8 2024-04-22 11:20 - 2024-01-22 08:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Power Data Recovery 2024-04-22 11:20 - 2023-11-25 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TFA_Nexus 2024-04-22 11:20 - 2023-11-15 09:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-LabelPrint 2024-04-22 11:20 - 2023-10-05 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyKeyFinder 2024-04-22 11:20 - 2023-07-02 05:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD DVD Blu-ray Burning Studio 2024-04-22 11:20 - 2023-06-13 15:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2024-04-22 11:20 - 2023-05-30 12:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 Card Reader Software 2024-04-22 11:20 - 2023-05-30 08:50 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Data Doctor Recovery - SIM Card (Evaluation) 2024-04-22 11:20 - 2023-05-22 05:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer 2024-04-22 11:20 - 2023-04-27 08:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2024-04-22 11:20 - 2023-04-23 06:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Flick 2024-04-22 11:20 - 2023-04-01 06:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shareaza 2024-04-22 11:20 - 2023-02-05 06:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\honestech VHS to DVD 3.0 SE 2024-04-22 11:20 - 2023-02-04 08:02 - 000000000 ____D C:\WINDOWS\system32\RtlGina 2024-04-22 11:20 - 2023-01-28 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JixiPix Software 2024-04-22 11:20 - 2023-01-16 17:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAW FILE CONVERTER EX 3.0 powered by SILKYPIX 2024-04-22 11:20 - 2023-01-13 11:24 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NIUBI Partition Editor Professional Edition 2024-04-22 11:20 - 2022-12-29 12:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handleiding voor Canon TS6300 series 2024-04-22 11:20 - 2022-12-18 08:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active@ ISO Burner 2024-04-22 11:20 - 2022-12-17 09:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChargeProfessional 5000 2024-04-22 11:20 - 2022-12-01 12:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sketch Drawer 2024-04-22 11:20 - 2022-11-11 15:05 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tint 2024-04-22 11:20 - 2022-10-14 10:49 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OKmusi 2024-04-22 11:20 - 2022-10-08 11:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagFone iPhone Unlocker 2024-04-22 11:20 - 2022-10-05 16:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2024-04-22 11:20 - 2022-09-18 06:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayerLiteHJ 2024-04-22 11:20 - 2022-08-29 10:53 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Icecream Image Resizer 2024-04-22 11:20 - 2022-08-24 17:47 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2024-04-22 11:20 - 2022-07-21 16:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Disk Sentinel 2024-04-22 11:20 - 2022-07-18 04:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Split N Trim 2024-04-22 11:20 - 2022-07-07 10:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime 2024-04-22 11:20 - 2022-07-06 10:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutOut 6 2024-04-22 11:20 - 2022-07-04 10:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook Email Extractor v2.2 2024-04-22 11:20 - 2022-06-21 10:00 - 000000000 ____D C:\WINDOWS\system32\gf2engine 2024-04-22 11:20 - 2022-06-14 05:03 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\albelli BE 2024-04-22 11:20 - 2022-05-11 06:50 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iCloud 2024-04-22 11:20 - 2022-05-09 08:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FS20 IRP2 PC-Software 2024-04-22 11:20 - 2022-05-09 04:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag 2024-04-22 11:20 - 2022-05-07 07:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\spool 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\NDF 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Registration 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Cursors 2024-04-22 11:20 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-04-22 11:20 - 2022-05-05 06:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2024-04-22 11:20 - 2022-05-04 17:00 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain 2024-04-22 11:20 - 2022-05-04 08:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office-hulpprogramma's 2024-04-22 11:20 - 2022-04-30 10:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFPasswordRemoverPro 2024-04-22 11:20 - 2022-04-26 17:29 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Geotag Photos Pro 2024-04-22 11:20 - 2022-04-25 17:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HideVolumeOSD 2024-04-22 11:20 - 2022-04-20 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2024-04-22 11:20 - 2022-04-18 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony 2024-04-22 11:20 - 2022-04-15 14:40 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-04-22 11:20 - 2022-04-15 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\beidpp 2024-04-22 11:20 - 2022-04-14 16:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PotPlayer 2024-04-22 11:20 - 2022-04-14 08:26 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2024-04-22 11:20 - 2022-04-14 07:54 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BusinessCards MX 2024-04-22 11:20 - 2022-04-13 16:06 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2024-04-22 11:20 - 2022-04-13 11:30 - 000000000 ____D C:\WINDOWS\OEM 2024-04-22 11:20 - 2022-04-13 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2024-04-22 11:20 - 2022-04-13 11:23 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2024-04-22 11:20 - 2022-04-13 11:23 - 000000000 ____D C:\WINDOWS\system32\Macromed 2024-04-22 11:20 - 2022-04-13 11:21 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cobian Backup 11 2024-04-22 11:20 - 2022-04-13 10:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScummVM 2024-04-22 11:20 - 2022-01-03 10:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magoshare Data Recovery 4.4 2024-04-22 11:20 - 2021-11-27 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flash Player Pro 2024-04-22 11:20 - 2021-11-05 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grass Valley 2024-04-22 11:20 - 2021-10-19 11:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup 13.5 2024-04-22 11:20 - 2021-08-23 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AllInOneKeyFinderPro 2024-04-22 11:20 - 2021-05-20 09:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\honestech VHS to DVD 5.0 Deluxe 2024-04-22 11:20 - 2021-05-10 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Donemax Data Recovery 1.0 2024-04-22 11:20 - 2021-02-13 11:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YoWindow 2024-04-22 11:20 - 2021-01-24 08:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Donemax Data Eraser 1.0 2024-04-22 11:20 - 2020-12-26 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith 2024-04-22 11:20 - 2020-12-23 07:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Watermark Pro 2024-04-22 11:20 - 2020-12-18 09:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2024-04-22 11:20 - 2020-12-14 08:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jasc Software 2024-04-22 11:20 - 2020-12-14 07:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastPictureViewer 2024-04-22 11:20 - 2020-12-13 11:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Legacy 9.0 2024-04-22 11:20 - 2020-12-13 07:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2024-04-22 11:20 - 2020-12-12 16:04 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ALCATech 2024-04-22 11:15 - 2022-05-07 07:28 - 000000000 ____D C:\WINDOWS\Setup 2024-04-22 11:13 - 2022-05-07 07:24 - 000000000 __RHD C:\Users\Public\Libraries 2024-04-22 11:09 - 2024-03-19 10:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2024-04-22 11:09 - 2024-03-18 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyRec 2024-04-22 11:09 - 2023-05-15 10:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tipard 2024-04-22 11:09 - 2023-05-05 05:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyMP4 2024-04-22 11:09 - 2023-05-01 07:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blu-ray Master 2024-04-22 11:09 - 2022-10-12 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft 2024-04-22 11:09 - 2022-04-29 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue 2024-04-22 11:09 - 2022-04-29 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Leawo 2024-04-22 11:09 - 2022-04-14 08:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft 2024-04-22 11:09 - 2022-04-14 04:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outerspace Software 2024-04-22 11:09 - 2022-03-15 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2024-04-22 11:09 - 2022-01-18 10:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty 2024-04-22 11:09 - 2021-05-25 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Franzis 2024-04-22 11:09 - 2021-05-19 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STOIK Imaging 2024-04-22 11:09 - 2021-05-01 10:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com 2024-04-22 11:09 - 2020-12-12 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDimager Products 2024-04-22 11:08 - 2022-12-17 15:02 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Allavsoft 2024-04-22 11:08 - 2022-11-08 06:31 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AoaoPhoto Digital Studio 2024-04-22 11:08 - 2022-05-07 07:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows 2024-04-22 11:08 - 2021-02-05 10:03 - 000000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WonderFox Soft 2024-04-22 11:06 - 2022-05-07 12:42 - 000000000 ___SD C:\WINDOWS\system32\AppV 2024-04-22 11:06 - 2022-05-07 12:42 - 000000000 ____D C:\WINDOWS\InboxApps 2024-04-22 11:06 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\nl 2024-04-22 11:06 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\system32\nl 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\id-ID 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\et-EE 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\es-MX 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Globalization 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\DiagTrack 2024-04-22 11:06 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\System 2024-04-22 11:05 - 2022-05-07 12:42 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2024-04-22 11:05 - 2022-05-07 12:42 - 000023775 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2024-04-22 11:05 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2024-04-22 11:05 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2024-04-22 10:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\OCR 2024-04-22 10:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2024-04-22 10:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\MUI 2024-04-22 10:57 - 2022-05-07 12:42 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-04-22 10:57 - 2022-05-07 12:42 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-04-22 10:57 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2024-04-22 10:57 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2024-04-22 10:57 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2024-04-22 10:57 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2024-04-22 10:57 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\system32\winrm 2024-04-22 10:57 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\system32\WCN 2024-04-22 10:57 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\system32\slmgr 2024-04-22 10:57 - 2022-05-07 12:31 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2024-04-22 10:57 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Windows Defender 2024-04-22 10:57 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2024-04-19 11:05 - 2022-04-13 15:29 - 000000000 ____D C:\ProgramData\Package Cache 2024-04-17 09:41 - 2022-04-13 13:16 - 000000000 ____D C:\Program Files\Common Files\AV 2024-04-17 08:58 - 2023-07-07 09:19 - 000002397 _____ C:\Users\Public\Desktop\Norton Security.lnk 2024-04-17 08:51 - 2022-04-13 12:46 - 000000000 ____D C:\ProgramData\Norton 2024-04-17 08:26 - 2020-12-11 15:41 - 000000000 ____D C:\Users\Public\Downloads\Norton 2024-04-16 08:48 - 2022-08-29 10:55 - 000000000 ____D C:\ProgramData\Informer Technologies, Inc 2024-04-15 06:01 - 2022-06-21 09:53 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack ==================== Bestanden in de root van sommige mappen ======== 2024-03-13 12:23 - 2017-11-19 14:51 - 000004286 _____ () C:\Program Files (x86)\FalcoGo.ico 2024-03-13 12:23 - 2017-11-19 14:53 - 000000044 _____ () C:\Program Files (x86)\FalcoGo.url 2024-03-13 12:23 - 2016-01-05 14:37 - 000004286 _____ () C:\Program Files (x86)\FalconLine.ico 2024-03-13 12:23 - 2016-01-05 14:25 - 000000047 _____ () C:\Program Files (x86)\FalconLine.url 2024-03-13 12:23 - 2016-12-21 02:39 - 000004286 _____ () C:\Program Files (x86)\FalcoSpace.ico 2024-03-13 12:23 - 2016-12-21 02:36 - 000000047 _____ () C:\Program Files (x86)\FalcoSpace.url 2017-01-14 13:37 - 2017-01-14 13:37 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll 2024-05-03 05:56 - 2024-05-08 07:41 - 000100051 _____ () C:\Users\Eigenaar\AppData\Roaming\.BEID_0.log 2024-05-08 07:41 - 2024-05-14 09:27 - 000013598 _____ () C:\Users\Eigenaar\AppData\Roaming\.BEID_1.log 2023-03-31 06:24 - 2023-03-31 06:24 - 000000171 _____ () C:\Users\Eigenaar\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0 2022-12-06 14:37 - 2022-12-06 14:37 - 000000042 _____ () C:\Users\Eigenaar\AppData\Roaming\epm_user.ini 2023-03-24 10:59 - 2023-03-24 10:59 - 000118343 _____ () C:\Users\Eigenaar\AppData\Roaming\GoldenVideos.dmp 2022-05-12 10:38 - 2023-05-01 06:44 - 000099384 _____ () C:\Users\Eigenaar\AppData\Roaming\inst.exe 2022-05-12 10:38 - 2023-05-01 06:44 - 000007859 _____ () C:\Users\Eigenaar\AppData\Roaming\pcouffin.cat 2022-05-12 10:38 - 2023-05-01 06:44 - 000001167 _____ () C:\Users\Eigenaar\AppData\Roaming\pcouffin.inf 2022-05-12 10:38 - 2023-05-01 06:44 - 000000055 _____ () C:\Users\Eigenaar\AppData\Roaming\pcouffin.log 2022-05-12 10:38 - 2023-05-01 06:44 - 000082816 _____ (VSO Software) C:\Users\Eigenaar\AppData\Roaming\pcouffin.sys 2022-05-09 04:45 - 2022-05-09 04:45 - 000010339 _____ () C:\Users\Eigenaar\AppData\Roaming\tageditor.ini 2023-07-20 07:31 - 2023-07-20 07:31 - 000000000 _____ () C:\Users\Eigenaar\AppData\Local\oobelibMkey.log 2023-04-01 06:44 - 2023-04-01 06:44 - 000000218 _____ () C:\Users\Eigenaar\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================