Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 22-08.2024 Gestart door nicod (Beheerder) op LENOVO (LENOVO 90RC019VMH) (08-09-2024 11:28:57) Gestart vanaf D:\Nico\Downloads\FRST64.exe Geladen Profielen: nicod Platform: Microsoft Windows 11 Home Versie 23H2 22631.4112 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe (C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe (C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(GenericMessagingAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(LenovoGamingSystemAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(VantageCoreAddin).exe (C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (C:\Program Files\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.67\msedgewebview2.exe <6> (C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> com.logitech) C:\Program Files\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe (C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe (C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Facebook Technologies, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Facebook Technologies, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe ->) (Plex, Inc. -> ) C:\Program Files\Plex\Plex Media Server\Plex Tuner Service.exe (C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe ->) (Plex, Inc. -> ) C:\Program Files\Plex\Plex Media Server\PlexScriptHost.exe (C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe ->) (Plex, Inc. -> Plex, Inc.) C:\Program Files\Plex\Plex Media Server\Plex DLNA Server.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.CropAndLock.exe (C:\Users\nicod\AppData\Local\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Users\nicod\AppData\Local\Mozilla Firefox\plugin-container.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\SpaceRecall\EaseUSStartHelper.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\SpaceRecall\SpacePop.exe (Creative Technology Ltd) [Bestand niet getekend] C:\Program Files (x86)\Creative\Sound Blaster X-Fi Surround 5.1 Pro V3\Volume Panel\VolPanlu.exe (Creative Technology Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (explorer.exe ->) (Crystal Rich Ltd -> Crystal Rich Ltd) [Bestand niet getekend] C:\Program Files (x86)\Zentimo\Zentimo.exe (explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.166.0818.0003\Microsoft.SharePoint.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (explorer.exe ->) (Plex, Inc. -> Plex, Inc.) C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe (explorer.exe ->) (Spotify AB -> Spotify Ltd) D:\Users\Gebruiker\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (JAM Software GmbH -> JAM Software) C:\Program Files (x86)\JAM Software\TreeSize Professional\TreeSize.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Mozilla Corporation -> Mozilla Corporation) C:\Users\nicod\AppData\Local\Mozilla Firefox\firefox.exe <26> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2> (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\ensserver.exe (services.exe ->) (Code Sector -> ) C:\Program Files\TeraCopy\TeraCopyService.exe (services.exe ->) (Creative Technology Ltd) [Bestand niet getekend] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (services.exe ->) (Crystal Rich Ltd -> Crystal Rich Ltd) C:\Program Files (x86)\Zentimo\ZentimoService.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (Facebook Technologies, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe (services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe <2> (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\lenovo\UDC\Service\UDClientService.exe (services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe (services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvle.inf_amd64_8436de555010e564\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Plex, Inc. -> Plex, Inc.) C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f82b8b1a0b601f77\RtkAudUService64.exe <2> (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (Virtual Desktop, Inc. -> Virtual Desktop, Inc.) C:\Program Files\Virtual Desktop\VirtualDesktop.Service.exe (services.exe ->) (Western Digital Technologies, Inc.) [Bestand niet getekend] C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (sihost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2408.175.0_x64__8wekyb3d8bbwe\PAD.Console.Host.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (svchost.exe ->) (Creative Technology Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Creative\ShareDLL\CADI\NotiMan.exe (svchost.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2408.1001.14.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe (Western Digital Technologies, Inc.) [Bestand niet getekend] C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f82b8b1a0b601f77\RtkAudUService64.exe [1343072 2021-08-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Zentimo xStorage Manager] => C:\Program Files (x86)\Zentimo\Zentimo.exe [7377408 2023-10-24] (Crystal Rich Ltd -> Crystal Rich Ltd) [Bestand niet getekend] HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18725336 2022-05-12] (Logitech Inc -> Logitech Inc.) HKLM\...\Run: [Creative SB Monitoring Utility Launcher] => RunDll32 SBAVMonL.dll,SBAVMonitorLauncher (Geen bestand) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [138214768 2022-11-03] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9235344 2024-08-19] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-22] (Kilonova LLC -> ) HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi Surround 5.1 Pro V3\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd) [Bestand niet getekend] HKLM-x32\...\Run: [Module Loader] => C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe [57344 2007-07-23] (Creative Technology Ltd.) [Bestand niet getekend] HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1163264 2012-09-25] () [Bestand niet getekend] HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [Bestand niet getekend] HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2262528 2023-12-13] (Western Digital Technologies, Inc.) [Bestand niet getekend] HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81380584 2024-01-05] (Western Digital Technologies, Inc. -> Western Digital Corporation) HKLM\...\Policies\Explorer: [NoRecentDocsNetHood] 0 HKU\S-1-5-21-1505331210-353668276-4262752306-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919352 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1505331210-353668276-4262752306-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\Microsoft.SharePoint.exe [1025552 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1505331210-353668276-4262752306-1001\...\Run: [3fe62c50190927cf64865d381513612e] => "C:\Program Files\MusicFab\MusicFab\LiveUpdate.exe" --run_mode=background_check (Geen bestand) HKU\S-1-5-21-1505331210-353668276-4262752306-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46247680 2024-08-08] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-1505331210-353668276-4262752306-1001\...\Run: [Spotify Web Helper] => D:\Users\Gebruiker\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1140736 2016-03-20] (Spotify AB -> Spotify Ltd) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.120\Installer\chrmstp.exe [2024-09-06] (Google LLC -> Google LLC) AppInit_DLLs: D:\PROGRA~2\VIRTUA~2\VIRTUA~4.DLL => D:\Program Files\Virtual Desktop Streamer\VirtualDesktop.Injector64.dll [134872 2022-12-03] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.) AppInit_DLLs-x32: D:\PROGRA~2\VIRTUA~2\VIRTUA~3.DLL => D:\Program Files\Virtual Desktop Streamer\VirtualDesktop.Injector32.dll [114904 2022-12-01] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-11-30] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH) BootExecute: autocheck autochk /k;G* ==================== Geplande Taken (gefilterd) ================= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {2F9AC2CA-D4EA-4DA4-BD52-4A5C23C66E8D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.) Task: {88BF4E76-77F3-4EA6-90ED-27A6F70B774F} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5583864 2024-08-28] (Microsoft Windows -> Microsoft Corporation) Task: {B4426F1F-65F0-4E83-9DE4-30E5DDC36DA3} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-02-17] (Dropbox, Inc -> Dropbox, Inc.) Task: {AC601E11-0F0F-4AC7-B6CE-1BECCD5FFA19} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-02-17] (Dropbox, Inc -> Dropbox, Inc.) Task: {858B8E18-D01B-47DE-B8FA-CDC6B1652691} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{7E07A65C-806F-42E8-8FF0-64C66CB7A225} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC) Task: {C999C3B1-7428-4313-9547-B03EA8FADB87} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [94496 2024-06-26] (Lenovo -> Lenovo Group Ltd.) Task: {32B9A498-37F1-4A1F-9A20-242335E51E49} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService Task: {0E935D6C-98E4-4386-A7F7-E412A3354ADE} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {AE3D40D9-D4D6-45B3-AED1-31655E36C422} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1fb56037-1023-4322-a505-3c03bb0b81d6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) Task: {C1B2597B-3055-46C7-88BA-CA4013E9D900} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1fc3f915-3147-4b33-a6b2-db9ce5ad2dee => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) Task: {E3B4B18A-1113-4154-9A0F-DBCD69AF799E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a00e1a4c-c144-4865-8dfd-3bfde9dfb7fb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) Task: {240FC273-0A42-4EC1-BB50-C2BFF64E6BAB} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b1250634-716d-4d73-8ea1-f3a276502fa9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) Task: {3FAF63C8-03A1-49A0-8E14-C1B7140F0C86} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\eefb18cc-f533-4486-92db-c46bc8fa98c4 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) Task: {132E8F27-8A94-422D-BE30-1D59454BEAE0} - System32\Tasks\Lenovo\LenovoNowLauncher => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.exe [1631640 2024-08-09] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/task Task: {11A42901-FC84-4632-B7A8-50E95A3A425B} - System32\Tasks\Lenovo\LenovoNowQuarterlyLaunch => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [1521560 2024-08-09] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/QuarterlyLaunch Task: {3E546D6F-DD4C-4F73-9618-D439D40E441D} - System32\Tasks\Lenovo\LenovoNowTask => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [1521560 2024-08-09] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\$(EventData) Task: {992E0E1D-9C93-4669-9DFA-498017EEAB31} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210 Task: {37D07A4C-8281-4ACD-90AF-B5B592E058D2} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90976 2024-04-07] (Lenovo -> Lenovo Group Ltd.) -> C:\windows\system32\drivers\Lenovo\udc\Service\/onidle Task: {25330217-21C7-42DA-A913-88BF2C505D11} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [188656 2024-04-07] (Lenovo -> Lenovo Group Ltd.) Task: {425EA799-5398-4999-8103-A5487FBC6D46} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService Task: {B4D92C18-870E-4EEF-B84C-86BA143B7A5B} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {FFDDA8BB-D435-473F-A823-25919E0DC120} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {724251B4-D6F2-4951-BF51-749C927188A8} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {F1D841DB-F5CE-4790-8A70-6F9525C4E71A} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {92C93013-831E-46A3-B5FB-FA1C780DC2E3} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {62379B2B-76C6-4421-AF41-556C673865A7} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {9242DC10-CEA3-45C7-BF29-41F94A6E8EEA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {6BA5E1A6-20E7-454E-9F82-A49811178523} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe NotificationCenter (Geen bestand) Task: {1D39EF12-D21F-4CF1-95AD-4EE560BD2990} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {121405A0-6365-414D-AD89-8CD5BDD4662B} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo) Task: {BD8A6DF5-FCAF-4FDD-AD5C-C5BCB76456C7} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\uninstall.exe [345448 2024-07-16] (Lenovo -> Lenovo) Task: {8678FE59-1CB2-40B9-8082-F289AD3213DC} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1505331210-353668276-4262752306-1001 => C:\Users\nicod\AppData\Local\MEGAsync\MEGAupdater.exe [2531504 2023-06-16] (Mega Limited -> ) Task: {5D90C4F6-8D9D-49E7-867B-C486B2CB9EBB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-25] (Microsoft Corporation -> Microsoft Corporation) Task: {8B744118-5FE7-4624-96DB-206EE6EC35EE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-25] (Microsoft Corporation -> Microsoft Corporation) Task: {5D511F1B-E6EA-4C23-8F23-CB88A30DD2D6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-09-04] (Microsoft Corporation -> Microsoft Corporation) Task: {81EE535B-DBD6-464B-95BD-BCCA1D5F6935} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-09-04] (Microsoft Corporation -> Microsoft Corporation) Task: {6086C6F5-1D59-40F3-BB1A-1979A0E3193C} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [187024 2024-09-04] (Microsoft Corporation -> Microsoft Corporation) Task: {F127A3D4-1D16-4056-8887-2A796233E318} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4464024 2024-08-15] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Geen bestand) Task: {23CC3B79-27EA-4DAF-9706-C6369A99A234} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FD79D770-A410-4DBB-BD0E-553CEC72256C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C2A6177A-03FD-4052-9203-D3CD604BCC26} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3F75D6E1-0BC5-4C04-9B03-FB30E66AFD38} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1C307BF3-CD74-48F5-8D89-B9E249543CCD} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1505331210-353668276-4262752306-1001 604E8D793B827001 => C:\Users\nicod\AppData\Local\Mozilla Firefox\firefox.exe [672328 2024-09-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\604E8D793B827001\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\604E8D793B827001\backgroundupdate.moz_log --backgroundtask background (de data item heeft 6 meer tekens). Task: {FE16D065-7972-4892-8054-E290DCCA8A06} - System32\Tasks\Mozilla\Firefox Default Browser Agent 604E8D793B827001 => C:\Users\nicod\AppData\Local\Mozilla Firefox\default-browser-agent.exe [34376 2024-09-04] (Mozilla Corporation -> Mozilla Foundation) Task: {DE2D562B-0819-4C5B-BBB9-068EB3693482} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C39E8671-A6E4-4EE8-B08B-EA4601C87304} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation) Task: {60B1CAB6-688A-4F3B-8EFE-67DD39DB2CF3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {DAEA6DC6-6B84-4115-B1B6-F144DEE62304} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7E70D6AA-6315-45DB-9F84-A6E46877DF17} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {999F88FC-965B-4AFB-B985-38817B87F75C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4BE58040-5B29-4189-8DBF-EA11772D1F02} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D0FB8C4C-351E-491F-B5DC-799073251F45} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {43D079CB-652A-4A17-A9DF-364E799CD7B6} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8BEC6791-697A-46F5-AE39-49718A1C43DE} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209208 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) Task: {E81FDDED-2AFC-490F-828F-4D43C1A57D3C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1505331210-353668276-4262752306-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209208 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) Task: {9D4A51AE-A967-4B27-B316-A8D378B47D28} - System32\Tasks\PowerToys\Autorun for nicod => C:\Program Files\PowerToys\PowerToys.exe [1151008 2023-10-02] (Microsoft Corporation -> Microsoft Corporation) Task: {19E8D32C-510B-4364-9656-ACF7AC38265E} - System32\Tasks\StartAllBack Update => C:\Program Files\StartAllBack\UpdateCheck.exe [50136 2024-07-10] (IP Zinukhov Stanislav Igorevich -> www.startisback.com) Task: {8AA43072-09F9-405D-9ABE-3684D5B6FDDA} - System32\Tasks\Uitschakelen => C:\Windows\System32\shutdown.exe [53248 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> Task: {0123149F-9291-4301-B3FF-04A0A545508F} - System32\Tasks\Uninstaller_SkipUac_nicod => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9914736 2024-06-26] (IObit CO., LTD -> IObit) -> C:\Program Files (x86)\IObit\IObit Uninstaller\\/UninstallExplorer Task: {20BE2E83-9F71-4601-9CE3-83CAC2903889} - System32\Tasks\update-S-1-5-21-1505331210-353668276-4262752306-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {AAFB0F6D-B5C3-4D6F-93AA-95D3AB3414D6} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {AF64A4FF-2033-42AB-AE71-0C788066AAE1} - System32\Tasks\WD Device Agent Task nicod => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [724712 2024-01-05] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) Task: {AAF95253-7D53-40BE-90E0-253A59637735} - System32\Tasks\WD Discovery Service Task nicod => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [79592 2024-01-05] (Western Digital Technologies, Inc. -> ) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-1505331210-353668276-4262752306-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 195.130.131.4 195.130.130.4 Tcpip\..\Interfaces\{66057c55-020b-4290-a1a6-38c7e410f07e}: [DhcpNameServer] 195.130.131.4 195.130.130.4 Tcpip\..\Interfaces\{66057c55-020b-4290-a1a6-38c7e410f07e}: [DhcpDomain] home Tcpip\..\Interfaces\{67814862-324f-4d03-8ce3-5ef4d25f0b8e}: [DhcpNameServer] 195.130.131.4 195.130.130.4 Tcpip\..\Interfaces\{67814862-324f-4d03-8ce3-5ef4d25f0b8e}: [DhcpDomain] home Edge: ======= Edge Profile: C:\Users\nicod\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-24] Edge Extension: (Offline Documenten) - C:\Users\nicod\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-29] Edge Extension: (Edge relevant text changes) - C:\Users\nicod\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Edge Extension: (Microsoft Power Automate (verouderd)) - C:\Users\nicod\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\njjljiblognghfjfpcdpdbpbfcmhgafg [2023-07-06] Edge HKU\S-1-5-21-1505331210-353668276-4262752306-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [kagpabjoboikccfdghpdlaaopmgpgfdc] Edge HKU\S-1-5-21-1505331210-353668276-4262752306-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [njjljiblognghfjfpcdpdbpbfcmhgafg] FireFox: ======== FF DefaultProfile: nzrrplw8.default FF ProfilePath: C:\Users\nicod\AppData\Roaming\Mozilla\Firefox\Profiles\nzrrplw8.default [2023-02-16] FF ProfilePath: C:\Users\nicod\AppData\Roaming\Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314 [2024-09-08] FF Homepage: Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314 -> hxxps://www.google.be FF Notifications: Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314 -> hxxps://calendar.google.com FF Extension: (AdBlocker Ultimate) - C:\Users\nicod\AppData\Roaming\Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314\Extensions\adblockultimate@adblockultimate.net.xpi [2024-07-19] FF Extension: (Copy PlainText) - C:\Users\nicod\AppData\Roaming\Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314\Extensions\copyplaintext@eros.man.xpi [2024-07-12] FF Extension: (uBlock Origin) - C:\Users\nicod\AppData\Roaming\Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314\Extensions\uBlock0@raymondhill.net.xpi [2024-08-01] FF Extension: (Michael Jackson) - C:\Users\nicod\AppData\Roaming\Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314\Extensions\{2d129445-19b2-44cd-af0b-13b5c8c6ce0b}.xpi [2024-06-12] FF Extension: (Michael Jackson...) - C:\Users\nicod\AppData\Roaming\Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314\Extensions\{42b040c3-0ba8-4f7c-8396-a1afc74488cc}.xpi [2024-06-12] FF Extension: (Adblock Plus - gratis adblocker) - C:\Users\nicod\AppData\Roaming\Mozilla\Firefox\Profiles\6mbegl3x.default-release-1718136494314\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-08-30] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT PDF READER\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT PDF READER\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT PDF READER\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT PDF READER\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT PDF READER\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-09-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-1505331210-353668276-4262752306-1001: connective.be/BrowserPlugin -> C:\Users\nicod\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2021-07-05] (Connective n.v.) [Bestand niet getekend] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default [2024-09-08] CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://order.dominos.be; hxxps://www.netflix.com; hxxps://www.vrt.be; hxxps://x-minus.pro CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-08-28] CHR Extension: (uBlock Origin) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-08-04] CHR Extension: (CrackWatch) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\dechlkibpibjlaidpeniljjejncdhfpj [2023-02-16] CHR Extension: (OpenSub) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpeabmcccfccdlaeejhkapiofpjolaf [2023-02-16] CHR Extension: (Right-Click Search YouTube™) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecimedbkebemibglbpeolgbdpgkmcmjk [2024-08-08] CHR Extension: (VRT NU ondertitel voorlezer) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnaiofkobgmpkchpbbgkelgalcpngmj [2023-02-16] CHR Extension: (Video Downloader Professional) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2024-06-28] CHR Extension: (Offline Documenten) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-06] CHR Extension: (Microsoft Power Automate (verouderd)) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjgfobnenmnljakmhboildkafdkicala [2023-04-23] CHR Extension: (Chrome Remote Desktop) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-02-16] CHR Extension: (Absolute Enable Right Click & Copy) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2023-02-16] CHR Extension: (Connective signing extension) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2023-02-16] CHR Extension: (Video DownloadHelper) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2024-09-06] CHR Extension: (.MPD Detector) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpoohbdbmggiknlpcmhhdkpaclfcdapk [2023-02-16] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-02-16] CHR Extension: (Print Edit WE) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnblpmehglpcallpnbgmikjblmkopia [2023-07-28] CHR Extension: (Video & Audio Downloader) - C:\Users\nicod\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchlfebelfohhojoomlngjbkcjponfha [2024-03-04] CHR HKU\S-1-5-21-1505331210-353668276-4262752306-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gjgfobnenmnljakmhboildkafdkicala] CHR HKU\S-1-5-21-1505331210-353668276-4262752306-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ljglajjnnkapghbckkcmodicjhacbfhk] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5328200 2024-05-25] (AnyDesk Software GmbH -> AnyDesk Software GmbH) R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe [74016 2024-05-06] (Google LLC -> Google LLC) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042624 2024-08-25] (Microsoft Corporation -> Microsoft Corporation) R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [Bestand niet getekend] S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-02-17] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-02-17] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-08-19] (Dropbox, Inc -> Dropbox, Inc.) R3 DCVssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{951845FB-F500-4F2A-97D3-4E5A68058569} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\206.4.6506\DropboxElevationService.exe [1659288 2024-08-19] (Dropbox, Inc -> Dropbox, Inc.) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [16851560 2024-07-18] (Electronic Arts, Inc. -> Electronic Arts) R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [36872 2024-04-16] (CHENGDU YIWO Tech Development Co., Ltd. -> ) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [375248 2024-01-03] (Epic Games Inc. -> Epic Games, Inc.) R3 EPMVssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{AAE001D9-8B19-4191-BFA3-E4B662795581} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncHelper.exe [3523112 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2432608 2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2024-04-26] (IObit CO., LTD -> IObit) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe [34664 2024-07-16] (Lenovo -> Lenovo) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11193088 2024-08-08] (Logitech Inc -> Logitech, Inc.) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206808 2022-05-12] (Logitech Inc -> Logitech Inc.) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 Media Center 30 Service; C:\Program Files\J River\Media Center 30\JRService.exe [461752 2023-05-24] (Jriver, Inc -> JRiver, Inc.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvle.inf_amd64_8436de555010e564\Display.NvContainer\NVDisplay.Container.exe [1275000 2023-11-29] (NVIDIA Corporation -> NVIDIA Corporation) S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.166.0818.0003\OneDriveUpdaterService.exe [3863984 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19333888 2024-09-04] (Logitech Inc -> Logitech, Inc.) S3 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [146688 2024-07-30] (Facebook Technologies, LLC -> Facebook Technologies, LLC) R2 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [418048 2024-07-30] (Facebook Technologies, LLC -> Facebook Technologies, LLC) R2 PlexUpdateService; C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe [902168 2024-08-20] (Plex, Inc. -> Plex, Inc.) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2023-12-21] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933432 2023-12-21] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 TeraCopyService.exe; C:\Program Files\TeraCopy\TeraCopyService.exe [315720 2023-06-29] (Code Sector -> ) R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72432 2024-04-07] (Lenovo -> Lenovo Group Ltd.) S3 Updater; D:\Program Files\Virtual Desktop Streamer\Updater.exe [1163480 2022-12-19] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.) R2 VirtualDesktop.Service.exe; C:\Program Files\Virtual Desktop\VirtualDesktop.Service.exe [10657496 2022-12-16] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.) R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [372736 2023-12-13] (Western Digital Technologies, Inc.) [Bestand niet getekend] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ZentimoService; C:\Program Files (x86)\Zentimo\ZentimoService.exe [1410048 2021-04-28] (Crystal Rich Ltd -> Crystal Rich Ltd) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2023-12-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ebrntdrv; C:\WINDOWS\system32\ebrntdrv.sys [27728 2024-04-16] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 epmdkdrv; C:\WINDOWS\system32\epmdkdrv.sys [27728 2024-04-16] (Microsoft Windows Hardware Compatibility Publisher -> ) R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2024-04-16] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) R0 EUDCPDC; C:\WINDOWS\System32\drivers\EUDCPDC.sys [77904 2023-05-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [76344 2024-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUEDKDC; C:\WINDOWS\system32\drivers\EUEDKDC.sys [25200 2023-05-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUEDKEPM; C:\WINDOWS\system32\drivers\EUEDKEPM.sys [24656 2024-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo) R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [28240 2024-04-26] (Microsoft Windows Hardware Compatibility Publisher -> IObit) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2024-04-26] (IObit Information Technology -> IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [36432 2024-04-26] (Microsoft Windows Hardware Compatibility Publisher -> IObit) R3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [2116616 2020-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) R3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum64.sys [46264 2022-05-12] (Logitech Inc -> Logitech Inc.) S3 LGJoyHidFilter; C:\WINDOWS\System32\drivers\LGJoyHidFilter64.sys [67768 2022-05-12] (Logitech Inc -> Logitech Inc.) S3 LGJoyHidLo; C:\WINDOWS\System32\drivers\LGJoyHidLo64.sys [54456 2022-05-12] (Logitech Inc -> Logitech Inc.) R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore64.sys [76480 2022-05-12] (Logitech Inc -> Logitech Inc.) R3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid64.sys [34496 2022-05-12] (Logitech Inc -> Logitech Inc.) S3 logi_generic_hid_filter; C:\WINDOWS\system32\drivers\logi_generic_hid_filter.sys [62288 2024-03-20] (Logitech Inc -> Logitech) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2024-03-20] (Logitech Inc -> Logitech) S3 logi_joy_hid_filter; C:\WINDOWS\system32\drivers\logi_joy_hid_filter.sys [63824 2024-03-20] (Logitech Inc -> Logitech) S3 logi_joy_hid_lo; C:\WINDOWS\system32\drivers\logi_joy_hid_lo.sys [51536 2024-03-20] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2024-03-20] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2024-03-20] (Logitech Inc -> Logitech) R3 MTKBTFilterX64; C:\WINDOWS\system32\DRIVERS\mtkbtfilterx.sys [371600 2023-09-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1669928 2023-09-01] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [75280 2023-02-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2023-02-18] (Oculus VR, LLC -> Facebook Inc.) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_9e453ab47cf9cf42\rt68cx21x64.sys [652256 2022-06-07] (Realtek Semiconductor Corp. -> Realtek) S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2023-12-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2023-12-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [81920 2023-02-16] (Microsoft Corporation) [Bestand niet getekend] R3 vdvad_WaveExtensible; C:\WINDOWS\System32\drivers\vdvad.sys [44936 2022-05-02] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.) R3 vdvge; C:\WINDOWS\System32\drivers\vdvge.sys [77864 2022-05-02] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [25704 2023-12-13] (WDKTestCert user,132375440089837053 -> Western Digital Technologies, Inc.) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation) S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X] S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2024-09-08 11:27 - 2024-09-08 11:29 - 000000000 ____D C:\FRST 2024-09-08 10:10 - 2024-09-08 10:10 - 000764334 _____ C:\WINDOWS\system32\perfh013.dat 2024-09-08 10:10 - 2024-09-08 10:10 - 000151760 _____ C:\WINDOWS\system32\perfc013.dat 2024-09-05 22:52 - 2024-09-05 22:52 - 395145662 _____ C:\Users\nicod\OneDrive\Bureaublad\Telegram Desktop.rar 2024-09-04 18:27 - 2024-09-08 10:30 - 000000000 ____D C:\Users\nicod\AppData\Local\Mozilla Firefox 2024-09-04 17:15 - 2024-09-04 17:16 - 000000000 ____D C:\Program Files\LogiOptionsPlus 2024-09-04 17:15 - 2024-09-04 17:15 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-09-04 15:45 - 2024-09-04 15:45 - 000000000 ____D C:\WINDOWS\%LOCALAPPDATA% 2024-09-03 12:03 - 2024-09-03 12:03 - 000000000 ____D C:\WINDOWS\Panther 2024-09-02 17:31 - 2024-09-02 17:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinball FX 2023 2024-08-29 12:49 - 2024-08-29 12:49 - 000001048 _____ C:\Users\nicod\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2024-08-29 12:49 - 2024-08-29 12:49 - 000000000 ____D C:\Program Files (x86)\uTorrent 2024-08-29 12:48 - 2024-08-31 04:22 - 000000000 ____D C:\Users\nicod\AppData\Roaming\uTorrent 2024-08-27 15:02 - 2024-09-07 21:35 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Telegram Desktop 2024-08-27 15:02 - 2024-08-28 19:37 - 000001050 _____ C:\Users\nicod\OneDrive\Bureaublad\Telegram.lnk 2024-08-27 15:02 - 2024-08-27 15:02 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2024-08-22 18:15 - 2024-08-22 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2024-08-19 22:58 - 2024-08-19 22:58 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2024-08-17 11:51 - 2024-08-17 11:51 - 000000058 _____ C:\Users\nicod\AppData\Roaming\epm_user.ini 2024-08-12 15:20 - 2024-08-12 15:20 - 000400098 _____ C:\Users\nicod\OneDrive\Bureaublad\soc. tarief (Nico).pdf 2024-08-12 15:13 - 2024-08-12 15:14 - 000340362 _____ C:\Users\nicod\OneDrive\Bureaublad\soc. tarief (Katty).pdf 2024-08-10 19:02 - 2024-08-10 19:02 - 000000000 ____D C:\Users\nicod\AppData\Local\Cemu 2024-08-10 17:49 - 2024-08-10 17:49 - 000000000 ____D C:\wiiu 2024-08-10 17:47 - 2024-08-10 19:14 - 000000000 ____D C:\cemu_1.26.2 2024-08-10 15:57 - 2024-08-10 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fetish Locator Week One [GOG.com] 2024-08-10 15:27 - 2024-08-10 15:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cooking Simulator 2024-08-10 11:18 - 2024-08-10 11:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2024-09-08 11:29 - 2023-02-17 13:24 - 000000000 ____D C:\ProgramData\TEMP 2024-09-08 11:29 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-09-08 11:23 - 2023-02-17 11:29 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Microsoft\Excel 2024-09-08 11:21 - 2023-02-23 17:46 - 000001159 _____ C:\Users\nicod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeraCopy.lnk 2024-09-08 11:21 - 2023-02-23 13:37 - 000000000 ____D C:\Users\nicod\AppData\Roaming\TeraCopy 2024-09-08 11:16 - 2023-05-16 18:12 - 000000000 ____D C:\Users\nicod\AppData\Roaming\vlc 2024-09-08 10:51 - 2023-11-30 19:56 - 000002554 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini 2024-09-08 10:47 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Registration 2024-09-08 10:34 - 2023-02-17 14:12 - 000000000 ____D C:\Program Files (x86)\AnyDesk 2024-09-08 10:31 - 2023-02-16 20:55 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-09-08 10:30 - 2023-02-16 18:21 - 000000000 ____D C:\Users\nicod\AppData\Local\LogiOptionsPlus 2024-09-08 10:13 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-09-08 10:10 - 2023-02-16 20:46 - 001711328 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-09-08 10:10 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2024-09-08 10:07 - 2024-01-05 23:13 - 000000000 ____D C:\Users\nicod\AppData\Roaming\WD Discovery 2024-09-08 10:07 - 2024-01-05 23:13 - 000000000 ____D C:\Users\nicod\.wdc 2024-09-08 10:07 - 2023-02-17 07:56 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Dropbox 2024-09-08 10:07 - 2023-02-17 07:56 - 000000000 ____D C:\Users\nicod\AppData\Local\Dropbox 2024-09-08 10:06 - 2024-03-20 17:29 - 000000000 ____D C:\Users\nicod\AppData\Local\LGHUB 2024-09-08 10:06 - 2023-10-24 12:51 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Zentimo 2024-09-08 10:06 - 2023-10-08 17:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys 2024-09-08 10:06 - 2023-02-18 16:10 - 000000000 ____D C:\Users\nicod\AppData\Local\Oculus 2024-09-08 10:06 - 2022-09-17 19:38 - 000000000 ____D C:\ProgramData\NVIDIA 2024-09-08 10:03 - 2023-02-16 20:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-09-08 10:03 - 2023-02-16 20:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-09-08 10:03 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-09-08 10:03 - 2021-09-29 23:08 - 000012288 ___SH C:\DumpStack.log.tmp 2024-09-08 10:00 - 2022-09-17 19:22 - 000021520 _____ C:\WINDOWS\system32\wpbbin.exe 2024-09-08 06:16 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-09-08 01:09 - 2023-02-17 14:12 - 000000000 ____D C:\Users\nicod\AppData\Roaming\AnyDesk 2024-09-07 23:09 - 2023-02-16 18:19 - 000000000 ____D C:\Users\nicod\AppData\Local\D3DSCache 2024-09-07 22:17 - 2023-02-17 12:52 - 000000000 ____D C:\ProgramData\Spotnet 2024-09-07 20:09 - 2023-02-17 07:45 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2024-09-07 14:20 - 2023-02-17 07:33 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1505331210-353668276-4262752306-1001 2024-09-07 14:20 - 2023-02-17 07:33 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2024-09-07 14:20 - 2023-02-17 07:33 - 000002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-09-07 14:20 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-09-07 14:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-09-07 11:24 - 2021-09-29 23:09 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-09-07 10:21 - 2023-06-01 07:32 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK 2024-09-07 04:39 - 2023-02-16 20:35 - 000000000 ____D C:\Users\nicod 2024-09-06 17:22 - 2024-02-02 19:15 - 000000000 ____D C:\Users\nicod\AppData\Local\QuickPar 2024-09-06 16:03 - 2023-02-16 18:19 - 000000000 ____D C:\Users\nicod\AppData\Local\Packages 2024-09-06 15:57 - 2023-02-16 18:19 - 000000000 ____D C:\ProgramData\Packages 2024-09-06 12:11 - 2024-02-16 11:47 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll 2024-09-06 12:11 - 2023-03-31 11:00 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2024-09-06 12:11 - 2023-03-31 11:00 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2024-09-06 12:11 - 2023-03-31 11:00 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2024-09-06 12:11 - 2023-03-31 11:00 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2024-09-06 12:11 - 2023-03-31 11:00 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2024-09-06 12:11 - 2023-03-31 11:00 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2024-09-06 12:11 - 2023-03-31 11:00 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2024-09-06 03:39 - 2023-02-16 21:05 - 000002279 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-09-04 21:48 - 2024-06-11 22:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2024-09-04 21:48 - 2023-02-16 20:55 - 000001280 _____ C:\Users\nicod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-09-04 18:35 - 2023-02-17 16:08 - 000000000 ____D C:\Users\nicod\AppData\Local\ElevatedDiagnostics 2024-09-04 17:20 - 2023-11-27 13:26 - 000000000 ____D C:\ProgramData\ProductData3 2024-09-04 17:16 - 2023-04-06 10:44 - 000000000 ____D C:\Users\nicod\AppData\Local\Deployment 2024-09-04 17:15 - 2024-03-06 13:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2024-09-04 17:14 - 2023-02-17 07:30 - 000000000 ____D C:\Program Files\Microsoft Office 2024-09-03 19:00 - 2023-06-13 10:33 - 000000000 ____D C:\Users\nicod\AppData\Roaming\dvdcss 2024-09-02 17:38 - 2023-05-02 14:41 - 000000000 ____D C:\WINDOWS\Minidump 2024-09-02 17:26 - 2023-02-25 15:23 - 000000000 ____D C:\Games 2024-09-01 21:26 - 2023-02-17 13:36 - 000000000 ____D C:\Users\nicod\AppData\Roaming\calibre 2024-08-31 17:22 - 2023-02-16 20:52 - 000000000 ____D C:\Users\nicod\AppData\Local\CrashDumps 2024-08-31 14:31 - 2023-04-15 10:50 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Mp3tag 2024-08-29 13:22 - 2023-12-23 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management 2024-08-29 13:22 - 2023-02-17 13:36 - 000000000 ____D C:\Program Files\Calibre2 2024-08-29 03:52 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-08-29 03:33 - 2023-02-16 20:34 - 000474512 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-08-29 03:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-08-28 08:27 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-08-28 08:26 - 2023-02-16 20:41 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-08-28 01:58 - 2023-06-25 22:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-08-28 01:57 - 2023-06-25 22:13 - 000002085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-08-23 23:16 - 2023-02-17 12:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotnet 2024-08-22 18:15 - 2023-02-17 07:56 - 000000000 ____D C:\Program Files (x86)\Dropbox 2024-08-21 12:30 - 2023-02-16 21:18 - 000001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server.lnk 2024-08-21 12:12 - 2022-09-17 19:41 - 000000000 ____D C:\Program Files (x86)\Lenovo 2024-08-20 16:12 - 2023-02-17 07:37 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Microsoft\Word 2024-08-14 15:42 - 2023-10-13 03:04 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-08-14 15:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-08-14 15:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-08-14 15:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\schemas 2024-08-14 12:16 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2024-08-14 12:16 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2024-08-14 12:13 - 2023-02-17 00:32 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-08-14 12:11 - 2023-02-17 00:32 - 197093640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-08-13 14:33 - 2023-03-26 13:33 - 000000000 ____D C:\Users\nicod\AppData\Local\Plex 2024-08-10 19:26 - 2023-02-23 13:02 - 000000000 ____D C:\Users\nicod\AppData\Local\SoulseekQt 2024-08-10 15:57 - 2024-04-13 00:40 - 000000000 ____D C:\Users\nicod\AppData\Roaming\RenPy 2024-08-10 11:18 - 2023-04-15 10:49 - 000000000 ____D C:\Program Files\Mp3tag ==================== Bestanden in de root van sommige mappen ======== 2023-03-31 14:48 - 2023-03-31 14:48 - 013132016 _____ (Florian Heidenreich) C:\Program Files (x86)\Mp3tag.exe 2023-04-15 10:09 - 2023-04-15 10:09 - 000000068 _____ () C:\Program Files (x86)\Mp3tagSetup.ini 2023-03-31 14:48 - 2023-03-31 14:48 - 000487664 _____ (Florian Heidenreich) C:\Program Files (x86)\Mp3tagShell.dll 2023-03-31 14:48 - 2023-03-31 14:48 - 000160118 _____ () C:\Program Files (x86)\Mp3tagShell.msix 2023-04-15 10:09 - 2023-04-15 10:09 - 000180111 _____ () C:\Program Files (x86)\Mp3tagUninstall.exe 2023-03-31 14:48 - 2023-03-31 14:48 - 000157934 _____ () C:\Program Files (x86)\Mp3tagVersion.txt 2023-03-31 14:48 - 2023-03-31 14:48 - 000323072 _____ (Thomas Becker, Osnabrueck) C:\Program Files (x86)\tak_deco_lib.dll 2023-10-25 09:46 - 2024-03-21 18:50 - 000100014 _____ () C:\Users\nicod\AppData\Roaming\.BEID_0.log 2024-03-23 00:57 - 2024-06-11 22:01 - 000021509 _____ () C:\Users\nicod\AppData\Roaming\.BEID_1.log 2023-11-26 22:55 - 2023-11-26 22:55 - 000000012 _____ () C:\Users\nicod\AppData\Roaming\a5560edaf548a2d1d0892992b770aee7 2023-03-19 13:35 - 2023-03-19 13:35 - 000012288 _____ () C:\Users\nicod\AppData\Roaming\emp.bin 2024-08-17 11:51 - 2024-08-17 11:51 - 000000058 _____ () C:\Users\nicod\AppData\Roaming\epm_user.ini 2023-02-18 22:11 - 2023-02-18 22:11 - 000000128 _____ () C:\Users\nicod\AppData\Roaming\winscp.rnd 2023-02-17 12:13 - 2023-02-17 12:13 - 000000003 _____ () C:\Users\nicod\AppData\Local\updater.log 2023-02-17 12:13 - 2023-02-17 12:13 - 000000424 _____ () C:\Users\nicod\AppData\Local\UserProducts.xml 2023-11-26 23:13 - 2023-11-26 23:13 - 000000036 _____ () C:\Users\nicod\AppData\Local\_LOCAL_GUID ==================== FCheck ================================ (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2023-11-27] <==== AANDACHT (nul byte bestand/map) ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================