Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 03-02-2025 Gestart door wilfr (Beheerder) op DESKTOP-UQJPQ35 (Acer Aspire XC-1760) (10-02-2025 18:04:11) Gestart vanaf C:\Users\wilfr\Downloads\FRST64.exe Geladen Profielen: wilfr Platform: Microsoft Windows 11 Home Versie 24H2 26100.3037 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\avp.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\avpui.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.3\kpm_service.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.3\kpm.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.18\ksde.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.18\ksdeui.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\CamUsage.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\MicUsage.exe (C:\Users\wilfr\AppData\Roaming\utorrent\updates\3.6.0_47062\utorrentie.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\132.0.2957.140\msedgewebview2.exe <14> (C:\Users\wilfr\AppData\Roaming\utorrent\uTorrent.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\wilfr\AppData\Roaming\utorrent\updates\3.6.0_47062\utorrentie.exe <2> (DriverStore\FileRepository\ipf_cpu.inf_amd64_552f6da0f811dc67\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_552f6da0f811dc67\ipf_helper.exe (explorer.exe ->) (BitTorrent Inc -> BitTorrent Limited) C:\Users\wilfr\AppData\Roaming\utorrent\uTorrent.exe (explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.ScreenSketch_11.2409.25.0_x64__8wekyb3d8bbwe\SnippingTool\SnippingTool.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25007.607.3371.8436_x64__8wekyb3d8bbwe\ms-teams.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <41> (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\ReasonLabs\Common\Client\v1.6.0\rsAppUI.exe <9> (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe (services.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.3\kpm_service.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_92455b7686ca5a0e\ipfsvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_63b423542da81731\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_372f289a58f992e3\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_552f6da0f811dc67\ipf_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\avp.exe <4> (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.18\ksde.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_844e1459fc4a4c84\RtkAudUService64.exe <2> (services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\DNS\rsDNSClientSvc.exe (services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\DNS\rsDNSResolver.exe (services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\DNS\rsDNSSvc.exe (services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe (services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25011.11.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe <2> (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.235.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.1301.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\wilfr\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe (svchost.exe ->) (Vitzo LLC -> Vitzo LLC) C:\Program Files\Viddly YouTube Downloader\Viddly.exe <5> ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_844e1459fc4a4c84\RtkAudUService64.exe [1363544 2021-09-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-10-04] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [uupdate] => C:\ProgramData\wDcLibs\uhelper.exe [512280 2019-11-28] (Shenzhen Yi Xing Investment Co., Ltd. -> ) <==== AANDACHT HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrictie <==== AANDACHT HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrictie <==== AANDACHT HKU\S-1-5-21-521542366-1339637122-3535229964-1001\...\Run: [µTorrent] => C:\Program Files (x86)\uTorrent\uTorrent.exe [174163 2006-07-02] () [Bestand niet getekend] HKU\S-1-5-21-521542366-1339637122-3535229964-1001\...\Run: [Viddly YouTube Downloader] => C:\Program Files\Viddly YouTube Downloader\Viddly.exe [162057520 2024-12-30] (Vitzo LLC -> Vitzo LLC) HKU\S-1-5-21-521542366-1339637122-3535229964-1001\...\Run: [ut] => C:\Users\wilfr\AppData\Roaming\utorrent\uTorrent.exe [2259464 2024-04-24] (BitTorrent Inc -> BitTorrent Limited) HKU\S-1-5-21-521542366-1339637122-3535229964-1001\...\Run: [MP3Studio YouTube Downloader] => C:\Program Files (x86)\MP3Studio YouTube Downloader\MP3StudioDownloader.exe [2404864 2024-07-10] (Able Sun Holdings Ltd.) [Bestand niet getekend] HKU\S-1-5-21-521542366-1339637122-3535229964-1001\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [683072 2025-02-04] (Mozilla Corporation -> Mozilla Corporation) HKU\S-1-5-21-521542366-1339637122-3535229964-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.3\kpm.exe [545696 2024-10-13] (AO Kaspersky Lab -> AO Kaspersky Lab) HKU\S-1-5-21-521542366-1339637122-3535229964-1001\...\Run: [MicrosoftEdgeAutoLaunch_C314A9BC2A7CB4D9E3FABA1197CF703C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3923496 2025-01-30] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\132.0.6834.196\Installer\chrmstp.exe [2025-02-07] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.129\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level GroupPolicy: Restrictie ? <==== AANDACHT Policies: C:\ProgramData\NTUSER.pol: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ================= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {CE990E5A-8820-442C-9F9D-91839BBDDBE4} - System32\Tasks\App Explorer => C:\Users\wilfr\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [8868120 2024-10-21] (SweetLabs Inc -> SweetLabs, Inc) <==== AANDACHT Task: {A68C2CE2-9F6D-4C64-97A0-900E277B7301} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6985.0{B002F446-03DF-45C3-BDAE-19CA05D07BBC} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe [5672544 2025-01-28] (Google LLC -> Google LLC) Task: {D665632F-D8ED-4F81-BEFC-4D52F5FFF6B1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4983528 2024-08-02] (Intel Corporation -> Intel Corporation) Task: {6BCAFE0F-4E12-485E-94D7-9B907E787F13} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4983528 2024-08-02] (Intel Corporation -> Intel Corporation) Task: {7E85D465-BD81-44F8-8217-4A5270DB533E} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-521542366-1339637122-3535229964-1001 => MessengerHelper.exe --lassie (Geen bestand) Task: {16E7EF26-CA3A-4D74-A822-DC68BB79794C} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312432 2025-02-07] (Microsoft Corporation -> Microsoft Corporation) Task: {F3114333-3C34-411E-972D-26AB91E3678A} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312432 2025-02-07] (Microsoft Corporation -> Microsoft Corporation) Task: {E8032454-6B12-4AD0-BAC6-7344C16AC4FC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28752104 2025-01-29] (Microsoft Corporation -> Microsoft Corporation) Task: {92D6D44C-CBB3-47FA-BC55-2A4F34BE9184} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28752104 2025-01-29] (Microsoft Corporation -> Microsoft Corporation) Task: {5B22F8A6-D66B-455A-A3F0-36695189E97B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312432 2025-02-07] (Microsoft Corporation -> Microsoft Corporation) Task: {19CA7B41-F098-4795-BC3F-FD7CA7ED387F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312432 2025-02-07] (Microsoft Corporation -> Microsoft Corporation) Task: {204392F1-75BE-432A-8F46-782DB346A108} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (Geen bestand) Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Geen bestand) Task: {0AEF21FD-97EB-4545-8C09-62322C46AA79} - System32\Tasks\Microsoft\Windows\Setup\SnapshotCleanupTask => C:\Windows\System32\OOBE\SetupPlatform\SetupPlatform.exe -removesnapshot (Geen bestand) Task: {1147263F-2A7B-4845-850D-4D056376B0A5} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UIEOrchestrator => C:\WINDOWS\system32\UIEOrchestrator.exe [336816 2025-01-30] (Microsoft Windows -> ) Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Geen bestand) Task: {AD5090A9-44CC-4672-8526-EEF31D99AC38} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {55592ABB-826A-457A-88B8-4625C458DB2E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {699CF05F-E36C-4398-8A58-223C9B13C95F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D2B1B05A-4DE7-4D71-9017-17975E6E0CA2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-02-04] (Mozilla Corporation -> Mozilla Foundation) Task: {2E519E0B-7426-4E2F-AFFE-C18E7A69FE6D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-521542366-1339637122-3535229964-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Geen bestand) Task: {64A4D8A0-FDCA-412E-A8EC-3AFF30ECB90A} - System32\Tasks\Opera scheduled Autoupdate 1711727796 => C:\Users\wilfr\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe --scheduledtask --bypasslauncher $(Arg0) (Geen bestand) Task: {D9B6B878-8D3F-4535-B19A-F751134021A9} - System32\Tasks\Software Update Application => "C:\ProgramData\OEM\UpgradeTool\ListCheck.exe" (Geen bestand) Task: {3B0524F0-DD48-44D3-992F-323E62E3D39F} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [330472 2021-11-02] (Acer Incorporated -> Acer Incorporated) Task: {0B63E47A-85A9-4A46-BC80-34B68ED49088} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2021-11-02] (Acer Incorporated -> Acer Incorporated) Task: {4627D230-5486-4718-8E24-2202F5DB6BB2} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [200704 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {E6DADF32-2E9A-4F5F-BE36-62782812CC15} - System32\Tasks\Viddly => C:\Program Files\Viddly YouTube Downloader\Viddly.exe [162057520 2024-12-30] (Vitzo LLC -> Vitzo LLC) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{cdcff4b2-244f-4bc2-b723-7e8088d7022c}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{cdcff4b2-244f-4bc2-b723-7e8088d7022c}: [DhcpDomain] home Edge: ======= Edge Profile: C:\Users\wilfr\AppData\Local\Microsoft\Edge\User Data\Default [2025-02-10] Edge Extension: (Offline Documenten) - C:\Users\wilfr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-31] Edge Extension: (Online Security) - C:\Users\wilfr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jcpgbnbdnakoblgfkbgggankeidkfcdl [2025-02-06] Edge Extension: (Edge relevant text changes) - C:\Users\wilfr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-30] Edge Extension: (Connective signing extension) - C:\Users\wilfr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2024-10-29] Edge HKU\S-1-5-21-521542366-1339637122-3535229964-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [jcpgbnbdnakoblgfkbgggankeidkfcdl] Edge HKLM-x32\...\Edge\Extension: [jcpgbnbdnakoblgfkbgggankeidkfcdl] FireFox: ======== FF DefaultProfile: zihmn6bu.default FF ProfilePath: C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\zihmn6bu.default [2023-03-30] FF ProfilePath: C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release [2025-02-10] FF Notifications: Mozilla\Firefox\Profiles\unwiaq5w.default-release -> hxxps://www.veronicasuperguide.nl; hxxps://www.instagram.com; hxxps://www.elle.be; hxxps://www.decathlon.be; hxxps://www.bijlandgenoten.be; hxxps://www.tnaflix.com; hxxps://www.teamjumbovisma.com; hxxps://www.takeaway.com; hxxps://oldschoolmusic.net; hxxps://qwfuu.thunderanvil.top; hxxps://xhkls.flameforgesmith.top; hxxps://onepcseries.co.in; hxxps://www.belambra.fr; hxxps://dailygoodiebox.com; hxxps://x.com; hxxps://www.beckuhgen4all.com; hxxps://trendnieuws.nl FF Extension: (Facebook Container) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\@contain-facebook.xpi [2024-09-04] FF Extension: (Amazon Assistant) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\abb-acer@amazon.com.xpi [2022-12-10] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json] FF Extension: (eID België) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\belgiumeid@eid.belgium.be.xpi [2024-09-11] FF Extension: (Enhancer for YouTube™) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2024-12-03] FF Extension: (AdBlocker for YouTube™) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2024-09-04] FF Extension: (Language: Nederlands (Dutch)) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\langpack-nl@firefox.mozilla.org.xpi [2025-02-05] FF Extension: (TinEye Reverse Image Search) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\tineye@ideeinc.com.xpi [2024-09-04] FF Extension: (YouTube Video Downloader/YouTube HD Download) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\youtubedownloader@youtubedownloadvideo1clickgroup.com.xpi [2024-09-04] FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\wilfr\AppData\Roaming\Mozilla\Firefox\Profiles\unwiaq5w.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2024-09-04] FF Plugin: @java.com/JavaPlugin,version=11.411.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [Geen bestand] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [Geen bestand] FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [Geen bestand] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2023-09-01] <==== AANDACHT (Gericht op * .cfg bestand) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2023-09-01] <==== AANDACHT Chrome: ======= CHR Profile: C:\Users\wilfr\AppData\Local\Google\Chrome\User Data\Default [2025-02-09] CHR StartupUrls: Default -> "hxxps://www.bing.com/?PC=L621" CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210BE91082G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR Extension: (Torrent Scanner) - C:\Users\wilfr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-01-17] CHR Extension: (Offline Documenten) - C:\Users\wilfr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-09] CHR Extension: (Online Security) - C:\Users\wilfr\AppData\Local\Google\Chrome\User Data\Default\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2025-02-09] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\wilfr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-05] CHR HKU\S-1-5-21-521542366-1339637122-3535229964-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] Opera: ======= OPR DefaultProfile: Default ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AVP21.19; C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\avp.exe [32008 2024-10-16] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13617336 2025-01-29] (Microsoft Corporation -> Microsoft Corporation) R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_92455b7686ca5a0e\ipfsvc.exe [543376 2021-11-11] (Intel Corporation -> Intel Corporation) R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [47000 2024-11-25] (Intel Corporation -> Intel) R2 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [330136 2024-11-25] (Intel Corporation -> Intel) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-01-11] (HP Inc. -> HP Inc.) S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation) R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_552f6da0f811dc67\ipf_uf.exe [2423456 2021-11-12] (Intel Corporation -> Intel Corporation) S3 klvssbridge64_21.19; C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\x64\vssbridge64.exe [301472 2024-10-16] (AO Kaspersky Lab -> AO Kaspersky Lab) R2 kpm_service_24.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 24.3\kpm_service.exe [544160 2024-10-13] (AO Kaspersky Lab -> AO Kaspersky Lab) R2 KSDE5.18; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.18\ksde.exe [32008 2024-07-12] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8965728 2024-09-24] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-04-07] (Malwarebytes Inc. -> Malwarebytes) S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation) R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [188736 2021-07-21] (Qualcomm Atheros, Inc. -> ) R2 rsDNSClientSvc; C:\Program Files\ReasonLabs\DNS\rsDNSClientSvc.exe [665088 2024-11-27] (Reason Cybersecurity Inc. -> Reason Software Company Inc.) R2 rsDNSResolver; C:\Program Files\ReasonLabs\DNS\rsDNSResolver.exe [11584144 2024-11-27] (Reason Cybersecurity Inc. -> Reason Software Company Inc.) R2 rsDNSSvc; C:\Program Files\ReasonLabs\DNS\rsDNSSvc.exe [209040 2024-11-27] (Reason Cybersecurity Inc. -> Reason Software Company Inc.) R2 rsVPNClientSvc; C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe [660112 2024-10-27] (Reason Cybersecurity Inc. -> Reason Software Company Inc.) R2 rsVPNSvc; C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe [239248 2024-10-27] (Reason Cybersecurity Inc. -> Reason Software Company Inc.) R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [335080 2021-11-02] (Acer Incorporated -> Acer Incorporated) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [581632 2024-12-02] (Microsoft Windows -> Microsoft Corporation) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [569344 2024-12-02] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [200704 2024-12-02] (Microsoft Corporation) [Bestand niet getekend] R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [245192 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_e11257f05c0c2f89\iaLPSS2_GPIO2_ADL.sys [139928 2021-07-30] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_778b19a5f4d49cba\iaLPSS2_I2C_ADL.sys [202896 2021-07-30] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605296 2022-07-12] (Intel Corporation -> Intel Corporation) R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_2a5df8d503eedca2\ipf_acpi.sys [85656 2022-01-07] (Intel Corporation -> Intel Corporation) R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_552f6da0f811dc67\ipf_cpu.sys [79520 2021-11-12] (Intel Corporation -> Intel Corporation) R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_552f6da0f811dc67\ipf_lf.sys [425616 2021-11-12] (Intel Corporation -> Intel Corporation) R1 klbackupdisk.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\klbackupdisk.sys [93208 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt.K4W-21-19; C:\WINDOWS\System32\DRIVERS\K4W-21-19\klbackupflt.sys [248880 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\kldisk.sys [109104 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [55880 2024-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\klflt.sys [712240 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse.K4W-21-19; C:\WINDOWS\System32\DRIVERS\K4W-21-19\klgse.sys [857432 2024-12-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLHK.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\klhk.sys [2256208 2025-01-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klids.K4W-21-19; C:\ProgramData\Kaspersky Lab\AVP21.19\Bases\klids.sys [236440 2024-12-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klif.K4W-21-19; C:\WINDOWS\System32\DRIVERS\K4W-21-19\klif.sys [1480728 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [86064 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klkbdflt.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\klkbdflt.sys [96304 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\klmouflt.sys [91192 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd.K4W-21-19; C:\WINDOWS\System32\DRIVERS\K4W-21-19\klpd.sys [58904 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\klpnpflt.sys [85528 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 kltun; C:\WINDOWS\system32\DRIVERS\kltun.sys [92192 2024-07-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_K4W-21-19_arkmon; C:\WINDOWS\System32\Drivers\klupd_K4W-21-19_arkmon.sys [398112 2024-12-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_K4W-21-19_klark; C:\WINDOWS\System32\Drivers\klupd_K4W-21-19_klark.sys [362456 2024-12-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_K4W-21-19_klbg; C:\WINDOWS\System32\Drivers\klupd_K4W-21-19_klbg.sys [198728 2024-12-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_K4W-21-19_mark; C:\WINDOWS\System32\Drivers\klupd_K4W-21-19_mark.sys [265816 2024-12-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\klwtp.sys [547368 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps.K4W-21-19; C:\WINDOWS\system32\DRIVERS\K4W-21-19\kneps.sys [385072 2024-10-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [231504 2024-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-04-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 rsDwf; C:\WINDOWS\system32\DRIVERS\rsDwf.sys [54144 2024-11-27] (Reason CyberSecurity Inc. -> Reason CyberSecurity Inc.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2022-11-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2024-12-02] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22104 2024-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [606624 2024-12-02] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-12-02] (Microsoft Windows -> Microsoft Corporation) S3 MpKsldd462060; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E4CB7BEC-5CB0-4B6A-AF18-B9AC969ADBF3}\MpKslDrv.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2025-02-10 18:04 - 2025-02-10 18:05 - 000035486 _____ C:\Users\wilfr\Downloads\FRST.txt 2025-02-10 18:03 - 2025-02-10 18:04 - 000000000 ____D C:\FRST 2025-02-10 18:03 - 2025-02-10 18:03 - 002403328 _____ (Farbar) C:\Users\wilfr\Downloads\FRST64(1).exe 2025-02-10 18:02 - 2025-02-10 18:02 - 002403328 _____ (Farbar) C:\Users\wilfr\Downloads\FRST64.exe 2025-02-10 14:12 - 2025-02-10 14:13 - 754223712 _____ C:\Users\wilfr\Downloads\TAMs01.zip 2025-02-10 13:46 - 2025-02-10 13:46 - 000000955 _____ C:\Users\wilfr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WDTVLiveHub2.lnk 2025-02-10 13:04 - 2025-02-10 13:04 - 000001035 _____ C:\Users\wilfr\OneDrive\Bureaublad\WDTVLiveHub2 - Snelkoppeling (4).lnk 2025-02-10 12:40 - 2025-02-10 12:40 - 000786524 _____ C:\WINDOWS\system32\perfh013.dat 2025-02-10 12:40 - 2025-02-10 12:40 - 000161906 _____ C:\WINDOWS\system32\perfc013.dat 2025-02-10 12:38 - 2025-02-10 12:38 - 000001035 _____ C:\Users\wilfr\OneDrive\Bureaublad\WDTVLiveHub2 - Snelkoppeling (3).lnk 2025-02-10 09:07 - 2025-02-10 09:07 - 000001124 _____ C:\Users\wilfr\OneDrive\Bureaublad\CH6643-a45595 - Snelkoppeling (2).lnk 2025-02-09 15:11 - 2025-02-09 15:11 - 000000000 ___HD C:\$SysReset 2025-02-09 10:28 - 2025-02-09 10:28 - 000073897 _____ C:\Users\wilfr\Downloads\IFeelMyself January 2025.torrent 2025-02-08 16:51 - 2025-02-10 17:42 - 000000734 _____ C:\Users\wilfr\OneDrive\Bureaublad\Kaspersky Premium versie 21.20.8.505 installeren.lnk 2025-02-08 16:51 - 2025-02-10 17:42 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2025-02-08 08:29 - 2025-02-08 08:29 - 000001425 _____ C:\WINDOWS\system32\default_error_stack-000000-000000.txt 2025-02-07 17:30 - 2025-02-10 08:55 - 000001164 _____ C:\Users\wilfr\OneDrive\Bureaublad\WDTVLiveHub - Snelkoppeling (3).lnk 2025-02-07 17:16 - 2013-03-27 13:38 - 000002789 _____ C:\Users\wilfr\Downloads\wdtvlivehub.info 2025-02-07 08:10 - 2025-02-07 08:10 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2025-02-06 17:44 - 2025-02-06 17:44 - 000226902 _____ C:\Users\wilfr\Downloads\Kraven.The.Hunter.2024.HDR.2160p.WEB.NL.torrent 2025-02-06 15:25 - 2025-02-06 15:25 - 000279771 _____ C:\Users\wilfr\Downloads\The Are Murders (2025) Serie 1 Compleet.by www.TorrentHeaven.org.torrent 2025-02-05 14:48 - 2025-02-05 14:48 - 000216576 ____N C:\WINDOWS\Minidump\020525-10218-01.dmp 2025-02-05 14:48 - 2025-02-05 14:48 - 000000000 ____D C:\WINDOWS\Minidump 2025-02-05 12:15 - 2025-02-05 12:15 - 000012389 _____ C:\Users\wilfr\Downloads\Johan.Falk.The.Prequels.Se00Ep01.ZeroTolerance.DvdRip.NL.Subs.DutchReleaseTeam.torrent 2025-02-05 12:14 - 2025-02-05 12:14 - 000013391 _____ C:\Users\wilfr\Downloads\Johan.Falk.The.Prequels.Se00Ep03.The.Third.Wave.DvdRip.NL.Subs.DutchReleaseTeam.torrent 2025-02-05 07:55 - 2025-02-05 07:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2025-02-04 20:22 - 2025-02-05 14:48 - 000000000 ____D C:\Program Files\Mozilla Firefox 2025-01-31 10:31 - 2025-01-31 10:31 - 000502279 _____ C:\Users\wilfr\Downloads\Johan Falk (2015) Serie 3 Compleet.by www.TorrentHeaven.org.torrent 2025-01-30 16:40 - 2025-02-10 14:36 - 000000000 ____D C:\WINDOWS\CbsTemp 2025-01-30 14:38 - 2025-01-30 14:38 - 000027617 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2025-01-30 14:38 - 2025-01-30 14:38 - 000027617 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2025-01-27 17:46 - 2025-01-27 17:46 - 000028534 _____ C:\Users\wilfr\Downloads\Restore_Windows_Photo_Viewer_ALL_USERS.reg 2025-01-27 17:41 - 2025-01-27 17:41 - 000001089 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk 2025-01-27 17:39 - 2025-01-27 17:41 - 000000000 ____D C:\Program Files\Adobe 2025-01-27 17:38 - 2025-01-27 17:38 - 000000000 ____D C:\Users\wilfr\OneDrive\Documenten\Adobe Lightroom Classic 2023 V12.2.1 2025-01-27 17:35 - 2025-01-27 17:35 - 1462757395 _____ C:\Users\wilfr\Downloads\Adobe Lightroom Classic 2023 V12.2.1.zip 2025-01-27 17:01 - 2025-01-27 17:01 - 000160917 _____ C:\Users\wilfr\Downloads\Adobe Photoshop 2024 25.9.0.573 (x64) Meertalig.rar.torrent 2025-01-27 16:59 - 2025-01-27 16:59 - 000027293 _____ C:\Users\wilfr\Downloads\Adobe Acrobat Reader DC 2024.002.20687 X32X64.rar.torrent 2025-01-27 12:19 - 2025-01-27 12:19 - 000001369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixillion Beeldconverter.lnk 2025-01-25 18:47 - 2025-01-25 18:47 - 000117878 _____ C:\Users\wilfr\Downloads\Westhoekwandelroute - Bezoekerscentrum Duinpanne Olmendreef 2 8660 De Panne.gpx 2025-01-25 09:38 - 2025-01-25 09:38 - 000243093 _____ C:\Users\wilfr\Downloads\The.Creator.2024.1080p.WEB.H.265-Broodjebal.mkv.torrent 2025-01-24 10:52 - 2025-01-24 10:55 - 012107776 _____ C:\Users\wilfr\Downloads\GoL16x264.RN2Kmgpa.zip.part 2025-01-24 07:53 - 2025-01-24 07:53 - 000000000 ____D C:\WINDOWS\Panther 2025-01-22 08:40 - 2025-01-22 08:40 - 000484427 _____ C:\Users\wilfr\Downloads\Johan Falk - Seizoen 1 (2009) NL RENTAL 3 X Dvd 9 Verzoekje(2).torrent 2025-01-21 15:15 - 2025-01-21 15:15 - 000332085 _____ C:\Users\wilfr\Downloads\Agatha All Along (S01) MKV 1080p x264 DD5.1 NL Subs(1).torrent 2025-01-20 18:41 - 2025-01-20 18:41 - 000332085 _____ C:\Users\wilfr\Downloads\Agatha All Along (S01) MKV 1080p x264 DD5.1 NL Subs.torrent 2025-01-19 15:46 - 2025-01-19 15:46 - 000568173 _____ C:\Users\wilfr\Downloads\Before They Kill Again Seizoen 1 (2024) Compleet.by www.TorrentHeaven.org.torrent 2025-01-18 08:40 - 2025-01-18 08:40 - 000061560 _____ C:\Users\wilfr\Downloads\The Grinch (2018) 1080p HEVC x265 (Retail NL Subs).mkv.torrent 2025-01-16 15:47 - 2025-01-16 15:47 - 000001440 _____ C:\Users\wilfr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K YouTube to MP3.lnk 2025-01-16 15:45 - 2025-01-16 15:45 - 000000914 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K YouTube to MP3.lnk 2025-01-16 15:39 - 2025-01-16 15:39 - 000091253 _____ C:\Users\wilfr\Downloads\4K YouTube to MP3 5 7 5 Multilingual + Portable.torrent 2025-01-15 08:35 - 2025-01-15 08:36 - 000276093 _____ C:\Users\wilfr\Downloads\Star Wars Skeleton Crew (2024-2025) Serie 1 Compleet.by www.TorrentHeaven.org.torrent 2025-01-12 15:06 - 2025-01-12 15:06 - 000000000 ____D C:\Program Files\HP 2025-01-11 10:07 - 2025-01-11 10:07 - 000108047 _____ C:\Users\wilfr\Downloads\Safe.Harbor.S01.1080p.VDL.WEB-DL.AAC2.0.H.264-Broodjebal.torrent ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2025-02-10 18:07 - 2022-12-10 18:55 - 000000000 ____D C:\Users\wilfr\AppData\Roaming\utorrent 2025-02-10 18:00 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2025-02-10 17:42 - 2024-12-02 12:29 - 000000000 ____D C:\Users\wilfr\AppData\Local\D3DSCache 2025-02-10 17:36 - 2022-05-15 11:59 - 000000000 ____D C:\Program Files\Microsoft Office 2025-02-10 14:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness 2025-02-10 13:44 - 2022-12-10 19:00 - 000000000 ____D C:\Users\wilfr\AppData\Roaming\vlc 2025-02-10 13:15 - 2024-12-02 12:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2025-02-10 13:14 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp 2025-02-10 12:40 - 2024-12-02 12:26 - 001773998 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2025-02-10 12:40 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF 2025-02-10 12:38 - 2024-09-16 15:34 - 004120032 _____ C:\WINDOWS\SysWOW64\AppRulesStorage-wal 2025-02-10 12:38 - 2022-12-10 20:34 - 000000000 ____D C:\Users\wilfr\AppData\Local\CrashDumps 2025-02-10 12:38 - 2022-12-10 18:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2025-02-10 12:37 - 2024-06-11 16:46 - 000000000 ____D C:\Users\wilfr\AppData\Roaming\viddly 2025-02-10 12:36 - 2024-12-02 12:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2025-02-10 12:36 - 2024-12-02 12:26 - 000010220 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 2025-02-10 12:36 - 2024-12-02 12:23 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2025-02-10 12:36 - 2024-09-16 15:34 - 000032768 _____ C:\WINDOWS\SysWOW64\DnsStorage-shm 2025-02-10 12:36 - 2024-09-16 15:34 - 000032768 _____ C:\WINDOWS\SysWOW64\AppRulesStorage-shm 2025-02-10 12:36 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState 2025-02-10 12:36 - 2024-04-01 08:21 - 000262144 _____ C:\WINDOWS\system32\config\BBI 2025-02-10 12:35 - 2024-12-02 12:17 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys 2025-02-10 08:57 - 2024-01-31 15:18 - 000001929 _____ C:\Users\wilfr\OneDrive\Bureaublad\WDTVLiveHub (WDTVLIVEHUB) - Snelkoppeling.lnk 2025-02-10 08:09 - 2022-12-10 18:11 - 000000000 ____D C:\Users\wilfr\AppData\Local\Host App Service 2025-02-09 21:45 - 2023-07-14 19:11 - 000001027 _____ C:\Users\wilfr\OneDrive\Bureaublad\WDTVLiveHub - Snelkoppeling (2).lnk 2025-02-09 20:31 - 2024-01-30 17:06 - 000000000 ____D C:\Users\wilfr\AppData\Roaming\Microsoft\MMC 2025-02-09 18:40 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\NDF 2025-02-09 18:03 - 2022-12-10 18:14 - 000000000 ____D C:\Users\wilfr\AppData\Local\Packages 2025-02-08 17:46 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps 2025-02-08 16:41 - 2023-07-06 17:48 - 000000951 _____ C:\Users\wilfr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WDTVLiveHub.lnk 2025-02-07 17:29 - 2023-01-27 06:24 - 000000000 ____D C:\Users\wilfr\AppData\Local\ElevatedDiagnostics 2025-02-07 12:31 - 2023-03-05 11:43 - 000002325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2025-02-07 08:18 - 2024-04-10 11:51 - 000000906 _____ C:\Users\wilfr\OneDrive\Bureaublad\µTorrent.lnk 2025-02-07 08:10 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2025-02-05 22:12 - 2024-12-02 12:25 - 000000000 ____D C:\Users\wilfr 2025-02-05 14:48 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2025-02-05 14:48 - 2022-05-15 11:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2025-02-05 07:55 - 2023-09-01 18:14 - 000012288 _____ C:\WINDOWS\SysWOW64\AppRulesStorage 2025-02-05 07:55 - 2022-05-15 11:55 - 000001069 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2025-02-03 12:19 - 2024-12-02 12:28 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software 2025-02-03 08:00 - 2022-05-15 11:12 - 000012288 ___SH C:\DumpStack.log.tmp 2025-02-02 23:07 - 2023-03-06 22:09 - 000000000 ____D C:\Users\wilfr\AppData\Roaming\Azureus 2025-02-02 18:57 - 2024-12-08 17:13 - 000000000 ____D C:\Users\wilfr\OneDrive\Documenten\Vuze Downloads 2025-01-31 19:05 - 2022-05-15 11:12 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2025-01-31 09:10 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate 2025-01-31 08:54 - 2024-12-02 12:23 - 000529784 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2025-01-31 08:53 - 2024-12-02 12:19 - 000000000 ____D C:\WINDOWS\InboxApps 2025-01-31 08:53 - 2024-04-01 17:14 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2025-01-31 08:53 - 2024-04-01 17:14 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2025-01-31 08:53 - 2024-04-01 17:14 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\UNP 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\DDFs 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr 2025-01-31 08:53 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System 2025-01-31 08:53 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\servicing 2025-01-30 14:38 - 2024-12-02 12:24 - 003334656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2025-01-29 08:13 - 2024-12-05 14:39 - 000000000 ____D C:\WINDOWS\system32\Drivers\K4W-21-19 2025-01-27 17:41 - 2022-12-10 18:16 - 000000000 ___RD C:\Users\wilfr\OneDrive 2025-01-27 17:39 - 2024-02-13 14:32 - 000000000 ____D C:\Users\wilfr\AppData\Local\Adobe 2025-01-27 17:39 - 2024-02-13 14:32 - 000000000 ____D C:\ProgramData\Adobe 2025-01-27 17:39 - 2022-05-15 11:54 - 000000000 ____D C:\ProgramData\Package Cache 2025-01-27 12:19 - 2024-11-20 17:56 - 000000000 ____D C:\Users\wilfr\AppData\Roaming\NCH Software 2025-01-27 12:19 - 2024-11-20 17:56 - 000000000 ____D C:\ProgramData\NCH Software 2025-01-27 12:19 - 2024-11-20 17:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite 2025-01-16 14:21 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2025-01-15 19:25 - 2022-12-10 12:43 - 000000000 ____D C:\WINDOWS\system32\MRT 2025-01-15 19:23 - 2022-12-10 12:43 - 206927936 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2025-01-15 15:47 - 2022-12-10 18:14 - 000000000 ____D C:\ProgramData\Packages 2025-01-15 15:46 - 2024-12-21 17:20 - 000000000 ____D C:\Program Files (x86)\Freemake 2025-01-15 15:46 - 2022-12-15 18:00 - 000000000 ____D C:\ProgramData\Freemake 2025-01-11 10:45 - 2023-01-27 06:28 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2025-01-11 09:09 - 2024-12-02 12:28 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP ==================== Bestanden in de root van sommige mappen ======== 2024-09-11 11:45 - 2024-11-30 21:38 - 000023880 _____ () C:\Users\wilfr\AppData\Roaming\.BEID_0.log 2024-12-21 18:18 - 2016-01-03 23:48 - 000000031 _____ () C:\Users\wilfr\AppData\Roaming\firstrunymd.dll 2024-12-21 18:18 - 2021-05-06 13:13 - 000000701 _____ () C:\Users\wilfr\AppData\Roaming\soundymd.dll 2024-12-21 18:18 - 2025-01-02 09:20 - 000000016 _____ () C:\Users\wilfr\AppData\Roaming\ymddefault.ini 2024-12-24 10:42 - 2024-12-31 14:08 - 005414472 _____ (SilkenMermaid Technologies Private Limited ) C:\Users\wilfr\AppData\Local\TurboCollageSetup.exe 2024-12-24 10:41 - 2024-12-31 14:08 - 000000062 _____ () C:\Users\wilfr\AppData\Local\{63BE1D37-80D5-4693-826C-3B6A361CE219} 2024-12-31 14:08 - 2024-12-31 14:08 - 000000000 _____ () C:\Users\wilfr\AppData\Local\{AAF86E04-803E-48BB-9492-DDAD527365CB} ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================