Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 28-12-2019 Gestart door Leo (Beheerder) op DESKTOP-H2G7JK4 (Hewlett-Packard 700-509nb) (31-12-2019 12:59:55) Gestart vanaf C:\Users\Leo\Downloads Geladen Profielen: Leo (Beschikbare Profielen: Leo) Platform: Windows 10 Home Versie 1809 17763.914 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0343557.inf_amd64_9d3e5e0309b624cc\B343462\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0343557.inf_amd64_9d3e5e0309b624cc\B343462\atiesrxx.exe (AMD) [Bestand niet getekend] C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe (AMD) [Bestand niet getekend] C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe (AMD) [Bestand niet getekend] C:\Program Files\AMD\Performance Profile Client\AUEPUF.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Intel Corporation) [Bestand niet getekend] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avpui.exe (Krzysztof Kowalczyk -> Krzysztof Kowalczyk) C:\Program Files\SumatraPDF\SumatraPDF.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17763.850_none_7e18264b4d00f498\TiWorker.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Node.js Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\Plugins\WD Backup\App\WDBackupService.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe (X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtHDVBg_SOUNDEDGE] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-05-20] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8849152 2016-05-20] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1890664 2016-01-14] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1761120 2015-12-07] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2017-10-20] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2084920 2019-09-27] (Adobe Inc. -> Adobe Inc.) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-15] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\RunOnce: [Application Restart #4] => C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe [2487352 2019-09-27] (Adobe Inc. -> Adobe Inc.) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe [2487352 2019-09-27] (Adobe Inc. -> Adobe Inc.) HKU\S-1-5-21-3412851300-2870964825-4123225172-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-17] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Kaspersky Software Updater Beta.lnk [2016-11-14] ShortcutTarget: Kaspersky Software Updater Beta.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe (Kaspersky Lab -> AO Kaspersky Lab) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logo Calibration Loader.lnk [2019-12-28] ShortcutTarget: Logo Calibration Loader.lnk -> C:\Program Files (x86)\GretagMacbeth\i1\Eye-One Match 3\CalibrationLoader\CalibrationLoader.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [Bestand niet getekend] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ProfileReminder.lnk [2019-12-28] ShortcutTarget: ProfileReminder.lnk -> C:\Program Files (x86)\GretagMacbeth\i1\Eye-One Match 3\ProfileReminder.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [Bestand niet getekend] Startup: C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 2540 series (Kopie 1).lnk [2019-12-31] ShortcutAndArgument: Inktwaarschuwingen controleren - HP Deskjet 2540 series (Kopie 1).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN48B4726K0604;CONNECTION=USB;MONITOR=1; Startup: C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk [2019-02-13] ShortcutAndArgument: Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN48B4726K0604;CONNECTION=USB;MONITOR=1; ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0526F778-36FE-4DDF-809F-1B6EE90949DB} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [66952 2019-06-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {079B768F-15CC-4E81-9F59-582F003EFBED} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: {07A3AA8B-90AB-44E1-A04B-B009AE477374} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {149ABDE6-4516-4810-A7BA-843E392555B9} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-06-12] (Advanced Micro Devices, Inc.) [Bestand niet getekend] Task: {176CCCA8-5C81-4897-ADAA-94BE335F4AEF} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe Task: {1C4CC498-4DA7-4663-A7C4-CF62BD658DC4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe Task: {1CEBDEED-A6A2-4A1B-B64B-D4E4C0C7C4D4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6072640 2019-12-06] (Microsoft Corporation -> Microsoft Corporation) Task: {1EEE00DF-2A65-4D81-8D55-7A2477F6E9EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {26E89039-0CCE-4717-AD1D-FE44BEDBFA50} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe Task: {27C75A84-8A7F-4331-B6A9-07BD06C83D86} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-06-12] (Advanced Micro Devices, Inc.) [Bestand niet getekend] Task: {31D16ED8-D538-4A27-8B11-55B8B0C6EFDA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {35C40CA5-63F8-475B-9F02-46F1D2ADDB39} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation) Task: {3F82C410-B39F-4C78-A287-599483E3E2BF} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS.exe Task: {4AF2BD04-EF21-40DE-A5E1-86C721560506} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files (x86)\PrivaZer\PrivaZer.exe [17403512 2019-12-26] (Goversoft LLC -> Goversoft LLC) Task: {4CC1E44A-0F97-4A00-8EF5-C97D6CCD4A95} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-15] (Piriform Software Ltd -> Piriform Software Ltd) Task: {4F32DB3F-FED2-40CD-B642-1FBAE211573F} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [31656 2019-01-24] (X-Rite Incorporated -> X-Rite Inc.) Task: {527F4FCE-CA45-4121-951D-C3D6066EFFA7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-18] (Google Inc -> Google Inc.) Task: {5714C9F6-0C9A-4EBD-B326-545D5169B4E8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {60E2558F-A57C-4D16-97A4-2200B0A65205} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {6AAA9BB8-CB8B-4D28-83D9-AE704ED9292B} - System32\Tasks\Office 2019 Re-Activation => C:\Users\Leo\Downloads\Microsoft [Argument = Office 2019 pro\ActO19-v2.cmd -renewalonly] Task: {6E92FC14-2D77-4237-A5D4-70EEE539CBE3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-15] (Piriform Software Ltd -> Piriform Ltd) Task: {7F58A35E-001E-4945-ABB6-5B9AA624EC8D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {7FD65191-2391-44DA-8F50-08EB9329ACD5} - System32\Tasks\Durée de vie => C:\Mireille\Statique.exe [264704 2016-05-14] () [Bestand niet getekend] Task: {8158C9DE-C066-455B-8FBD-7012180AC7AB} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2107800 2019-12-14] (Microsoft Corporation -> Microsoft Corporation) Task: {848B5799-9E41-48BD-9170-2D351F15191F} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => J:\Windows Driver Kit\Common7\IDE\VSIXAutoUpdate.exe Task: {870862F8-4247-4D46-8560-2707723336A7} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-leo.vonk@telenet.be => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {88723A85-D0F1-4C39-A4D7-876453A91926} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {89AB4935-4493-447B-835C-6D2064462DF8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155472 2019-12-14] (Microsoft Corporation -> Microsoft Corporation) Task: {8C6B9913-9977-42F4-9245-606E0CABA9FD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe Task: {8CF7DCE6-34D5-45C1-BE48-2E79A813EC67} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [5745672 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) Task: {8E49497F-6ECD-4A80-B9F1-B0615CEF0961} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155472 2019-12-14] (Microsoft Corporation -> Microsoft Corporation) Task: {92040A38-1F36-4D52-A86E-0A7CBED24250} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [59784 2019-06-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {97F27DDF-F0BA-4FB0-980C-D421FF3A2509} - System32\Tasks\HPCeeScheduleForLeo => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2017-10-20] (Hewlett-Packard Company -> Hewlett-Packard) Task: {994F35F8-DAF8-4C34-BE4E-0AA8A2D4BF1F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {99B260A6-F522-4A7B-B7ED-C8D5AA949FB5} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe Task: {A58C1889-7E02-4D94-ACD8-2C49764A4B0B} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [59784 2019-06-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {B866E375-B623-4E18-8AB2-4A3BD6B96F59} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-18] (Google Inc -> Google Inc.) Task: {CE68DA6D-B3D0-4E62-96F0-B0219A2BA923} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2107800 2019-12-14] (Microsoft Corporation -> Microsoft Corporation) Task: {E8F4168F-7096-4407-A91E-D2852E2417C9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation) Task: {F28E9252-7FB3-434F-9698-80A2A3411B4F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6072640 2019-12-06] (Microsoft Corporation -> Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\WINDOWS\AutoKMS.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForLeo.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\WINDOWS\Tasks\X-Rite Device Services Software Updater.job => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.131.5 195.130.130.5 Tcpip\..\Interfaces\{6e7498c5-e31e-46ad-ba34-0e38fb70c6d0}: [DhcpNameServer] 195.130.131.133 195.130.130.5 Tcpip\..\Interfaces\{9baca6b7-3204-469b-ac24-9ff09734e086}: [DhcpNameServer] 195.130.131.5 195.130.130.5 Tcpip\..\Interfaces\{af46a1dd-8de2-4dae-b91d-d03e740e144b}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{ce096b84-6f7a-49cf-9a8e-3133359ce9b3}: [DhcpNameServer] 195.130.130.134 195.130.131.134 Internet Explorer: ================== SearchScopes: HKU\S-1-5-21-3412851300-2870964825-4123225172-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 SearchScopes: HKU\S-1-5-21-3412851300-2870964825-4123225172-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3412851300-2870964825-4123225172-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) BHO: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-29] (Kaspersky Lab -> AO Kaspersky Lab) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\IEExt\ie_plugin.dll [2019-12-29] (Kaspersky Lab -> AO Kaspersky Lab) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-29] (Kaspersky Lab -> AO Kaspersky Lab) Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\IEExt\ie_plugin.dll [2019-12-29] (Kaspersky Lab -> AO Kaspersky Lab) Toolbar: HKU\S-1-5-21-3412851300-2870964825-4123225172-1002 -> Geen Naam - {C500C267-63BF-451F-8797-4D720C9A2ED9} - Geen bestand Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: a2mdf637.default-1476091533538-1555082730451 FF ProfilePath: C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451 [2019-12-31] FF Homepage: Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451 -> hxxp://www.destandaard.be/ FF Notifications: Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451 -> hxxps://canonrumors.pushcrew.com; hxxps://www.youtube.com; hxxps://www.instagram.com; hxxps://www.hln.be; hxxps://www.standaard.be; hxxps://www.gva.be; hxxps://www.nieuwsblad.be; hxxps://www.tui.be; hxxps://mentcosme.info; hxxps://www.onskookboek.be; hxxps://www.thephotoargus.com FF Extension: (eID België) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451\Extensions\belgiumeid@eid.belgium.be.xpi [2019-04-12] FF Extension: (eID Chrome Extension) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451\Extensions\eid-chrome-extension@e-contract.be.xpi [2019-06-26] [UpdateUrl:hxxps://www.e-contract.be/eid-chrome/releases/eid-chrome-extension-updates.json] FF Extension: (Exif Viewer) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451\Extensions\exif_viewer@mozilla.doslash.org.xpi [2019-04-12] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2019-12-13] FF Extension: (Connective signing extension) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451\Extensions\{4f643bc8-78f5-49c6-8efd-78ee30289f0b}.xpi [2019-08-08] FF Extension: (Beste Prijs - Test Aankoop) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451\Extensions\{cd9c77fb-d9ac-4ca6-826e-fdc913cab733}.xpi [2019-10-27] FF Extension: (Adblock Plus - gratis adblocker) - C:\Users\Leo\AppData\Roaming\Mozilla\Firefox\Profiles\a2mdf637.default-1476091533538-1555082730451\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-10-23] FF HKLM\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-12-29] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-10] (Adobe Inc. -> ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-09-27] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [Geen bestand] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC) FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-09-27] (Adobe Inc. -> Adobe Systems) FF Plugin HKU\S-1-5-21-3412851300-2870964825-4123225172-1002: connective.be/BrowserPlugin -> C:\Users\Leo\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-07-17] (Connective n.v.) [Bestand niet getekend] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-12-29] <==== AANDACHT (Gericht op * .cfg bestand) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-12-29] <==== AANDACHT Chrome: ======= CHR HomePage: Default -> hxxp://www.destandaard.be/ CHR StartupUrls: Default -> "hxxp://www.standaard.be/","hxxp://www.google.com" CHR Profile: C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default [2019-10-30] CHR Extension: (Documenten) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-02-18] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-02-18] CHR Extension: (Chrome Media Router) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-12] CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [823352 2019-09-27] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0343557.inf_amd64_9d3e5e0309b624cc\B343462\atiesrxx.exe [507512 2019-06-17] (Advanced Micro Devices, Inc. -> AMD) R2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe [43008 2019-06-12] (AMD) [Bestand niet getekend] R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11345992 2019-11-28] (Microsoft Corporation -> Microsoft Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2017-10-20] (Intel Corporation) [Bestand niet getekend] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Bestand niet getekend] S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [354008 2019-02-08] (Kaspersky Lab -> AO Kaspersky Lab) R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [310016 2016-05-20] (Realtek Semiconductor Corp -> Realtek Semiconductor) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19256 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19256 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19256 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19256 2018-09-15] (Microsoft Windows -> Microsoft Corporation) R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [308088 2016-01-14] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-28] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-28] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [2108752 2019-10-18] (Wacom Technology Corporation -> Wacom Technology, Corp.) R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [91048 2019-01-24] (X-Rite Incorporated -> X-Rite Inc.) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0343557.inf_amd64_9d3e5e0309b624cc\B343462\atikmdag.sys [55251360 2019-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0343557.inf_amd64_9d3e5e0309b624cc\B343462\atikmpag.sys [593824 2019-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [107936 2019-05-17] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 EyeOneDisplay; C:\WINDOWS\System32\Drivers\i1display_x64.sys [7808 2005-12-13] (X-Rite Incorporated -> GretagMacbeth LLC) S3 hidkmdf; C:\WINDOWS\System32\drivers\hidkmdf.sys [14016 2015-11-30] (Wacom Technology Corp. -> Windows (R) Win 7 DDK provider) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-05-20] (Martin Malik - REALiX -> REALiX(tm)) R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79696 2019-12-17] (Kaspersky Lab -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145304 2019-12-17] (Kaspersky Lab -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251512 2019-12-17] (Kaspersky Lab -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [516216 2019-09-17] (Kaspersky Lab -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1123664 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab) S3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [201280 2019-12-29] (Kaspersky Lab -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998016 2019-12-17] (Kaspersky Lab -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [251256 2019-10-10] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-03-25] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [306248 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [119744 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [204520 2019-10-10] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab) R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2019-12-17] (Kaspersky Lab -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [936192 2016-05-20] (Realtek Semiconductor Corp -> Realtek ) R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [7904088 2018-04-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [134096 2019-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.) S3 wacomrouterfilter; C:\WINDOWS\System32\drivers\wacomrouterfilter.sys [35256 2019-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-28] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-28] (Microsoft Windows -> Microsoft Corporation) S2 PDIHWCTL; \??\C:\WINDOWS\system32\drivers\pdihwctl.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-12-31 12:59 - 2019-12-31 13:02 - 000045259 _____ C:\Users\Leo\Downloads\FRST.txt 2019-12-31 12:58 - 2019-12-31 12:58 - 002272256 _____ (Farbar) C:\Users\Leo\Downloads\FRST64.exe 2019-12-31 00:04 - 2019-12-31 00:05 - 000000000 ____D C:\Users\Leo\Downloads\Photoshop skin retouching_julia trotti 2019-12-30 16:22 - 2019-12-30 16:22 - 000000000 ____D C:\Users\Leo\Downloads\Samsung J3 backup 2019-12-29 13:28 - 2019-12-29 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security 2019-12-29 13:28 - 2019-12-29 13:27 - 000002185 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk 2019-12-28 19:49 - 2019-12-28 19:49 - 000001033 _____ C:\Users\Leo\Desktop\Adobe Bridge 2020.lnk 2019-12-28 19:42 - 2019-12-28 19:42 - 000001375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2019-12-28 16:10 - 2019-12-28 16:10 - 000001071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk 2019-12-28 13:31 - 2005-12-22 13:11 - 000047104 _____ (Thesycon GmbH, Germany) C:\WINDOWS\system32\Drivers\EyeOneX64.sys 2019-12-28 13:31 - 2005-12-13 16:53 - 000007808 _____ (GretagMacbeth LLC) C:\WINDOWS\system32\Drivers\SeqCal.sys 2019-12-28 13:16 - 2019-12-28 14:03 - 000000428 _____ C:\WINDOWS\Tasks\X-Rite Device Services Software Updater.job 2019-12-28 13:16 - 2019-12-28 13:16 - 000003024 _____ C:\WINDOWS\system32\Tasks\X-Rite Device Services Software Updater 2019-12-28 13:16 - 2019-12-28 13:16 - 000000000 ____D C:\ProgramData\X-Rite 2019-12-28 13:15 - 2019-12-28 13:15 - 000000000 ____D C:\Users\Leo\AppData\Roaming\X-Rite 2019-12-28 12:37 - 2019-12-28 12:40 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll 2019-12-28 12:37 - 2019-12-28 12:40 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll 2019-12-28 12:37 - 2019-12-28 12:40 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll 2019-12-28 12:37 - 2019-12-28 12:40 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll 2019-12-28 12:37 - 2019-12-28 12:40 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll 2019-12-28 12:37 - 2019-12-28 12:40 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll 2019-12-28 12:37 - 2019-12-28 12:40 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll 2019-12-28 12:37 - 2019-12-28 12:40 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll 2019-12-28 12:36 - 2019-12-28 12:40 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll 2019-12-28 12:36 - 2019-12-28 12:40 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll 2019-12-28 00:27 - 2019-12-28 00:27 - 000001375 _____ C:\Users\Leo\Desktop\Adobe Creative Cloud.lnk 2019-12-28 00:27 - 2019-12-28 00:27 - 000001071 _____ C:\Users\Leo\Desktop\Adobe Photoshop 2020.lnk 2019-12-27 23:43 - 2019-12-27 23:43 - 000001033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge 2020.lnk 2019-12-27 23:42 - 2019-12-27 23:42 - 000001092 _____ C:\Users\Leo\Desktop\Adobe Lightroom Classic.lnk 2019-12-27 23:25 - 2019-12-31 11:00 - 000000000 ___RD C:\Users\Leo\Creative Cloud Files 2019-12-27 10:58 - 2019-12-27 10:58 - 000536144 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-12-27 10:58 - 2019-12-27 10:58 - 000000000 ____D C:\WINDOWS\Panther 2019-12-26 17:38 - 2019-12-26 17:39 - 000000000 ____D C:\Users\Leo\Downloads\Backup geheugenkaart Samsung 2019-12-26 13:42 - 2019-12-31 10:58 - 000003108 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2019-12-23 21:57 - 2019-12-23 21:57 - 000001988 _____ C:\Users\Public\Desktop\ON1 Photo RAW 2019.lnk 2019-12-23 21:57 - 2019-12-23 21:57 - 000000000 ____D C:\Users\TEMP\AppData\Roaming\ON1 2019-12-23 21:56 - 2019-12-23 21:56 - 000000000 ____D C:\Program Files (x86)\ON1 2019-12-23 21:51 - 2019-12-23 21:52 - 1372393312 _____ (ON1) C:\Users\Leo\Downloads\ON1_Photo_RAW_2019.exe 2019-12-22 22:48 - 2019-12-22 22:48 - 000001203 _____ C:\Users\Public\Desktop\FastStone Image Viewer.lnk 2019-12-22 22:48 - 2019-12-22 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer 2019-12-22 22:48 - 2019-12-22 22:48 - 000000000 ____D C:\Program Files (x86)\FastStone Image Viewer 2019-12-22 22:27 - 2019-12-22 22:28 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Luminar 4 2019-12-22 22:25 - 2019-12-22 22:25 - 000001082 _____ C:\Users\Public\Desktop\Luminar 4.lnk 2019-12-22 22:23 - 2019-12-22 22:23 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Skylum 2019-12-22 21:50 - 2019-12-22 21:50 - 000000000 ____D C:\Users\Leo\Downloads\On1PhotoRaw2020 2019-12-20 23:43 - 2019-12-20 23:43 - 000001259 _____ C:\Users\Leo\Desktop\ON1 Photo RAW 2020.lnk 2019-12-20 23:43 - 2019-12-20 23:43 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ON1 2019-12-20 23:43 - 2019-12-17 04:03 - 002110968 _____ (ON1, Inc.) C:\WINDOWS\system32\ONCoreFoundation14.dll 2019-12-20 23:43 - 2019-12-17 04:03 - 002107384 _____ (ON1, Inc.) C:\WINDOWS\system32\ONCore14.dll 2019-12-20 23:43 - 2019-12-17 04:03 - 001102328 _____ (ON1, Inc.) C:\WINDOWS\system32\ONDocument14.dll 2019-12-20 23:43 - 2019-12-17 04:03 - 000479736 _____ (ON1, Inc.) C:\WINDOWS\system32\ONProxySupport14.dll 2019-12-20 23:43 - 2019-12-17 04:03 - 000382456 _____ C:\WINDOWS\system32\ONCMS14.dll 2019-12-19 10:57 - 2019-12-19 10:57 - 000001310 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk 2019-12-19 10:57 - 2019-12-19 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager 2019-12-19 00:01 - 2019-12-19 00:01 - 008237744 _____ (Malwarebytes) C:\Users\Leo\Downloads\adwcleaner_8.0.1.exe 2019-12-18 17:28 - 2019-12-18 23:59 - 000000000 ____D C:\Users\Leo\Downloads\Lightroom presets 2019-12-17 08:00 - 2019-12-17 08:00 - 000079696 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klbackupdisk.sys 2019-12-16 21:00 - 2019-12-16 21:00 - 000001268 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk 2019-12-16 21:00 - 2019-12-16 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection 2019-12-10 20:20 - 2019-12-10 20:20 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-12-10 20:20 - 2019-12-10 20:20 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-12-10 20:20 - 2019-12-10 20:20 - 001465264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-12-10 20:20 - 2019-12-10 20:20 - 001201128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2019-12-10 20:20 - 2019-12-10 20:20 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-12-10 20:20 - 2019-12-10 20:20 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-12-10 20:19 - 2019-12-10 20:20 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 009668408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 007645384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 006541712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 006444032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 003638272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-12-10 20:19 - 2019-12-10 20:19 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-12-10 20:19 - 2019-12-10 20:19 - 002699768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 002233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 001702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-12-10 20:19 - 2019-12-10 20:19 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 001676288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 001668960 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 001656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 001473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 001258296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 001049400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 000793824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 000678672 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 000603792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2019-12-10 20:19 - 2019-12-10 20:19 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 000508928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000505632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-12-10 20:19 - 2019-12-10 20:19 - 000408736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000203064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevQueryBroker.dll 2019-12-10 20:19 - 2019-12-10 20:19 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-12-10 20:19 - 2019-12-10 20:19 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-12-10 20:19 - 2019-12-10 20:19 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-12-10 20:19 - 2019-12-10 20:19 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-12-10 20:19 - 2019-12-10 20:19 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-12-10 20:19 - 2019-12-10 20:19 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-12-10 20:19 - 2019-12-10 20:19 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-12-10 20:19 - 2019-12-10 20:19 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-12-10 13:23 - 2019-12-27 23:42 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk 2019-12-10 00:32 - 2019-12-10 00:32 - 000000000 ____D C:\Users\Leo\Downloads\Luminar 4 2019-12-06 19:56 - 2019-12-15 23:08 - 000000000 ____D C:\Users\Leo\Documents\DxO PhotoLab 3 logs 2019-12-06 19:51 - 2019-12-06 19:51 - 000001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO PhotoLab 3.lnk 2019-12-06 19:51 - 2019-12-06 19:51 - 000001083 _____ C:\Users\Public\Desktop\DxO PhotoLab 3.lnk 2019-12-04 12:22 - 2019-12-29 14:05 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-12-02 13:22 - 2019-12-02 13:22 - 000000000 ____D C:\Users\Leo\Downloads\TK basic lumenzia V6 2019-12-01 17:11 - 2019-12-01 17:11 - 000000000 ____D C:\Users\Leo\Documents\Topaz Labs LLC 2019-12-01 17:04 - 2019-12-01 17:05 - 000000000 ____D C:\Users\Leo\Downloads\Topaz Studio 2.2.0 ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-12-31 13:01 - 2019-04-12 14:45 - 000000000 ____D C:\FRST 2019-12-31 13:01 - 2015-11-16 21:48 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2019-12-31 12:58 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-12-31 12:52 - 2019-02-13 12:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-12-31 11:19 - 2018-05-02 15:44 - 000000000 ____D C:\Users\Leo\AppData\Local\D3DSCache 2019-12-31 11:19 - 2016-11-18 14:09 - 000000000 ____D C:\Users\Leo\AppData\LocalLow\Mozilla 2019-12-31 11:02 - 2018-07-28 13:32 - 000000000 ___HD C:\adobeTemp 2019-12-31 10:58 - 2019-02-13 13:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-12-31 10:58 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF 2019-12-31 10:58 - 2015-11-20 23:54 - 000000000 ____D C:\Users\Leo\AppData\Roaming\WTablet 2019-12-31 00:23 - 2018-09-15 07:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-12-31 00:23 - 2017-05-15 12:21 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2019-12-31 00:19 - 2017-08-24 22:29 - 000000000 ____D C:\Users\Leo\AppData\Roaming\vlc 2019-12-31 00:05 - 2019-10-03 18:44 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2019-12-30 23:00 - 2017-12-02 18:37 - 000000000 ____D C:\Users\Leo\AppData\Local\Packages 2019-12-30 15:39 - 2016-01-25 11:54 - 000000000 ____D C:\Users\Leo\Downloads\Smartphones 2019-12-30 11:11 - 2019-02-13 13:13 - 001925480 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-12-30 11:11 - 2018-09-15 17:42 - 000826754 _____ C:\WINDOWS\system32\perfh013.dat 2019-12-30 11:11 - 2018-09-15 17:42 - 000172240 _____ C:\WINDOWS\system32\perfc013.dat 2019-12-29 23:26 - 2016-10-21 20:46 - 000000000 ____D C:\ProgramData\boost_interprocess 2019-12-29 13:36 - 2016-10-28 16:59 - 000000000 ____D C:\Program Files\Common Files\AV 2019-12-29 13:28 - 2017-06-27 18:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2019-12-29 13:28 - 2015-11-16 21:48 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2019-12-29 13:27 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-12-29 13:25 - 2016-07-27 10:52 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2019-12-29 12:16 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-12-29 12:09 - 2018-04-07 10:44 - 000000356 _____ C:\WINDOWS\Tasks\HPCeeScheduleForLeo.job 2019-12-28 19:46 - 2018-05-02 15:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-12-28 19:42 - 2019-06-10 21:28 - 000000000 ____D C:\Program Files\Common Files\Adobe 2019-12-28 19:41 - 2019-10-26 11:55 - 000000000 ____D C:\Program Files (x86)\Adobe 2019-12-28 19:41 - 2018-06-16 21:35 - 000000000 ____D C:\Program Files\Adobe 2019-12-28 19:39 - 2016-10-21 19:13 - 000000000 ___HD C:\temp 2019-12-28 16:10 - 2019-06-10 21:34 - 000000000 ____D C:\Users\Leo\Documents\Adobe 2019-12-28 16:09 - 2019-06-10 21:34 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Adobe 2019-12-28 14:42 - 2019-02-13 13:20 - 000003240 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForLeo 2019-12-28 14:01 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-12-28 13:53 - 2016-04-11 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GretagMacbeth 2019-12-28 13:16 - 2016-04-11 19:32 - 000000000 ____D C:\Program Files (x86)\X-Rite 2019-12-28 12:42 - 2019-02-13 12:58 - 000000000 ____D C:\Users\Leo 2019-12-27 23:29 - 2019-10-26 11:52 - 000000000 ____D C:\ProgramData\Adobe 2019-12-27 23:02 - 2019-06-10 21:26 - 000000000 ____D C:\Users\Leo\AppData\Local\Adobe 2019-12-27 22:43 - 2019-07-13 15:49 - 000000000 ____D C:\Users\Leo\AppData\Local\PrivaZer 2019-12-27 21:34 - 2019-10-26 14:24 - 000000000 ___RD C:\Users\Leo\Creative Cloud Files (archived) (2) 2019-12-27 01:15 - 2019-02-25 21:21 - 000000012 _____ C:\Users\Leo\AppData\Roaming\channelChoice.ini 2019-12-26 01:19 - 2016-10-16 19:08 - 000000000 ____D C:\Users\Leo\AppData\Roaming\uTorrent 2019-12-26 01:16 - 2016-02-05 15:09 - 000000000 ____D C:\Users\Leo\AppData\LocalLow\Temp 2019-12-26 00:05 - 2019-07-13 15:49 - 000001977 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivaZer.lnk 2019-12-26 00:05 - 2019-07-13 15:49 - 000001965 _____ C:\Users\Public\Desktop\PrivaZer.lnk 2019-12-26 00:05 - 2019-07-13 15:49 - 000000000 ____D C:\Program Files (x86)\PrivaZer 2019-12-25 23:47 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2019-12-25 23:47 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration 2019-12-25 23:47 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2019-12-25 23:47 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2019-12-25 23:47 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2019-12-25 23:47 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-12-25 23:47 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2019-12-25 23:47 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\com 2019-12-25 14:32 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2019-12-25 00:35 - 2015-11-21 17:47 - 000000000 ____D C:\Users\Leo\Documents\Wachtwoorden 2019-12-23 23:14 - 2016-12-27 18:01 - 000000000 ___RD C:\Users\Leo\Downloads\Fotomagazines 2019-12-23 21:57 - 2018-08-05 15:07 - 000000000 ____D C:\ProgramData\ON1 2019-12-23 21:57 - 2017-08-25 22:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ON1 2019-12-23 21:56 - 2019-11-21 11:10 - 000000000 ____D C:\Users\TEMP\AppData\Roaming\Adobe 2019-12-23 21:56 - 2018-08-05 15:08 - 000000000 ____D C:\Program Files\ON1 2019-12-22 22:24 - 2019-11-14 22:40 - 000000000 ____D C:\Program Files\Skylum 2019-12-22 22:21 - 2016-07-01 20:34 - 000001093 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt 2019-12-22 21:56 - 2019-05-25 18:26 - 000000000 ____D C:\Users\Leo\AppData\Local\BitTorrentHelper 2019-12-22 21:49 - 2018-12-16 23:53 - 000000000 ____D C:\Users\Leo\Downloads\On1 Photo Raw 2019 2019-12-22 11:41 - 2019-09-30 11:05 - 000001329 _____ C:\Users\Public\Desktop\Photo Supreme 5.lnk 2019-12-22 10:36 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps 2019-12-21 20:11 - 2019-05-12 21:56 - 000001456 _____ C:\Users\Leo\AppData\Local\Adobe Save for Web 13.0 Prefs 2019-12-19 21:23 - 2015-11-18 16:43 - 000000000 ____D C:\Users\Leo\Downloads\MUZIEK 2019-12-19 14:34 - 2019-11-26 11:49 - 000000000 ____D C:\ProgramData\Luminar 4 2019-12-17 21:08 - 2019-02-13 23:45 - 000002328 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-12-17 21:08 - 2019-02-13 23:45 - 000002287 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-12-17 08:00 - 2018-05-02 14:39 - 000998016 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2019-12-17 08:00 - 2018-05-02 14:39 - 000251512 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys 2019-12-17 08:00 - 2018-05-02 14:39 - 000211048 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys 2019-12-17 08:00 - 2018-03-20 05:57 - 000145304 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klbackupflt.sys 2019-12-14 12:30 - 2019-03-09 12:29 - 000000000 ____D C:\Users\Leo\Downloads\Photoshop tutorials 2019-12-14 11:54 - 2019-10-06 21:10 - 000000000 ____D C:\Program Files\Microsoft Office 2019-12-14 09:19 - 2019-02-13 13:20 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2019-12-14 09:19 - 2019-02-13 13:20 - 000003454 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2019-12-13 21:07 - 2019-11-02 12:16 - 000000000 ____D C:\Users\Leo\Downloads\Greg Benz RAWS 2019-12-11 18:37 - 2015-11-16 20:46 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-12-11 18:34 - 2015-11-16 20:46 - 129221664 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-12-11 17:33 - 2017-07-04 23:03 - 000000028 _____ C:\Users\Leo\AppData\Roaming\kulerdata.json 2019-12-11 16:23 - 2019-03-06 21:14 - 000000000 ____D C:\ProgramData\Package Cache 2019-12-10 23:13 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-12-10 23:13 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-12-10 15:40 - 2019-02-13 13:20 - 000004694 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2019-12-10 15:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-12-09 00:08 - 2019-07-08 21:41 - 000000000 ____D C:\Users\Leo\Downloads\Nieuw Zuid_parkzicht 2 2019-12-06 20:27 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-12-06 19:59 - 2018-06-06 17:31 - 000000000 ____D C:\Users\Leo\AppData\Roaming\DxO 2019-12-06 19:57 - 2019-10-29 20:52 - 000000000 ____D C:\ProgramData\DxO Labs 2019-12-06 19:56 - 2018-02-27 19:50 - 000000000 ____D C:\Users\Leo\AppData\Local\DxO 2019-12-06 19:55 - 2015-11-16 20:49 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2019-12-06 19:51 - 2019-01-07 23:33 - 000000000 ____D C:\ProgramData\DxO 2019-12-06 19:51 - 2019-01-07 23:33 - 000000000 ____D C:\Program Files\DxO 2019-12-06 11:40 - 2015-11-16 20:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-12-05 11:21 - 2019-04-12 16:21 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-12-03 13:11 - 2019-04-04 10:56 - 000000000 ____D C:\Users\Leo\Downloads\Papa 2019-12-01 17:15 - 2019-02-20 21:05 - 000000000 ____D C:\Users\Leo\AppData\Local\cache ==================== Bestanden in de root van sommige mappen ======== 2015-11-16 21:34 - 2015-11-16 21:34 - 000000000 _____ () C:\Program Files (x86)\Common Files\AMD 2019-02-25 21:21 - 2019-12-27 01:15 - 000000012 _____ () C:\Users\Leo\AppData\Roaming\channelChoice.ini 2016-05-18 13:18 - 2016-05-19 14:55 - 000040843 _____ () C:\Users\Leo\AppData\Roaming\ConEmu.xml 2017-07-04 23:03 - 2019-12-11 17:33 - 000000028 _____ () C:\Users\Leo\AppData\Roaming\kulerdata.json 2016-06-10 01:00 - 2016-06-10 01:00 - 000000038 ___SH () C:\Users\Leo\AppData\Local\56f857505417e3fe0c6362.11790009 2019-05-12 21:56 - 2019-12-21 20:11 - 000001456 _____ () C:\Users\Leo\AppData\Local\Adobe Save for Web 13.0 Prefs 2016-04-29 11:00 - 2016-04-29 11:00 - 000003584 _____ () C:\Users\Leo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2019-08-20 21:48 - 2019-08-20 21:48 - 000000036 _____ () C:\Users\Leo\AppData\Local\housecall.guid.cache 2019-02-20 16:43 - 2019-10-26 11:52 - 000002870 _____ () C:\Users\Leo\AppData\Local\oobelibMkey.log 2019-06-08 19:17 - 2019-06-08 19:17 - 000000218 _____ () C:\Users\Leo\AppData\Local\recently-used.xbel 2016-05-03 09:39 - 2016-05-03 09:39 - 000000017 _____ () C:\Users\Leo\AppData\Local\resmon.resmoncfg 2019-08-20 21:52 - 2019-08-20 21:52 - 000000010 _____ () C:\Users\Leo\AppData\Local\sponge.last.runtime.cache ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================