Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 15-09-2021 Gestart door Wim (Beheerder) op DESKTOPWIM (ASUS All Series) (20-09-2021 12:52:01) Gestart vanaf C:\Users\Wim\Downloads Geladen Profielen: Wim Platform: Windows 10 Home Versie 20H2 19042.1237 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (ABLE SUN HOLDINGS LTD -> Able Sun Holdings Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MP3Studio YouTube Downloader\MP3StudioDownloader.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe (Garmin International -> GARMIN Corp.) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Training Center\gStart.exe (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (NortonLifeLock Inc. -> Broadcom) C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\NortonSecurity.exe <2> (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\nsWscSvc.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (The CefSharp Authors) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2> (Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8529152 2015-09-27] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3952096 2020-03-11] (Logitech -> Logitech, Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare software CO., LIMITED -> Wondershare) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3424032 2020-10-29] (Valve -> Valve Corporation) HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [gStart] => C:\Program Files (x86)\Garmin\Training Center\gStart.exe [1891416 2008-08-13] (Garmin International -> GARMIN Corp.) [Bestand niet getekend] HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [HP Photosmart 7520 series (NET)] => C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [711680 2016-10-10] (TomTom) [Bestand niet getekend] HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1045056 2021-05-21] (Digital Wave Ltd -> Digital Wave Ltd) HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35093120 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3522168 2021-08-23] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [MP3Studio YouTube Downloader] => C:\Program Files (x86)\MP3Studio YouTube Downloader\MP3StudioDownloader.exe [1017376 2020-08-17] (ABLE SUN HOLDINGS LTD -> Able Sun Holdings Ltd.) [Bestand niet getekend] HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31171504 2021-06-24] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-3276780540-2913435075-4059969525-1001\...\Run: [GoogleChromeAutoLaunch_37841BEB1C26D18C47FA3E62EC4A4B7B] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3522168 2021-08-23] (Razer USA Ltd. -> Razer Inc.) HKLM\...\Print\Monitors\HP BC11 Status Monitor: C:\WINDOWS\System32\hpinkstsBC11LM.dll [331664 2012-06-12] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Photosmart 7520 series): C:\WINDOWS\System32\HPDiscoPMBC11.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\93.0.11965.85\Installer\chrmstp.exe [2021-09-20] (Piriform Software Ltd -> Piriform Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-16] (Google LLC -> Google LLC) Startup: C:\Users\Wim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Photosmart 7520 series (netwerk).lnk [2015-09-16] ShortcutAndArgument: Inktwaarschuwingen controleren - HP Photosmart 7520 series (netwerk).lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Photosmart 7520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=TH3B4721CT05YY;CONNECTION=NW;MONITOR=1; Startup: C:\Users\Wim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2015-11-14] ShortcutTarget: MEGAsync.lnk -> C:\Users\Wim\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) Startup: C:\Users\Wim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk [2015-08-29] ShortcutTarget: Verzenden naar OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0A62149E-2E52-4134-91A3-E89E232F9787} - System32\Tasks\Norton Security with Backup\Norton Security Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\SymErr.exe [108752 2021-09-02] (NortonLifeLock Inc. -> NortonLifeLock Inc) Task: {0CB4B584-AD35-4785-91D8-8C809624BD2F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd) Task: {286E1EE7-2D53-47F8-9406-ECC22C586934} - System32\Tasks\Norton Internet Security\Norton Internet Security Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\22.16.2.22\SymErr.exe Task: {2C6D07C2-9F10-4F95-815D-218E24584B5B} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\WSCStub.exe [646520 2021-09-02] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3845FB84-5AB7-4660-9546-9F72ABDFB23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.) Task: {465F246E-F3DA-437D-B8AF-3BF651950440} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform) Task: {55708F76-9287-4546-B98C-2FC4E4C93C67} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {5DBE430E-FAE1-43CA-A6A0-7205DC5A205A} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2352488 2021-09-02] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {64975123-BCC9-46E8-ABA1-8B987209BD77} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2318992 2021-09-14] (Piriform Software Ltd -> Piriform Software) Task: {69ABC721-DD28-433B-8599-976757FA17D0} - System32\Tasks\Norton Internet Security\Norton Internet Security Autofix => C:\Program Files (x86)\Norton Internet Security\Engine\22.16.2.22\SymErr.exe Task: {6D0E9071-5E9C-4ABB-A48E-04A4BE9281ED} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972184 2021-03-17] (Microsoft Corporation -> Microsoft Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {7B3FA9CC-1C78-41F5-B49E-421EF65C342E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972184 2021-03-17] (Microsoft Corporation -> Microsoft Corporation) Task: {823ABCEF-48CE-445E-B8EB-191E4FE41FEA} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-10] (Mozilla Corporation -> Mozilla Foundation) Task: {853ECD65-716C-4073-BAF4-BCEDDE6043E7} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40880 2021-06-24] (Garmin International, Inc. -> ) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8BF1A14C-29A6-48BB-9FC3-0F0188CA3170} - System32\Tasks\Norton Security with Backup\Norton Security Autofix => C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\SymErr.exe [108752 2021-09-02] (NortonLifeLock Inc. -> NortonLifeLock Inc) Task: {8EADBCBA-415F-474D-BDE5-ECF27E8E2B97} - System32\Tasks\HPCustParticipation HP Photosmart 7520 series => C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPCustPartic.exe [4119656 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) Task: {A4D29036-6FDF-4498-AA21-5FE77F090DF4} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3276780540-2913435075-4059969525-1001 => C:\Users\Wim\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2019-02-20] (Mega Limited -> Mega Limited) Task: {ACBD85A4-8F7D-4D31-8F91-CA62D0CB3E5B} - System32\Tasks\Norton Internet Security\Norton Internet Security Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\22.16.2.22\SymErr.exe Task: {C6269B6C-634B-4EB1-A4CE-C792084CB5E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.) Task: {CC085D7B-EB25-4889-92E7-B967A8A45DD3} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-15] (Piriform Software Ltd -> Piriform Software) Task: {CDDF0B5C-9312-41A0-8B30-B5AFFF234E3F} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {E0BE3C33-DC7D-48D7-805A-28ACE6A3967E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2017-07-24] (Apple Inc. -> Apple Inc.) Task: {E2E4B2B5-F5C0-473C-BF3A-CE72011DD005} - System32\Tasks\Norton Security with Backup\Norton Security Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\SymErr.exe [108752 2021-09-02] (NortonLifeLock Inc. -> NortonLifeLock Inc) Task: {E394B587-0F95-4E3C-8F1D-05A8DCB85BE8} - System32\Tasks\CCleanerSkipUAC - Wim => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd) Task: {E6FF33BE-5FE3-4924-A935-7686AD23F9AD} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2318992 2021-09-14] (Piriform Software Ltd -> Piriform Software) Task: {F4977293-BDB7-4A71-A0F4-F8C0AB0D7B05} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-15] (Piriform Software Ltd -> Piriform Software) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.130.4 195.130.131.4 192.168.68.1 Tcpip\..\Interfaces\{817f61d5-16f4-4026-9d32-bcc58ac2dd3b}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{bf65939d-20b8-40a4-8f40-e7a1fdbb9dc0}: [DhcpNameServer] 195.130.130.4 195.130.131.4 192.168.68.1 Edge: ======= DownloadDir: C:\Users\Wim\Downloads Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\Wim\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-20] FireFox: ======== FF DefaultProfile: omgwd2gv.default-1595175100827 FF ProfilePath: C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 [2021-09-20] FF Homepage: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> hxxps://www.google.com FF HomepageOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: nortonhomepage@symantec.com FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: nortonhomepage@symantec.com FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: amazon@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: nortonsafesearch_ul_2@symantec.com FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: wikipedia@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: marktplaats@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: ebay@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: ddg@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: bolcom@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: bing@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827 -> Enabled: google@search.mozilla.org FF Extension: (Norton Password Manager) - C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827\Extensions\idsafe@norton.com.xpi [2021-09-14] FF Extension: (To Google Translate) - C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-23] FF Extension: (download-helper) - C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827\Extensions\jid1-i6dUGvCrz2WZu8@jetpack.xpi [2021-07-12] FF Extension: (English (US) Language Pack) - C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2021-09-11] FF Extension: (Norton Home Page) - C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827\Extensions\nortonhomepage@symantec.com.xpi [2021-08-27] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/hp/updates.json] FF Extension: (Norton Safe Search) - C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827\Extensions\nortonsafesearch_ul_2@symantec.com.xpi [2021-08-27] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/ds_modified/updates.json] FF Extension: (Norton Safe Web) - C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827\Extensions\nortonsafeweb@symantec.com.xpi [2021-08-27] FF Extension: (firefox mf12 space) - C:\Users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\omgwd2gv.default-1595175100827\Extensions\{3f7e7b7d-991e-4884-89c7-e5f69341e348}.xpi [2020-07-19] FF HKLM-x32\...\Firefox\Extensions: [{9973C2F3-41C0-4532-BD15-59D3691385F7}] - C:\Program Files (x86)\Youtomato\YT Downloader Plus\YTDP_FF.xpi FF Extension: (YT Downloader Plus Extension) - C:\Program Files (x86)\Youtomato\YT Downloader Plus\YTDP_FF.xpi [2016-09-18] [Verouderd] FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-29] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-29] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-12-29] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-12-29] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-08-27] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-15] (Piriform Software Ltd -> Piriform Software) FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-15] (Piriform Software Ltd -> Piriform Software) FF Plugin HKU\S-1-5-21-3276780540-2913435075-4059969525-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Wim\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-10-05] (RocketLife -> RocketLife, LLP) Chrome: ======= CHR Profile: C:\Users\Wim\AppData\Local\Google\Chrome\User Data\Default [2021-09-20] CHR DefaultSearchURL: Default -> hxxps://searchsafe.norton.com/search?omnisearch=yes&q={searchTerms} CHR DefaultSearchKeyword: Default -> nortonsafe CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?limit=10&li=ff&hl=nl&q={searchTerms} CHR Extension: (FoE - Helper) - C:\Users\Wim\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkagcmloachflbbkfmfiggipaelfamdf [2021-07-31] CHR Extension: (Norton Security Toolbar) - C:\Users\Wim\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2019-04-16] CHR Extension: (Norton Safe) - C:\Users\Wim\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2021-08-31] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Wim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Download videos from OnlyFans™.com) - C:\Users\Wim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogbpoamkkadcaohdopdejhahbnoakbao [2021-07-19] CHR Extension: (Downloader for OnlyFans.com) - C:\Users\Wim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdbbabjcnanbkimdgcdfbnghhmchomnh [2021-09-06] CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\Exts\Chrome.crx CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\Exts\Chrome.crx CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc. -> Apple Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] (ASUSTeK Computer Inc. -> ) S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-15] (Piriform Software Ltd -> Piriform Software) S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\93.0.11965.85\elevation_service.exe [1436280 2021-09-14] (Piriform Software Ltd -> Piriform Software) S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-15] (Piriform Software Ltd -> Piriform Software) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052952 2021-03-17] (Microsoft Corporation -> Microsoft Corporation) S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [454720 2021-05-21] (Digital Wave Ltd -> Digital Wave Ltd) R2 NortonSecurity; C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\NortonSecurity.exe [343336 2021-09-02] (NortonLifeLock Inc. -> Broadcom) R2 nsWscSvc; C:\Program Files (x86)\Norton Internet Security\Engine\22.21.8.62\nsWscSvc.exe [1058664 2021-09-02] (NortonLifeLock Inc. -> NortonLifeLock Inc.) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1134616 2021-05-20] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [356376 2021-09-07] (Razer USA Ltd. -> Razer Inc.) S2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-03-22] (Razer USA Ltd. -> Razer Inc) S2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294520 2021-08-23] (Razer USA Ltd. -> Razer Inc.) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533824 2021-08-30] (Razer USA Ltd. -> Razer Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.2.4.1\WsAppService.exe [417792 2016-07-12] (Wondershare) [Bestand niet getekend] S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Dr.Fone for Android\DriverInstall.exe [115856 2016-07-13] (Wondershare software CO., LIMITED -> Wondershare) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] (ASUSTeK Computer Inc. -> ) R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\BASHDefs\20210915.001\BHDrvx64.sys [2018776 2021-09-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\ccSetx64.sys [192256 2021-09-02] (Symantec Corporation -> Symantec Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-02-04] (Symantec Corporation -> Broadcom) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-02-05] (Symantec Corporation -> Broadcom) R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\IPSDefs\20210917.061\IDSvia64.sys [1480128 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 NPF; C:\Windows\SysWOW64\drivers\npf.sys [36600 2016-11-14] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\nsvst.sys [56080 2021-09-02] (NortonLifeLock Inc. -> NortonLifeLock Inc.) S3 NuidFltr; C:\WINDOWS\System32\drivers\NuidFltr.sys [12288 2007-01-15] (Microsoft Corporation) [Bestand niet getekend] R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0078; C:\WINDOWS\System32\drivers\RzDev_0078.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0306; C:\WINDOWS\System32\drivers\RzDev_0306.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc) R1 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\SRTSP64.SYS [892616 2021-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\SRTSPX64.SYS [48848 2021-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\SYMEFASI64.SYS [2059968 2021-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\SymELAM.sys [31992 2021-09-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [93152 2021-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 SymEvnt; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\SymPlatform\SymEvnt.sys [712432 2021-07-13] (Symantec Corporation -> Symantec Corporation) R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\Ironx64.SYS [319192 2021-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\symnets.sys [575344 2021-09-02] (Symantec Corporation -> Symantec Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615080.03E\wpCtrlDrv.sys [1015760 2021-09-02] (NortonLifeLock Inc. -> NortonLifeLock Inc.) U1 aswbdisk; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-09-20 11:50 - 2021-09-20 11:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation 2021-09-19 14:48 - 2021-09-19 14:59 - 000055540 _____ C:\Users\Wim\Downloads\Addition.txt 2021-09-19 14:31 - 2021-09-20 12:53 - 000033475 _____ C:\Users\Wim\Downloads\FRST.txt 2021-09-19 13:29 - 2021-09-20 12:52 - 000000000 ____D C:\FRST 2021-09-19 13:25 - 2021-09-19 13:25 - 002304000 _____ (Farbar) C:\Users\Wim\Downloads\FRST64.exe 2021-09-19 12:11 - 2021-09-19 12:11 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-09-19 12:10 - 2021-09-19 12:10 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-09-19 12:10 - 2021-09-19 12:10 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-09-19 12:10 - 2021-09-19 12:10 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-09-19 12:10 - 2021-09-19 12:10 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-09-19 12:09 - 2021-09-19 12:09 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2021-09-19 12:09 - 2021-09-19 12:09 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-09-19 12:09 - 2021-09-19 12:09 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-09-19 12:09 - 2021-09-19 12:09 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-09-19 12:09 - 2021-09-19 12:09 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-09-19 12:09 - 2021-09-19 12:09 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx 2021-09-19 12:09 - 2021-09-19 12:09 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx 2021-09-19 12:08 - 2021-09-19 12:08 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-09-19 12:08 - 2021-09-19 12:08 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-09-19 12:08 - 2021-09-19 12:08 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-09-19 12:07 - 2021-09-19 12:07 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2021-09-19 12:07 - 2021-09-19 12:07 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-09-19 12:07 - 2021-09-19 12:07 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-09-19 12:07 - 2021-09-19 12:07 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-09-19 12:07 - 2021-09-19 12:07 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-09-19 11:18 - 2021-09-19 11:18 - 000000000 ___HD C:\$WinREAgent 2021-09-11 20:48 - 2021-09-11 20:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-09-10 19:57 - 2021-09-17 10:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-09-10 19:22 - 2021-09-20 11:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security with Backup 2021-09-10 19:14 - 2021-09-10 19:14 - 000003406 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration 2021-09-10 19:13 - 2021-09-11 19:51 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security 2021-08-23 13:31 - 2021-09-19 13:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-09-20 12:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-09-20 12:04 - 2015-08-29 19:46 - 000000000 ____D C:\Program Files (x86)\Google 2021-09-20 11:59 - 2021-03-19 22:00 - 001773144 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-09-20 11:59 - 2019-12-07 17:12 - 000785808 _____ C:\WINDOWS\system32\perfh013.dat 2021-09-20 11:59 - 2019-12-07 17:12 - 000153936 _____ C:\WINDOWS\system32\perfc013.dat 2021-09-20 11:59 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-09-20 11:57 - 2019-05-02 15:05 - 000000000 ____D C:\Users\Wim\Documents\YouTubeDownloads 2021-09-20 11:57 - 2015-08-29 14:44 - 000000000 ____D C:\Program Files\CCleaner 2021-09-20 11:56 - 2020-07-27 15:00 - 000000000 ____D C:\Users\Wim\AppData\Roaming\MP3Studio 2021-09-20 11:52 - 2017-04-15 20:15 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2021-09-20 11:52 - 2015-08-26 16:38 - 000000000 __SHD C:\Users\Wim\IntelGraphicsProfiles 2021-09-20 11:51 - 2021-03-19 22:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-09-20 11:51 - 2021-03-19 21:42 - 000008192 ___SH C:\DumpStack.log.tmp 2021-09-20 11:50 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-09-20 11:43 - 2020-09-15 13:38 - 000002407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk 2021-09-20 11:43 - 2020-09-15 13:38 - 000002372 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk 2021-09-20 11:43 - 2020-09-15 13:37 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser 2021-09-20 11:36 - 2019-02-06 19:38 - 000000000 ____D C:\ProgramData\Mozilla 2021-09-20 11:36 - 2016-11-19 14:09 - 000000000 ____D C:\Users\Wim\AppData\LocalLow\Mozilla 2021-09-20 11:26 - 2021-05-25 18:32 - 000000000 ____D C:\Users\Wim\AppData\Local\Avast Software 2021-09-20 11:26 - 2020-09-15 13:39 - 000000000 ____D C:\ProgramData\AVAST Software 2021-09-20 11:01 - 2021-03-19 22:09 - 000004186 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4230E71B-488D-4878-B566-BEFECE1F4C1A} 2021-09-20 10:49 - 2021-03-19 21:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-09-19 14:40 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-09-19 14:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2021-09-19 14:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed 2021-09-19 14:22 - 2015-09-23 18:16 - 000000000 ____D C:\Users\Wim\AppData\Local\CrashDumps 2021-09-19 14:05 - 2021-03-19 21:42 - 000306544 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-09-19 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-09-19 14:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-09-19 13:59 - 2015-08-29 10:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-09-19 13:33 - 2019-11-23 14:23 - 000001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2021-09-19 12:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-09-19 12:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-09-19 11:20 - 2020-06-07 13:05 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-09-19 11:20 - 2020-06-07 13:05 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-09-19 11:14 - 2015-08-26 22:53 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-09-19 11:03 - 2015-08-26 22:53 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-09-17 19:39 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-09-16 18:29 - 2017-05-08 18:42 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-09-16 18:29 - 2017-05-08 18:42 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-09-14 18:27 - 2021-03-19 22:09 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-09-11 21:04 - 2021-03-19 19:45 - 000000000 ____D C:\Users\Wim 2021-09-11 20:48 - 2015-08-29 10:58 - 000001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-09-11 20:18 - 2021-03-19 22:09 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3276780540-2913435075-4059969525-1001 2021-09-11 20:18 - 2021-03-19 19:45 - 000002379 _____ C:\Users\Wim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-09-11 19:51 - 2018-03-20 19:28 - 000002585 _____ C:\Users\Public\Desktop\Norton Security.lnk 2021-09-10 22:29 - 2021-07-13 13:01 - 000000000 ____D C:\Users\Wim\AppData\LocalLow\Norton 2021-09-10 19:45 - 2016-03-04 21:02 - 000000000 ____D C:\Program Files\Common Files\AV 2021-09-10 19:14 - 2018-02-26 19:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64 2021-09-09 10:30 - 2020-04-21 10:48 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK 2021-09-06 18:12 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-09-06 11:15 - 2020-10-02 18:12 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-09-03 11:08 - 2020-04-21 10:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2021-09-03 10:56 - 2015-08-25 21:16 - 000000000 ____D C:\ProgramData\Package Cache 2021-08-31 02:02 - 2020-11-16 18:55 - 000079840 _____ (Razer Inc) C:\WINDOWS\system32\RazerS3Coinstaller.dll 2021-08-30 20:36 - 2021-08-19 17:53 - 000002250 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Wim 2021-08-30 20:36 - 2021-04-13 18:05 - 000003406 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d71cfaf57e9d1 2021-08-30 20:36 - 2021-03-19 22:09 - 000003602 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-08-30 20:36 - 2021-03-19 22:09 - 000003560 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA 2021-08-30 20:36 - 2021-03-19 22:09 - 000003506 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-30 20:36 - 2021-03-19 22:09 - 000003378 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-08-30 20:36 - 2021-03-19 22:09 - 000003336 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore 2021-08-30 20:36 - 2021-03-19 22:09 - 000003282 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-08-30 20:36 - 2021-03-19 22:09 - 000003104 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly) 2021-08-30 20:36 - 2021-03-19 22:09 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask 2021-08-30 20:36 - 2021-03-19 22:09 - 000002668 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Photosmart 7520 series 2021-08-30 20:36 - 2021-03-19 22:09 - 000002622 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Logon) 2021-08-30 20:36 - 2021-03-19 22:09 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-08-30 19:11 - 2015-08-29 15:04 - 000000000 ____D C:\Users\Wim\AppData\Roaming\Garmin ==================== Bestanden in de root van sommige mappen ======== 2016-06-03 16:50 - 2016-06-03 16:55 - 000000000 _____ () C:\Users\Wim\AppData\Local\{36463D80-94C4-4722-A0BB-80BAA29E7BD5} ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================