start::
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrictie <==== AANDACHT
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restrictie <==== AANDACHT
HKLM\SOFTWARE\Policies\Microsoft\MRT: Restrictie <==== AANDACHT
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restrictie <==== AANDACHT
HKU\S-1-5-21-3517432820-2354411715-952832178-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize  (Geen bestand) <==== AANDACHT
HKU\S-1-5-21-3517432820-2354411715-952832178-1001\...\MountPoints2: {5e7e5fa1-42c2-11ef-90d0-a83b76498646} - "H:\SETUP.EXE" 
BootExecute: autocheck autochk * avgBoot.exe /M:138a223e8a /dir:"C:\Program Files\AVG\Antivirus"
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Geen bestand)
Task: {17133C92-4E19-4F4C-8F9F-01F1CFA8D671} - System32\Tasks\Opera scheduled assistant Autoupdate 1725544612 => C:\Users\Van de Voorde Daniel\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe  -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\Van de Voorde Daniel\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {695F384E-6AA3-4AA1-9FDC-F66AFD249D69} - System32\Tasks\Opera scheduled Autoupdate 1725544612 => C:\Users\Van de Voorde Daniel\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe  --scheduledtask --bypasslauncher $(Arg0) (Geen bestand)
R3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44592 2024-09-06] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== AANDACHT
R3 GPUZ-v2; C:\WINDOWS\TEMP\GPUZ-v2.sys [51392 2024-09-06] (TechPowerUp LLC -> ) <==== AANDACHT
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
2024-09-05 16:06 - 2024-09-05 16:10 - 000000000 ____D C:\Users\Van de Voorde Daniel\AppData\Local\AVG
2024-09-05 16:05 - 2024-09-05 16:05 - 000000000 ___HD C:\$AV_AVG
2024-09-05 16:04 - 2024-09-05 16:10 - 000000000 ____D C:\Users\Van de Voorde Daniel\AppData\Roaming\AVG
2024-09-05 16:02 - 2024-09-05 16:17 - 000000000 ____D C:\ProgramData\AVG
2024-09-05 15:56 - 2024-09-05 15:56 - 000004702 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1725544612
2024-09-05 15:56 - 2024-09-05 15:56 - 000004390 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1725544612
2024-09-05 15:56 - 2024-09-05 15:56 - 000000000 ____D C:\WINDOWS\SysWOW64\.sentry-native
2024-09-05 15:56 - 2024-09-05 15:56 - 000000000 ____D C:\WINDOWS\system32\.sentry-native
2024-09-05 15:56 - 2024-09-05 15:56 - 000000000 ____D C:\Program Files (x86)\AugiticCircumstantialPoisoning
2024-09-05 15:55 - 2024-09-05 16:10 - 000000000 ____D C:\Program Files (x86)\AgreementmvfTool
2024-08-09 11:36 - 2024-09-05 16:17 - 000000000 ____D C:\Program Files (x86)\AltisikApplication
AV: Reason Cybersecurity (Enabled - Up to date) {ED4D1201-4876-7014-6F49-4BC9DA784B64}
IE trusted site: HKU\S-1-5-21-3517432820-2354411715-952832178-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3517432820-2354411715-952832178-1001\...\webcompanion.com -> hxxp://webcompanion.com
HKU\S-1-5-21-3517432820-2354411715-952832178-1001\...\StartupApproved\Run: => "Dzentime"
HKU\S-1-5-21-3517432820-2354411715-952832178-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-3517432820-2354411715-952832178-1001\...\StartupApproved\Run: => "Opera Stable"
HKU\S-1-5-21-3517432820-2354411715-952832178-1001\...\StartupApproved\Run: => "Web Companion"
FirewallRules: [{B650D93F-F677-45A7-9E77-C98152BAF3C6}] => (Allow) C:\Users\Van de Voorde Daniel\AppData\Local\Programs\Opera\opera.exe => Geen bestand
Hosts:
EmptyTemp:
End::