Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 28-03-2022 Gestart door Joris (Beheerder) op JORIS_DIMI (Hewlett-Packard HP Pavilion 15 Notebook PC) (01-04-2022 21:21:41) Gestart vanaf C:\Users\Joris\Desktop Geladen Profielen: Joris Platform: Microsoft Windows 10 Home Versie 21H1 19043.1586 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ->) (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\145.4.4921\QtWebEngineProcess.exe <2> (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <23> (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\99.0.1150.55\identity_helper.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel(R) Corporation) [Bestand niet getekend] C:\Program Files\Intel\iCLS Client\HeciServer.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (services.exe ->) (TunnelBear) [Bestand niet getekend] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2202.10603.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-12-25] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [10585376 2022-03-27] (Dropbox, Inc -> Dropbox, Inc.) HKU\S-1-5-21-1552991821-1990650570-302362393-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-1552991821-1990650570-302362393-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-1552991821-1990650570-302362393-1001\...\Run: [Spotify Web Helper] => C:\Users\Joris\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1529456 2016-09-19] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1552991821-1990650570-302362393-1001\...\Run: [Spotify] => C:\Users\Joris\AppData\Roaming\Spotify\Spotify.exe [6795376 2016-09-19] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1552991821-1990650570-302362393-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Joris\AppData\Local\Microsoft\Teams\Update.exe [2453704 2021-03-29] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\HP1006PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1006PP.dll [65024 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [365568 2012-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard) HKLM\...\Print\Monitors\HP1006LM: C:\WINDOWS\system32\HP1006LM.DLL [198144 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\PCL hpz3llhn: C:\WINDOWS\system32\hpz3llhn.dll [34816 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) GroupPolicy: Restrictie ? <==== AANDACHT Policies: C:\ProgramData\NTUSER.pol: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {101FDEDA-762F-4A22-9A15-3C86A5465EAF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) Task: {102665B1-7EC3-416D-9116-0398585C6669} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {1BAFA23E-D085-458E-8D18-B828B1572CE2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {1CC98020-0527-40A8-A4A6-2AB766FEF585} - \WPD\SqmUpload_S-1-5-21-1552991821-1990650570-302362393-1006 -> Geen bestand <==== AANDACHT Task: {223BA620-5107-48A5-A27A-0E27D371FC8B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [623496 2016-08-03] (Hewlett-Packard Company -> HP Inc.) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Geen bestand) Task: {385E678B-2FB6-4B9B-BF05-D9B5F5AF6577} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {38D8B28B-9DA5-4B01-9DF4-B4DE2850C546} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-joris_debuck@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {450847CA-D9F9-405C-9AB4-A9E0B4A19896} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {45C7DE14-DF1D-4A2F-B687-4E1FF71C8D59} - \WPD\SqmUpload_S-1-5-21-1552991821-1990650570-302362393-1001 -> Geen bestand <==== AANDACHT Task: {47892374-B0C3-4B4E-8AD7-AB61EA9C3A7E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {4F105598-3EFA-4F23-B84D-36B69BFE774B} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT Task: {4F61C86F-869B-4B32-B6EC-AD4AE9864A27} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [107072 2016-05-09] (Hewlett-Packard Company -> Hewlett-Packard) Task: {5BA23365-ABFE-448C-9844-D65478034F19} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {63A5AA5B-20E9-4BDB-96B1-2CC19572C1DF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {764A7D1B-D397-49AD-A547-2BEFD163C2DD} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {81E8728C-2348-4C85-BED0-688A75C08244} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {914FBE91-967F-436E-97FC-BE6318982DEA} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B" Task: {93D834DA-CC13-407F-BD73-32B06F5CC26B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {A2B7B237-5867-42B5-B28C-76F304CFFB40} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {A9774FF0-64D8-41CF-9D15-125D06DAD8D4} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {AC04294C-6AFB-400D-8707-FD7A52184F9F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {AEBA40CC-7A0B-4D48-B2BE-3742B99E2B58} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [199512 2016-08-18] (Hewlett-Packard Company -> HP Inc.) Task: {C092E353-1C10-4E91-A08E-D0A802ED3065} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {C1B5DABA-9365-4589-9C1D-45A0F7F38E27} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) Task: {C27E88EF-CB1C-4FB3-8933-C68FC3899781} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1151520 2016-08-23] (HP Inc. -> HP Inc.) Task: {C5634507-D4FF-45DB-92A6-6A46FE01DFB4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {CA504ECD-0D13-41E4-A977-FD316CEC7DE6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1151520 2016-08-23] (HP Inc. -> HP Inc.) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D216918A-2DC3-49E4-927A-109712375661} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1596312 2022-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {D495D5AD-D590-4F0B-B357-B4F2D0977D32} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {EF1685BE-49CB-48E9-9C81-6862F8CE87E4} - System32\Tasks\{AA44259A-D8E9-4DF8-89B7-5A7BEE46DFE1} => C:\WINDOWS\system32\pcalua.exe -a E:\eFilmLt.exe -d E:\ Task: {F039479D-C481-49A0-B2F3-828CD40A0879} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {F116B7CA-35EC-4208-8C06-8AF961E14AC2} - System32\Tasks\HPCeeScheduleForJoris => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2015-06-16] (Hewlett-Packard Company -> Hewlett-Packard) Task: {F3014866-FCE5-4521-91DD-8AA61039E881} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {F920914B-C1A6-4DFA-A0FA-5F9D05F6236D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {F9A5C00D-F1CA-4B91-98E1-297E56F0B174} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {F9BB986B-36DB-4F8F-B678-8B3A589825BD} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [59232 2022-03-08] (Microsoft Corporation -> Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForJoris.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{17131db9-da9c-4160-9d46-94e1494dd3f9}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\Joris\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-01] Edge Notifications: Default -> hxxps://www.iberostar.com FireFox: ======== FF DefaultProfile: vri8ntr7.default-1569166470981-1613900058056 FF ProfilePath: C:\Users\Joris\AppData\Roaming\Mozilla\Firefox\Profiles\vri8ntr7.default-1569166470981-1613900058056 [2022-04-01] FF Homepage: Mozilla\Firefox\Profiles\vri8ntr7.default-1569166470981-1613900058056 -> hxxps://www.google.be/ FF Extension: (eidReader Plugin Extension) - C:\Users\Joris\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\kcnofmiceklfkodhdhhjcfjhdepfobaf@unifiedpost.com.xpi [2017-09-19] [UpdateUrl:hxxps://example.com/updates.json] FF Extension: (Connective signing extension) - C:\Users\Joris\AppData\Roaming\Mozilla\Firefox\Profiles\vri8ntr7.default-1569166470981-1613900058056\Extensions\{4f643bc8-78f5-49c6-8efd-78ee30289f0b}.xpi [2021-05-04] FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be => niet gevonden FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-03-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-01-10] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-01-10] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) [Bestand niet getekend] FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) [Bestand niet getekend] FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) [Bestand niet getekend] FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [Geen bestand] FF Plugin HKU\S-1-5-21-1552991821-1990650570-302362393-1001: connective.be/BrowserPlugin -> C:\Users\Joris\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2020-12-17] (Connective n.v.) [Bestand niet getekend] FF Plugin HKU\S-1-5-21-1552991821-1990650570-302362393-1001: hp.com/HPDetect -> C:\Users\Joris\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP) [Bestand niet getekend] FF Plugin HKU\S-1-5-21-1552991821-1990650570-302362393-1001: unifiedpost.com/eidReader_ -> C:\Program Files\eid-reader\plugin_win\eidReader.plugin\npeidReader.dll [2017-09-19] (UnifiedPost) [Bestand niet getekend] FF Plugin HKU\S-1-5-21-1552991821-1990650570-302362393-1001: vasco.com/VascoCardReaderPlugin -> C:\Users\Joris\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin.dll [2014-10-27] (Vasco Data Security International GmbH -> VASCO Data Security) FF Plugin HKU\S-1-5-21-1552991821-1990650570-302362393-1001: vasco.com/VascoCardReaderPlugin64 -> C:\Users\Joris\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin64.dll [2014-10-27] (Vasco Data Security International GmbH -> VASCO Data Security) ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [106952 2015-06-24] (Andrea Electronics -> Andrea Electronics Corporation) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11649952 2022-03-08] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-03-27] (Dropbox, Inc -> Dropbox, Inc.) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc. -> HP Inc.) R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-12-25] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Bestand niet getekend] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-10] (Malwarebytes Inc -> Malwarebytes) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14657832 2021-07-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [130560 2021-11-16] (TunnelBear) [Bestand niet getekend] S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2022-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-10-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193448 2022-03-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-03-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-10] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [149424 2022-03-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation -> Corel Corporation) R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1219200 2015-06-03] (MEDIATEK INC. -> Ralink Technology, Corp.) S3 RTSPER; C:\WINDOWS\System32\DRIVERS\RtsPer.sys [448072 2013-02-02] (Realtek Semiconductor Corp -> RTS Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2021-06-17] (TunnelBear, Inc. -> The OpenVPN Project) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 tapoas; C:\WINDOWS\System32\drivers\tapoas.sys [30720 2012-07-15] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [439544 2022-03-15] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-15] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-04-01 21:21 - 2022-04-01 21:26 - 000030200 _____ C:\Users\Joris\Desktop\FRST.txt 2022-04-01 21:20 - 2022-04-01 21:20 - 000000000 ____D C:\Users\Joris\Desktop\FRST-OlderVersion 2022-04-01 21:15 - 2022-04-01 21:15 - 000000000 ____D C:\Users\Joris\AppData\LocalLow\IGDump 2022-03-31 18:30 - 2022-03-31 18:30 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2022-03-31 18:29 - 2022-03-31 18:29 - 000193448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-03-31 18:29 - 2022-03-31 18:29 - 000149424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2022-03-31 18:29 - 2022-03-31 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2022-03-30 20:55 - 2022-03-30 20:55 - 000510687 _____ C:\Users\Joris\Downloads\Workshop 2_Eerste zorg bij mensen met een psychotische kwetsbaarheid.pdf 2022-03-28 17:26 - 2022-03-28 17:26 - 000631360 _____ C:\Users\Joris\Downloads\Vonnis De Buck Joris1.pdf 2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2022-03-27 19:52 - 2022-03-27 19:52 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2022-03-25 14:23 - 2022-03-31 18:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2022-03-18 15:33 - 2022-03-18 15:33 - 000143213 _____ C:\Users\Joris\Downloads\Betalingsbericht Joris De Buck(1).pdf 2022-03-18 15:31 - 2022-03-18 15:31 - 000240255 _____ C:\Users\Joris\Downloads\doc.pdf 2022-03-18 12:25 - 2022-03-18 12:25 - 000023044 _____ C:\Users\Joris\Downloads\19495131.pdf 2022-03-14 21:44 - 2022-03-14 21:44 - 000060681 _____ C:\Users\Joris\Downloads\14_TUI_GB21_EN_Strategie.pdf 2022-03-14 16:24 - 2022-03-14 16:24 - 000202334 _____ C:\Users\Joris\Downloads\TUI(1).pdf 2022-03-14 16:21 - 2022-03-14 16:21 - 000202334 _____ C:\Users\Joris\Downloads\TUI.pdf 2022-03-13 21:20 - 2022-03-13 21:20 - 002013704 _____ C:\Users\Joris\Downloads\fdocuments.nl_onderzoeksrapport-identiteit-reizen-geboren-onder-de-naam-tui-nederland-een.pdf 2022-03-12 15:34 - 2022-03-12 15:34 - 000114306 _____ C:\Users\Joris\Downloads\aud_zit (600)_0.pdf 2022-03-11 22:40 - 2022-03-11 22:40 - 004205231 _____ C:\Users\Joris\Downloads\TUI_BE_CompanyPresentation_2022_NL.pdf 2022-03-11 12:54 - 2022-03-11 12:54 - 150098128 _____ (WhatsApp) C:\Users\Joris\Downloads\WhatsAppSetup(1).exe 2022-03-10 14:15 - 2022-03-10 14:15 - 000011911 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-03-10 14:14 - 2022-03-10 14:14 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2022-03-10 14:13 - 2022-03-10 14:13 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2022-03-10 14:12 - 2022-03-10 14:12 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-03-10 14:11 - 2022-03-10 14:11 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe 2022-03-10 13:14 - 2022-03-10 13:14 - 000000000 ___HD C:\$WinREAgent 2022-03-10 11:54 - 2022-03-10 11:54 - 000178287 _____ C:\Users\Joris\Downloads\Prijslijst-THOMPSON-2018.pdf 2022-03-07 18:48 - 2022-03-07 18:49 - 000072472 _____ C:\Users\Joris\Downloads\72159621.pdf 2022-03-07 18:48 - 2022-03-07 18:48 - 000072606 _____ C:\Users\Joris\Downloads\71824970(2).pdf 2022-03-07 18:48 - 2022-03-07 18:48 - 000072606 _____ C:\Users\Joris\Downloads\71824970(1).pdf 2022-03-07 18:48 - 2022-03-07 18:48 - 000072329 _____ C:\Users\Joris\Downloads\71676785(3).pdf 2022-03-07 18:48 - 2022-03-07 18:48 - 000072244 _____ C:\Users\Joris\Downloads\71992728(1).pdf 2022-03-07 17:43 - 2022-03-07 17:43 - 000130315 _____ C:\Users\Joris\Downloads\Wijziging statuut.pdf 2022-03-07 17:42 - 2022-03-07 17:42 - 000143213 _____ C:\Users\Joris\Downloads\Betalingsbericht Joris De Buck.pdf 2022-03-06 13:46 - 2022-03-06 13:46 - 000006839 _____ C:\Users\Joris\Downloads\16019999.pdf 2022-03-06 13:45 - 2022-03-06 13:45 - 000006839 _____ C:\Users\Joris\Downloads\16018171.pdf 2022-03-06 13:44 - 2022-03-06 13:44 - 000340000 _____ C:\Users\Joris\Downloads\1849869.pdf 2022-03-06 13:40 - 2022-03-06 13:40 - 000328658 _____ C:\Users\Joris\Downloads\1833036.pdf 2022-03-05 21:10 - 2022-03-05 21:10 - 000069065 _____ C:\Users\Joris\Downloads\13170285.pdf 2022-03-05 21:08 - 2022-03-05 21:08 - 000088010 _____ C:\Users\Joris\Downloads\1999-08-05_0205.pdf 2022-03-05 21:06 - 2022-03-05 21:06 - 000026699 _____ C:\Users\Joris\Downloads\19106220.pdf 2022-03-05 21:05 - 2022-03-05 21:05 - 000034724 _____ C:\Users\Joris\Downloads\20129308.pdf 2022-03-05 20:57 - 2022-03-05 20:57 - 000071288 _____ C:\Users\Joris\Downloads\22304564.pdf 2022-03-05 17:30 - 2022-03-05 17:30 - 000019510 _____ C:\Users\Joris\Downloads\13033118.pdf 2022-03-05 14:35 - 2022-03-05 14:35 - 000063435 _____ C:\Users\Joris\Downloads\10897331.pdf 2022-03-04 23:28 - 2022-03-04 23:28 - 000020654 _____ C:\Users\Joris\Downloads\19145857.pdf 2022-03-04 23:00 - 2022-03-04 23:00 - 000804933 _____ C:\Users\Joris\Downloads\Insured Insolvency 2022 02 14.pdf 2022-03-04 22:58 - 2022-03-04 22:58 - 000485250 _____ C:\Users\Joris\Downloads\FAQ_Verzekering Insolvabiliteit Reisondernemingen.pdf 2022-03-04 21:16 - 2022-03-04 21:16 - 000029863 _____ C:\Users\Joris\Downloads\1999-12-11_0568(1).pdf 2022-03-04 21:07 - 2022-03-04 21:07 - 000020484 _____ C:\Users\Joris\Downloads\05179156.pdf 2022-03-04 21:00 - 2022-03-04 21:00 - 000131302 _____ C:\Users\Joris\Downloads\2001-07-10_0519.pdf 2022-03-04 20:59 - 2022-03-04 20:59 - 000029863 _____ C:\Users\Joris\Downloads\1999-12-11_0568.pdf 2022-03-04 18:14 - 2022-03-04 18:14 - 000020654 _____ C:\Users\Joris\Downloads\16625979.pdf 2022-03-04 18:10 - 2022-03-04 18:10 - 000030125 _____ C:\Users\Joris\Downloads\16139941.pdf 2022-03-02 16:23 - 2022-03-02 16:23 - 002954116 _____ C:\Users\Joris\Downloads\marketing-onderzoek.pdf ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-04-01 21:24 - 2021-11-12 21:05 - 000000000 ____D C:\FRST 2022-04-01 21:23 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-04-01 21:20 - 2022-02-11 19:34 - 002365440 _____ (Farbar) C:\Users\Joris\Desktop\FRST64(1).exe 2022-04-01 21:13 - 2019-10-05 10:51 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2022-04-01 21:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-04-01 21:06 - 2019-09-22 21:42 - 000000000 ____D C:\Users\Joris\AppData\Local\Packages 2022-04-01 21:04 - 2015-06-18 20:55 - 000000000 ____D C:\Users\Joris\AppData\Local\Dropbox 2022-04-01 21:00 - 2020-10-13 13:04 - 001927452 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-04-01 21:00 - 2019-12-07 17:12 - 000827964 _____ C:\WINDOWS\system32\perfh013.dat 2022-04-01 21:00 - 2019-12-07 17:12 - 000172524 _____ C:\WINDOWS\system32\perfc013.dat 2022-04-01 21:00 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-04-01 20:57 - 2015-07-29 23:51 - 000000000 __SHD C:\Users\Joris\IntelGraphicsProfiles 2022-04-01 20:53 - 2021-08-02 12:11 - 000000000 ____D C:\Program Files\TeamViewer 2022-04-01 20:53 - 2020-10-13 13:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-04-01 20:53 - 2020-10-13 12:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-04-01 20:53 - 2020-10-13 12:35 - 000008192 ___SH C:\DumpStack.log.tmp 2022-04-01 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-04-01 20:47 - 2014-02-08 11:38 - 000000000 ____D C:\Users\Joris\Documents\Outlook-bestanden 2022-04-01 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-04-01 19:37 - 2019-09-23 19:58 - 000000000 ____D C:\Users\Joris\AppData\LocalLow\Mozilla 2022-04-01 16:33 - 2015-04-05 10:44 - 000000000 ____D C:\Users\Joris\AppData\Local\CrashDumps 2022-04-01 15:33 - 2014-06-10 17:36 - 000000000 ____D C:\Users\Joris\AppData\Local\Adobe 2022-03-31 19:20 - 2022-02-11 19:29 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-03-31 18:33 - 2016-04-08 21:31 - 000000000 ____D C:\Program Files (x86)\Dropbox 2022-03-31 18:19 - 2020-10-13 12:45 - 000000000 ____D C:\Users\Joris 2022-03-31 18:12 - 2022-02-26 18:12 - 000000354 _____ C:\WINDOWS\Tasks\HPCeeScheduleForJoris.job 2022-03-31 18:12 - 2016-04-08 21:31 - 000001034 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2022-03-31 18:12 - 2016-04-08 21:31 - 000001030 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2022-03-31 18:12 - 2016-01-24 21:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-03-31 18:09 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-03-30 18:35 - 2022-02-26 18:13 - 000003246 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForJoris 2022-03-28 11:28 - 2020-06-08 23:51 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-03-28 11:28 - 2020-06-08 23:51 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-03-26 21:04 - 2021-12-12 18:48 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1552991821-1990650570-302362393-1001 2022-03-26 21:04 - 2021-05-30 22:23 - 000002429 _____ C:\Users\Joris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-03-26 21:04 - 2020-10-13 13:34 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1552991821-1990650570-302362393-1001 2022-03-26 21:00 - 2020-05-28 15:35 - 000000000 ___RD C:\Users\Joris\Dropbox 2022-03-26 20:55 - 2021-10-11 16:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-03-26 20:53 - 2016-01-24 21:05 - 000001949 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-03-25 20:52 - 2021-05-11 19:12 - 000000000 ____D C:\Users\Joris\Desktop\Dyzo 2022-03-25 20:37 - 2020-08-14 15:55 - 000000000 ____D C:\Users\Joris\Desktop\Verbouwingen 2022-03-23 19:34 - 2020-10-13 13:34 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-03-23 19:33 - 2021-12-22 16:21 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-03-23 19:33 - 2021-12-22 16:21 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk 2022-03-16 17:45 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-03-15 18:44 - 2019-09-23 03:40 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-03-11 12:56 - 2021-08-31 12:30 - 000000000 ____D C:\Users\Joris\AppData\Roaming\WhatsApp 2022-03-11 12:56 - 2021-08-31 12:28 - 000000000 ____D C:\Users\Joris\AppData\Local\WhatsApp 2022-03-11 12:56 - 2021-03-29 17:20 - 000000000 ____D C:\Users\Joris\AppData\Local\SquirrelTemp 2022-03-11 12:07 - 2020-10-13 13:34 - 000003992 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2022-03-11 12:07 - 2020-10-13 13:34 - 000003760 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2022-03-11 01:37 - 2020-10-13 12:36 - 005279088 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-03-11 01:37 - 2014-02-17 18:46 - 000000000 ____D C:\Program Files\Microsoft Office 2022-03-11 01:32 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-03-11 01:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-03-11 01:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-03-11 01:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-03-11 01:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-03-11 01:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2022-03-11 01:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-03-11 01:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-03-11 01:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2022-03-10 14:45 - 2020-10-02 16:45 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-03-10 14:45 - 2014-01-09 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-03-10 14:36 - 2014-01-09 19:47 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-03-10 14:11 - 2020-10-13 12:42 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-03-10 11:42 - 2020-10-14 10:38 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6a1505e6eec83 2022-03-10 11:42 - 2020-10-13 13:34 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-03-07 16:53 - 2022-03-01 18:30 - 000000000 ____D C:\Users\Joris\Desktop\Maldegem 2022-03-07 12:53 - 2022-03-01 18:29 - 000000000 ____D C:\Users\Joris\Desktop\Lievegem 2022-03-07 11:31 - 2022-03-01 18:29 - 000000000 ____D C:\Users\Joris\Desktop\Ninove ==================== Bestanden in de root van sommige mappen ======== 2016-01-09 21:46 - 2020-03-09 19:09 - 000000034 _____ () C:\Users\Joris\AppData\Roaming\AdobeWLCMCache.dat 2019-09-23 20:10 - 2019-09-23 20:10 - 000000000 _____ () C:\Users\Joris\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================