Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 03-02-2023 Gestart door Gebruiker (Beheerder) op GEBRUIKER-PC (Gigabyte Technology Co., Ltd. H67MA-USB3-B3) (04-02-2023 19:01:15) Gestart vanaf C:\Users\Gebruiker\Desktop Geladen Profielen: Gebruiker Platform: Microsoft Windows 10 Home Versie 22H2 19045.2486 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE ->) (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE (C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplmv.exe (C:\Program Files (x86)\eaZyLink\eaZySvr.exe ->) (ZETES NV -> ) C:\Program Files (x86)\eaZyLink\eaZyLink.exe (C:\Program Files (x86)\Garmin\Express\express.exe ->) (The CefSharp Authors) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2> (C:\Program Files\AVG\Antivirus\AvLaunch.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AvLaunch.exe (explorer.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\23.007.0109.0004\Microsoft.SharePoint.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) () [Bestand niet getekend] C:\Program Files (x86)\eaZyLink\eaZySvr.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe (services.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe (services.exe ->) (JABBLA -> ) C:\Program Files (x86)\Jabbla Update Service\JabblaService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (services.exe ->) (Prolific Technology Inc.) [Bestand niet getekend] C:\Windows\SysWOW64\IoctlSvc.exe (services.exe ->) (Skype Software Sarl -> Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe (services.exe ->) (SMART Technologies ULC -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe (services.exe ->) (TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2300_none_7e14edbc7c88b7d5\TiWorker.exe (Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11858536 2011-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-24] (Canon Inc. -> CANON INC.) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [252856 2022-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech) HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [193112 2017-03-09] () [Bestand niet getekend] HKLM\...\Run: [HotKeysCmds] => C:\WINDOWS\system32\hkcmd.exe [420960 2017-03-09] () [Bestand niet getekend] HKLM\...\Run: [Persistence] => C:\WINDOWS\system32\igfxpers.exe [463960 2017-03-09] () [Bestand niet getekend] HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [140640 2010-03-02] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2086240 2015-04-28] (Wondershare software CO., LIMITED -> Wondershare) HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1960248 2015-12-10] (Shenzhen Wondershare Information Technology Co., Ltd. -> ) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [JabblaCheckUpdates] => C:\Program Files (x86)\Jabbla Update Service\UpdateSvc.exe [345800 2019-01-22] (JABBLA -> ) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrictie <==== AANDACHT HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrictie <==== AANDACHT HKU\S-1-5-21-2627617279-2018821698-53219165-1000\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [912480 2015-09-02] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2627617279-2018821698-53219165-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38935376 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-2627617279-2018821698-53219165-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Gebruiker\AppData\Local\Microsoft\Teams\Update.exe [2587416 2023-01-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-2627617279-2018821698-53219165-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-2627617279-2018821698-53219165-1000\...\Run: [Microsoft.Lists] => C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\23.007.0109.0004\Microsoft.SharePoint.exe [581504 2023-01-30] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2627617279-2018821698-53219165-1000\...\Run: [MicrosoftEdgeAutoLaunch_E8980B8735C3CE8D24F16DB99FD3B5FC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188576 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2627617279-2018821698-53219165-1000\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31298328 2022-11-03] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKLM\...\Windows x64\Print Processors\Canon TS6000 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDE.DLL [30720 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG6100 series: C:\WINDOWS\system32\CNMLMAG.DLL [361472 2010-08-25] (CANON INC.) [Bestand niet getekend] HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6000 series: C:\WINDOWS\system32\CNMLMDE.DLL [485376 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [327680 2010-02-05] (CANON INC.) [Bestand niet getekend] HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [65024 2012-03-14] (pdfforge GbR) [Bestand niet getekend] HKLM\...\Print\Monitors\SMART Local Port: C:\Windows\system32\smrtlocalmon.dll [37776 2010-07-12] (SMART Technologies ULC -> SMART Technologies ULC) HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {042A9891-9C44-4C2C-ADDC-C87388A1F7AA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {091DE1EB-541F-4393-9000-FD0E256FC371} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {1125E9CF-2299-4B40-B00B-BB6BE34F765D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Geen bestand) Task: {1375D955-9F16-43C0-9121-1CE14A36858D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {158D386D-35CE-44A8-8914-F49C809E9317} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Geen bestand) Task: {1732EB15-624B-441E-977D-5F98D97D0A90} - System32\Tasks\Java(TM) Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation) Task: {1D753A96-50A9-4CF3-A4B2-3A08BAEFDED1} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Geen bestand <==== AANDACHT Task: {1E63B4B6-6244-4962-B489-8CB67611D395} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Geen bestand) Task: {2006B3C4-43BF-4E54-ABAE-C69C466F7BE0} - System32\Tasks\CCleanerSkipUAC - Gebruiker => C:\Program Files\CCleaner\CCleaner.exe [32617808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {21AC409B-A42A-496F-83EF-FCC8749A4CD6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Geen bestand) Task: {24D165C2-7520-4EB2-B35B-94ACC2F687AF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {26F1FE23-755C-4366-9676-55C8A6322E71} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {2DC931A7-122A-4803-8FFA-BE73B6615990} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Geen bestand) Task: {2FC26058-E17F-4CC9-98AD-102714D86807} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT Task: {334A4F7A-6C74-430A-BACB-C976ECADFAC6} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Geen bestand) Task: {341DE1ED-26F4-4D8B-B394-AEA2D015632A} - \Microsoft\Windows\Setup\gwx\rundetector -> Geen bestand <==== AANDACHT Task: {3584F84E-C2B1-4C1A-A4BC-9773ED87FEBF} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Geen bestand <==== AANDACHT Task: {39883104-BFF7-4466-B2FB-E7BD9EB7E6A7} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Geen bestand) Task: {3AD7E28F-F02E-402B-8A79-A97EDAC92E40} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {3B638B43-E245-487A-B873-E2561A4BF231} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Geen bestand) Task: {403000D7-2A9C-4EA0-9272-C7DB5D63F2E2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4713808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "a03a8038-ff63-47a3-acc8-b1a350a5115d" --version "6.08.10255" --silent Task: {40CF6159-8338-4D9C-A7C6-E9B7D2D3308B} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {42D52EE8-CDB9-45D6-9F21-F5891B849303} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Geen bestand) Task: {42F04363-F8A0-4F19-B136-572735B9FE0D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {438965B8-4283-44BE-8732-53A94CEFC794} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Geen bestand) Task: {45FD96CF-4D3F-495B-9869-81F58933C973} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2332088 2023-01-30] (AVG Technologies USA, LLC -> AVG Technologies) Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {4A25BE3E-9C44-46B4-A73D-C5D3B8D19434} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (Geen bestand) Task: {4C540758-4B7E-4943-ABCB-309ABEC755B1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {544041C7-E5A3-4805-B2A0-63F36D3DBF9C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Geen bestand) Task: {54D2643E-9EC2-4628-B7AA-E0D015736A7C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {557F1E39-26DC-4382-8D30-6D2C9704D806} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Gebruiker\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-09-19] (ESET, spol. s r.o. -> ESET) Task: {570347F0-F826-4F0B-A00D-26DBC0EF3B10} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Gebruiker\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-09-19] (ESET, spol. s r.o. -> ESET) Task: {5AEDA4C9-207C-4EC0-A4B1-AD8CAC1388C9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334160 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {5BB1EF6A-1ABC-4B1D-9CA9-45C0675059AB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {5DE0522D-3EDD-4AF6-8B79-51C6D6CABD05} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {5FF5178F-EC42-4073-B17C-69AA7CA7F6B4} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Geen bestand) Task: {65A4956B-2DC2-4F52-8992-CB44B352179A} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {667E1701-155E-4066-B0D3-B9198D055D91} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {6B10D857-CB78-4793-86FF-E34546B4620B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {727E7A9B-1EA7-44AE-8923-6FE1BFB02788} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [710560 2023-02-02] (Mozilla Corporation -> Mozilla Foundation) Task: {77F5FEF1-E584-46FF-818D-944C43F66238} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1003496 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {7CE02E0C-7779-4CB1-8EBC-E82EFD30CA53} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7EAF6B98-588C-4043-87A5-4D7583693451} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4990904 2022-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) Task: {850324DA-3E6A-4ED8-9684-380AC1698CB7} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Geen bestand) Task: {8575B49B-FA49-46C6-8EC0-32D97F1E22C0} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168920 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {865DD1E1-9470-4412-8C4E-4AC30DF216A9} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {89FA2083-0E1D-4EEB-B66A-993BAAC677F7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.) Task: {8B63A178-E739-4336-A7EA-EF4B49B664F3} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [661408 2023-02-02] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {95332BCE-DF9A-4321-BCEB-2C1ED42E5EF6} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {972DF492-97EB-4BBA-B0DF-DC86A34EBA54} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {981F41ED-3864-4DCB-8C76-6FB8464A79A7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {9A72E2DA-207E-4503-909F-0B624028C243} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {9B08D391-658B-4AC0-A6D7-F2C09EEA1A6F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Geen bestand) Task: {9BF3B4FD-4397-40B9-B044-3520B01DE4CD} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Geen bestand <==== AANDACHT Task: {9F4E9A72-EC70-4FC3-95AD-C1E4456AEEAC} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {9FF00298-256A-4F8F-9327-D32E13993FC6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Geen bestand) Task: {A82A4ABE-7A3E-4920-BC4E-9D37252EA5A8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {B0335C6B-2F1C-4AB8-841F-BAA271862E30} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Geen bestand) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B4416A18-0286-454D-B529-EB39EF794AD5} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe (Geen bestand) Task: {BA710E0A-6B57-4EAB-B65D-70B3211C3DB5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {BFCEAEC0-02A2-4DE8-92B0-F3D18ABC9E2C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-01-11] (Piriform Software Ltd -> Piriform) Task: {C6975CA5-A66D-4D6D-97F0-D7CA728B5AFF} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (Geen bestand) Task: {CDB11A8E-2E86-4293-A5E2-4DAB21FE4EAD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334160 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {D26FF715-0288-4C2E-BCB8-EB240AF4D961} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Geen bestand) Task: {D95FDA8F-E111-4AE8-813C-C4D539AB8CB1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Geen bestand) Task: {E4F644B4-B9D6-40C2-B0D8-4B9D2EF864C8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Geen bestand) Task: {EAC401FE-6DEA-4AA3-AB68-5E429A0EEE82} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [3826312 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {EC29EF7B-7323-4A98-8D22-4C818FA3047B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {ED777E03-1844-44E2-9E02-8251EC310B68} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {EF1B3ADF-05BC-444C-8D0E-B0F35A4D4895} - System32\Tasks\GoogleUpdateTaskMachineCore1d3ee0b47ead4d0 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.) Task: {F6FA7317-E4B6-4BB8-9D72-AC440969233E} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Geen bestand) Task: {FB35694A-BF2D-4E40-96D2-422A32B60EB6} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-20] (Adobe Inc. -> Adobe) Task: {FB3DA570-BC03-46FF-B2A5-09176D948DB3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Geen bestand <==== AANDACHT Task: {FB685A73-77C8-44C9-A77D-3091210184E5} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {FC54BC75-B533-4453-8A63-8BCC52695B78} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.) Task: {FD08D504-9F4D-464C-8E05-82FD35B89B29} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Geen bestand) Task: {FDF92BDC-F862-48F8-A972-1D68FFE164F3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {FE95FD21-D74F-446D-ADF8-0B61D810651B} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [29464 2022-11-03] (Garmin International, Inc. -> ) Task: {FF057268-85DE-4E91-98F9-6A4ACD935EB9} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Geen bestand) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 195.130.130.3 195.130.131.3 Tcpip\..\Interfaces\{9980c1d4-6ef0-4848-9bb2-462abfa8f4dd}: [DhcpNameServer] 195.130.130.3 195.130.131.3 Tcpip\..\Interfaces\{c59c24c9-3136-4087-8250-fdd6db0346e7}: [DhcpNameServer] 195.130.130.3 195.130.131.3 Tcpip\..\Interfaces\{f9e31e1e-c193-4c0f-abe1-fad59e840e8b}: [DhcpNameServer] 192.168.2.1 Edge: ======= Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-04] Edge Extension: (Edge relevant text changes) - C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-02-02] FireFox: ======== FF DefaultProfile: zhtlbbbg.default FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\TomTom\HOME\Profiles\awpnf1it.default [2017-03-29] FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zhtlbbbg.default [2023-02-04] FF Homepage: Mozilla\Firefox\Profiles\zhtlbbbg.default -> www.google.com FF Notifications: Mozilla\Firefox\Profiles\zhtlbbbg.default -> hxxps://www.facebook.com; hxxps://teams.microsoft.com FF Extension: (eID België) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zhtlbbbg.default\Extensions\belgiumeid@eid.belgium.be.xpi [2022-08-19] FF Extension: (eID Extension) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zhtlbbbg.default\Extensions\eid-chrome-extension@e-contract.be.xpi [2022-08-19] [UpdateUrl:hxxps://www.e-contract.be/eid-chrome/releases/eid-chrome-extension-updates.json] FF Extension: (YouTube mp3) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zhtlbbbg.default\Extensions\info@youtube-mp3.org.xpi [2016-04-28] [Verouderd] FF Extension: (Secure Login) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zhtlbbbg.default\Extensions\secureLogin@blueimp.net.xpi [2017-02-27] [Verouderd] FF Extension: (PDF Download) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zhtlbbbg.default\Extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}.xpi [2016-04-28] [Verouderd] FF Extension: (TrooperBot) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zhtlbbbg.default\Extensions\{79a0fa2f-3438-4058-8ad7-2b2333603cfc}.xpi [2020-01-27] FF Extension: (Adblock Plus - gratis adblocker) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zhtlbbbg.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-08-19] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_363.dll [2020-04-20] (Adobe Inc. -> ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Geen bestand] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_363.dll [2020-04-20] (Adobe Inc. -> ) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.) [Bestand niet getekend] FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-08-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-08-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [Geen bestand] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default [2023-02-04] CHR Notifications: Default -> hxxps://teams.microsoft.com; hxxps://vtm.be; hxxps://www.pinterest.com CHR Extension: (AVG SafePrice | prijsvergelijking, aanbiedingen, waardebonnen) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2022-08-23] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [634296 2022-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [634296 2022-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8578488 2022-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-06-03] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12553648 2023-02-02] (Microsoft Corporation -> Microsoft Corporation) R2 eaZyLink; C:\Program Files (x86)\eaZyLink\eaZySvr.exe [518656 2022-04-13] () [Bestand niet getekend] R2 hasplms; C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R2 Jabbla_Update_Service; C:\Program Files (x86)\Jabbla Update Service\JabblaService.exe [417480 2019-01-22] (JABBLA -> ) S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2012-12-17] () [Bestand niet getekend] R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [877864 2008-06-08] (Nero AG -> Nero AG) S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [537896 2008-06-24] (Nero AG -> Nero AG) S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation) R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [Bestand niet getekend] R2 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe [538416 2014-02-12] (SMART Technologies ULC -> SMART Technologies) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 aksdf; C:\WINDOWS\system32\drivers\aksdf.sys [389560 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [510800 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [33872 2012-05-17] (AnvSoft Co., Ltd. -> AnvSoft Inc.) R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [31408 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [229200 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [391312 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [297872 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [96504 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2022-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [39640 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [267968 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [555600 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [105288 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [80456 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [852080 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [695544 2023-02-01] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [212720 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [318544 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1970104 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 MHIKEY10; C:\WINDOWS\System32\Drivers\MHIKEY10x64.sys [60288 2010-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Generic USB smartcard reader) R3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [10240 2014-02-12] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies) R3 SMARTVHidMiniVistaAmd64; C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys [9216 2014-02-12] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies) R3 SMARTVTabletPCx64; C:\WINDOWS\System32\drivers\SMARTVTabletPCx64.sys [22184 2014-02-12] (smarttech.com(Test) -> SMART Technologies ULC) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2023-02-04 19:01 - 2023-02-04 19:01 - 000043517 _____ C:\Users\Gebruiker\Desktop\FRST.txt 2023-02-04 19:01 - 2023-02-04 19:01 - 000000000 ____D C:\FRST 2023-02-04 18:58 - 2023-02-04 18:58 - 002376704 _____ (Farbar) C:\Users\Gebruiker\Desktop\FRST64.exe 2023-02-04 18:55 - 2023-02-04 18:55 - 000000000 ____D C:\WINDOWS\Panther 2023-02-04 10:36 - 2023-02-04 10:36 - 000010245 _____ C:\Users\Gebruiker\Downloads\export_BE44734031538345_20230204_1036.pdf 2023-02-02 19:37 - 2023-02-02 21:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2023-02-01 23:18 - 2023-02-01 23:18 - 000827106 _____ C:\Users\Gebruiker\Downloads\Winterrapport_Marie Spiessens_L1A_01022023.pdf 2023-02-01 23:15 - 2023-02-01 23:15 - 000843656 _____ C:\Users\Gebruiker\Downloads\Winterrapport_Mila Spiessens_L1B_01022023.pdf 2023-02-01 23:14 - 2023-02-01 23:14 - 001957567 _____ C:\Users\Gebruiker\Downloads\Winterrapport_L5B_22012023.pdf 2023-01-29 17:03 - 2023-01-29 17:03 - 002482349 _____ C:\Users\Gebruiker\Downloads\Groeibundel.pdf 2023-01-27 20:49 - 2023-01-29 14:34 - 000000000 ____D C:\Users\Gebruiker\Desktop\Nieuwe map 2023-01-22 17:47 - 2023-01-22 17:47 - 000013819 _____ C:\Users\Gebruiker\Downloads\totalen.xlsx 2023-01-11 18:11 - 2023-01-11 18:11 - 000000000 ___HD C:\$WinREAgent 2023-01-11 17:14 - 2023-01-11 17:14 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk 2023-01-11 17:14 - 2023-01-11 17:14 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk 2023-01-11 17:14 - 2023-01-11 17:14 - 000000000 ____D C:\Program Files\Google 2023-01-10 18:44 - 2023-01-10 18:44 - 000001963 _____ C:\Users\Public\Desktop\Garmin Express.lnk 2023-01-10 18:44 - 2023-01-10 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2023-02-04 19:02 - 2012-05-09 18:48 - 000000000 ____D C:\Program Files (x86)\Google 2023-02-04 19:01 - 2016-07-30 21:34 - 000000000 ____D C:\Program Files\CCleaner 2023-02-04 19:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-02-04 19:00 - 2018-02-18 10:25 - 000000000 ___RD C:\Users\Gebruiker\OneDrive - Via Tienen 2023-02-04 19:00 - 2017-07-14 12:47 - 000000000 ____D C:\ProgramData\NVIDIA 2023-02-04 18:59 - 2020-07-25 19:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-02-04 18:59 - 2020-07-25 19:09 - 000000000 ____D C:\Users\Gebruiker 2023-02-04 18:59 - 2020-07-25 19:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-02-04 18:58 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-02-04 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-02-04 10:39 - 2022-08-18 20:03 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-02-04 10:39 - 2016-11-22 15:50 - 000000000 ____D C:\Users\Gebruiker\AppData\LocalLow\Mozilla 2023-02-04 10:30 - 2020-07-25 19:18 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update 2023-02-04 10:29 - 2020-08-27 18:43 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-02-04 10:29 - 2020-08-27 18:43 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-02-03 20:15 - 2012-04-21 18:36 - 000000000 ____D C:\Users\Gebruiker\Documents\Outlook-bestanden 2023-02-03 19:29 - 2017-12-29 08:15 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\CrashDumps 2023-02-03 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-02-03 18:36 - 2020-07-25 19:19 - 002009690 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-02-03 18:36 - 2019-12-07 16:12 - 000862028 _____ C:\WINDOWS\system32\perfh013.dat 2023-02-03 18:36 - 2019-12-07 16:12 - 000183178 _____ C:\WINDOWS\system32\perfc013.dat 2023-02-03 18:36 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2023-02-03 18:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration 2023-02-02 22:55 - 2022-09-05 17:12 - 000000000 ____D C:\WINDOWS\Minidump 2023-02-02 21:31 - 2020-07-25 19:09 - 000000000 ____D C:\Users\UpdatusUser 2023-02-02 21:31 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-02-02 21:31 - 2015-01-21 14:11 - 000000000 ____D C:\ProgramData\AVG 2023-02-02 21:31 - 2012-07-13 18:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-02-02 21:08 - 2020-08-03 13:41 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\Deployment 2023-02-02 20:03 - 2022-08-18 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2023-02-02 20:03 - 2013-02-04 20:02 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-02-02 19:40 - 2012-04-12 20:48 - 000000000 ____D C:\Program Files\Microsoft Office 2023-02-01 16:24 - 2020-07-25 19:09 - 000000000 ____D C:\Users\DefaultAppPool 2023-02-01 16:02 - 2018-04-25 18:41 - 000695544 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys 2023-01-30 18:27 - 2021-12-11 14:47 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2627617279-2018821698-53219165-1000 2023-01-30 18:27 - 2020-07-25 19:18 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2627617279-2018821698-53219165-1000 2023-01-30 18:27 - 2020-07-25 19:09 - 000002435 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-01-29 21:14 - 2017-12-16 19:28 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\Packages 2023-01-27 20:20 - 2013-11-26 19:34 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-01-27 20:20 - 2013-11-26 19:34 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-01-25 17:59 - 2021-01-26 21:10 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-01-25 17:43 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-01-25 17:39 - 2018-05-27 14:16 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\D3DSCache 2023-01-21 16:26 - 2020-07-25 19:18 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-01-21 09:38 - 2022-09-20 17:17 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-01-18 22:33 - 2022-09-20 17:17 - 000003472 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-01-15 17:50 - 2021-09-19 21:30 - 000003868 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2023-01-15 17:50 - 2021-09-19 21:30 - 000003426 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2023-01-15 17:50 - 2020-04-12 19:06 - 000001424 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2023-01-14 20:02 - 2014-01-07 19:47 - 000000000 ____D C:\ProgramData\DVD Shrink 2023-01-14 20:01 - 2015-07-07 16:57 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\dvdcss 2023-01-14 20:01 - 2015-02-12 20:59 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\vlc 2023-01-12 21:06 - 2020-04-15 19:32 - 000002426 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2023-01-12 21:06 - 2019-07-13 19:08 - 000002418 _____ C:\Users\Gebruiker\Desktop\Microsoft Teams.lnk 2023-01-12 18:32 - 2018-05-19 15:13 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\PlaceholderTileLogoFolder 2023-01-11 21:18 - 2020-07-25 19:08 - 005031608 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-01-11 21:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-01-11 21:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-01-11 21:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-01-11 21:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-01-11 18:17 - 2020-07-25 19:08 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-01-11 18:11 - 2013-08-14 19:38 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-01-11 18:07 - 2012-04-12 08:07 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-01-10 18:44 - 2020-07-25 19:18 - 000003624 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask 2023-01-10 18:44 - 2018-08-17 21:02 - 000000000 ____D C:\ProgramData\Package Cache 2023-01-10 18:44 - 2014-11-22 14:55 - 000000000 ____D C:\ProgramData\Garmin 2023-01-10 18:44 - 2014-11-22 14:55 - 000000000 ____D C:\Program Files (x86)\Garmin ==================== Bestanden in de root van sommige mappen ======== 2018-01-07 20:17 - 2022-08-31 11:48 - 000008227 _____ () C:\Users\Gebruiker\AppData\Roaming\.BEID_0.log 2020-11-13 12:13 - 2020-11-13 12:13 - 000000120 _____ () C:\Users\Gebruiker\AppData\Roaming\debug.log 2012-04-21 18:46 - 2016-03-18 16:55 - 000000102 _____ () C:\Users\Gebruiker\AppData\Roaming\default.pls 2021-04-05 21:21 - 2021-04-05 21:21 - 000038231 _____ () C:\Users\Gebruiker\AppData\Roaming\Door komma's gescheiden waarden.ADR 2005-07-29 03:48 - 2012-07-13 09:13 - 001378581 ____H () C:\Users\Gebruiker\AppData\Roaming\Gebruikerv1.18.0 - Trial versionlog.dat 2017-10-24 19:36 - 2018-01-07 20:27 - 000383640 _____ () C:\Users\Gebruiker\AppData\Roaming\pkcs11.log 2013-04-28 15:25 - 2013-08-20 10:37 - 000205824 _____ () C:\Users\Gebruiker\AppData\Roaming\Profotonet Album Designer Prefsv3 2014-01-07 19:06 - 2015-10-31 22:01 - 000008704 _____ () C:\Users\Gebruiker\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2012-07-13 17:13 - 2012-07-27 18:14 - 000007596 _____ () C:\Users\Gebruiker\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================