Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 15-08-2022 Gestart door Peter (Beheerder) op PETER (Sony Corporation SVF1521A7EW) (24-08-2022 14:11:22) Gestart vanaf C:\Users\Peter\Desktop Geladen Profielen: Peter Platform: Microsoft Windows 10 Home Versie 21H1 19043.1889 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe <2> (C:\Program Files\Sony\VAIO Care\VCService.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe (C:\Program Files\Sony\VAIO Care\VCService.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe (explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (explorer.exe ->) (NGWIN Software co. -> NGWIN) C:\Program Files (x86)\PicPick\picpick.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel® Services Manager -> Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <29> (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe (services.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (services.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (services.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe (services.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (svchost.exe ->) (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.536.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (svchost.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe (svchost.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe (svchost.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe <2> (svchost.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\NFC Connection Utility\NFCConnectionUtility.exe (svchost.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403136 2015-07-23] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954368 2015-09-21] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [362056 2022-05-05] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [740376 2013-02-06] (Sony Corporation -> Sony Corporation) HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-02-19] (Intel® Services Manager -> Intel Corporation) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [126328160 2021-11-24] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (Geen bestand) HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Geen bestand) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== AANDACHT HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== AANDACHT HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== AANDACHT HKU\S-1-5-21-3130760868-3449811916-2588580125-1001\...\Run: [BingSvc] => C:\Users\Peter\AppData\Local\Microsoft\BingSvc\BingSvc.exe [146312 2020-08-13] (Microsoft Corporation -> © 2015 Microsoft Corporation) HKU\S-1-5-21-3130760868-3449811916-2588580125-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642824 2022-08-24] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3130760868-3449811916-2588580125-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-3130760868-3449811916-2588580125-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-3130760868-3449811916-2588580125-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-3130760868-3449811916-2588580125-1001\...\Run: [PicPick Start] => C:\Program Files (x86)\PicPick\picpick.exe [30335624 2022-06-27] (NGWIN Software co. -> NGWIN) HKU\S-1-5-21-3130760868-3449811916-2588580125-1002\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642824 2022-08-24] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\BJ Print Processor3: C:\Windows\System32\spool\prtprocs\x64\CNBPP3.DLL [83968 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\BJ Language Monitor3_2: C:\WINDOWS\system32\CNBLM3_2.DLL [211456 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\WINDOWS\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [Bestand niet getekend] HKLM\...\Print\Monitors\PJL Language Monitor: C:\WINDOWS\system32\PJLMON.DLL [24064 2022-08-19] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2012-12-14] (Broadcom Corporation -> Broadcom Corporation.) GroupPolicy: Restrictie - Chrome <==== AANDACHT Policies: C:\ProgramData\NTUSER.pol: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {019199F2-DE7B-4A32-A9FE-B0DCD1A02EAB} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [1210856 2019-11-08] (Sony Corporation -> Sony Corporation) Task: {0436BCDB-2CA7-4DAF-AB8E-E5CB8F25CA90} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [806048 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {04C6693D-AA1E-4C22-8BDF-9399AAFD0930} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [18272 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {0BB1CD2E-39EA-4B5F-B275-788A13E5120B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {121954DE-88B4-4C36-8539-D75A7B5F9383} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe [1707616 2013-02-05] (Sony Corporation -> Sony Corporation) Task: {14FD7FA7-68E2-4821-99BA-1C082B4EB088} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {1CD1CF31-CCF3-4E6D-A1E9-36ADF3BF39AB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {1DE461C2-EA3F-4434-98EC-5129A8256CA8} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3130760868-3449811916-2588580125-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214168 2022-08-24] (Microsoft Corporation -> Microsoft Corporation) Task: {214C27B2-9116-4FC5-9378-D3BC186FB466} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {220652D4-225F-4176-9FF3-FD29FA76067D} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [1005144 2016-03-04] (Sony Corporation -> Sony Corporation) Task: {25E7C7E8-5B53-40A7-92D0-ECAEF2BBFCF3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-17] (Microsoft Corporation -> Microsoft Corporation) Task: {2D779C8A-B0DF-43B3-8268-017196B56CB5} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [492632 2013-03-08] (Sony Corporation -> Sony Corporation) Task: {2DAB516F-9CEF-457B-BA0C-157F6689E933} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-16] (Microsoft Corporation -> Microsoft Corporation) Task: {30575C2D-0AAF-4475-B094-B83B900EBAAD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-17] (Microsoft Corporation -> Microsoft Corporation) Task: {32A24AB4-D345-41FD-946B-AE3E442E8018} - System32\Tasks\Sony Corporation\NFC Connection Utility\NFC Logon Start => C:\Program Files\Sony\NFC Connection Utility\NFCConnectionUtility.exe [221784 2014-02-11] (Sony Corporation -> Sony Corporation) Task: {34983D60-E272-47A4-A8BE-CAD234A2872E} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214168 2022-08-24] (Microsoft Corporation -> Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Geen bestand) Task: {38F56A5F-CB0C-4E9B-80C5-06AAB7FA9270} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-17] (Microsoft Corporation -> Microsoft Corporation) Task: {44295755-5349-4439-930C-45DE5965F7C4} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [806048 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {470A7B7B-89CE-47AE-836E-067B4179864E} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [492632 2013-03-08] (Sony Corporation -> Sony Corporation) Task: {566A17C3-48A6-4FBC-B557-A45A475CF893} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954368 2015-09-21] (Synaptics Incorporated -> Synaptics Incorporated) Task: {5FA5ACA9-15BF-4D09-A305-40910F50F00C} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-19] (Microsoft Windows -> Microsoft Corporation) Task: {60315D6E-85EB-47DD-8E3A-9C6522009A90} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {62234B7E-87A4-47B5-8A51-67DEBD7A767C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {629A9A11-5E0C-40CA-BC83-BBF12A35E1E9} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538720 2013-02-02] (Sony Corporation -> Sony Corporation) Task: {682E5616-44BE-4008-A69B-789392FD3CAA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {6C754F6B-CE08-40F2-9967-4FD36A3056BB} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [806048 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {710B2E19-FFD2-4CF5-9695-2CB0EAF7BD91} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3130760868-3449811916-2588580125-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214168 2022-08-24] (Microsoft Corporation -> Microsoft Corporation) Task: {710D4B62-9D01-45D7-8A65-CBFE95BBD316} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [806048 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {740623FD-1BB5-4113-8AAB-DBAA5AE79688} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {7805FEB1-68D1-4110-AE2C-54F6AAB2C419} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.) Task: {7888E905-CF49-412D-A3E2-9B9DF633CDA7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {79E49EB4-C408-4405-8456-51E7AC21F9BA} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [806048 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {7A4A49A7-3B81-40FB-A63D-F8D59F6D66AC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {7BD222E6-D435-46E4-8FA3-1D002EBB91D2} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [3152360 2019-11-08] (Sony Corporation -> Sony Corporation) Task: {836FE203-638B-47F6-9993-799F98431E2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {A1CA4286-4343-4444-BF77-FC51439074DA} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-17] (Microsoft Corporation -> Microsoft Corporation) Task: {A4F24C90-86F1-4D68-9AE5-E9BAFCB73F65} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-16] (Microsoft Corporation -> Microsoft Corporation) Task: {AF22A748-2362-4271-B792-67E2A64AB75A} - \WPD\SqmUpload_S-1-5-21-3130760868-3449811916-2588580125-1001 -> Geen bestand <==== AANDACHT Task: {B758F8DA-3836-4CB8-82FE-29CDA86CA08A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {C1D9466B-B6BF-45E5-8B25-3D545D83A269} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {C4DCD114-79BB-4C6E-B831-0B8D2C35CC50} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [806048 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {CD385DD4-9645-4EA4-ACCC-ACFAA27254CA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {CDDF0B5C-9312-41A0-8B30-B5AFFF234E3F} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {CE5F18F0-7B82-4759-AD82-43EF6EC1006E} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (Geen bestand) Task: {D2CD4A4B-D0F7-4B9E-BD3C-8349DC7366D1} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [338544 2012-07-24] (CyberLink -> CyberLink Corp.) Task: {D586A7E4-C26E-4B6E-A3ED-53933B97E9F3} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-19] (Microsoft Windows -> Microsoft Corporation) Task: {DA9832BC-06B3-4F93-B000-A84B7FE1ED33} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B" Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {DE5BEBFD-92E0-45A2-B428-00EC3D0873F8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {DED11A44-5153-4258-B44A-5D82D117F9EF} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {DFB0A42B-7A66-4B42-A733-71397E746049} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [806048 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {E01D28E4-A8A2-45D6-859F-392C5ED5E93B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-17] (Microsoft Corporation -> Microsoft Corporation) Task: {EFE5545D-D3B9-4473-AA77-B01CB55AE36C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {F4FBE5A8-F1F4-47C0-AB4E-5A0939DB3A59} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [806048 2020-06-23] (Sony Corporation -> Sony Corporation) Task: {F67297BE-46E5-4145-8F34-AD0774BFDFC9} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [737376 2013-01-23] (Sony Corporation -> Sony Corporation) Task: {F6749C6E-70F0-4D40-A536-ED98BA818DD6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {F8C6BE60-6535-4885-902F-A0F321F9B46B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{356caa9d-fb4c-4082-90f4-f8ad4c3d93bc}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{450b3d65-925f-404c-ad6a-6523bf99dceb}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{b12c8da3-01ce-4dc8-9df0-d980eea770b3}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{c2b98d08-1411-4b1b-ac4c-edabd0971263}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{cf7b69ad-4431-4832-976f-4116c015c759}: [DhcpNameServer] 192.168.1.1 192.168.68.1 Tcpip\..\Interfaces\{daeb1da4-70f8-45a1-b845-0779a7efbe93}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\Peter\Downloads Edge Extension: (Office) -> 2016_MicrosoftOfficeOnline_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.OfficeOnline_2.0.0.0_neutral__8wekyb3d8bbwe [2019-11-16] Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\Peter\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-27] FireFox: ======== FF DefaultProfile: 8b4ajip4.default-1655823423361 FF ProfilePath: C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\8b4ajip4.default-1655823423361 [2022-08-24] FF Homepage: Mozilla\Firefox\Profiles\8b4ajip4.default-1655823423361 -> google.be FF Extension: (Facebook Container) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\8b4ajip4.default-1655823423361\Extensions\@contain-facebook.xpi [2022-06-22] FF Extension: (eID België) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\8b4ajip4.default-1655823423361\Extensions\belgiumeid@eid.belgium.be.xpi [2022-06-22] FF Plugin: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-26] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [Bestand niet getekend] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-26] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] (WildTangent Inc -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3130760868-3449811916-2588580125-1001: @acestream.net/acestreamplugin,version=3.1.1 -> C:\Users\Peter\AppData\Roaming\ACEStream\player\npace_plugin.dll [Geen bestand] FF Plugin HKU\S-1-5-21-3130760868-3449811916-2588580125-1001: connective.be/BrowserPlugin -> C:\Users\Peter\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2021-07-05] (Connective n.v.) [Bestand niet getekend] FF Plugin HKU\S-1-5-21-3130760868-3449811916-2588580125-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2013-02-19] (Intel) [Bestand niet getekend] FF Plugin HKU\S-1-5-21-3130760868-3449811916-2588580125-1001: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2013-02-19] (Intel) [Bestand niet getekend] Chrome: ======= CHR HKU\S-1-5-21-3130760868-3449811916-2588580125-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [100424 2022-05-02] (Apple Inc. -> Apple Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-16] (Microsoft Corporation -> Microsoft Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.156.0724.0002\FileSyncHelper.exe [3389856 2022-08-24] (Microsoft Corporation -> Microsoft Corporation) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [399296 2019-11-28] (Canon Inc. -> ) S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639584 2013-02-05] (Sony Corporation -> Sony Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.156.0724.0002\OneDriveUpdaterService.exe [3830168 2022-08-24] (Microsoft Corporation -> Microsoft Corporation) R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [483864 2013-02-06] (Sony Corporation -> Sony Corporation) S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation -> Sony Corporation) R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1744872 2019-11-08] (Sony Corporation -> Sony Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink) R0 DMProtectEx; C:\WINDOWS\System32\drivers\DMProtectEx64.sys [232192 2015-12-03] (Shanghai Damo Network Technology Co. Ltd. -> Shanghai Damo Network Sci. & Tech. Co. Ltd.) S3 DMRedirect; C:\WINDOWS\system32\drivers\DMRedirect.sys [52480 2015-12-03] (Shanghai Damo Network Technology Co. Ltd. -> Billion) S3 EMVSCARD; C:\WINDOWS\System32\Drivers\EMVSCARD.sys [28544 2006-12-13] (Microsoft Windows Hardware Compatibility Publisher -> USB Smart Card Reader) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [80160 2015-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2016-10-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 SFEP; C:\WINDOWS\System32\drivers\SFEP.sys [14336 2012-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Sony Corporation) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-24] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-24] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-08-24 14:11 - 2022-08-24 14:17 - 000036612 _____ C:\Users\Peter\Desktop\FRST.txt 2022-08-24 14:09 - 2022-08-24 14:15 - 000000000 ____D C:\FRST 2022-08-24 14:07 - 2022-08-24 14:07 - 002371072 _____ (Farbar) C:\Users\Peter\Desktop\FRST64.exe 2022-08-19 16:08 - 2022-08-19 16:08 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2022-08-19 16:08 - 2022-08-19 16:08 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2022-08-19 16:07 - 2022-08-19 16:07 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-08-19 16:06 - 2022-08-19 16:06 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-08-19 16:05 - 2022-08-19 16:05 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-08-19 16:04 - 2022-08-19 16:04 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-08-19 16:04 - 2022-08-19 16:04 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-19 16:04 - 2022-08-19 16:04 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-19 15:06 - 2022-08-19 15:06 - 000000000 ___HD C:\$WinREAgent 2022-08-16 16:58 - 2022-08-17 21:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2022-08-16 16:44 - 2022-08-17 21:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2022-07-28 20:10 - 2022-07-28 20:12 - 052734256 _____ C:\Users\Peter\Downloads\picpick_inst.exe 2022-07-27 15:21 - 2022-07-27 15:21 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-07-27 15:21 - 2022-07-27 15:21 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-07-27 15:21 - 2022-07-27 15:21 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-07-27 15:21 - 2022-07-27 15:21 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll 2022-07-27 15:21 - 2022-07-27 15:21 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-07-27 15:21 - 2022-07-27 15:21 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-07-27 15:21 - 2022-07-27 15:21 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-07-27 15:21 - 2022-07-27 15:21 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-07-27 15:21 - 2022-07-27 15:21 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-07-27 15:21 - 2022-07-27 15:21 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-07-27 15:21 - 2022-07-27 15:21 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com 2022-07-27 15:21 - 2022-07-27 15:21 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com 2022-07-27 15:19 - 2022-07-27 15:19 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-07-27 15:19 - 2022-07-27 15:19 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll 2022-07-27 15:18 - 2022-07-27 15:18 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-07-27 15:17 - 2022-07-27 15:17 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-07-27 15:16 - 2022-07-27 15:16 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-07-27 14:51 - 2022-07-27 14:52 - 000000000 ____D C:\Users\Peter\Desktop\groen 2022-07-26 14:25 - 2022-07-26 14:26 - 000000000 ____D C:\Users\Peter\Desktop\fod ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-08-24 14:08 - 2016-11-19 13:36 - 000000000 ____D C:\Users\Peter\AppData\LocalLow\Mozilla 2022-08-24 14:00 - 2020-08-06 21:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-08-24 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-24 13:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-08-24 13:11 - 2020-08-06 22:30 - 000004180 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{DDF0C2B3-026A-4433-A496-85C417F0210F} 2022-08-24 13:09 - 2022-04-26 16:06 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-08-24 13:09 - 2015-10-17 17:40 - 000000000 ___RD C:\Users\Peter\OneDrive 2022-08-24 13:08 - 2022-04-29 07:07 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-08-24 13:08 - 2022-04-27 19:38 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3130760868-3449811916-2588580125-1002 2022-08-24 13:08 - 2022-04-26 16:06 - 000002134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-08-24 13:08 - 2021-12-11 19:55 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3130760868-3449811916-2588580125-1001 2022-08-24 13:08 - 2020-06-06 12:00 - 000000000 ____D C:\ProgramData\CanonIJPLM 2022-08-24 13:07 - 2022-02-11 05:38 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-24 13:05 - 2016-09-26 20:45 - 000000000 ___RD C:\Users\Peter\iCloudDrive 2022-08-24 13:04 - 2015-11-20 18:07 - 000000000 ____D C:\Users\Peter\AppData\Local\CrashDumps 2022-08-24 13:01 - 2015-10-17 17:30 - 000000000 __SHD C:\Users\Peter\IntelGraphicsProfiles 2022-08-21 11:55 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-21 11:54 - 2020-06-09 00:01 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-21 11:54 - 2020-06-09 00:01 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-08-21 11:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-08-21 11:33 - 2020-08-06 22:03 - 001775400 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-08-21 11:33 - 2019-12-07 17:12 - 000787220 _____ C:\WINDOWS\system32\perfh013.dat 2022-08-21 11:33 - 2019-12-07 17:12 - 000154312 _____ C:\WINDOWS\system32\perfc013.dat 2022-08-21 11:25 - 2020-08-06 22:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-08-21 11:25 - 2020-08-06 21:30 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-19 17:59 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2022-08-19 17:56 - 2020-08-06 21:39 - 000507248 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-08-19 17:52 - 2019-12-07 17:15 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-08-19 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-08-19 16:24 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-08-19 16:04 - 2020-08-06 21:45 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-08-19 14:36 - 2019-02-01 15:36 - 000000000 ____D C:\ProgramData\Mozilla 2022-08-17 21:54 - 2015-10-12 19:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-17 16:25 - 2021-07-26 17:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-08-17 16:25 - 2015-10-12 19:41 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-17 16:19 - 2022-04-26 15:36 - 000000000 ____D C:\Program Files\Microsoft Office 2022-08-17 16:18 - 2015-10-13 15:46 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-08-17 16:04 - 2020-08-06 22:30 - 000003730 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-08-17 16:04 - 2020-08-06 22:30 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-08-17 15:59 - 2015-10-13 15:46 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-08-17 15:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2022-07-28 22:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-07-28 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-07-28 22:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-07-28 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-07-28 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-07-28 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-07-28 20:13 - 2020-01-20 16:17 - 000000000 ____D C:\Program Files (x86)\PicPick 2022-07-27 14:50 - 2022-05-22 14:21 - 000000000 ____D C:\Users\Peter\Desktop\dakisolatie 2022-07-26 13:43 - 2015-11-12 18:47 - 000000000 ____D C:\Users\Peter\AppData\Roaming\vlc ==================== Bestanden in de root van sommige mappen ======== 2021-09-22 11:39 - 2022-08-24 13:07 - 000026856 _____ () C:\Users\Peter\AppData\Roaming\.BEID_0.log 2015-12-24 13:38 - 2015-12-24 13:38 - 000005120 _____ () C:\Users\Peter\AppData\Roaming\GiftBag.db 2016-03-04 13:41 - 2016-03-04 13:41 - 000127488 _____ () C:\Users\Peter\AppData\Roaming\Installer.dat 2016-03-04 13:42 - 2016-03-04 13:42 - 000018432 _____ () C:\Users\Peter\AppData\Roaming\Main.dat 2017-01-15 13:48 - 2018-01-13 14:34 - 000000600 _____ () C:\Users\Peter\AppData\Local\PUTTY.RND ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================