start::
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrictie <==== AANDACHT
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrictie <==== AANDACHT
HKU\S-1-5-21-3989073426-3163902182-3966215124-1001\...\Run: [Wipe Updates] => "C:\Program Files (x86)\Wipe\Wipe.exe" uf_sub_winStartup (Geen bestand)
HKU\S-1-5-21-3989073426-3163902182-3966215124-1001\...\Run: [EriQkVXMUhm] => C:\Users\Public\8EriQkVXMUhm.3fr [45 2023-01-21] () [Bestand niet getekend]
Task: {0733E5C4-F441-41AA-9689-F487B6F95556} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1808255728-3424939882-1748281522-500 => C:\Users\mizy\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Geen bestand)
Task: {2A652F43-CA16-4D55-B75A-4E8F1F13FFF0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => C:\WINDOWS\system32\MusNotification.exe LogonUpdateResults (Geen bestand)
Task: {569325B7-982B-4B3A-AC8A-56E5D2F04C46} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC ReadyToReboot (Geen bestand)
Task: {61ACD722-0B4F-471A-BA8F-6806CE7E341A} - \TrafficMonitor\Autorun for mizy -> Geen bestand <==== AANDACHT
Task: {AA84462B-CF0E-4903-AA6A-0FC36D283B7D} - \McAfee\McAfee Idle Detection Task -> Geen bestand <==== AANDACHT
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Geen bestand)
Task: {D91FE196-B877-4568-ABB4-ED965D8E18C6} - \McAfee\McAfee Auto Maintenance Task Agent -> Geen bestand <==== AANDACHT
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Geen bestand)
Task: {EA004756-4D29-4FBC-B55F-99A5E5281398} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Geen bestand)
DownloadDir: D:\Downloads DefaultProfile: Default
Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden]
Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden]
Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden]
Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
2023-01-22 13:25 - 2023-01-22 13:32 - 000003403 _____ C:\Users\Public\816mp8dopoo888po6yoco8dmqntbvu
2023-01-21 18:00 - 2023-01-21 18:00 - 1063256064 _____ C:\Users\Public\GCAVRDBJR
2023-01-21 17:57 - 2023-01-21 17:57 - 000026220 _____ C:\Users\Public\RRQUQXFLKSB.alsv
2023-01-21 17:56 - 2023-01-21 17:56 - 000000045 _____ C:\Users\Public\8EriQkVXMUhm.3fr
2023-01-22 13:45 - 2022-02-22 11:04 - 000000000 ____D C:\Users\mizy\AppData\Roaming\qBittorrent
C:\Users\mizy\Bureaublad\MS.Update.Center.Security.KB44909140.msi
AV: Kaspersky Total Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AV: Kaspersky Total Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
FW: Kaspersky Total Security (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
FW: Kaspersky Total Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Geen bestand
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Geen bestand
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Geen bestand
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Geen bestand
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Geen bestand
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Geen bestand
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Geen bestand
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Geen bestand
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Geen bestand
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Geen bestand
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Geen bestand
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Geen bestand
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Geen bestand
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Geen bestand
ShortcutWithArgument: C:\Users\mizy\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__pjnkhkgchodmdjgjaaoddbnpagaphghd\Telenet TV.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) ->  --profile-directory=Default --app-id=pjnkhkgchodmdjgjaaoddbnpagaphghd --app-url=hxxps://www.telenet.tv/ --app-launch-source=4
ShortcutWithArgument: C:\Users\mizy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Telenet TV.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) ->  --profile-directory=Default --app-id=pjnkhkgchodmdjgjaaoddbnpagaphghd --app-url=hxxps://www.telenet.tv/ --app-launch-source=4
AlternateDataStreams: C:\ProgramData\Temp:0EF91796 [280]
AlternateDataStreams: C:\ProgramData\Temp:7EBE1C28 [132]
AlternateDataStreams: C:\ProgramData\Temp:87A3A233 [167]
Toolbar: HKU\S-1-5-21-3989073426-3163902182-3966215124-1001 -> Geen Naam - {EF293C5A-9F37-49FD-91C4-2B867063FC54} -  Geen bestand
FirewallRules: [{171DDC8B-7C55-4DCF-A70B-2B358358E033}] => (Allow) C:\Users\mizy\AppData\Roaming\uTorrent\uTorrent.exe => Geen bestand
FirewallRules: [{7A68D641-FDD4-4429-A90D-C41D92B72DF9}] => (Allow) C:\Users\mizy\AppData\Roaming\uTorrent\uTorrent.exe => Geen bestand
FirewallRules: [{3A9F6B58-6FFD-4D67-A1D1-97D2ABD87F76}] => (Allow) D:\Program Files (x86)\qBittorrent\qbittorrent.exe => Geen bestand
FirewallRules: [{1E988B84-DE4F-4F5A-BE04-A0A5ACE5E89D}] => (Allow) D:\Program Files (x86)\qBittorrent\qbittorrent.exe => Geen bestand
FirewallRules: [UDP Query User{B0B90DD6-BE2F-4AF2-8406-CD5FA20B89A0}C:\users\mizy\appdata\roaming\utorrent\updates\3.5.5_46206.exe] => (Allow) C:\users\mizy\appdata\roaming\utorrent\updates\3.5.5_46206.exe => Geen bestand
FirewallRules: [TCP Query User{F66C64E8-1F26-4F57-BA46-21FAF68569D1}C:\users\mizy\appdata\roaming\utorrent\updates\3.5.5_46206.exe] => (Allow) C:\users\mizy\appdata\roaming\utorrent\updates\3.5.5_46206.exe => Geen bestand
FirewallRules: [{4FE80626-38AA-4956-840A-B3EBC7BD7554}] => (Allow) D:\Program Files\ON1\ON1 Photo RAW 2022\ON1 Photoshop Emulator.exe => Geen bestand
FirewallRules: [{FF8E9676-8BB4-4ABB-B170-B2B21ADC5485}] => (Allow) D:\Program Files\ON1\ON1 Photo RAW 2022\ON1 Photoshop Emulator.exe => Geen bestand
FirewallRules: [{A531955D-71B8-47C6-8B76-E52CD4572A48}] => (Allow) D:\Program Files\ON1\ON1 Photo RAW 2022\on1sandbox.exe => Geen bestand
FirewallRules: [{2F5B6D63-5442-4E7A-9057-3EE13F1C6DCF}] => (Allow) D:\Program Files\ON1\ON1 Photo RAW 2022\on1sandbox.exe => Geen bestand
FirewallRules: [{E1003BD8-808F-4F72-A988-F8B90E42EF42}] => (Allow) D:\Program Files\ON1\ON1 Photo RAW 2022\on1capture.exe => Geen bestand
FirewallRules: [{9AC6560F-6F2B-40AA-9212-B6A4CDF2F3D1}] => (Allow) D:\Program Files\ON1\ON1 Photo RAW 2022\on1capture.exe => Geen bestand
FirewallRules: [{60224552-5816-4A00-AA22-90B9C92B2253}] => (Allow) D:\Program Files\ON1\ON1 Photo RAW 2022\ON1 Photo RAW 2022.exe => Geen bestand
FirewallRules: [{0CC41ABE-B292-4FC2-8CE7-38FBC5C8586A}] => (Allow) D:\Program Files\ON1\ON1 Photo RAW 2022\ON1 Photo RAW 2022.exe => Geen bestand
FirewallRules: [{F546EC0A-50DD-4029-9DEC-6E7D407D181E}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2022\ON1 Photoshop Emulator.exe => Geen bestand
FirewallRules: [{17FFE996-4B34-4779-97B4-09D0CD23E682}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2022\ON1 Photoshop Emulator.exe => Geen bestand
FirewallRules: [{2D937868-1596-406A-BCCB-CEA608EF5167}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2022\on1sandbox.exe => Geen bestand
FirewallRules: [{4A3A8EAB-BEBA-4D4D-8F8E-EBB26569B11E}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2022\on1sandbox.exe => Geen bestand
FirewallRules: [{D1E3008E-1F17-4E6A-91A3-9E7E60BF503D}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2022\on1capture.exe => Geen bestand
FirewallRules: [{7D29F849-EA6E-44C0-8312-EB850A0B9C10}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2022\on1capture.exe => Geen bestand
EmptyTemp:
Reboot:
end::