Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 05-03-2023 Gestart door kyara (Beheerder) op DESKTOP-I0RQG5S (HP HP Pavilion x360 Convertible) (11-03-2023 10:53:12) Gestart vanaf C:\Users\kyara\Downloads Geladen Profielen: kyara Platform: Microsoft Windows 10 Education Versie 2004 19041.1415 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Anvsoft Inc. -> ) C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe (C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe ->) (Anvsoft Inc. -> ) C:\Program Files (x86)\Anvsoft\Syncios\devicenotifier.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSettings.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe (C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCopyAccelerator.exe (C:\Users\kyara\AppData\Local\Connective-SignID\signid-api.exe ->) (Trust1Team bvba -> ) C:\Users\kyara\AppData\Local\Connective-SignID\signid-sandbox.exe (C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8> (explorer.exe ->) (OPEN VIDEO, TOV -> ) C:\Users\kyara\AppData\Local\Programs\safe-watch\resources\app\swch_go_service\swch_go_service.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTServer.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\kyara\AppData\Roaming\Spotify\Spotify.exe <6> (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126577.inf_amd64_ae71f87c8938d56a\igfxEM.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\110.0.1587.63\identity_helper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\kyara\AppData\Local\Microsoft\OneDrive\23.038.0219.0001\Microsoft.SharePoint.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (services.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126577.inf_amd64_ae71f87c8938d56a\igfxCUIService.exe (services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23012.167.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Trust1Team bvba -> ) C:\Users\kyara\AppData\Local\Connective-SignID\signid-api.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-07-14] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229592 2015-07-09] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) HKLM\...\Run: [DeliveryAndStatusCheck] => C:\Program Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe [301832 2015-11-10] (Hewlett-Packard -> HP) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2022-09-27] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [654088 2015-08-04] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2015-10-29] (CyberLink Corp. -> CyberLink Corp.) HKLM-x32\...\Run: [Syncios device service] => C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [2911352 2019-04-15] (Anvsoft Inc. -> ) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== AANDACHT HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== AANDACHT HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== AANDACHT HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restrictie <==== AANDACHT HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [Google Update] => C:\Users\kyara\AppData\Local\Google\Update\1.3.36.152\GoogleUpdateCore.exe [230360 2022-08-30] (Google LLC -> Google LLC) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35342976 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91667312 2020-05-12] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [Spotify] => C:\Users\kyara\AppData\Roaming\Spotify\Spotify.exe [19840376 2023-03-02] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [sws] => C:\Users\kyara\AppData\Local\Programs\safe-watch\resources\app\swch_go_service\swch_go_service.exe [10253872 2020-09-22] (OPEN VIDEO, TOV -> ) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\kyara\AppData\Local\Microsoft\Teams\Update.exe [2587432 2023-03-05] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [Connective-SignID API] => C:\Users\kyara\AppData\Local\Connective-SignID\t1c-launch.exe [4669680 2022-02-09] (Trust1Team bvba -> ) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [Microsoft Edge Update] => C:\Users\kyara\AppData\Local\Microsoft\EdgeUpdate\1.3.173.49\MicrosoftEdgeUpdateCore.exe [263648 2023-03-05] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1897470774-1862642794-3720411195-1001\...\Run: [MicrosoftEdgeAutoLaunch_674FE2816B5D35DEC249C6766EE428F9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-03-02] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Print\Monitors\HP D911 Status Monitor: C:\WINDOWS\system32\hpinkstsD911LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.) HKLM\...\Print\Monitors\HP E511 Status Monitor: C:\WINDOWS\system32\hpinkstsE511LM.dll [393352 2017-03-09] (Hewlett Packard -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\111.0.5563.64\Installer\chrmstp.exe [2023-03-08] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2015-10-29] (CyberLink Corp. -> CyberLink) HKLM\Software\...\Authentication\Credential Provider Filters: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2015-10-29] (CyberLink Corp. -> CyberLink) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-07-10] ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software s.r.o. -> AVAST Software) Startup: C:\Users\kyara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk [2020-01-04] ShortcutTarget: Verzenden naar OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {07B67065-04AC-40BA-B8CD-09594FD6AD54} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1897470774-1862642794-3720411195-1001Core{3646067F-6BFB-41EC-8E9C-73AF70BC7DCD} => C:\Users\kyara\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206256 2023-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {1F35F5C3-DE27-4034-BD84-0586422629B3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-23] (Google Inc -> Google Inc.) Task: {205C0C3F-5D01-43B6-9B47-02D0C7998C21} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {25056EAB-4BC3-4130-BF93-FA499718C028} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2295192 2023-01-31] (Avast Software s.r.o. -> Avast Software) Task: {292426C8-175C-4576-96BB-15643BF57BDC} - System32\Tasks\WpsUpdateTask_kyara => C:\Users\kyara\AppData\Local\Kingsoft\WPS Office\11.2.0.11486\office6\wpsupdate.exe [174480 2023-03-02] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {330D63E8-7EC4-4DC0-AAA1-5A4EC6E9D331} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1897470774-1862642794-3720411195-1001Core => C:\Users\kyara\AppData\Local\Google\Update\GoogleUpdate.exe [153752 2017-01-30] (Google Inc -> Google Inc.) Task: {34EDADA5-D825-48B7-8749-59858DABDF05} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1897470774-1862642794-3720411195-1001UA{27A1589F-4979-4280-925A-E212A925E283} => C:\Users\kyara\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206256 2023-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {358FD128-EC0E-480B-B85E-4434929EC0B9} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {360BDD6A-5F15-42F1-92E9-7E9F780C276D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114600 2022-11-28] (Microsoft Corporation -> Microsoft Corporation) Task: {3BB438B0-3BB2-4EF8-8CEE-38523C989F23} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.) Task: {3C7997B2-6C95-4EB4-B5D2-F111C275EEBD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.) Task: {3D52E55B-7B6A-400A-9C78-4647DBC97777} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4802DBB4-7A3A-41CD-B026-EA202167B18E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (Geen bestand) Task: {51214046-A1DD-4764-BDEE-BC560FE56E03} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {52DC0AAD-B4B2-428A-839D-53815642B38D} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [515512 2015-10-29] (CyberLink Corp. -> CyberLink Corp.) Task: {52F48D84-179E-4539-9992-264F4B5E72C9} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [584488 2016-09-21] (Dropbox, Inc -> ) Task: {53B52D09-E122-4EDD-9D57-8D26687C2590} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-28] (Microsoft Corporation -> Microsoft Corporation) Task: {5928325F-3A56-42F2-8835-D45F04057F01} - System32\Tasks\CCleanerSkipUAC - kyara => C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5A61FBE7-28A0-4B8E-A3E9-DE6E714D722D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-05] (Mozilla Corporation -> Mozilla Foundation) Task: {62CD07C9-F802-47E5-B6F0-D34B7AF55907} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f (Geen bestand) Task: {6708CCA1-C296-4814-8E57-16A98318F43B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-23] (Google Inc -> Google Inc.) Task: {74B5042D-8607-4AB4-9B54-17209AA5FF1D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1897470774-1862642794-3720411195-1001UA => C:\Users\kyara\AppData\Local\Google\Update\GoogleUpdate.exe [153752 2017-01-30] (Google Inc -> Google Inc.) Task: {758A0DD8-9F19-4474-9299-1C2CF3EA405E} - System32\Tasks\Avast SecureLine VPN Update => c:\program files\avast software\secureline\vpnupdate.exe [1392008 2019-07-09] (AVAST Software s.r.o. -> AVAST Software) Task: {7C580132-BBB5-4479-92E9-32D3ECCABFF1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Geen bestand) Task: {7FDD3AD5-9434-4F74-9A84-9E87B201A24A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2023-01-10] (HP Inc. -> HP Inc.) Task: {81458820-186A-4B95-9DCE-6DACC828A5B1} - System32\Tasks\ASR-Startup => C:\Program Files (x86)\Advanced System Repair Pro 1.9.9.2.0\AdvancedSystemRepairPro.exe [20166920 2022-11-06] (Advanced System Repair Inc -> Advanced System Repair Inc.) <==== AANDACHT Task: {8DC30E45-2C41-4062-B0A7-5C3FB9CFA232} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149464 2023-01-10] (HP Inc. -> HP Inc.) Task: {AB680639-A8EA-46A1-BBA8-E108C186B0DB} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {B6D649AA-78B5-4D7C-B62B-0E164BE4AAAD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {BA8730EC-5229-4737-A1EE-7B16169DBDCA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-11-12] (Piriform Software Ltd -> Piriform) Task: {BB2EF20F-9BCA-4925-942A-498AEA4E4187} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2023-01-10] (HP Inc. -> HP Inc.) Task: {BB49FDD5-2394-405C-8DFB-B7FF71D3186B} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset => {2755524D-68F2-4B39-A816-9DB31839C897} Task: {BE9771AF-20F7-4815-B76E-6EE77174703B} - System32\Tasks\WpsExternal_kyara_20230302194142 => C:\Users\kyara\AppData\Local\Kingsoft\WPS Office\11.2.0.11486\office6\wpscloudsvr.exe [1060240 2023-03-02] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {D28906B3-B76E-452F-A147-1FBAEB2B48D0} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {DA7BA868-4E0A-4EDC-B0D6-05979F1CC988} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [228888 2023-01-10] (HP Inc. -> HP Inc.) Task: {E648CAF5-95AE-4906-AB9D-4D073B1171ED} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-28] (Microsoft Corporation -> Microsoft Corporation) Task: {E666FCA1-BF34-459C-800F-548098784EEC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114600 2022-11-28] (Microsoft Corporation -> Microsoft Corporation) Task: {EA8D7EFE-5E86-42CD-A429-E5E55529DB59} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {FD897066-6CC9-45C6-8D64-3A9C9A80F692} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [1356008 2015-11-16] (Hewlett-Packard Company -> HP Development Company, L.P.) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) AutoConfigURL: [{3052F21D-A680-4704-9D72-C393AA703D03}] => hxxps://www.arteveldehogeschool.be/proxy/stuiter.pac <==== AANDACHT Tcpip\Parameters: [DhcpNameServer] 195.130.130.2 195.130.131.2 Tcpip\..\Interfaces\{3750b48d-c6b1-47f5-90db-4854b249893b}: [DhcpNameServer] 195.130.130.2 195.130.131.2 Tcpip\..\Interfaces\{cc90f7b5-939e-4e80-af85-d72f837dea3b}: [DhcpNameServer] 172.168.0.7 Edge: ======= DownloadDir: C:\Users\kyara\Downloads Edge Notifications: HKU\S-1-5-21-1897470774-1862642794-3720411195-1001 -> hxxps://www.facebook.com Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\kyara\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-11] Edge Extension: (Avast Online Security & Privacy) - C:\Users\kyara\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-12-26] Edge Extension: (Connective signing extension) - C:\Users\kyara\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2020-10-19] FireFox: ======== FF DefaultProfile: 3pth4gn7.default FF ProfilePath: C:\Users\kyara\AppData\Roaming\Mozilla\Firefox\Profiles\3pth4gn7.default [2020-04-22] FF ProfilePath: C:\Users\kyara\AppData\Roaming\Mozilla\Firefox\Profiles\atguue15.default-release [2023-03-11] FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.) [Bestand niet getekend] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Default [2023-03-10] CHR Extension: (Rose) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aobcgffnbkbipbflopponndoiommhnch [2020-12-14] CHR Extension: (Avast SafePrice | prijsvergelijking, aanbiedingen, waardebonnen) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-08-23] CHR Extension: (Offline Documenten) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-26] CHR Extension: (Avast Online Security & Privacy) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-10-06] CHR Extension: (Connective signing extension) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2020-10-19] CHR Extension: (Shazam: identificeer nummers vanuit je browser) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2022-10-10] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31] CHR Profile: C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-03-11] CHR Profile: C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-03-11] CHR Notifications: Profile 1 -> hxxps://fr-softonic-com.translate.goog; hxxps://hofmann-digital-album.softonic.nl CHR Extension: (Avast SafePrice | prijsvergelijking, aanbiedingen, waardebonnen) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-10-21] CHR Extension: (Offline Documenten) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-02-14] CHR Extension: (Avast Online Security & Privacy) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-01-14] CHR Extension: (Shazam: vind songs via je browser) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2023-02-13] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\kyara\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-21] CHR Profile: C:\Users\kyara\AppData\Local\Google\Chrome\User Data\System Profile [2023-03-11] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103280 2022-09-01] (Apple Inc. -> Apple Inc.) S3 asrrealtimesrv; C:\Program Files (x86)\Advanced System Repair Pro 1.9.9.2.0\asrrealtimesrv.exe [1122056 2022-11-06] (Advanced System Repair Inc -> Advanced System Repair Inc.) S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-08-30] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [125656 2015-10-20] (Realtek Semiconductor Corp -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12515768 2022-11-28] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [246416 2021-10-25] (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [797640 2023-01-10] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [796616 2023-01-10] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [793000 2023-01-10] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229360 2023-03-07] (HP Inc. -> HP Inc.) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [796584 2023-01-10] (HP Inc. -> HP Inc.) R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-27] (HP Inc. -> HP Inc.) R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [604936 2015-07-27] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> ) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2022-01-06] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 A38CCID; C:\WINDOWS\system32\DRIVERS\a38ccid.sys [86880 2018-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R2 asrscan; C:\WINDOWS\System32\DRIVERS\asrscan.sys [22072 2022-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Advanced System Repair Inc.) S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc.) R3 BthAudioHF; C:\WINDOWS\system32\drivers\RtkHfp.sys [104688 2015-09-09] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) R3 clwvd6; C:\WINDOWS\System32\drivers\clwvd6.sys [41400 2015-08-31] (CyberLink Corp. -> CyberLink Corporation) R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [35400 2021-10-25] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [160440 2021-10-25] (Fortinet, Inc. -> Fortinet Inc) S3 FortiTransCtrl; C:\WINDOWS\System32\drivers\FortiTransCtrl.sys [64680 2021-10-25] (Fortinet, Inc. -> Fortinet Inc) S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [67472 2021-10-25] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [70368 2021-10-25] (Fortinet Technologies (Canada) Inc. -> Fortinet Corporation) R3 MpKsle78e57f2; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A0C363A1-F3EF-4400-9BA1-83E1BD5E8575}\MpKslDrv.sys [214280 2023-03-11] (Microsoft Windows -> Microsoft Corporation) R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.) R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2021-10-25] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-02-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-02-15] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2023-03-11 10:47 - 2023-03-11 10:53 - 000052719 _____ C:\Users\kyara\Downloads\Addition.txt 2023-03-11 10:45 - 2023-03-11 10:54 - 000035566 _____ C:\Users\kyara\Downloads\FRST.txt 2023-03-11 10:44 - 2023-03-11 10:53 - 000000000 ____D C:\FRST 2023-03-11 10:42 - 2023-03-11 10:43 - 000001539 _____ C:\Users\kyara\Desktop\FRST64 - Snelkoppeling.lnk 2023-03-11 10:41 - 2023-03-11 10:41 - 002378752 _____ (Farbar) C:\Users\kyara\Downloads\FRST64.exe 2023-03-10 19:37 - 2023-03-11 10:38 - 001388448 _____ C:\Users\Public\VOIP.dat 2023-03-10 19:37 - 2023-03-11 10:38 - 001388448 _____ C:\Users\Public\ASR.dat 2023-03-10 19:21 - 2023-03-10 19:21 - 000967278 _____ C:\Users\kyara\Documents\cc_20230310_192114.reg 2023-03-10 12:12 - 2023-03-10 12:12 - 000000000 ___HD C:\$WinREAgent 2023-03-10 11:55 - 2023-03-10 18:59 - 000000000 ___SD C:\Users\kyara\Documents\My Hofmann 2023-03-10 11:38 - 2023-03-10 11:38 - 000000000 ____D C:\Users\kyara\AppData\Local\Sentry 2023-03-08 19:55 - 2023-03-08 20:07 - 119574864 _____ C:\Users\kyara\Downloads\iCloud Photos (3).zip 2023-03-08 19:20 - 2023-03-08 19:23 - 867308641 _____ C:\Users\kyara\Downloads\iCloud Photos (2).zip 2023-03-08 18:19 - 2023-03-08 18:19 - 000028124 _____ C:\Users\kyara\Downloads\planning juni - september 2023.xlsx 2023-03-08 14:18 - 2023-03-08 14:18 - 000000000 ____D C:\ProgramData\PLUG 2023-03-05 13:07 - 2023-03-05 13:07 - 000000000 ____D C:\Program Files\RUXIM 2023-03-02 19:41 - 2023-03-02 19:41 - 000004076 _____ C:\WINDOWS\system32\Tasks\WpsExternal_kyara_20230302194142 2023-03-02 19:41 - 2023-03-02 19:41 - 000003758 _____ C:\WINDOWS\system32\Tasks\WpsUpdateTask_kyara 2023-03-02 17:39 - 2023-03-02 17:39 - 000000000 ____D C:\Users\kyara\AppData\Roaming\DotNetBrowser 2023-03-02 17:38 - 2023-03-10 11:55 - 000000000 ____D C:\Users\kyara\AppData\Local\Hofmann 2023-03-02 17:38 - 2023-03-02 17:38 - 000003219 _____ C:\Users\kyara\Desktop\Hofmann.lnk 2023-03-02 17:38 - 2023-03-02 17:38 - 000000000 ____D C:\Users\kyara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hofmann 2023-03-02 17:38 - 2023-03-02 17:38 - 000000000 ____D C:\Program Files (x86)\Hofmann 2023-03-02 17:09 - 2023-03-02 17:09 - 000000000 ____D C:\Users\kyara\AppData\Local\Downloaded Installations 2023-03-02 16:58 - 2023-03-02 17:00 - 220102072 _____ C:\Users\kyara\Downloads\Setup Hofmann Digital.exe 2023-03-02 16:14 - 2023-03-02 16:15 - 000000000 ____D C:\Users\kyara\Downloads\belangrijke documenten 2023-03-02 15:35 - 2023-03-02 15:36 - 000000000 ____D C:\Users\kyara\Downloads\facturen garantie 2023-03-02 15:16 - 2023-03-02 17:17 - 000000000 ____D C:\Users\kyara\Downloads\attesten Kyarah vroedkunde 2023-02-24 20:35 - 2023-02-24 20:35 - 000025246 _____ C:\Users\kyara\Downloads\uurrooster maart - mei 2023.xlsx 2023-02-13 12:10 - 2023-02-13 12:10 - 000125248 _____ C:\Users\kyara\Downloads\CV-Kyarah-De-coster-2.pdf 2023-02-10 19:17 - 2023-02-10 19:17 - 000561875 _____ C:\Users\kyara\Documents\Aanvraag RIZIV nummer p.2.pdf 2023-02-10 19:14 - 2023-02-10 19:14 - 000621507 _____ C:\Users\kyara\Documents\Aanvraag RIZIV nummer p.1.pdf 2023-02-10 17:13 - 2023-02-10 17:13 - 000113129 _____ C:\Users\kyara\Downloads\document_out_MIDWIFE_2022_MW1000000000000100142533_DOC1000000000000100142578_MW_VISA_RESULT_OK20220909 (1).pdf ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2023-03-11 10:52 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-03-11 10:48 - 2021-02-04 21:30 - 000000000 ____D C:\Users\kyara\AppData\Local\D3DSCache 2023-03-11 10:45 - 2017-02-23 17:25 - 000000000 ____D C:\Program Files (x86)\Google 2023-03-11 10:39 - 2020-10-11 16:46 - 000000000 ____D C:\Users\kyara\AppData\Local\Spotify 2023-03-11 10:38 - 2019-07-12 10:26 - 000000000 ____D C:\Program Files\CCleaner 2023-03-11 10:38 - 2016-11-20 09:59 - 000000000 ___RD C:\Users\kyara\OneDrive 2023-03-11 10:37 - 2018-08-30 10:34 - 000000000 ____D C:\Users\kyara\AppData\Roaming\Spotify 2023-03-11 10:37 - 2016-11-20 09:33 - 000000000 __SHD C:\Users\kyara\IntelGraphicsProfiles 2023-03-11 10:36 - 2020-08-21 19:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-03-11 10:36 - 2020-08-21 19:15 - 000008192 ___SH C:\DumpStack.log.tmp 2023-03-11 10:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2023-03-10 19:42 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-03-10 19:41 - 2022-11-06 20:30 - 000000000 ____D C:\ProgramData\ASR8Settings 2023-03-10 19:36 - 2020-08-21 19:15 - 000467160 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-03-10 19:10 - 2020-04-22 22:37 - 000000000 ____D C:\Users\kyara\AppData\LocalLow\Mozilla 2023-03-10 19:10 - 2020-04-22 22:37 - 000000000 ____D C:\ProgramData\Mozilla 2023-03-10 14:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-03-10 13:55 - 2020-08-21 19:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-03-10 12:12 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-03-10 11:54 - 2023-01-25 11:03 - 000000000 ____D C:\Users\kyara\Documents\Belangrijke documenten Kyarah 2023-03-10 11:54 - 2020-01-12 11:16 - 000000000 ____D C:\Users\kyara\Documents\ARTEVELDE 2023-03-10 09:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-03-10 09:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-03-08 20:19 - 2021-12-11 10:55 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1897470774-1862642794-3720411195-1001 2023-03-08 20:19 - 2020-08-21 19:26 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1897470774-1862642794-3720411195-1001 2023-03-08 20:19 - 2020-08-21 19:18 - 000002438 _____ C:\Users\kyara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-03-08 15:32 - 2021-07-10 08:43 - 000000000 ____D C:\Users\kyara\AppData\Roaming\Syncios Data Transfer 2023-03-08 14:55 - 2022-12-06 14:04 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-03-08 14:55 - 2022-12-06 14:04 - 000002131 _____ C:\Users\Public\Desktop\Acrobat Reader.lnk 2023-03-08 14:43 - 2020-08-21 19:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-03-08 14:43 - 2015-10-07 16:29 - 000000000 ____D C:\SWSetup 2023-03-08 14:37 - 2017-02-23 17:26 - 000002328 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-03-08 14:25 - 2021-10-18 22:11 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-03-07 21:54 - 2020-08-21 19:18 - 000000000 ____D C:\Users\kyara 2023-03-07 19:51 - 2017-12-11 17:48 - 000000000 ____D C:\Users\kyara\AppData\Local\Packages 2023-03-05 13:25 - 2020-11-30 12:08 - 000002421 _____ C:\Users\kyara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2023-03-05 13:16 - 2020-08-25 17:08 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-03-05 13:16 - 2020-08-25 17:08 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-03-05 13:07 - 2023-01-12 14:56 - 000004070 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1897470774-1862642794-3720411195-1001UA{27A1589F-4979-4280-925A-E212A925E283} 2023-03-05 13:07 - 2023-01-12 14:56 - 000004006 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1897470774-1862642794-3720411195-1001Core{3646067F-6BFB-41EC-8E9C-73AF70BC7DCD} 2023-03-05 13:07 - 2017-09-30 14:58 - 000000000 ____D C:\Program Files\rempl 2023-03-02 19:36 - 2021-03-17 20:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2023-03-02 16:13 - 2022-08-15 18:50 - 000961883 _____ C:\Users\kyara\Downloads\Re__Bachelorproef.zip 2023-03-02 15:01 - 2020-08-25 17:08 - 000003730 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-03-02 15:01 - 2020-08-25 17:08 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-03-02 14:48 - 2020-11-30 12:07 - 000000000 ____D C:\Users\kyara\AppData\Local\SquirrelTemp 2023-03-02 14:32 - 2016-03-16 06:34 - 000001050 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2023-03-02 14:32 - 2016-03-16 06:34 - 000001046 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2023-03-01 20:03 - 2020-08-21 19:26 - 000004112 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2023-03-01 20:03 - 2020-08-21 19:26 - 000003880 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2023-02-20 20:12 - 2016-11-24 21:07 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-02-20 19:42 - 2016-11-24 21:07 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-02-15 16:34 - 2018-02-22 15:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-02-10 18:16 - 2018-05-29 16:38 - 000000000 ____D C:\Users\kyara\AppData\Local\ElevatedDiagnostics 2023-02-10 16:40 - 2016-03-16 06:34 - 000000000 ____D C:\Program Files (x86)\Dropbox ==================== Bestanden in de root van sommige mappen ======== 2023-03-10 19:37 - 2023-03-11 10:38 - 001388448 _____ () C:\Users\Public\ASR.dat 2023-03-10 19:37 - 2023-03-11 10:38 - 001388448 _____ () C:\Users\Public\VOIP.dat 2016-11-20 09:34 - 2023-03-11 10:38 - 005874180 _____ () C:\Users\kyara\AppData\Local\BTServer.log 2022-10-06 10:40 - 2022-10-06 10:40 - 000000000 _____ () C:\Users\kyara\AppData\Local\{81E5960B-541B-4F52-A7A6-629A7D880A8B} ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================