Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 28-08-2023 Gestart door geava (Beheerder) op GEATJE (HP OMEN by HP Laptop) (03-09-2023 13:09:43) Gestart vanaf C:\Users\geava\OneDrive\Bureaublad\FRST64.exe Geladen Profielen: geava Platform: Microsoft Windows 11 Home Versie 22H2 22621.2134 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON\MyEpson Portal\mep.exe (C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\Program Files\WindowsApps\MicrosoftTeams_23231.411.2342.9597_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.62\msedgewebview2.exe <7> (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.69\msedgewebview2.exe <6> (DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <34> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Sanford, L.P. -> ) C:\Program Files (x86)\DYMO\DYMO Connect\DYMOConnectLauncher.exe (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE (explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIRUE.EXE (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6> (Sanford, L.P. -> DYMO.WebApi.Win.Host) [Bestand niet getekend] C:\Program Files (x86)\DYMO\DYMO Connect\DYMO.WebApi.Win.Host.exe (SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_43e3600968234e87\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_e00420cc358cbd11\x64\OmenCap\OmenCap.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.169.0813.0001\FileSyncHelper.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Sanford, L.P.) [Bestand niet getekend] C:\Program Files (x86)\DYMO\DYMO Connect\DYMOConnectPnPService.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON\Epson Device Admin\EDAAgent\EDAAgent.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON\Epson Device Admin\EDAAgent\EDAAgentMonitor.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.169.0813.0001\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270560 2019-05-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [DYMOWebApi] => C:\Program Files (x86)\DYMO\DYMO Connect\DYMO.WebApi.Win.Host.exe [181230592 2022-02-24] (Sanford, L.P. -> DYMO.WebApi.Win.Host) [Bestand niet getekend] HKLM-x32\...\Run: [DymoOfficeHelper] => C:\Program Files (x86)\DYMO\DYMO Connect\DYMO.OfficeHelper.exe [63488 2022-02-24] () [Bestand niet getekend] HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1092304 2016-03-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.69\Installer\setup.exe [3689016 2023-09-03] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607536 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRUE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\Run: [DYMOConnectLauncher] => C:\Program Files (x86)\DYMO\DYMO Connect\DYMOConnectLauncher.exe [163968 2022-02-24] (Sanford, L.P. -> ) HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\Run: [MicrosoftEdgeAutoLaunch_02237973A233AC423EA22ACB8BCCBF54] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4108328 2023-08-31] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Print\Monitors\DYMO LabelWriter Monitor: C:\WINDOWS\system32\LW400MON.DLL [16384 2021-03-16] (Microsoft Windows Hardware Compatibility Publisher -> DYMO Corp.) HKLM\...\Print\Monitors\EPSON ET-2650 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRUE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Bestand niet getekend] HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.141\Installer\chrmstp.exe [2023-09-01] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install ==================== Geplande Taken (gefilterd) ================= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {FBBBB743-CB8D-4364-91BE-9BF8F7F9F914} - System32\Tasks\EPSON ET-2650 Series Update {AE701D5B-C284-4062-BC06-17C567F24F1B} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRUE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {323BBA02-285A-4C87-8F83-AC972964FBF4} - System32\Tasks\GoogleUpdateTaskMachineCore{C63AC67D-AA24-4C47-95C9-F8DC189CB7F1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-30] (Google LLC -> Google LLC) Task: {95D05206-F1E2-4C79-8050-41E9E998295D} - System32\Tasks\GoogleUpdateTaskMachineUA{DB54DAB8-9D26-4170-B02B-6893006B2A30} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-30] (Google LLC -> Google LLC) Task: {853B2971-6985-4B6B-976D-287176396810} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913464 2023-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {23361EAC-1FA1-4F0E-AE82-10EC64BC81FB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913464 2023-08-23] (Microsoft Corporation -> Microsoft Corporation) Task: {C41776CF-81FB-4960-A5D0-E931B2076763} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124352 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) Task: {0B1130D7-083D-402D-BFF5-8182D59F4F00} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124352 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Geen bestand) Task: {00EAEB7D-72FF-4919-A5D5-C5395EB9DD23} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-09-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3003F8D6-091B-4748-BE69-561371FCD67B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-09-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3B6905CE-B295-4777-9FD7-63801B2BCBFC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-09-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C477189D-52D5-4B6B-B1EA-B185F2F41EFD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-09-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2B215F24-8EC6-48AD-B440-9F1DFA09F9CC} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130208 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) Task: {FD83E6F4-F017-4F34-A4D4-D3933581D6B1} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4147158641-4179325574-4140033110-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130208 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) Task: {21968F38-4FDA-448E-9635-FE388894C82B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4147158641-4179325574-4140033110-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Geen bestand) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\EPSON ET-2650 Series Update {AE701D5B-C284-4062-BC06-17C567F24F1B}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRUE.EXE:/EXE:{AE701D5B-C284-4062-BC06-17C567F24F1B} /F:UpdateWORKGROUP\GEATJE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 84.116.46.21 84.116.46.20 Tcpip\..\Interfaces\{eec29830-8644-4343-819b-87f6c24ab12c}: [DhcpNameServer] 84.116.46.21 84.116.46.20 Edge: ======= Edge Profile: C:\Users\geava\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-03] Edge Notifications: Default -> hxxps://www.facebook.com Edge HomePage: Default -> hxxp://www.google.nl/ Edge StartupUrls: Default -> "hxxp://www.facebook.nl/","hxxp://www.google.nl/","hxxps://web.whatsapp.com/","hxxps://weekplanning.quebble.com/Home/Login?ReturnUrl=%2F" Edge Extension: (Offline Documenten) - C:\Users\geava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28] Edge Extension: (Edge relevant text changes) - C:\Users\geava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-14] FireFox: ======== FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-13] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\geava\AppData\Local\Google\Chrome\User Data\Default [2023-09-03] CHR Notifications: Default -> hxxps://twitter.com; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.nieuwsblad.be; hxxps://www.youtube.com CHR HomePage: Default -> hxxp://www.google.nl/ CHR StartupUrls: Default -> "hxxp://www.facebook.nl/","hxxp://www.google.nl/","hxxps://web.whatsapp.com/","hxxps://weekplanning.quebble.com/Home/Login?ReturnUrl=%2F" CHR Extension: (Oceanic) - C:\Users\geava\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbbacdmgjdfajabgglpjifcedoajdimg [2022-11-30] CHR Extension: (Offline Documenten) - C:\Users\geava\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-20] CHR Extension: (Pinterest-bewaarknop) - C:\Users\geava\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2023-03-31] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\geava\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-30] CHR Extension: (Wordmark.it Extension) - C:\Users\geava\AppData\Local\Google\Chrome\User Data\Default\Extensions\plafaneablgcojpbaeefkmnheilloopl [2022-11-30] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817440 2023-08-19] (Microsoft Corporation -> Microsoft Corporation) R2 DYMOConnectPnPService; C:\Program Files (x86)\DYMO\DYMO Connect\DYMOConnectPnPService.exe [26112 2022-02-24] (Sanford, L.P.) [Bestand niet getekend] R2 EDAAgent; C:\Program Files (x86)\EPSON\Epson Device Admin\EDAAgent\EDAAgent.exe [1268160 2022-10-03] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 EDAAgentMonitor; C:\Program Files (x86)\EPSON\Epson Device Admin\EDAAgent\EDAAgentMonitor.exe [105408 2022-10-03] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.169.0813.0001\FileSyncHelper.exe [3516832 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\AppHelperCap.exe [888768 2023-07-24] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\DiagsCap.exe [887184 2023-07-24] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\NetworkCap.exe [883136 2023-07-24] (HP Inc. -> HP Inc.) R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_e00420cc358cbd11\x64\OmenCap\OmenCap.exe [755656 2023-03-16] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\SysInfoCap.exe [887744 2023-07-24] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_43e3600968234e87\x64\TouchpointAnalyticsClientService.exe [497744 2023-08-02] (HP Inc. -> HP Inc.) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.169.0813.0001\OneDriveUpdaterService.exe [3853840 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-09-01] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-09-01] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-11-30] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-11-30] (Microsoft Corporation) [Bestand niet getekend] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Bestand niet getekend] R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.) R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [33464 2018-12-19] (HP Inc. -> HP Inc.) R3 MpKslfad68ed1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{88ADCCDE-9B56-4DFD-9E85-A26591885C74}\MpKslDrv.sys [222464 2023-09-03] (Microsoft Windows -> Microsoft Corporation) R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-09-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-09-01] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-09-01] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2023-09-03 13:09 - 2023-09-03 13:10 - 000000000 ____D C:\FRST 2023-09-01 10:13 - 2023-09-01 10:13 - 000767060 _____ C:\WINDOWS\system32\perfh013.dat 2023-09-01 10:13 - 2023-09-01 10:13 - 000152434 _____ C:\WINDOWS\system32\perfc013.dat 2023-08-30 18:25 - 2023-08-30 18:25 - 000090139 _____ C:\Users\geava\OneDrive\Documenten\3040792906GV certificaat.pdf 2023-08-27 11:47 - 2023-08-27 11:47 - 000700318 _____ C:\Users\geava\Downloads\factuur_805391704Beko.pdf 2023-08-16 11:48 - 2023-08-16 11:48 - 000000000 ____D C:\Users\geava\AppData\Roaming\Realore 2023-08-16 09:48 - 2023-08-16 09:48 - 000238144 _____ C:\Users\geava\Downloads\THREE POINT CROSSOVER CARD.pdf 2023-08-15 20:05 - 2023-08-15 20:06 - 483867337 _____ C:\Users\geava\Downloads\El_Farm2 - AA_NL.zip 2023-08-15 20:04 - 2023-08-15 20:05 - 387737993 _____ C:\Users\geava\Downloads\Al_Wond6 - FaI_NL.zip 2023-08-15 20:02 - 2023-08-15 20:03 - 281039332 _____ C:\Users\geava\Downloads\Demi_gods_NL.zip 2023-08-14 17:09 - 2023-08-14 17:09 - 423712403 _____ C:\Users\geava\Downloads\El_Rivers2_NL.zip 2023-08-14 17:07 - 2023-08-14 17:08 - 330027285 _____ C:\Users\geava\Downloads\Gno_Gard9 -LS_NL.zip 2023-08-13 11:36 - 2023-08-13 11:36 - 423467582 _____ C:\Users\geava\Downloads\White_Rabbit_Wond - WBH_NL.zip 2023-08-13 11:25 - 2023-08-13 11:28 - 000000000 ___HD C:\$WinREAgent ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2023-09-03 13:06 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-09-03 13:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-09-03 13:06 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-09-03 12:59 - 2022-11-30 20:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-09-03 12:56 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-09-03 12:54 - 2022-11-30 16:28 - 000000000 ____D C:\Program Files (x86)\Google 2023-09-03 12:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-09-03 12:50 - 2022-11-30 12:32 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-09-03 12:49 - 2022-11-30 16:23 - 000000000 ___RD C:\Users\geava\OneDrive 2023-09-03 12:49 - 2022-11-30 16:21 - 000000000 __SHD C:\Users\geava\IntelGraphicsProfiles 2023-09-01 20:15 - 2022-11-30 12:58 - 000000000 ____D C:\ProgramData\NVIDIA 2023-09-01 20:10 - 2022-11-30 16:45 - 000000000 ____D C:\Users\geava\AppData\Roaming\Cricut Design Space 2023-09-01 19:11 - 2022-12-04 10:36 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-09-01 19:11 - 2022-11-30 20:50 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4147158641-4179325574-4140033110-1002 2023-09-01 19:11 - 2022-11-30 20:50 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-09-01 19:11 - 2022-11-30 17:30 - 000002134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-09-01 11:39 - 2022-11-30 16:21 - 000000000 ____D C:\Users\geava\AppData\Local\D3DSCache 2023-09-01 10:13 - 2022-12-04 10:42 - 001711328 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-09-01 10:13 - 2022-11-30 17:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2023-09-01 10:12 - 2022-11-30 16:28 - 000002267 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-09-01 10:09 - 2022-11-30 12:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-09-01 10:06 - 2022-12-13 22:23 - 000000000 ____D C:\Users\geava\AppData\Roaming\DYMOConnect 2023-09-01 10:06 - 2022-11-30 20:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-09-01 10:06 - 2022-11-30 12:57 - 000000000 ____D C:\Intel 2023-09-01 10:06 - 2022-11-30 12:31 - 000012288 ___SH C:\DumpStack.log.tmp 2023-09-01 10:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-08-30 20:02 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-08-27 12:38 - 2022-11-30 16:21 - 000000000 ____D C:\Users\geava\AppData\Local\Packages 2023-08-27 11:11 - 2022-11-30 12:56 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-08-27 10:58 - 2022-11-30 17:14 - 000000000 ____D C:\Users\geava\AppData\Roaming\com.silhouettesoftware 2023-08-27 10:58 - 2022-11-30 17:14 - 000000000 ____D C:\ProgramData\com.aspexsoftware.Silhouette_Studio.license 2023-08-27 10:57 - 2022-11-30 17:25 - 000000000 ____D C:\Users\geava\AppData\Roaming\com.aspexsoftware.ss_bluetooth 2023-08-27 10:57 - 2022-11-30 17:14 - 000000000 ____D C:\Users\geava\AppData\Roaming\com.silhouettesoftware.scratch.1 2023-08-27 10:57 - 2022-11-30 17:14 - 000000000 ____D C:\Users\geava\AppData\Roaming\com.aspexsoftware.Silhouette_Studio 2023-08-15 20:29 - 2023-02-27 14:47 - 000000000 ____D C:\Users\geava\AppData\Local\BigCityLab 2023-08-15 20:29 - 2023-02-24 18:00 - 000000000 ____D C:\Users\geava\AppData\LocalLow\BigCityLab 2023-08-14 17:13 - 2022-11-30 17:50 - 000000000 ____D C:\Users\geava\AppData\LocalLow\8Floor 2023-08-14 06:16 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-08-14 03:01 - 2022-11-30 20:45 - 001684800 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\id-ID 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\et-EE 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\es-MX 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-08-14 03:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\appcompat 2023-08-14 02:35 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-08-13 11:34 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-08-13 11:31 - 2022-11-30 20:50 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-08-13 09:40 - 2022-11-30 12:53 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-08-13 09:38 - 2022-11-30 12:53 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-08-13 09:25 - 2022-11-30 20:50 - 000003938 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{DB54DAB8-9D26-4170-B02B-6893006B2A30} 2023-08-13 09:25 - 2022-11-30 20:50 - 000003814 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{C63AC67D-AA24-4C47-95C9-F8DC189CB7F1} ==================== Bestanden in de root van sommige mappen ======== 2022-11-30 17:14 - 2022-11-30 17:14 - 000000008 _____ () C:\Users\geava\AppData\Roaming\com.silhouettesoftware.id ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================