Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 20-09-2023 Gestart door hfmgo (Beheerder) op LAPTOP-FI18LOV1 (Acer Aspire A517-52G) (25-09-2023 10:50:53) Gestart vanaf C:\Users\hfmgo\Desktop\FRST64.exe Geladen Profielen: hfmgo Platform: Microsoft Windows 11 Pro Versie 22H2 22621.2283 (X64) Taal: Engels (Verenigd Koninkrijk) -> Nederlands (Nederland) Standaardbrowser: Edge Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fshoster64.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\FsPisces.exe (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.36\msedgewebview2.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe (C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.36\msedgewebview2.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\CamUsage.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\MicUsage.exe (C:\Program Files\Google\Drive File Stream\81.0.5.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\81.0.5.0\crashpad_handler.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.36\msedgewebview2.exe <6> (cmd.exe ->) (WithSecure Oyj -> F-Secure Corporation) C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\http\1695106836\nif2_ols_ca.exe (DriverStore\FileRepository\cui_dch.inf_amd64_ea0f2e956b37b3be\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ea0f2e956b37b3be\igfxEMN.exe (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\81.0.5.0\GoogleDriveFS.exe <7> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <17> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_5480d357b22325cc\IgoAudioService_x64.exe (services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe (services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\fshoster32.exe <3> (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ea0f2e956b37b3be\igfxCUIServiceN.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_a5ea1b1d8db1527e\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_98ad395a329efc54\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_38b23bd92a6775fe\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_0f43cda6a2474b5c\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncHelper.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_23b8f78855f16263\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_6903f1a9d3b68dab\RtkAudUService64.exe <2> (services.exe ->) (WithSecure Oyj -> F-Secure Corporation) C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fsorsp64.exe (services.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fshoster64.exe <2> (services.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fsulprothoster.exe (services.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Program Files\Common Files\Zoom\Support\CptService.exe (svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe (svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_5480d357b22325cc\iGoSwServer.exe (svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ea0f2e956b37b3be\igfxextN.exe (svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.StorePurchaseApp_22307.1401.7.0_x64__8wekyb3d8bbwe\StoreExperienceHost.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21580.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21580.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\hfmgo\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_6903f1a9d3b68dab\RtkAudUService64.exe [1259872 2021-05-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1073144 2021-09-25] (Heidi Computers Ltd -> The Eraser Project) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrictie <==== AANDACHT HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrictie <==== AANDACHT HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\81.0.5.0\GoogleDriveFS.exe [55259936 2023-09-22] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\81.0.5.0\GoogleDriveFS.exe [55259936 2023-09-22] (Google LLC -> Google, Inc.) HKU\S-1-5-21-169311000-1927081717-3107055459-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607648 2023-09-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-169311000-1927081717-3107055459-1001\...\Run: [MicrosoftEdgeAutoLaunch_FCCE34135D639FA56D55088CBF1DEF88] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-09-23] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-169311000-1927081717-3107055459-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\81.0.5.0\GoogleDriveFS.exe [55259936 2023-09-22] (Google LLC -> Google, Inc.) HKU\S-1-5-21-169311000-1927081717-3107055459-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31298328 2022-11-03] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-169311000-1927081717-3107055459-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11469784 2023-09-07] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\81.0.5.0\GoogleDriveFS.exe [55259936 2023-09-22] (Google LLC -> Google, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-13] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install ==================== Geplande Taken (gefilterd) ================= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {4BDCC31D-CA5E-4A95-80C9-C8FBE9AB396F} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> ) Task: {329389FA-F52F-4B7C-AAFD-D94118AE5732} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41632 2021-12-30] (Acer Incorporated -> ) Task: {213339EC-944D-4594-B130-59E0DF699F7C} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836512 2021-12-30] (Acer Incorporated -> ) Task: {C1119EA6-4C60-4D06-A740-392E25B91725} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> ) Task: {8ED92195-4ED0-40A6-AFF2-B74A9A4420A5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.) Task: {3F88C11B-C51F-4C7C-8614-F41155B5DDB6} - System32\Tasks\App Explorer => C:\Users\hfmgo\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== AANDACHT Task: {EE32ED7A-4C4C-4FF9-8256-16058F2A2541} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\fs_hotfix.exe [469896 2023-09-05] (F-Secure Corporation -> F-Secure Corporation) Task: {00230153-6A4E-49E3-95CF-FF2C2D3B95FA} - System32\Tasks\F-Secure\Scheduled scanning task => C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\fsscan.exe [263560 2023-09-05] (F-Secure Corporation -> F-Secure Corporation) Task: {F687573B-0894-46AA-A1AD-EB2F0C587DE1} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [29464 2022-11-03] (Garmin International, Inc. -> ) Task: {345ADBC3-9E05-4F36-9790-BAC7F4761008} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2022-12-08] (Google Inc -> Google Inc.) Task: {5A6473D1-47E7-4BD9-BE15-BA598D0FA4D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2022-12-08] (Google Inc -> Google Inc.) Task: {155E4CDC-D37F-4E13-AB90-FC2822943A1D} - System32\Tasks\iGoAudioTask => C:\WINDOWS\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_5480d357b22325cc\iGoSwServer.exe [467344 2022-11-15] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) Task: {3C9B5F18-DBB9-487E-9C99-1308B49F391A} - System32\Tasks\iGoAudioTaskSession => C:\WINDOWS\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_5480d357b22325cc\iGoSwServer.exe [467344 2022-11-15] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) Task: {D4DA210D-7FC2-4EF8-ACBD-172328B2C248} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) Task: {04DC2E46-1E09-4F1C-BE1B-BF8BB8AFFD21} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) Task: {EDADAFC4-251B-414A-BBFC-9826187EDED6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {63221D81-F0AC-4F3A-A9E8-94AD3AAA19D1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {DCD4D5E2-F267-48FF-8194-862A9500FCB5} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-08-23] (Microsoft Windows -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Geen bestand) Task: {EBCD2BA5-4742-41FF-A8EE-23EB68B754CC} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Autofix => C:\Program Files\Norton Security\Engine\22.22.11.12\SymErr.exe /ui (Geen bestand) Task: {A639F43A-0486-46F1-90A5-9F256C2514FC} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Error Analyzer => C:\Program Files\Norton Security\Engine\22.22.11.12\SymErr.exe /analyze (Geen bestand) Task: {3D776264-FCEE-4606-8A46-BC3AE31D5F4A} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Error Processor => C:\Program Files\Norton Security\Engine\22.22.11.12\SymErr.exe /submit (Geen bestand) Task: {ABA2F0E5-08C4-4FBA-ACCB-1E3BB1CCBFF8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {165AEFF2-419D-4D34-95A5-22D3A1DFA25A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {0E099EFD-561E-4440-B415-172885813824} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4158C7AD-0C81-4036-9580-180CE68C6B41} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DDF282CA-4558-48D6-A6B6-9D7728CED483} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {69D1A039-734E-4F31-AD64-428FD51AA4C8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FF9E0CCF-4B9A-478B-A82C-52D0B9D8E164} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E521FC45-4FC7-4E30-BDD7-305536A00941} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1FD2D7E2-9994-4C04-B92E-F3156EA99D74} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A766D691-9C84-42B5-9F31-C3246EA57CEC} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DC5D0152-72F8-413F-9DFD-64532A790B08} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> ) Task: {6D4F1A54-8937-47C5-8567-AA53FA2A4D27} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [18224 2021-03-22] (Acer Incorporated -> ) Task: {8C5953D6-7249-4D49-96BB-47431A7C0CD0} - System32\Tasks\Oem\xvpnHelperTask => C:\Users\hfmgo\AppData\Local\OEM\PromoX\XvpnHelper\XvpnInstaller.exe [70016 2022-10-24] (Acer Incorporated -> ) Task: {1C8697C6-23AE-47E1-990D-B53E63CBFC8E} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2023-09-18] (Microsoft Corporation -> Microsoft Corporation) Task: {8446E2B5-BCCA-4CBE-8E48-893A5DCE70C0} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-169311000-1927081717-3107055459-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2023-09-18] (Microsoft Corporation -> Microsoft Corporation) Task: {65C5E996-66F8-4101-BACC-ACB906E604E3} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-169311000-1927081717-3107055459-1006 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2023-09-18] (Microsoft Corporation -> Microsoft Corporation) Task: {7BF45771-FF71-4CD6-BFEA-8062DA96E5A5} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {EF7ADE16-900A-427B-80B0-62D8E316B8C6} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2021-12-30] (Acer Incorporated -> Acer Incorporated) Task: {AD60B40D-2571-4654-B5C7-13A9AEBB4D8B} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft) Task: {E7483CAC-E009-44A5-A341-3D73229A96AB} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268520 2021-04-19] (Acer Incorporated -> Acer Incorporated) Task: {69A66758-A0AA-4F5D-A5AA-CC6033E3D329} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2021-04-19] (Acer Incorporated -> Acer Incorporated) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.254 Tcpip\..\Interfaces\{174abdf4-0563-43a9-a688-05ffe29759e9}: [DhcpNameServer] 192.168.2.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-25] Edge Notifications: Default -> hxxps://gw.lightinthebox.com; hxxps://my.norton.com; hxxps://www.marktplaats.nl; hxxps://www.tripper.nl; hxxps://www.youtube.com Edge HomePage: Default -> hxxp://google.nl/ Edge StartupUrls: Default -> "hxxps://dub110.mail.live.com/?fid=flXPJhd3UCv0mI3zUqHrFQlg2" Edge Extension: (Pinterest-bewaarknop) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkgoflemacdadndiohhdnphcmdhacabg [2022-12-08] Edge Extension: (Grammarly: Grammar Checker and AI Writing App) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2023-09-22] Edge Extension: (Browserbeveiliging door F-Secure) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cpikpibllpjmpnchjajlibnmmomnnhnm [2023-09-22] Edge Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2023-07-14] Edge Extension: (Trusted Shops-extensie voor Google Chrome) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2023-09-23] Edge Extension: (Microsoft 365) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2023-07-19] Edge Extension: (Offline Documenten) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-29] Edge Extension: (Adblock Plus - gratis adblocker) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-08-25] Edge Extension: (Grammatica- & Spellingscontrole—LanguageTool) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hfjadhjooeceemgojogkhlppanjkbobc [2023-09-13] Edge Extension: (Edge relevant text changes) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-09] Edge Extension: (AdBlock - de beste advertentieblokker) - C:\Users\hfmgo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-09-21] FireFox: ======== FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google Inc -> Google, Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default [2023-09-22] CHR StartupUrls: Default -> "hxxps://dub110.mail.live.com/?fid=flXPJhd3UCv0mI3zUqHrFQlg2" CHR Extension: (Adobe Acrobat: tools voor PDF's bewerken, converteren en ondertekenen) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-08-30] CHR Extension: (Trusted Shops-extensie voor Google Chrome) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2023-08-27] CHR Extension: (Offline Documenten) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-13] CHR Extension: (AdBlock - de beste advertentieblokker) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-09-21] CHR Extension: (Pinterest-bewaarknop) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2023-03-31] CHR Extension: (Browserbeveiliging door F-Secure) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2023-09-22] CHR Extension: (Grammarly: Grammar Checker and AI Writing App) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2023-09-22] CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-27] CHR Extension: (Microsoft 365) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2023-08-27] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-08] CHR Extension: (Grammatica- & Spellingscontrole—LanguageTool) - C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2023-09-22] CHR Profile: C:\Users\hfmgo\AppData\Local\Google\Chrome\User Data\System Profile [2023-04-02] CHR HKU\S-1-5-21-169311000-1927081717-3107055459-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKU\S-1-5-21-169311000-1927081717-3107055459-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817040 2023-09-01] (Microsoft Corporation -> Microsoft Corporation) R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncHelper.exe [3518480 2023-09-18] (Microsoft Corporation -> Microsoft Corporation) R2 fshoster; C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\fshoster32.exe [241544 2023-09-05] (F-Secure Corporation -> F-Secure Corporation) R2 fsnethoster; C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\fshoster32.exe [241544 2023-09-05] (F-Secure Corporation -> F-Secure Corporation) R2 fsulhoster; C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fshoster64.exe [738256 2023-09-22] (WithSecure Oyj -> WithSecure Corporation) R2 fsulnethoster; C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fshoster64.exe [738256 2023-09-22] (WithSecure Oyj -> WithSecure Corporation) R2 fsulorsp; C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fsorsp64.exe [109432 2023-09-22] (WithSecure Oyj -> F-Secure Corporation) R2 fsulprothoster; C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fsulprothoster.exe [738256 2023-09-22] (WithSecure Oyj -> WithSecure Corporation) R2 IgoAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_5480d357b22325cc\IgoAudioService_x64.exe [36512 2022-11-15] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_0f43cda6a2474b5c\AS\IAS\IntelAudioService.exe [531008 2022-01-26] (Intel Corporation -> Intel) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.180.0828.0001\OneDriveUpdaterService.exe [3855376 2023-09-18] (Microsoft Corporation -> Microsoft Corporation) S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated) R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402352 2023-08-23] (Microsoft Windows Publisher -> Microsoft Corporation) R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [343272 2021-04-19] (Acer Incorporated -> Acer Incorporated) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_23b8f78855f16263\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_23b8f78855f16263\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem R2 ZoomCptService; "C:\Program Files\Common Files\Zoom\Support\CptService.exe" -user_path "C:\Users\hfmgo\AppData\Roaming\Zoom" ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-12-08] (Microsoft Corporation) [Bestand niet getekend] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-12-08] (Microsoft Corporation) [Bestand niet getekend] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Bestand niet getekend] S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 F-Secure Gatekeeper; C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\ulcore\1693495058\fsulgk.sys [475184 2023-09-22] (Microsoft Windows Hardware Compatibility Publisher -> WithSecure Corporation) S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [17400 2023-09-22] (Microsoft Windows Early Launch Anti-malware Publisher -> WithSecure Corporation) R2 fsnif2; C:\Program Files (x86)\KPN\KPN Veilig Virusscanner\Ultralight\nif2\1686745651\nif2s64.sys [193040 2023-09-22] (Microsoft Windows Hardware Compatibility Publisher -> WithSecure Corporation) R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_d0e63c4e3754f42f\iaLPSS2_GPIO2_TGL.sys [128152 2020-08-12] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_ab87bf17a571e523\iaLPSS2_I2C_TGL.sys [197272 2020-08-12] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1544912 2021-08-26] (Intel Corporation -> Intel Corporation) R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_2cc98897d8dddf62\IntcUSB.sys [882280 2022-01-26] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-06] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation) R3 MTKBTFilterX64; C:\WINDOWS\system32\DRIVERS\mtkbtfilterx.sys [371704 2023-02-02] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1647056 2023-02-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-08-23] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 nsvst_NGC; \SystemRoot\System32\drivers\NGCx64\1617080.004\nsvst.sys [X] S3 SymEvnt; \??\C:\Program Files\Norton Security\NortonData\22.21.5.49\SymPlatform\SymEvnt.sys [X] S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2023-09-25 10:50 - 2023-09-25 10:51 - 000036612 _____ C:\Users\hfmgo\Desktop\FRST.txt 2023-09-25 10:50 - 2023-09-25 10:51 - 000000000 ___DC C:\FRST 2023-09-25 10:45 - 2023-09-25 10:47 - 002382848 _____ (Farbar) C:\Users\hfmgo\Desktop\FRST64.exe 2023-09-24 09:21 - 2023-09-24 18:53 - 000000000 ____D C:\Program Files (x86)\NortonInstaller 2023-09-22 16:27 - 2023-09-22 16:27 - 000803448 _____ C:\WINDOWS\system32\perfh013.dat 2023-09-22 16:27 - 2023-09-22 16:27 - 000159996 _____ C:\WINDOWS\system32\perfc013.dat 2023-09-22 15:57 - 2023-09-22 16:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\F-Secure 2023-09-22 15:57 - 2023-09-22 16:00 - 000000000 ____D C:\ProgramData\F-Secure 2023-09-22 15:57 - 2023-09-22 15:57 - 000002252 _____ C:\Users\Public\Desktop\KPN Veilig Virusscanner.lnk 2023-09-22 15:57 - 2023-09-22 15:57 - 000000000 ____D C:\Users\hfmgo\AppData\Local\F-Secure 2023-09-22 15:57 - 2023-09-22 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KPN Veilig Virusscanner 2023-09-22 15:57 - 2023-09-22 15:57 - 000000000 ____D C:\Program Files (x86)\KPN 2023-09-22 15:56 - 2023-09-22 15:56 - 000980872 _____ (F-Secure Corporation) C:\Users\hfmgo\Downloads\Niet bevestigd 92033.crdownload 2023-09-22 15:48 - 2023-09-22 15:48 - 000980872 _____ (F-Secure Corporation) C:\Users\hfmgo\Downloads\Niet bevestigd 373681.crdownload 2023-09-15 20:49 - 2023-09-15 20:49 - 000627387 _____ C:\Users\hfmgo\Desktop\Brunch 15 okt x.pdf 2023-09-15 20:47 - 2023-09-15 20:47 - 000627460 _____ C:\Users\hfmgo\Desktop\15 okt. Brunch 2x.pdf 2023-09-04 08:51 - 2023-09-04 08:51 - 000062340 _____ C:\Users\hfmgo\Downloads\Niet bevestigd 366312.crdownload ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2023-09-25 10:50 - 2022-12-08 22:01 - 000000000 ____D C:\Users\hfmgo\AppData\Local\CrashDumps 2023-09-25 10:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-09-25 10:43 - 2023-01-01 10:42 - 000000000 ____D C:\Users\Public\Downloads\Norton 2023-09-25 10:36 - 2022-08-25 20:29 - 000000000 ____D C:\ProgramData\NVIDIA 2023-09-25 10:34 - 2022-12-08 16:59 - 000000000 ____D C:\Program Files (x86)\Google 2023-09-25 10:34 - 2022-12-08 13:11 - 000000000 ___RD C:\Users\hfmgo\OneDrive 2023-09-25 10:34 - 2022-12-08 13:09 - 000000000 __SHD C:\Users\hfmgo\IntelGraphicsProfiles 2023-09-25 10:34 - 2022-12-08 12:55 - 000000000 ___SD C:\Users\hfmgo\AppData\Roaming\Microsoft\Credentials 2023-09-25 10:34 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-09-25 09:23 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-09-25 09:23 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-09-25 08:33 - 2022-12-08 12:55 - 000000000 ____D C:\Users\hfmgo\AppData\Local\Host App Service 2023-09-25 08:32 - 2022-12-08 15:35 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-09-25 08:30 - 2022-08-25 20:50 - 000000000 ____D C:\ProgramData\Norton 2023-09-25 08:30 - 2022-08-25 19:49 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-09-24 18:32 - 2022-12-08 13:09 - 000000000 ____D C:\Users\hfmgo\AppData\Local\D3DSCache 2023-09-24 09:21 - 2022-08-25 20:50 - 000000000 ____D C:\ProgramData\NortonInstaller 2023-09-22 16:27 - 2022-12-08 15:44 - 001803066 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-09-22 16:27 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-09-22 16:22 - 2022-12-08 15:40 - 000003310 _____ C:\WINDOWS\system32\Tasks\iGoAudioTask 2023-09-22 16:22 - 2022-12-08 15:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-09-22 16:22 - 2022-12-08 15:35 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2023-09-22 16:22 - 2022-08-25 19:49 - 000000000 ___HD C:\Intel 2023-09-22 16:22 - 2022-08-25 19:48 - 000012288 ___SH C:\DumpStack.log.tmp 2023-09-22 16:22 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-09-22 16:22 - 2022-05-07 07:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2023-09-22 16:04 - 2022-08-25 20:50 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared 2023-09-22 16:00 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-09-22 15:52 - 2022-12-10 09:58 - 000000000 ____D C:\Users\hfmgo\AppData\Local\Norton 2023-09-22 08:33 - 2022-12-10 15:28 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2023-09-22 08:33 - 2022-12-10 15:28 - 000002072 _____ C:\Users\hfmgo\Desktop\Google Docs.lnk 2023-09-21 10:26 - 2022-12-15 11:30 - 000000000 ____D C:\Users\hfmgo\AppData\Roaming\Microsoft\Word 2023-09-21 10:22 - 2022-12-08 13:09 - 000000000 ____D C:\Users\hfmgo\AppData\Local\Packages 2023-09-20 17:19 - 2022-12-08 15:36 - 000000000 ____D C:\Users\hfmgo 2023-09-20 17:05 - 2022-12-08 13:40 - 000000000 ____D C:\Program Files\Common Files\AV 2023-09-20 16:42 - 2022-12-09 23:59 - 000000000 ____D C:\Users\hfmgo\AppData\LocalLow\Norton 2023-09-20 16:42 - 2022-12-08 13:09 - 000000000 ____D C:\ProgramData\Packages 2023-09-20 16:40 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-09-20 16:39 - 2022-12-08 15:42 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-09-20 16:39 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2023-09-18 17:32 - 2022-12-08 15:40 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-169311000-1927081717-3107055459-1001 2023-09-18 17:32 - 2022-12-08 15:40 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-09-18 17:32 - 2022-12-08 14:03 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-09-16 14:14 - 2023-01-31 18:53 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2023-09-16 08:50 - 2022-12-08 16:59 - 000003862 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-09-16 08:50 - 2022-12-08 16:59 - 000003738 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-09-15 20:50 - 2022-12-08 16:04 - 000000000 ___RD C:\Users\hfmgo\Documents\Documenten 2023-09-13 16:52 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-09-13 16:36 - 2022-12-08 16:59 - 000002271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-09-13 12:50 - 2022-12-08 15:35 - 000510328 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-09-13 12:50 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-09-13 12:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-09-13 12:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-09-13 12:20 - 2022-12-08 17:26 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-09-13 12:17 - 2022-12-08 17:25 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-09-13 11:24 - 2022-12-08 17:22 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2023-09-13 11:24 - 2022-12-08 17:22 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2023-09-13 11:24 - 2022-12-08 17:22 - 000002065 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2023-09-13 11:02 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-09-13 11:00 - 2022-12-08 15:39 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-08-30 10:21 - 2022-08-25 20:41 - 000000000 ____D C:\ProgramData\Acer 2023-08-30 10:04 - 2023-01-27 16:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-08-30 08:48 - 2022-12-08 13:11 - 000000000 ____D C:\Users\hfmgo\AppData\Local\PlaceholderTileLogoFolder ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================