Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 14-10-2020 Gestart door lenovo (Beheerder) op DESKTOP-H2EJPNK (LENOVO 4480B2G) (14-10-2020 17:38:07) Gestart vanaf C:\Users\lenovo\Desktop Geladen Profielen: lenovo Platform: Windows 10 Pro Versie 2004 19041.508 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\107.4.443\QtWebEngineProcess.exe <2> (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\fshoster32.exe <3> (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fshoster64.exe <2> (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fsorsp64.exe (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\FsPisces.exe (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fsulprothoster.exe (Gadwin, Ltd. -> Gadwin Systems, Inc) C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\commsapps.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12010.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7929856 2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [Gadwin PrintScreen] => C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [1842384 2012-05-30] (Gadwin, Ltd. -> Gadwin Systems, Inc) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [Opera Browser Assistant] => C:\Users\lenovo\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3085336 2020-10-14] (Opera Software AS -> Opera Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\Installer\chrmstp.exe [2020-10-14] (Google LLC -> Google LLC) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {241E7B4D-8C95-4782-A892-A2DF502385BB} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\Safe Online\fs_hotfix.exe [293248 2020-08-03] (F-Secure Corporation -> F-Secure Corporation) Task: {2575C68E-DB49-4DF7-90A4-43C12E46AED5} - System32\Tasks\Opera scheduled Autoupdate 1584812392 => C:\Users\lenovo\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software) Task: {2A281643-102E-4198-9BB8-3A33E17B3962} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd) Task: {2AE2688A-A2AF-4348-BDE2-4717261C9A70} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) Task: {460BC576-1CF1-41AB-ABD1-7BA235FE59B6} - System32\Tasks\Opera scheduled Autoupdate 1560681574 => C:\Users\lenovo\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software) Task: {5A6A692E-6237-401E-A897-F192BEDF98B3} - System32\Tasks\Opera scheduled assistant Autoupdate 1581137829 => C:\Users\lenovo\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\lenovo\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {6C1A9F69-E2D5-4209-BF93-35671C5CE18D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-16] (Google Inc -> Google LLC) Task: {8DCDE83B-6859-4AEA-ADA0-2928BA9442CE} - System32\Tasks\FreedomeReset => C:\Program Files (x86)\F-Secure\Freedome\Freset.exe Task: {CA89EC08-567E-487C-A9AE-465725EA8303} - System32\Tasks\Agent Activation Runtime\S-1-5-21-3808283307-1243482618-78075021-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-06-10] (Microsoft Windows -> ) Task: {E580E016-25AD-4F4F-ACFF-C3D6E9CDD8A7} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\lenovo\Documents\esetonlinescanner_nld.exe Task: {E85A6617-E599-414B-B933-E65CF2572EE5} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\lenovo\Documents\esetonlinescanner_nld.exe Task: {EE0F70D7-0D88-4FF0-B259-0DCF29A88E5C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd) Task: {F8DC90D6-C5E3-4537-B7A5-367AF0CAE72C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) Task: {F9928937-6C4D-4314-8563-055D2B720D13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-16] (Google Inc -> Google LLC) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 84.116.46.22 84.116.46.23 Tcpip\..\Interfaces\{ae9af8b6-7675-4463-a24c-21cddb475ef9}: [DhcpNameServer] 84.116.46.22 84.116.46.23 Edge: ====== DownloadDir: C:\Users\lenovo\Downloads Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-03-04] Edge DefaultProfile: Default Edge Profile: C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-13] Edge HomePage: Default -> hxxp://pspismagic.jouwpagina.nl/ Edge StartupUrls: Default -> "hxxp://pspismagic.jouwpagina.nl/" Edge Extension: (Browsing Protection by F-Secure) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-10-05] Edge Extension: (Google Mail Checker) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-05-02] Edge Extension: (AdBlock - de beste advertentieblokker) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2020-10-09] Edge Extension: (I don’t care about cookies) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oholpbloipjbbhlhohaebmieiiieioal [2020-10-05] Edge HKLM\...\Edge\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] Edge HKLM-x32\...\Edge\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default [2020-10-14] CHR Notifications: Default -> hxxps://mono5.biz CHR HomePage: Default -> hxxp://pspismagic.jouwpagina.nl/ CHR StartupUrls: Default -> "hxxp://pspismagic.jouwpagina.nl/" CHR Extension: (Presentaties) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-25] CHR Extension: (Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-25] CHR Extension: (Google Drive) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-06-25] CHR Extension: (ColorZilla) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2019-11-01] CHR Extension: (YouTube) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-25] CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-09-10] CHR Extension: (Spreadsheets) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-25] CHR Extension: (I don’t care about cookies) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2020-09-30] CHR Extension: (Offline Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-17] CHR Extension: (IE Tab) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2020-10-14] CHR Extension: (Browsing Protection by F-Secure) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-10-06] CHR Extension: (Google Mail Checker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-03-04] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04] CHR Extension: (Gmail) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-25] CHR Extension: (Chrome Media Router) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-14] CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-10-13] CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-10-14] CHR Extension: (Presentaties) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-23] CHR Extension: (Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-23] CHR Extension: (Moonlit Reflection) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apakhamomlpjegjclmgimiapigoeoglb [2020-06-10] CHR Extension: (Google Drive) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-23] CHR Extension: (YouTube) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-23] CHR Extension: (Muis rechts klikken inschakelen) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bofdamlbkfkjnecfjbhpncokfalmmbii [2020-09-05] CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-09-10] CHR Extension: (Spreadsheets) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-23] CHR Extension: (I don’t care about cookies) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2020-10-01] CHR Extension: (Offline Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-16] CHR Extension: (Browsing Protection by F-Secure) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-10-06] CHR Extension: (Google Mail Checker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-04-23] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-23] CHR Extension: (Gmail) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-23] CHR Extension: (Chrome Media Router) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-14] CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\System Profile [2020-10-13] CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] Opera: ======= OPR Extension: (Notifier for Gmail™) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\flkijckbigolpahbkklilflpmkalfohc [2019-06-25] OPR Extension: (I don't care about cookies) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\iambaeepkgdclnmbfdnnohkjjpdglbeo [2020-10-13] OPR Extension: (Close & Clean) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\lgnmpbijlfdkoindhleemckiandljdah [2019-12-28] OPR Extension: (Google Translate) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\mchdgimobfnilobnllpdnompfjkkfdmi [2020-08-27] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) R2 fshoster; C:\Program Files (x86)\Safe Online\fshoster32.exe [242560 2020-08-03] (F-Secure Corporation -> F-Secure Corporation) R2 fsnethoster; C:\Program Files (x86)\Safe Online\fshoster32.exe [242560 2020-08-03] (F-Secure Corporation -> F-Secure Corporation) R2 fsulhoster; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fshoster64.exe [618080 2020-10-09] (F-Secure Corporation -> F-Secure Corporation) R2 fsulnethoster; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fshoster64.exe [618080 2020-10-09] (F-Secure Corporation -> F-Secure Corporation) R2 fsulorsp; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fsorsp64.exe [101248 2020-10-09] (F-Secure Corporation -> F-Secure Corporation) R2 fsulprothoster; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fsulprothoster.exe [618080 2020-10-09] (F-Secure Corporation -> F-Secure Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-09-19] (Malwarebytes Inc -> Malwarebytes) R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5097896 2020-09-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2019-11-05] (Reason Software Company Inc. -> Reason Software Company Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] R3 F-Secure Gatekeeper; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fsulgk.sys [289592 2020-10-09] (F-Secure Corporation -> F-Secure Corporation) R1 F-Secure UL HIPS; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1602225647\fshs.sys [96056 2020-10-09] (F-Secure Corporation -> F-Secure Corporation) R0 fsbts; C:\WINDOWS\System32\drivers\fsbts.sys [58752 2020-06-08] (F-Secure Corporation -> F-Secure Corporation) S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [15304 2020-07-15] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation) R3 fsfreedometap; C:\WINDOWS\System32\drivers\fsfreedometap.sys [40664 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R2 fsnif2; C:\Program Files (x86)\Safe Online\Ultralight\nif2\1602673734\nif2s64.sys [178920 2020-10-14] (F-Secure Corporation -> F-Secure Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [217592 2020-09-19] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-09-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-09-19] (Malwarebytes Inc -> Malwarebytes) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-10-14 17:38 - 2020-10-14 17:40 - 000022225 _____ C:\Users\lenovo\Desktop\FRST.txt 2020-10-14 17:37 - 2020-10-14 17:37 - 000000000 ____D C:\Users\lenovo\Desktop\FRST-OlderVersion 2020-10-14 17:36 - 2020-10-14 17:36 - 002137824 _____ C:\Users\lenovo\Downloads\AnaRidzi1640.rar 2020-10-14 17:36 - 2020-10-14 17:36 - 001713277 _____ C:\Users\lenovo\Downloads\AnaRidzi1612.rar 2020-10-14 17:33 - 2020-10-14 17:33 - 000797789 _____ C:\Users\lenovo\Downloads\AnaRidzi1510.rar 2020-10-14 17:00 - 2020-10-14 17:00 - 005760365 _____ C:\Users\lenovo\Downloads\SNC-LYS-JULIETTE.rar 2020-10-14 16:59 - 2020-10-14 16:59 - 005649484 _____ C:\Users\lenovo\Downloads\SNC-LYS-JULIETTE-VINDAGE.rar 2020-10-14 16:58 - 2020-10-14 16:58 - 053806779 _____ C:\Users\lenovo\Downloads\155307_std.rar 2020-10-14 16:55 - 2020-10-14 16:55 - 106319425 _____ C:\Users\lenovo\Downloads\144284_std.zip 2020-10-14 16:55 - 2020-10-14 16:55 - 026391090 _____ C:\Users\lenovo\Downloads\KarmalizedScraps - Famous ExclBJ +T.rar 2020-10-14 16:54 - 2020-10-14 16:54 - 032179716 _____ C:\Users\lenovo\Downloads\Eskada - Candy.rar 2020-10-14 16:53 - 2020-10-14 16:56 - 439625682 _____ C:\Users\lenovo\Downloads\wetransfer-98c672.zip 2020-10-14 16:19 - 2020-10-14 16:20 - 380208612 _____ C:\Users\lenovo\Downloads\wetransfer-1931b1.zip 2020-10-14 16:18 - 2020-10-14 16:18 - 003513828 _____ C:\Users\lenovo\Downloads\BrietOlga-Package-1-DNS.rar 2020-10-14 16:17 - 2020-10-14 16:17 - 003639548 _____ C:\Users\lenovo\Downloads\BrietOlga-Package-2-DNS.rar 2020-10-14 11:21 - 2020-10-14 17:39 - 000000000 ____D C:\FRST 2020-10-14 11:20 - 2020-10-14 17:37 - 002299904 _____ (Farbar) C:\Users\lenovo\Desktop\FRST64.exe 2020-10-14 11:11 - 2020-10-14 11:11 - 006987980 _____ C:\Users\lenovo\Downloads\materiaal.rar 2020-10-14 10:27 - 2020-10-14 10:27 - 010132792 _____ C:\Users\lenovo\Downloads\WOMAN MET NAAM.rar 2020-10-14 08:39 - 2020-10-14 08:39 - 000004566 _____ C:\Users\lenovo\Documenten\mal2.txt 2020-10-14 07:53 - 2020-10-14 07:53 - 000925155 _____ C:\Users\lenovo\Downloads\Fashion-Dolce-Gabbana-TCH.rar 2020-10-14 07:29 - 2020-10-14 07:29 - 000000000 ___HD C:\Users\lenovo\Downloads\.opera 2020-10-13 18:46 - 2020-10-13 18:46 - 003886514 _____ C:\Users\lenovo\Downloads\İstanbul.zip 2020-10-13 12:34 - 2020-10-13 12:34 - 014203617 _____ C:\Users\lenovo\Downloads\@Sas_Scrapkit_FallingLeafs.zip 2020-10-13 11:20 - 2020-10-13 11:20 - 008447152 _____ (Malwarebytes) C:\Users\lenovo\Desktop\adwcleaner_8.0.8.exe 2020-10-13 09:36 - 2020-10-13 09:37 - 000972190 _____ C:\Users\lenovo\Downloads\Les30-Pink-Materialen.zip 2020-10-12 14:56 - 2020-10-12 14:56 - 004018605 _____ C:\Users\lenovo\Downloads\matériel Automne felinec31.zip 2020-10-12 09:11 - 2020-10-12 09:11 - 001085328 _____ C:\Users\lenovo\Downloads\materiel_automne_2020.zip 2020-10-11 19:23 - 2020-10-11 19:23 - 002452867 _____ C:\Users\lenovo\Downloads\Materialen Winter in Woodland.zip 2020-10-08 07:10 - 2020-10-08 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2020-10-06 20:43 - 2020-10-06 20:43 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2020-09-24 12:45 - 2020-09-24 12:45 - 000000876 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-09-21 16:33 - 2020-09-21 16:33 - 000044544 ____N C:\WINDOWS\AWuninstall.exe 2020-09-21 11:55 - 2020-09-21 11:55 - 000000000 ____D C:\WINDOWS\Panther 2020-09-19 13:06 - 2020-09-19 13:06 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-09-19 13:05 - 2020-09-19 13:05 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-09-19 12:17 - 2020-09-19 12:17 - 000001176 _____ C:\Users\Public\Desktop\Corel PaintShop Pro X9.lnk 2020-09-19 12:12 - 2020-09-19 12:12 - 000001317 _____ C:\Users\Public\Desktop\Corel PaintShop Pro 2019 (64-bit).lnk 2020-09-19 12:11 - 2020-09-19 12:11 - 000001186 _____ C:\Users\Public\Desktop\Corel PaintShop Pro 2019.lnk 2020-09-19 11:59 - 2020-09-19 11:59 - 000001317 _____ C:\Users\Public\Desktop\Corel PaintShop Pro 2020 (64-bit).lnk 2020-09-19 11:57 - 2020-09-19 11:57 - 000001186 _____ C:\Users\Public\Desktop\Corel PaintShop Pro 2020.lnk 2020-09-19 10:27 - 2020-09-19 10:27 - 000001317 _____ C:\Users\Public\Desktop\Corel PaintShop Pro 2021 (64-bit).lnk 2020-09-19 10:23 - 2020-09-19 10:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Pro 2021 2020-09-19 10:23 - 2020-09-19 10:23 - 000001186 _____ C:\Users\Public\Desktop\Corel PaintShop Pro 2021.lnk 2020-09-15 10:59 - 2020-09-15 10:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImageSkill 2020-09-15 10:59 - 2020-09-15 10:59 - 000000000 ____D C:\Program Files (x86)\ImageSkill ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-10-14 16:58 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-10-14 15:41 - 2020-05-28 09:31 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-10-14 15:41 - 2020-05-28 09:31 - 000003550 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-10-14 15:38 - 2020-05-28 09:31 - 000004474 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1581137829 2020-10-14 15:33 - 2020-05-28 09:14 - 000000000 ____D C:\Users\lenovo 2020-10-14 15:32 - 2020-05-28 09:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-10-14 15:32 - 2020-05-28 09:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-10-14 15:32 - 2020-05-28 09:10 - 000008192 ___SH C:\DumpStack.log.tmp 2020-10-14 13:03 - 2019-12-13 14:11 - 000000000 ____D C:\Users\lenovo\Documenten\Kladblok 2020-10-14 13:01 - 2019-12-13 14:15 - 000000000 ____D C:\Users\lenovo\Documenten\Icons 2020-10-14 13:00 - 2019-12-13 13:55 - 000000000 ____D C:\Users\lenovo\Documenten\Filters 2020-10-14 12:39 - 2019-06-16 11:58 - 000002334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-10-14 12:02 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2020-10-14 12:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-10-14 11:28 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2020-10-14 11:20 - 2019-06-16 12:58 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2020-10-14 11:16 - 2019-12-13 14:09 - 000000000 ____D C:\Users\lenovo\Documenten\PrintScreen Files 2020-10-14 08:39 - 2018-09-13 12:11 - 000000000 ___RD C:\Users\lenovo\Documenten 2020-10-14 07:32 - 2020-05-28 09:31 - 000003576 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-10-14 07:32 - 2020-05-28 09:31 - 000003452 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-10-14 07:32 - 2019-06-16 11:59 - 000000000 ____D C:\Users\lenovo\AppData\Local\IE Tab 2020-10-13 16:01 - 2019-12-13 14:09 - 000000000 ____D C:\Users\lenovo\Documenten\Opdrachten 2020-10-13 12:38 - 2019-06-25 15:27 - 000000000 ____D C:\Users\lenovo\AppData\Local\CrashDumps 2020-10-13 11:13 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-10-13 11:10 - 2018-12-29 17:53 - 000000000 ___RD C:\Users\lenovo\Dropbox 2020-10-11 11:08 - 2018-09-13 12:14 - 000000000 ___RD C:\Users\lenovo\OneDrive 2020-10-11 10:31 - 2020-07-31 17:02 - 000000000 ____D C:\Users\lenovo\Documenten\ZZInfo 2020-10-11 09:30 - 2019-12-13 14:09 - 000000000 ____D C:\Users\lenovo\Documenten\My PSP files 2020-10-10 19:03 - 2020-03-23 21:30 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-10-08 15:56 - 2019-12-09 09:19 - 000000000 ____D C:\Program Files (x86)\Safe Online 2020-10-08 13:57 - 2020-05-28 09:31 - 000004218 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1584812392 2020-10-08 13:57 - 2020-03-21 19:39 - 000001465 _____ C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-browser.lnk 2020-10-08 07:11 - 2019-06-16 12:14 - 000000000 ____D C:\Program Files (x86)\Dropbox 2020-10-07 12:25 - 2019-12-13 14:06 - 000000000 ___RD C:\Users\lenovo\Documenten\Mamija 2020-10-06 13:01 - 2019-11-10 18:25 - 000000000 ____D C:\ProgramData\F-Secure 2020-10-06 13:00 - 2020-01-16 09:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safe Online 2020-10-04 18:34 - 2020-05-28 09:31 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3808283307-1243482618-78075021-1001 2020-10-04 18:33 - 2020-05-28 09:14 - 000002425 _____ C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-10-04 08:01 - 2019-06-16 13:01 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-10-04 07:58 - 2019-06-16 13:01 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-10-03 15:05 - 2019-12-13 14:07 - 000000000 ____D C:\Users\lenovo\Documenten\ZZWekelijkseawards 2020-10-03 15:05 - 2019-12-13 14:07 - 000000000 ____D C:\Users\lenovo\Documenten\ZScrap 2020-10-01 07:39 - 2019-12-13 14:10 - 000000000 ___RD C:\Users\lenovo\Documenten\Mamija Fonts1 2020-09-29 09:13 - 2019-12-13 14:10 - 000000000 ____D C:\Users\lenovo\Documenten\Maandopdrachten 2020-09-24 12:45 - 2020-05-28 09:31 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-09-21 16:16 - 2019-12-12 17:11 - 000000000 ____D C:\Users\lenovo\Documenten\Insteekfilters 2020-09-21 11:56 - 2020-05-28 09:11 - 000484608 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-09-20 09:26 - 2019-12-12 16:41 - 000000000 ____D C:\Users\lenovo\Documenten\Corel PaintShop Pro 2020-09-19 17:43 - 2020-02-22 16:22 - 000000000 ____D C:\Users\lenovo\Documenten\Adobe 2020-09-19 13:08 - 2020-08-06 18:28 - 000002046 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-09-19 13:08 - 2020-02-28 20:38 - 000002034 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-09-19 13:06 - 2020-09-04 06:19 - 000217592 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-09-19 13:05 - 2020-02-28 20:38 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-09-19 13:05 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-09-19 12:20 - 2019-06-16 12:28 - 000000000 ____D C:\Program Files (x86)\Corel 2020-09-19 12:19 - 2019-06-16 12:29 - 000000000 ____D C:\Users\lenovo\AppData\Local\Corel PaintShop Pro 2020-09-19 12:18 - 2020-08-04 16:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Pro X9 2020-09-19 12:18 - 2019-06-16 12:29 - 000000000 ____D C:\Program Files\Corel 2020-09-19 12:17 - 2019-06-16 12:28 - 000000000 ____D C:\ProgramData\Corel 2020-09-19 12:12 - 2020-08-04 16:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Pro 2019 2020-09-19 11:59 - 2020-05-04 17:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Pro 2020 2020-09-19 11:52 - 2020-01-25 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Pro 2018 2020-09-18 18:14 - 2019-01-03 16:41 - 000000000 ____D C:\Users\lenovo\AppData\LocalLow\Adblock Plus for IE 2020-09-18 15:49 - 2020-05-28 09:23 - 001771328 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-09-18 15:49 - 2019-12-07 17:14 - 000785902 _____ C:\WINDOWS\system32\perfh013.dat 2020-09-18 15:49 - 2019-12-07 17:14 - 000154030 _____ C:\WINDOWS\system32\perfc013.dat ==================== Bestanden in de root van sommige mappen ======== 2020-01-18 17:09 - 2005-12-06 04:03 - 000000735 _____ () C:\Program Files\files.dat 2020-01-18 17:09 - 2005-12-03 18:07 - 000000313 _____ () C:\Program Files\file_id.diz 2020-01-18 17:09 - 2005-12-05 01:29 - 000001527 _____ () C:\Program Files\license.txt 2020-01-18 17:09 - 2005-12-06 04:02 - 000003923 _____ () C:\Program Files\readme.txt 2020-01-21 19:30 - 2007-12-01 18:22 - 000315392 _____ () C:\Program Files (x86)\GMLMatting.8bf 2020-01-21 19:30 - 2020-01-21 19:30 - 000000053 _____ () C:\Program Files (x86)\GMLMatting.ini ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================