Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 31-03-2021 Gestart door lenovo (Beheerder) op DESKTOP-H2EJPNK (LENOVO 4480B2G) (04-04-2021 14:47:45) Gestart vanaf C:\Users\lenovo\Documenten\ZScrap Geladen Profielen: lenovo Platform: Windows 10 Pro Versie 20H2 19042.867 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Corel Corporation -> ) C:\Windows\SysWOW64\PSIService.exe (Corel Corporation -> Corel, Inc.) C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\119.4.1772\QtWebEngineProcess.exe <2> (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\fshoster32.exe <3> (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1614594353\fshoster64.exe <2> (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1614594353\fsorsp64.exe (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1614594353\fsulprothoster.exe (Gadwin, Ltd. -> Gadwin Systems, Inc) C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12> (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [Corel Photo Downloader] => C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [531272 2007-08-28] (Corel Corporation -> Corel, Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7991528 2021-03-30] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> ) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [Gadwin PrintScreen] => C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [1842384 2012-05-30] (Gadwin, Ltd. -> Gadwin Systems, Inc) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> ) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [F88A325401AB125D5F8621338AAC45AE3CF3B151._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8 HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [Opera Browser Assistant] => C:\Users\lenovo\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3366424 2020-12-08] (Opera Software AS -> Opera Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\89.0.4389.114\Installer\chrmstp.exe [2021-04-01] (Google LLC -> Google LLC) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {241E7B4D-8C95-4782-A892-A2DF502385BB} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\Safe Online\fs_hotfix.exe [308608 2020-11-03] (F-Secure Corporation -> F-Secure Corporation) Task: {2AE2688A-A2AF-4348-BDE2-4717261C9A70} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) Task: {460BC576-1CF1-41AB-ABD1-7BA235FE59B6} - System32\Tasks\Opera scheduled Autoupdate 1560681574 => C:\Users\lenovo\AppData\Local\Programs\Opera\launcher.exe [1793688 2021-03-11] (Opera Software AS -> Opera Software) Task: {6C1A9F69-E2D5-4209-BF93-35671C5CE18D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-16] (Google Inc -> Google LLC) Task: {8DCDE83B-6859-4AEA-ADA0-2928BA9442CE} - System32\Tasks\FreedomeReset => C:\Program Files (x86)\F-Secure\Freedome\Freset.exe Task: {8EAE992F-BC73-45E1-B181-A9045540F9B5} - System32\Tasks\Opera scheduled Autoupdate 1584812392 => C:\Users\lenovo\AppData\Local\Programs\Opera\launcher.exe [1793688 2021-03-11] (Opera Software AS -> Opera Software) Task: {BA02117D-D970-4A7B-958F-11E3D916A5EC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform) Task: {C1A76D51-03B4-4633-8A09-437E62374C5A} - System32\Tasks\Opera scheduled assistant Autoupdate 1581137829 => C:\Users\lenovo\AppData\Local\Programs\Opera\launcher.exe [1793688 2021-03-11] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\lenovo\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {C49B90B9-75EF-4870-A13F-D8919227BBBA} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe Task: {E580E016-25AD-4F4F-ACFF-C3D6E9CDD8A7} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\lenovo\Documents\esetonlinescanner_nld.exe Task: {E85A6617-E599-414B-B933-E65CF2572EE5} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\lenovo\Documents\esetonlinescanner_nld.exe Task: {EE0F70D7-0D88-4FF0-B259-0DCF29A88E5C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {F8DC90D6-C5E3-4537-B7A5-367AF0CAE72C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) Task: {F9928937-6C4D-4314-8563-055D2B720D13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-16] (Google Inc -> Google LLC) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 84.116.46.22 84.116.46.23 Tcpip\..\Interfaces\{ae9af8b6-7675-4463-a24c-21cddb475ef9}: [DhcpNameServer] 84.116.46.22 84.116.46.23 Edge: ======= DownloadDir: C:\Users\lenovo\Downloads Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-11-20] Edge DefaultProfile: Default Edge Profile: C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-04] Edge HomePage: Default -> hxxp://pspismagic.jouwpagina.nl/ Edge StartupUrls: Default -> "hxxp://pspismagic.jouwpagina.nl/" Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms} Edge DefaultSearchKeyword: Default -> duckduckgo.com Edge DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list Edge Extension: (Outlook) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-17] Edge Extension: (Word) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-17] Edge Extension: (Browsing Protection by F-Secure) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-10-18] Edge Extension: (Google Mail Checker) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-05-02] Edge Extension: (AdBlock - de beste advertentieblokker) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-04-03] Edge Extension: (IE Tab) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\npjkkakdacjaihjaoeliacmecofghagh [2021-01-19] Edge Extension: (I don’t care about cookies) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oholpbloipjbbhlhohaebmieiiieioal [2021-03-13] Edge Extension: (PowerPoint) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-17] Edge HKLM\...\Edge\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] Edge HKLM-x32\...\Edge\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default [2021-04-04] CHR DownloadDir: E:\Tubes5 CHR Notifications: Default -> hxxps://admin.actieforum.com CHR StartupUrls: Default -> "hxxps://goldlady.jouwpagina.nl/" CHR Extension: (Presentaties) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-02] CHR Extension: (Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-02] CHR Extension: (Google Drive) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02] CHR Extension: (YouTube) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-02] CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29] CHR Extension: (Spreadsheets) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-02] CHR Extension: (I don’t care about cookies) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2021-03-08] CHR Extension: (Offline Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-17] CHR Extension: (IE Tab) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2021-03-23] CHR Extension: (Browsing Protection by F-Secure) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-11-02] CHR Extension: (Google Mail Checker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-11-02] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (AdBlocker Ultimate) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2021-01-25] CHR Extension: (Gmail) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02] CHR Extension: (Chrome Media Router) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13] CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-03-23] CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-04-03] CHR Notifications: Profile 1 -> hxxps://corelvraagbaak.actieforum.com; hxxps://www.facebook.com CHR Extension: (Presentaties) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-02] CHR Extension: (Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-02] CHR Extension: (Moonlit Reflection) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apakhamomlpjegjclmgimiapigoeoglb [2020-11-02] CHR Extension: (Google Drive) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02] CHR Extension: (YouTube) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-02] CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29] CHR Extension: (Spreadsheets) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-02] CHR Extension: (I don’t care about cookies) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2021-03-11] CHR Extension: (Offline Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-17] CHR Extension: (Browsing Protection by F-Secure) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-11-02] CHR Extension: (Google Mail Checker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-11-02] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02] CHR Extension: (Chrome Media Router) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13] CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] Opera: ======= OPR Profile: C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable [2021-04-04] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-03-12] OPR Extension: (Notifier for Gmail™) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\flkijckbigolpahbkklilflpmkalfohc [2019-06-25] OPR Extension: (I don’t care about cookies) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\iambaeepkgdclnmbfdnnohkjjpdglbeo [2021-03-10] OPR Extension: (Close & Clean) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\lgnmpbijlfdkoindhleemckiandljdah [2019-12-28] OPR Extension: (Google Vertale) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\mchdgimobfnilobnllpdnompfjkkfdmi [2021-02-01] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44272 2021-03-30] (Dropbox, Inc -> Dropbox, Inc.) R2 fshoster; C:\Program Files (x86)\Safe Online\fshoster32.exe [244096 2020-11-03] (F-Secure Corporation -> F-Secure Corporation) R2 fsnethoster; C:\Program Files (x86)\Safe Online\fshoster32.exe [244096 2020-11-03] (F-Secure Corporation -> F-Secure Corporation) R2 fsulhoster; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1614594353\fshoster64.exe [623744 2021-03-02] (F-Secure Corporation -> F-Secure Corporation) R2 fsulnethoster; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1614594353\fshoster64.exe [623744 2021-03-02] (F-Secure Corporation -> F-Secure Corporation) R2 fsulorsp; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1614594353\fsorsp64.exe [101248 2021-03-02] (F-Secure Corporation -> F-Secure Corporation) R2 fsulprothoster; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1614594353\fsulprothoster.exe [623744 2021-03-02] (F-Secure Corporation -> F-Secure Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-18] (Malwarebytes Inc -> Malwarebytes) R2 ProtexisLicensing; C:\WINDOWS\SysWOW64\PSIService.exe [177704 2007-06-05] (Corel Corporation -> ) R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2019-11-05] (Reason Software Company Inc. -> Reason Software Company Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] R3 F-Secure Gatekeeper; C:\Program Files (x86)\Safe Online\Ultralight\ulcore\1614594353\fsulgk.sys [361448 2021-03-02] (F-Secure Corporation -> F-Secure Corporation) R0 fsbts; C:\WINDOWS\System32\drivers\fsbts.sys [58752 2020-12-02] (F-Secure Corporation -> F-Secure Corporation) S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [15304 2020-07-15] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation) R3 fsfreedometap; C:\WINDOWS\System32\drivers\fsfreedometap.sys [40664 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R2 fsnif2; C:\Program Files (x86)\Safe Online\Ultralight\nif2\1614076011\nif2s64.sys [177672 2021-02-23] (F-Secure Corporation -> F-Secure Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-02-18] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-03-21] (Malwarebytes Inc -> Malwarebytes) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-04-04 14:47 - 2021-04-04 14:48 - 000000000 ____D C:\FRST 2021-04-04 13:24 - 2021-04-04 13:24 - 000004405 _____ C:\Users\lenovo\Documenten\123.txt 2021-04-04 12:37 - 2021-04-04 12:37 - 000003419 _____ C:\Users\lenovo\Documenten\AdwCleaner[S32].txt 2021-04-04 12:35 - 2021-04-04 12:35 - 008534696 _____ (Malwarebytes) C:\Users\lenovo\Desktop\adwcleaner_8.2.exe 2021-04-04 12:34 - 2021-04-04 12:34 - 000004557 _____ C:\Users\lenovo\Documenten\mal1.txt 2021-04-04 08:46 - 2021-04-04 08:46 - 002204792 _____ C:\Users\lenovo\Downloads\cuide-se.rar 2021-04-03 13:53 - 2021-04-03 13:53 - 004427661 _____ C:\Users\lenovo\Downloads\wetransfer-0267b2.zip 2021-04-01 10:15 - 2021-04-01 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-03-30 19:52 - 2021-03-30 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2021-03-30 19:52 - 2021-03-30 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2021-03-30 19:52 - 2021-03-30 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2021-03-30 19:52 - 2021-03-30 19:52 - 000044272 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2021-03-21 17:05 - 2021-03-21 17:05 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-03-15 08:10 - 2021-03-15 08:10 - 000000000 ____D C:\WINDOWS\Panther 2021-03-13 09:27 - 2021-03-13 09:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-03-13 09:27 - 2021-03-13 09:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-03-13 09:27 - 2021-03-13 09:27 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll 2021-03-13 09:26 - 2021-03-13 09:26 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-03-13 09:26 - 2021-03-13 09:26 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-03-13 09:26 - 2021-03-13 09:26 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-03-13 09:26 - 2021-03-13 09:26 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-03-13 09:25 - 2021-03-13 09:25 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-03-13 09:25 - 2021-03-13 09:25 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-03-13 09:25 - 2021-03-13 09:25 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll 2021-03-13 09:25 - 2021-03-13 09:25 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-03-13 09:25 - 2021-03-13 09:25 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-04-04 14:48 - 2018-09-13 12:11 - 000000000 ___RD C:\Users\lenovo\Documenten 2021-04-04 14:47 - 2020-11-21 08:39 - 000000000 ____D C:\Users\lenovo\Documenten\ZScrap 2021-04-04 14:47 - 2019-12-13 13:55 - 000000000 ____D C:\Users\lenovo\Documenten\Filters 2021-04-04 14:41 - 2020-09-27 07:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-04-04 13:51 - 2020-11-21 08:39 - 000000000 ____D C:\Users\lenovo\Documenten\PrintScreen Files 2021-04-04 13:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-04-04 12:47 - 2020-03-21 20:46 - 000000000 ____D C:\Program Files\CCleaner 2021-04-04 12:46 - 2020-06-02 12:45 - 000000000 ____D C:\Users\lenovo\AppData\Local\Notepad 2021-04-04 12:45 - 2020-09-27 09:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-04-04 12:45 - 2020-05-28 09:10 - 000008192 ___SH C:\DumpStack.log.tmp 2021-04-04 12:44 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-04-03 18:15 - 2020-09-27 09:36 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-04-03 18:15 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-04-03 18:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-04-02 18:44 - 2020-11-21 08:39 - 000000000 ____D C:\Users\lenovo\Documenten\Opdrachten 2021-04-02 10:58 - 2020-11-21 08:42 - 000000000 ____D C:\Users\lenovo\Documenten\ZZWekelijkseawards 2021-04-01 20:25 - 2020-11-02 14:59 - 000000000 ____D C:\Users\lenovo 2021-04-01 17:31 - 2019-12-13 14:06 - 000000000 ___RD C:\Users\lenovo\Documenten\Mamija 2021-04-01 14:11 - 2020-11-02 15:10 - 001771332 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-04-01 14:11 - 2019-12-07 17:14 - 000785966 _____ C:\WINDOWS\system32\perfh013.dat 2021-04-01 14:11 - 2019-12-07 17:14 - 000154094 _____ C:\WINDOWS\system32\perfc013.dat 2021-04-01 14:11 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-04-01 10:15 - 2019-06-16 12:14 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-04-01 07:03 - 2020-11-02 19:17 - 000002280 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-03-30 16:17 - 2019-06-25 15:27 - 000000000 ____D C:\Users\lenovo\AppData\Local\CrashDumps 2021-03-30 15:52 - 2020-11-21 08:38 - 000000000 ____D C:\Users\lenovo\Documenten\My PSP files 2021-03-30 15:52 - 2020-11-15 12:06 - 000000000 ____D C:\Users\lenovo\AppData\Local\Corel 2021-03-29 11:07 - 2019-12-13 14:10 - 000000000 ____D C:\Users\lenovo\Documenten\Maandopdrachten 2021-03-27 12:44 - 2018-12-29 17:53 - 000000000 ___RD C:\Users\lenovo\Dropbox 2021-03-26 08:09 - 2020-11-02 15:16 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-03-23 20:28 - 2019-06-16 11:59 - 000000000 ____D C:\Users\lenovo\AppData\Local\IE Tab 2021-03-18 19:01 - 2019-12-13 14:11 - 000000000 ____D C:\Users\lenovo\Documenten\Kladblok 2021-03-16 15:57 - 2019-07-02 19:09 - 000000000 ____D C:\Users\lenovo\AppData\Local\D3DSCache 2021-03-15 13:30 - 2020-11-02 15:16 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3808283307-1243482618-78075021-1001 2021-03-15 13:30 - 2020-11-02 14:59 - 000002425 _____ C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-03-15 13:30 - 2018-09-13 12:14 - 000000000 ___RD C:\Users\lenovo\OneDrive 2021-03-15 10:28 - 2020-11-02 15:16 - 000004218 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1584812392 2021-03-15 10:28 - 2020-03-21 19:39 - 000001465 _____ C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-browser.lnk 2021-03-13 09:40 - 2020-09-27 07:33 - 000486384 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-03-13 09:36 - 2019-12-07 17:17 - 000000000 ___SD C:\WINDOWS\system32\AppV 2021-03-13 09:36 - 2019-12-07 17:17 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-03-13 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-03-13 09:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-03-12 08:38 - 2019-06-16 13:01 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-03-12 08:34 - 2019-06-16 13:01 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Bestanden in de root van sommige mappen ======== 2020-01-18 17:09 - 2005-12-06 04:03 - 000000735 _____ () C:\Program Files\files.dat 2020-01-18 17:09 - 2005-12-03 18:07 - 000000313 _____ () C:\Program Files\file_id.diz 2020-01-18 17:09 - 2005-12-05 01:29 - 000001527 _____ () C:\Program Files\license.txt 2020-01-18 17:09 - 2005-12-06 04:02 - 000003923 _____ () C:\Program Files\readme.txt 2020-11-24 13:37 - 2020-11-24 13:37 - 075838885 _____ () C:\Program Files (x86)\Filter Forge 4.zip 2020-01-21 19:30 - 2007-12-01 18:22 - 000315392 _____ () C:\Program Files (x86)\GMLMatting.8bf 2020-01-21 19:30 - 2020-01-21 19:30 - 000000053 _____ () C:\Program Files (x86)\GMLMatting.ini ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================