Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 27-12-2021 Gestart door rosan (Beheerder) op LAPTOP-JG6UO19G (LENOVO 81N7) (08-01-2022 20:39:01) Gestart vanaf C:\Users\rosan\Desktop Geladen Profielen: rosan Platform: Microsoft Windows 10 Home Versie 20H2 19042.1415 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Edge Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe <2> (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <2> (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe (Apple Computer, Inc.) [Bestand niet getekend] C:\Applied Biosystems\StepOne Software v2.3\bonjour\mDNSResponder.exe (Discord Inc. -> Discord Inc.) C:\Users\rosan\AppData\Local\Discord\app-1.0.9003\Discord.exe <6> (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\139.4.4896\QtWebEngineProcess.exe <2> (Google LLC -> ) C:\Program Files\Google\Drive File Stream\54.0.2.0\crashpad_handler.exe <3> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <47> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe <7> (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_69d915519e0a2ac8\aesm_service.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_afbf41cf8ab202d7\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_afbf41cf8ab202d7\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_d5116a57e81b0c34\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_d5116a57e81b0c34\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_eea3cf789013ad4f\RstMwService.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\FMAPP.exe (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (Realtek Semiconductor Corp) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.169.0_x64__dt26b99r8h8gj\RtkUWP.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [833824 2019-01-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8806688 2022-01-02] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2021-12-01] (Adobe Inc. -> Adobe Inc.) HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe [55330648 2021-12-14] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe [55330648 2021-12-14] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26327864 2021-12-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\rosan\AppData\Local\Microsoft\Teams\Update.exe [2459304 2021-12-10] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-16] (Valve -> Valve Corporation) HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33033184 2021-05-23] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe [55330648 2021-12-14] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\RunOnce: [Application Restart #7] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session --flag-switches-begin --flag-switches-end - (de data item heeft 102 meer tekens). HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\MountPoints2: {3e94f4f3-160f-11ec-90ea-50e085ecd0eb} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1484981431-537805413-3787878192-1001\...\MountPoints2: {bed2d079-9f00-11eb-90d8-50e085ecd0eb} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe [55330648 2021-12-14] (Google LLC -> Google, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-16] (Google LLC -> Google LLC) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {15E0EB24-3D11-4587-B72A-9F7F030DF735} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7f3ff2e0-1a84-4ab7-80ca-5cece410390d => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {1DDBD487-B5B4-47A3-86B3-BBD965F730F4} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility:// Task: {26F7F481-9617-4FDE-8FEB-C8F2E937A794} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1513448 2021-12-25] (Microsoft Corporation -> Microsoft Corporation) Task: {3B21B3A1-3CD3-4D3A-8700-0421FFB46B63} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7aa94f06-8925-409f-b850-9de68b442cd0 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {3C31338C-C966-4B6F-BB4A-B8CA29DF9F9D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) Task: {44140D47-ACD3-4EFE-B03D-006329E85B42} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {54C83BFB-5E3F-4A0F-A4D6-36090BD39783} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\085ab5e0-657f-4d5e-be96-d812d5a8ac6c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {57BED99C-0AA3-411E-A10C-8D87AA7CFCFB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {6554BE63-D484-4C1F-A9BA-7D26778D364A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f1764faa-0a81-438c-a5d2-05acbc3813d5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {69300FFB-1301-409B-913F-2E0114AA1DC7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143280 2021-12-25] (Microsoft Corporation -> Microsoft Corporation) Task: {76C635A2-7341-46E5-A24C-7391252AA66C} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [63728 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {91E1148C-7598-4E95-977F-71B4495280C6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2a9750a4-bb45-434b-81e7-912511f22b83 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {A39E0AA1-E6B8-4BC5-8E05-A268A241C589} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143280 2021-12-25] (Microsoft Corporation -> Microsoft Corporation) Task: {A6A047EE-C968-4E02-A783-914C668471DF} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4064840 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) Task: {A7918656-990E-47B2-969B-4378B00241FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B9F72EDE-FA0A-4760-AA98-E81CD8F37B40} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {C37A6DAF-A790-4E56-99AF-D11885224CBB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {C9DBF2FB-475E-4C4F-8EA8-01B9416AEEFC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5262848 2021-12-25] (Microsoft Corporation -> Microsoft Corporation) Task: {CAEA2ECD-6DD3-4C9F-9328-1C350DB3526E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) Task: {CCE5E1F8-99E2-4836-9FD7-B485CC147ADC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-30] (Google LLC -> Google LLC) Task: {DA38653F-ED7C-4492-9F8A-DCCF190ADD48} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23081848 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) Task: {DC5765DD-FFC0-4B0E-8831-44A8E5E919C7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5262848 2021-12-25] (Microsoft Corporation -> Microsoft Corporation) Task: {DE46F6F7-B21A-482D-A978-6A6C0D5C437F} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.) Task: {E9362069-A027-4605-9F1B-7847DDDA6FF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E9ACED5D-95F0-499F-A4EF-1FCF6111DC17} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23081848 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) Task: {F6179080-9CD5-4F36-A637-BBFC929C8B0D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F8D1A2F8-C81B-4302-B7A9-DE012BD6CAD3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-30] (Google LLC -> Google LLC) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 89.101.251.228 89.101.251.229 192.168.68.1 Tcpip\..\Interfaces\{4da5ade2-35a5-4d53-b598-4c390ab8a1b0}: [DhcpNameServer] 89.101.251.228 89.101.251.229 192.168.68.1 Tcpip\..\Interfaces\{ea8caef3-4781-4915-bb35-33b04fb06797}: [DhcpNameServer] 89.101.251.228 89.101.251.229 192.168.68.1 Edge: ======= Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\rosan\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-08] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\rosan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-12-17] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: m2pacskh.default FF ProfilePath: C:\Users\rosan\AppData\Roaming\Mozilla\Firefox\Profiles\m2pacskh.default [2020-02-01] FF ProfilePath: C:\Users\rosan\AppData\Roaming\Mozilla\Firefox\Profiles\8e01wlnf.default-release-1618217945550 [2021-12-20] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-20] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-12-01] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-07-20] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-07-20] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-12-01] (Adobe Inc. -> Adobe Systems) FF Plugin HKU\S-1-5-21-1484981431-537805413-3787878192-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\rosan\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-1484981431-537805413-3787878192-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\rosan\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default [2022-01-08] CHR Notifications: Default -> hxxps://462002717500196.eu.webpush.freshchat.com; hxxps://en.softonic.com; hxxps://meet.google.com; hxxps://web.whatsapp.com; hxxps://www.allianz-assistance.nl; hxxps://www.instagram.com CHR Extension: (Google Translate) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-18] CHR Extension: (Presentaties) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-30] CHR Extension: (Documenten) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-30] CHR Extension: (Google Drive) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02] CHR Extension: (YouTube) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-30] CHR Extension: (Spreadsheets) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-30] CHR Extension: (Offline Documenten) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-03] CHR Extension: (AdBlock - de beste advertentieblokker) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-08] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-12-16] CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-02-15] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01] CHR Extension: (Gmail) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02] CHR Profile: C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-06-10] CHR Extension: (Presentaties) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-05] CHR Extension: (Documenten) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-05] CHR Extension: (Google Drive) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-06-05] CHR Extension: (YouTube) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-05] CHR Extension: (Spreadsheets) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-05] CHR Extension: (Offline Documenten) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-06-05] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-05] CHR Extension: (Gmail) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-06-05] CHR Extension: (Chrome Media Router) - C:\Users\rosan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-05] CHR Profile: C:\Users\rosan\AppData\Local\Google\Chrome\User Data\System Profile [2020-06-10] CHR HKU\S-1-5-21-1484981431-537805413-3787878192-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844528 2021-12-01] (Adobe Inc. -> Adobe Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-12-17] (BattlEye Innovations e.K. -> ) R2 Bonjour Service; C:\Applied Biosystems\StepOne Software v2.3\bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [Bestand niet getekend] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8689000 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-01-02] (Dropbox, Inc -> Dropbox, Inc.) R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1646536 2019-05-29] (Dolby Laboratories, Inc. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-17] (EasyAntiCheat Oy -> Epic Games, Inc) R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [321512 2018-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-12] (Malwarebytes Inc -> Malwarebytes) S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2021-03-14] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 dlcdcncm; C:\WINDOWS\System32\drivers\dlcdcncm62_x64.sys [93784 2018-11-26] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.) R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-09-09] (Google LLC -> Google, Inc.) R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-10-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-12] (Malwarebytes Inc -> Malwarebytes) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation) S3 MpKsl23b77b78; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5A3CE867-B069-4443-BCCF-8E277D1CD07B}\MpKslDrv.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-01-08 20:39 - 2022-01-08 20:40 - 000028959 _____ C:\Users\rosan\Desktop\FRST.txt 2022-01-08 20:38 - 2022-01-08 20:39 - 000000000 ____D C:\FRST 2022-01-08 20:35 - 2022-01-08 20:35 - 002311168 _____ (Farbar) C:\Users\rosan\Desktop\FRST64.exe 2022-01-08 19:38 - 2022-01-08 19:38 - 000000000 ____D C:\Users\rosan\Desktop\fouten 2022-01-08 17:07 - 2022-01-08 17:10 - 426943529 _____ C:\Users\rosan\Downloads\college Next-generation sequencing in forensic sciences-20211005_101550-Meeting Recording.mp4 2022-01-08 17:07 - 2022-01-08 17:09 - 288754584 _____ C:\Users\rosan\Downloads\2021-10 LFL331VN NGS college FLO_st_ro.pptx 2022-01-08 17:00 - 2022-01-08 17:00 - 015611979 _____ C:\Users\rosan\Downloads\HC_LFL311_STR_2020-2021- GLL [Automatisch opgeslagen].pptx 2022-01-08 14:32 - 2022-01-08 14:32 - 000447255 _____ C:\Users\rosan\Downloads\fouten 2.zip 2022-01-08 14:23 - 2022-01-08 14:23 - 000141864 _____ C:\Users\rosan\Downloads\bluescreenview_setup (7).exe 2022-01-08 03:03 - 2022-01-08 03:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2022-01-08 03:00 - 2022-01-08 03:00 - 002541260 _____ C:\WINDOWS\Minidump\010822-13734-01.dmp 2022-01-07 17:49 - 2022-01-07 17:49 - 000141864 _____ C:\Users\rosan\Downloads\bluescreenview_setup (6).exe 2022-01-07 17:47 - 2022-01-07 17:47 - 000141864 _____ C:\Users\rosan\Downloads\bluescreenview_setup (5).exe 2022-01-07 17:46 - 2022-01-07 17:46 - 000141864 _____ C:\Users\rosan\Downloads\bluescreenview_setup (4).exe 2022-01-07 17:45 - 2022-01-07 17:45 - 000000000 ____D C:\temp 2022-01-07 00:21 - 2022-01-07 00:22 - 228579960 _____ C:\Users\rosan\Downloads\LFL311 Hoorcollege_Werkcollege Xavier Gallego Deel 2-20210901_125943-Meeting Recording.mp4 2022-01-07 00:16 - 2022-01-07 00:17 - 311665234 _____ C:\Users\rosan\Downloads\LFL311 Hoorcollege_Werkcollege Xavier Gallego Deel 1-20210901_101553-Meeting Recording.mp4 2022-01-07 00:16 - 2022-01-07 00:16 - 015628756 _____ C:\Users\rosan\Downloads\HC_LFL311_STR_2020-2021- GLL.pptx 2022-01-05 22:12 - 2022-01-05 22:12 - 002890532 _____ C:\Users\rosan\Downloads\qPCR ppt.pdf 2022-01-04 15:45 - 2022-01-04 15:45 - 000141864 _____ C:\Users\rosan\Downloads\bluescreenview_setup (3).exe 2022-01-04 15:45 - 2022-01-04 15:45 - 000009266 _____ C:\Users\rosan\Downloads\foutmeld.txt 2022-01-04 14:28 - 2022-01-04 16:59 - 002417921 _____ C:\Users\rosan\Downloads\20210916 DNA uitdagingen VHL.pptx 2022-01-03 21:29 - 2022-01-03 21:29 - 003148428 _____ C:\Users\rosan\Downloads\20210906 Capillaire Elektroforese.pptx 2022-01-02 00:57 - 2022-01-02 00:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2022-01-02 00:57 - 2022-01-02 00:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2022-01-02 00:57 - 2022-01-02 00:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2022-01-02 00:57 - 2022-01-02 00:57 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2021-12-29 19:48 - 2021-12-29 19:48 - 000128347 _____ C:\Users\rosan\Downloads\memtest86+-5.31b.usb.installer (2).zip 2021-12-25 13:57 - 2021-12-25 13:57 - 001078102 _____ C:\Users\rosan\Downloads\Ice skating.pdf 2021-12-24 08:47 - 2021-12-24 08:47 - 000128347 _____ C:\Users\rosan\Downloads\memtest86+-5.31b.usb.installer (1).zip 2021-12-24 08:38 - 2021-12-24 08:38 - 000128347 _____ C:\Users\rosan\Downloads\memtest86+-5.31b.usb.installer.zip 2021-12-23 20:04 - 2021-12-23 20:04 - 001581271 _____ C:\Users\rosan\Downloads\Ice skating (1).pdf 2021-12-22 20:52 - 2021-12-22 22:59 - 000015656 _____ C:\Users\rosan\Desktop\Kalibratielijnjte.xlsx 2021-12-22 20:52 - 2021-12-22 20:52 - 000015630 _____ C:\Users\rosan\Downloads\Kalibratielijnjte.xlsx 2021-12-22 11:39 - 2021-12-22 11:39 - 000141864 _____ C:\Users\rosan\Downloads\bluescreenview_setup (2).exe 2021-12-22 11:38 - 2021-12-22 11:38 - 000141864 _____ C:\Users\rosan\Downloads\bluescreenview_setup.exe 2021-12-22 11:38 - 2021-12-22 11:38 - 000141864 _____ C:\Users\rosan\Downloads\bluescreenview_setup (1).exe 2021-12-22 11:38 - 2021-12-22 11:38 - 000000000 ____D C:\Users\rosan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView 2021-12-22 11:38 - 2021-12-22 11:38 - 000000000 ____D C:\Program Files (x86)\NirSoft 2021-12-20 20:56 - 2021-12-14 07:44 - 000381456 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3688.sys 2021-12-20 18:16 - 2021-12-20 18:16 - 000198693 _____ C:\Users\rosan\Downloads\Kalibratie 1.1.pdf 2021-12-20 13:42 - 2021-12-20 13:42 - 000655360 _____ C:\Users\rosan\Downloads\Kalibratie blanco_1.lcd 2021-12-20 11:38 - 2021-12-20 11:38 - 000962707 _____ C:\Users\rosan\Downloads\Bingo Avond (3).pdf 2021-12-20 10:54 - 2021-12-20 10:54 - 001743977 _____ C:\Users\rosan\Downloads\come Work with us! (1).pdf 2021-12-19 18:13 - 2021-12-19 18:13 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-12-17 17:07 - 2021-12-17 17:07 - 001279607 _____ C:\Users\rosan\Downloads\Lezing forest fires & field recovery search.pdf 2021-12-17 13:10 - 2021-12-17 13:10 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-12-17 13:10 - 2021-12-17 13:10 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-12-17 13:09 - 2021-12-17 13:09 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-12-17 13:09 - 2021-12-17 13:09 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-12-17 12:55 - 2021-12-17 12:55 - 000000000 ___HD C:\$WinREAgent 2021-12-17 09:50 - 2021-12-17 09:50 - 002912508 _____ C:\Users\rosan\Downloads\optimalisatie_verslag.zip 2021-12-16 20:14 - 2021-12-16 20:14 - 000597483 _____ C:\WINDOWS\gethelp_audiotroubleshooter_latestpackage.zip 2021-12-16 20:14 - 2021-12-16 20:14 - 000000000 ____D C:\ProgramData\WindowsPerformanceRecorder 2021-12-15 15:42 - 2021-12-15 15:42 - 000008579 _____ C:\Users\rosan\Downloads\Book.xlsx 2021-12-13 21:56 - 2021-12-13 21:56 - 001999515 _____ C:\Users\rosan\Downloads\20210826 isolatie 2122.pptx 2021-12-13 20:23 - 2021-12-13 20:23 - 001412765 _____ (neftojpg.com ) C:\Users\rosan\Downloads\neftojpg_v1.1_setup.exe 2021-12-13 20:23 - 2021-12-13 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEF to JPG 2021-12-13 20:23 - 2021-12-13 20:23 - 000000000 ____D C:\Program Files (x86)\NEF to JPG 2021-12-13 20:03 - 2021-12-13 20:03 - 011093576 _____ (SoftOrbits ) C:\Users\rosan\Downloads\PicResize.exe 2021-12-13 20:01 - 2021-12-13 20:01 - 009790424 _____ C:\Users\rosan\Downloads\iloveimg-converted (7).zip 2021-12-13 19:58 - 2021-12-13 19:58 - 009837579 _____ C:\Users\rosan\Downloads\iloveimg-converted (6).zip 2021-12-13 19:57 - 2021-12-13 19:57 - 009660116 _____ C:\Users\rosan\Downloads\iloveimg-converted (5).zip 2021-12-13 19:55 - 2021-12-13 19:55 - 009660116 _____ C:\Users\rosan\Downloads\iloveimg-converted (4).zip 2021-12-13 19:53 - 2021-12-13 19:54 - 008819180 _____ C:\Users\rosan\Downloads\iloveimg-converted (3).zip 2021-12-13 19:51 - 2021-12-13 19:51 - 009190099 _____ C:\Users\rosan\Downloads\iloveimg-converted (2).zip 2021-12-13 19:49 - 2021-12-13 19:49 - 009968921 _____ C:\Users\rosan\Downloads\iloveimg-converted (1).zip 2021-12-13 18:09 - 2021-12-13 18:09 - 094698338 _____ C:\Users\rosan\Downloads\iloveimg-converted.zip 2021-12-13 17:05 - 2021-12-13 17:05 - 000000000 ____D C:\Users\rosan\Documents\FeedbackHub 2021-12-13 16:48 - 2021-12-13 16:48 - 000000000 ____D C:\Users\rosan\AppData\Local\Free_NEF_to_JPG_Converter 2021-12-13 16:46 - 2021-12-13 16:46 - 006279673 _____ (Media Freeware ) C:\Users\rosan\Downloads\neftojpg_setup.exe 2021-12-13 16:44 - 2021-12-13 20:11 - 000000000 ____D C:\Users\rosan\AppData\Roaming\Opera Software 2021-12-13 16:44 - 2021-12-13 20:11 - 000000000 ____D C:\Users\rosan\AppData\Local\Opera Software 2021-12-13 13:06 - 2021-12-13 13:13 - 1030893992 _____ C:\Users\rosan\Downloads\OneDrive_1_13-12-2021.zip 2021-12-11 15:53 - 2021-12-11 15:53 - 001661423 _____ C:\Users\rosan\Downloads\20210826 sample collection 2122 (3).pptx 2021-12-11 15:41 - 2021-12-11 15:41 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1484981431-537805413-3787878192-1001 2021-12-10 18:18 - 2021-12-10 18:18 - 001661423 _____ C:\Users\rosan\Downloads\20210826 sample collection 2122 (2).pptx 2021-12-10 08:02 - 2021-12-10 08:02 - 001743977 _____ C:\Users\rosan\Downloads\Kweekvlees.pdf 2021-12-09 19:47 - 2021-12-09 19:47 - 000000165 ____H C:\Users\rosan\Desktop\~$PLANNING.ods 2021-12-09 16:59 - 2022-01-06 22:10 - 000000000 ____D C:\Users\rosan\Desktop\te sorteren fotos 2021-12-09 16:54 - 2022-01-06 22:10 - 000000000 ____D C:\Users\rosan\Desktop\filmpje 2021-12-09 16:48 - 2021-12-09 16:48 - 022954104 _____ C:\Users\rosan\Downloads\bijlagen.zip 2021-12-09 15:42 - 2021-12-09 15:42 - 001661423 _____ C:\Users\rosan\Downloads\20210826 sample collection 2122 (1).pptx 2021-12-09 15:01 - 2021-12-09 15:01 - 001743977 _____ C:\Users\rosan\Downloads\come Work with us!.pdf 2021-12-09 14:06 - 2022-01-06 00:28 - 000004922 _____ C:\Users\rosan\Desktop\PLANNING.ods 2021-12-09 13:58 - 2021-12-09 13:58 - 006778892 _____ C:\Users\rosan\Downloads\NGM Kit Manual + Allele Frequencies.pdf 2021-12-09 13:21 - 2021-12-09 13:21 - 000277840 _____ C:\Users\rosan\Downloads\Kantelenplan deel 2 LFL321.pdf 2021-12-09 13:21 - 2021-12-09 13:21 - 000126699 _____ C:\Users\rosan\Downloads\Kantelenplan LFL321VN 2021 2022 (2).pdf ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-01-08 20:42 - 2020-09-30 18:13 - 000000000 ____D C:\Users\rosan\AppData\Roaming\discord 2022-01-08 20:10 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-01-08 20:02 - 2020-09-30 18:13 - 000000000 ____D C:\Users\rosan\AppData\Local\Discord 2022-01-08 19:58 - 2021-03-14 00:46 - 001771332 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-01-08 19:58 - 2019-12-07 16:12 - 000788692 _____ C:\WINDOWS\system32\perfh013.dat 2022-01-08 19:58 - 2019-12-07 16:12 - 000154768 _____ C:\WINDOWS\system32\perfc013.dat 2022-01-08 19:58 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-01-08 19:56 - 2020-01-30 21:20 - 000000000 ____D C:\Program Files (x86)\Google 2022-01-08 19:55 - 2020-03-05 14:07 - 000000000 ___RD C:\Users\rosan\OneDrive - Van Hall Larenstein 2022-01-08 19:54 - 2021-03-14 00:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-01-08 19:54 - 2021-03-14 00:37 - 000008192 ___SH C:\DumpStack.log.tmp 2022-01-08 19:54 - 2021-02-15 16:44 - 000000000 ___RD C:\Users\rosan\Google Drive 2022-01-08 19:54 - 2020-01-31 07:43 - 000000000 __SHD C:\Users\rosan\IntelGraphicsProfiles 2022-01-08 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-01-08 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-01-08 19:54 - 2019-09-24 09:12 - 000000134 _____ C:\WINDOWS\system32\regtest.txt 2022-01-08 19:53 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2022-01-08 19:37 - 2021-09-01 17:57 - 000000000 ____D C:\Users\rosan\Desktop\Lucentis 2022-01-08 19:37 - 2020-03-13 11:41 - 000000000 ____D C:\Users\rosan\Desktop\school 2022-01-08 19:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-01-08 19:28 - 2021-03-14 00:38 - 000000000 ____D C:\Users\rosan 2022-01-08 19:28 - 2020-09-01 19:05 - 000000000 ____D C:\Users\rosan\AppData\Local\ElevatedDiagnostics 2022-01-08 19:19 - 2021-03-14 00:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-01-08 17:09 - 2020-01-31 07:43 - 000000000 ____D C:\Users\rosan\AppData\Local\Packages 2022-01-08 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-01-08 13:06 - 2020-01-31 07:46 - 000000000 ____D C:\Users\rosan\AppData\Local\PlaceholderTileLogoFolder 2022-01-08 03:04 - 2021-04-02 17:11 - 000000000 ____D C:\Program Files (x86)\Dropbox 2022-01-08 03:00 - 2021-04-11 19:12 - 000000000 ____D C:\WINDOWS\Minidump 2022-01-08 03:00 - 2021-03-21 20:35 - 1458807258 _____ C:\WINDOWS\MEMORY.DMP 2022-01-07 22:43 - 2020-08-07 23:14 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-01-07 22:43 - 2020-08-07 23:14 - 000002297 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-01-07 22:43 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-12-29 19:51 - 2021-06-29 14:16 - 000000000 ____D C:\Users\rosan\Desktop\DS3SafeFile 2021-12-25 13:31 - 2019-09-24 09:03 - 000000000 ____D C:\Program Files\Microsoft Office 2021-12-22 19:44 - 2020-01-30 21:20 - 000000000 ____D C:\Users\rosan\AppData\Local\Google 2021-12-22 19:30 - 2020-03-14 22:37 - 000000000 ____D C:\Users\rosan\AppData\Local\D3DSCache 2021-12-22 18:21 - 2021-09-21 09:26 - 000000000 ____D C:\Users\rosan\Desktop\vrije tijd 2021-12-20 20:56 - 2021-09-22 16:47 - 000002068 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2021-12-20 20:56 - 2021-09-22 16:47 - 000001910 _____ C:\Users\Default\Desktop\Google Slides.lnk 2021-12-20 20:56 - 2021-09-22 16:47 - 000001910 _____ C:\Users\Default\Desktop\Google Sheets.lnk 2021-12-20 20:56 - 2021-09-22 16:47 - 000001898 _____ C:\Users\Default\Desktop\Google Docs.lnk 2021-12-20 13:32 - 2020-02-01 23:56 - 000000000 ____D C:\Users\rosan\AppData\LocalLow\Mozilla 2021-12-20 13:32 - 2020-02-01 23:56 - 000000000 ____D C:\ProgramData\Mozilla 2021-12-20 13:23 - 2021-05-20 15:17 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-12-19 18:35 - 2021-12-01 14:55 - 000000000 ____D C:\Program Files\Adobe 2021-12-19 18:14 - 2021-03-14 00:37 - 000435752 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-12-19 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-12-17 13:49 - 2020-02-02 00:11 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-12-17 13:17 - 2020-02-02 00:11 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-12-17 13:17 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-12-16 11:56 - 2020-01-30 21:21 - 000002332 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-12-16 11:13 - 2019-04-19 06:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-12-13 20:09 - 2021-04-12 18:51 - 000000000 ____D C:\Users\rosan\AppData\Local\CrashDumps 2021-12-11 15:41 - 2021-03-14 00:44 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1484981431-537805413-3787878192-1001 2021-12-11 15:41 - 2021-03-14 00:38 - 000002392 _____ C:\Users\rosan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-12-10 16:14 - 2020-03-16 14:44 - 000002375 _____ C:\Users\rosan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-12-10 16:14 - 2020-03-16 14:44 - 000002367 _____ C:\Users\rosan\Desktop\Microsoft Teams.lnk 2021-12-09 08:45 - 2021-04-13 08:50 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7186280d9a1cb 2021-12-09 08:45 - 2021-03-14 00:44 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA ==================== Bestanden in de root van sommige mappen ======== 2020-12-11 20:44 - 2021-01-06 18:02 - 000001536 _____ () C:\Users\rosan\AppData\Local\GfxMetrics.cfg ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================