Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 14-02-2022 01 Gestart door Gebruiker (Beheerder) op DESKTOP-NEHS6TH (LENOVO 81M0) (22-02-2022 11:59:47) Gestart vanaf C:\Users\Gebruiker\Downloads Geladen Profielen: Gebruiker Platform: Microsoft Windows 11 Pro Versie 21H2 22000.527 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Edge Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\98.0.1108.56\identity_helper.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6> (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (WhatsApp, Inc -> WhatsApp) C:\Users\Gebruiker\AppData\Local\WhatsApp\app-2.2202.12\WhatsApp.exe <7> ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1076728 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKU\S-1-5-21-3615260912-2687980000-3129665853-1004\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3615260912-2687980000-3129665853-1004\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [112191904 2021-12-06] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-3615260912-2687980000-3129665853-1004\...\Run: [MicrosoftEdgeAutoLaunch_E8980B8735C3CE8D24F16DB99FD3B5FC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKU\S-1-5-21-3615260912-2687980000-3129665853-1004\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\...\Windows x64\Print Processors\Canon MP230 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB5.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP230 series: C:\WINDOWS\system32\CNMLMB5.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP230 series XPS: C:\WINDOWS\system32\CNMXLMB5.DLL [392192 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-15] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> GroupPolicy\User: Restrictie ? <==== AANDACHT HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {15211A7A-C561-492A-BF78-235B07189515} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe (Geen bestand) Task: {1602B6C0-B531-417E-B230-44C3994388CF} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [12241144 2021-12-20] (Lespeed Technology Co., Ltd -> WiseCleaner.com) Task: {2FA6D26A-67B0-40C6-912F-CE45425BA4F9} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.) Task: {37056DB7-F4F3-4F84-8C60-F827AA61C81C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {39BDFF08-EEDB-44C7-BD4F-E5CACB40DEA7} - System32\Tasks\CCleanerSkipUAC - Gebruiker => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd) Task: {3CD51D2C-B71F-447D-BB63-8293566A6404} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.) Task: {4616E497-5C7D-4E5E-BAA5-58E41924C940} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform) Task: {58AEC61B-4D55-49A1-9E3B-E51146AFB177} - \Lenovo\ImController\TimeBasedEvents\60a38c82-a7d1-420b-968c-2b7240c6797a -> Geen bestand <==== AANDACHT Task: {6566A20A-4301-4E89-BBE3-04B67F9355A8} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Geen bestand <==== AANDACHT Task: {79D16643-2FA9-4493-A3AF-B8FB9834144C} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Gebruiker\Downloads\adwcleaner_8.0.6.exe /r (Geen bestand) Task: {84C9152A-3350-4AD5-9A7C-B03947109B3D} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Geen bestand <==== AANDACHT Task: {864B0AC5-55EF-4716-951E-6CE89D30A34E} - System32\Tasks\S-1-5-21-3615260912-2687980000-3129665853-1004\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [176640 2021-01-15] (Microsoft Corporation) [Bestand niet getekend] Task: {87D6752B-FCD7-4BCB-B710-288E45BD57CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {96A3F92A-8A66-41DB-9FD8-AC7348B39958} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [11062520 2021-12-22] (Lespeed Technology Co., Ltd -> WiseCleaner.com) Task: {9C90ABBA-1E56-4119-A026-765F39F22189} - \Lenovo\ImController\TimeBasedEvents\c22d0beb-f20c-4dde-a790-f8a261136588 -> Geen bestand <==== AANDACHT Task: {A3796B43-AF46-4A3D-B3F4-E743A14DD849} - \Lenovo\ImController\TimeBasedEvents\3e490635-8276-42a5-8740-7135e9b66523 -> Geen bestand <==== AANDACHT Task: {AB6CDAE2-14F2-4514-A5B5-5A3AA8773715} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService Task: {B1D6489A-9165-4543-A8DA-D002376D4FEE} - \Lenovo\ImController\TimeBasedEvents\3f07e9fb-0b04-48d5-9e21-c72c8b3c99b4 -> Geen bestand <==== AANDACHT Task: {B621ACBD-44A4-4AC2-A45E-BAFF9E78E4D8} - \Lenovo\ImController\TimeBasedEvents\ed376927-b0c9-41bd-a304-35fe14a4a556 -> Geen bestand <==== AANDACHT Task: {CDABE105-AA7D-4295-B7B7-821B42310F10} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.) Task: {D29FA546-9E34-4970-AB62-C53AA3B5936C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E9507271-3137-4BEA-BA0F-4F4945754563} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EE508AE6-E9E5-44A5-ADC9-6BC59152450B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-12-24] (Google Inc -> Google Inc.) Task: {F14D8550-4BA9-4E16-B36F-8974EFDC5489} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Geen bestand <==== AANDACHT Task: {FB7C667D-54E7-4392-AEE5-7DE6DA936EDC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-12-24] (Google Inc -> Google Inc.) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.254 Tcpip\..\Interfaces\{06213734-d74f-4f96-bd14-5e193a273143}: [DhcpNameServer] 192.168.2.254 Tcpip\..\Interfaces\{ff78bcf7-7387-446b-adbf-048d80fa5dd1}: [DhcpNameServer] 194.151.228.2 194.151.228.18 Tcpip\..\Interfaces\{ffd9a2b5-3acd-41c1-bd22-8de34aadebca}: [DhcpNameServer] 192.168.2.254 Edge: ======= DownloadDir: C:\Users\Gebruiker\Downloads Edge Notifications: HKU\S-1-5-21-3615260912-2687980000-3129665853-1004 -> hxxps://www.facebook.com; hxxps://www.kika.nl Edge Extension: (Geen Naam) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [niet gevonden] Edge Extension: (Geen Naam) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [niet gevonden] Edge Extension: (AdBlocker Ultimate) -> EdgeExtension_SecureDownloadLtdAdBlockerUltimate_2k66023rjqqqe => C:\Program Files\WindowsApps\SecureDownloadLtd.AdBlockerUltimate_2.29.0.0_neutral__2k66023rjqqqe [niet gevonden] Edge Extension: (Geen Naam) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [niet gevonden] Edge Extension: (Geen Naam) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [niet gevonden] Edge DefaultProfile: Default Edge Profile: C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-22] Edge DownloadDir: Default -> C:\Users\Gebruiker\Downloads Edge Notifications: Default -> hxxps://www.facebook.com Edge HomePage: Default -> hxxp://localoem.msn.com/?pc=SBJB Edge Extension: (Outlook) - C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-02] Edge Extension: ((1) Facebook) - C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\celnaknmndcdcjcagffhbhciignkeokb [2020-10-02] Edge Extension: (Word) - C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-02] Edge Extension: (Excel) - C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-02] Edge Extension: (NOS Nieuws) - C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mbnodfhfajdnconeibbcmiepibhmcnda [2020-10-02] Edge Extension: (PowerPoint) - C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-02] Edge Extension: (AdBlocker Ultimate) - C:\Users\Gebruiker\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2021-12-08] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default [2022-02-17] CHR Notifications: Default -> hxxps://www.facebook.com CHR HomePage: Default -> hxxps://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/" CHR Extension: (Presentaties) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-24] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-02-17] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-12] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_291387c3532517c2\DAX3API.exe [1906632 2019-12-12] (Dolby Laboratories, Inc. -> ) S2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [359808 2019-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\LenovoVantageService.exe [28928 2022-01-20] (Lenovo -> Lenovo Group Ltd.) S2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-28] (Malwarebytes Inc -> Malwarebytes) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078536 2021-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) S2 YMC; C:\WINDOWS\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.) S2 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X] ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-01-26] (Microsoft Windows -> Microsoft Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-02-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-02] (Malwarebytes Inc -> Malwarebytes) R3 MpKsl4c79a104; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{94EDED1D-AA5C-4F7F-97AB-64A3E7D6A55B}\MpKslDrv.sys [135440 2022-02-22] (Microsoft Windows -> Microsoft Corporation) R3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-02-22 11:59 - 2022-02-22 12:00 - 000018591 _____ C:\Users\Gebruiker\Downloads\FRST.txt 2022-02-22 11:59 - 2022-02-22 12:00 - 000000000 ____D C:\FRST 2022-02-22 11:58 - 2022-02-22 11:59 - 002312192 _____ (Farbar) C:\Users\Gebruiker\Downloads\FRST64.exe 2022-02-21 13:09 - 2022-02-21 13:09 - 008540344 _____ (Malwarebytes) C:\Users\Gebruiker\Downloads\adwcleaner_8.3.1.exe 2022-02-20 11:33 - 2022-02-21 16:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2022-02-19 15:34 - 2022-02-19 15:34 - 000015024 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-02-19 15:33 - 2022-02-19 15:33 - 000210432 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll 2022-02-19 15:28 - 2022-02-19 15:28 - 000000000 ___HD C:\$WinREAgent 2022-02-12 15:09 - 2022-02-12 15:09 - 000018217 _____ C:\Users\Gebruiker\OneDrive\Documenten\janette.odt 2022-02-03 12:08 - 2022-02-03 12:08 - 000011752 _____ C:\Users\Gebruiker\OneDrive\Documenten\Geen titel 1.odt 2022-02-03 11:20 - 2021-10-08 11:00 - 000167544 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2022-02-02 15:13 - 2022-02-19 16:33 - 000292864 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-02-02 15:13 - 2022-02-02 15:13 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-02-02 15:10 - 2022-02-02 15:11 - 056103400 _____ (Tweaking.com) C:\Users\Gebruiker\Downloads\tweaking.com_windows_repair_aio_setup.exe 2022-02-01 13:16 - 2022-02-01 13:16 - 006828128 _____ (WiseCleaner.com ) C:\Users\Gebruiker\Downloads\WDCFree_10.8.2.802 (1).exe 2022-01-26 18:26 - 2022-01-26 18:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2022-01-26 18:15 - 2022-01-26 18:15 - 000339968 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-01-26 18:15 - 2022-01-26 18:15 - 000311296 _____ C:\WINDOWS\system32\EsclScan.dll 2022-01-26 18:15 - 2022-01-26 18:15 - 000188416 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-01-26 18:15 - 2022-01-26 18:15 - 000077824 _____ C:\WINDOWS\system32\APMonUI.dll ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2022-02-22 12:03 - 2019-12-24 14:07 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\WhatsApp 2022-02-22 11:49 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-02-22 11:43 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps 2022-02-22 11:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-02-22 11:34 - 2019-12-24 11:09 - 000000000 ____D C:\Program Files\CCleaner 2022-02-22 11:34 - 2019-12-24 00:00 - 000000000 ____D C:\Program Files (x86)\Google 2022-02-22 11:29 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-02-22 11:29 - 2019-12-19 17:34 - 000000000 ____D C:\Users\Gebruiker\AppData\LocalLow\Mozilla 2022-02-21 17:28 - 2019-12-24 16:46 - 000000000 ____D C:\ProgramData\Mozilla 2022-02-21 16:39 - 2019-12-24 09:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-02-21 13:14 - 2021-11-04 17:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo 2022-02-21 13:14 - 2021-03-26 14:54 - 000000000 ____D C:\WINDOWS\Lenovo 2022-02-21 13:14 - 2021-03-26 14:54 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\Lenovo 2022-02-21 13:14 - 2021-03-26 14:53 - 000000000 ____D C:\ProgramData\Lenovo 2022-02-21 13:12 - 2020-01-04 17:41 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\D3DSCache 2022-02-20 11:25 - 2021-11-04 17:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-02-19 17:16 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF 2022-02-19 16:37 - 2021-11-04 17:41 - 001707774 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-02-19 16:37 - 2021-06-05 18:58 - 000753762 _____ C:\WINDOWS\system32\perfh013.dat 2022-02-19 16:37 - 2021-06-05 18:58 - 000147982 _____ C:\WINDOWS\system32\perfc013.dat 2022-02-19 16:34 - 2019-12-17 04:30 - 000000000 ___RD C:\Users\Gebruiker\OneDrive 2022-02-19 16:34 - 2019-12-17 04:26 - 000000000 __SHD C:\Users\Gebruiker\IntelGraphicsProfiles 2022-02-19 16:33 - 2021-11-04 17:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-02-19 16:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState 2022-02-19 16:33 - 2020-05-29 18:19 - 000012288 ___SH C:\DumpStack.log.tmp 2022-02-19 16:33 - 2019-12-17 13:44 - 000000134 _____ C:\WINDOWS\system32\regtest.txt 2022-02-19 16:33 - 2019-12-10 02:20 - 000000000 ____D C:\Intel 2022-02-19 16:32 - 2021-06-05 19:06 - 000000000 ___SD C:\WINDOWS\system32\AppV 2022-02-19 16:32 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-02-19 16:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-02-19 16:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources 2022-02-19 16:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-02-19 16:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-02-19 16:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-02-19 16:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-02-19 16:32 - 2021-06-05 13:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-02-19 15:40 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-02-19 15:33 - 2021-11-04 17:31 - 003101696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-02-19 15:20 - 2021-02-20 17:12 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-02-19 11:58 - 2020-04-29 14:01 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-02-19 11:58 - 2020-04-29 14:01 - 000002293 _____ C:\ProgramData\Bureaublad\Microsoft Edge.lnk 2022-02-18 19:50 - 2021-03-26 14:54 - 000007704 _____ C:\WINDOWS\system32\InstallUtil.InstallLog 2022-02-17 17:25 - 2022-01-07 16:57 - 000009253 _____ C:\Users\Gebruiker\OneDrive\Documenten\giften 2022.ods 2022-02-15 15:42 - 2021-12-11 16:41 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3615260912-2687980000-3129665853-1004 2022-02-15 15:42 - 2021-11-04 17:38 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3615260912-2687980000-3129665853-1004 2022-02-15 15:42 - 2020-05-29 18:09 - 000002404 _____ C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-02-15 11:29 - 2019-12-24 00:01 - 000002328 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-02-15 11:29 - 2019-12-20 16:42 - 000002287 _____ C:\ProgramData\Bureaublad\Google Chrome.lnk 2022-02-11 15:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-02-10 11:42 - 2019-09-10 14:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-02-09 15:15 - 2021-11-10 11:03 - 000003972 _____ C:\WINDOWS\storelibdebug.txt 2022-02-09 11:06 - 2019-12-17 04:34 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-02-09 11:04 - 2019-12-17 04:34 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-02-08 18:48 - 2019-12-17 04:26 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\Packages 2022-02-04 12:17 - 2021-10-22 15:44 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\WhatsApp 2022-02-02 15:40 - 2021-11-06 17:10 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-02-02 15:39 - 2019-12-10 12:19 - 000000000 ____D C:\WINDOWS\CSC 2022-02-02 15:26 - 2020-04-28 13:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2022-02-02 15:13 - 2021-11-04 17:29 - 000000000 ____D C:\Users\Gebruiker 2022-02-02 10:56 - 2021-11-04 17:38 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-02-01 13:18 - 2019-12-24 13:59 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\Wise Disk Cleaner 2022-02-01 13:17 - 2020-05-28 16:37 - 000000000 ____D C:\Users\Gebruiker\AppData\Roaming\PhotoScape 2022-02-01 13:17 - 2019-12-31 11:23 - 000000000 ____D C:\Users\Gebruiker\AppData\Local\CrashDumps 2022-02-01 13:16 - 2021-09-23 17:29 - 000001300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Disk Cleaner.lnk 2022-02-01 13:16 - 2019-12-22 14:22 - 000001288 _____ C:\ProgramData\Bureaublad\Wise Disk Cleaner.lnk 2022-01-28 20:04 - 2021-08-17 10:12 - 000109312 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\WudfUpdate_02000.dll 2022-01-28 20:04 - 2021-08-17 10:12 - 000064256 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.InfInstaller.exe 2022-01-28 20:04 - 2021-03-26 14:53 - 000109312 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.CoInstaller.dll 2022-01-28 20:03 - 2021-08-17 10:12 - 000431016 _____ (Lenovo Group Limited) C:\WINDOWS\system32\iMDriverHelper.dll 2022-01-28 11:54 - 2020-08-16 13:03 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-01-28 11:54 - 2020-08-16 13:03 - 000002028 _____ C:\ProgramData\Bureaublad\Malwarebytes.lnk 2022-01-28 11:53 - 2019-12-24 12:38 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-01-28 11:53 - 2019-12-24 12:37 - 000000000 ____D C:\Program Files\Malwarebytes 2022-01-26 18:26 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing 2022-01-26 12:00 - 2021-11-17 14:03 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7d199d3828ef3 2022-01-26 12:00 - 2021-11-04 17:38 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA ==================== Bestanden in de root van sommige mappen ======== 2021-06-13 19:19 - 2021-06-17 20:11 - 000006144 _____ () C:\Users\Gebruiker\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-01-21 14:01 - 2020-01-21 14:01 - 000000017 _____ () C:\Users\Gebruiker\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================