Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 22-03-2020 Gestart door pc1 (Beheerder) op PC1-PC (Dell Inc. Latitude E6520) (23-03-2020 17:23:13) Gestart vanaf C:\Users\pc1\Desktop Geladen Profielen: pc1 (Beschikbare Profielen: pc1 & DefaultAppPool) Platform: Windows 10 Pro Versie 1909 18363.720 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) () [Bestand niet getekend] C:\Windows\SysWOW64\srvany.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe (Andrea Electronics Corporation) [Bestand niet getekend] C:\Program Files\IDT\WDM\AESTSr64.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\SelfServicePlugin\SelfServicePlugin.exe (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19081.28230.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20012.135.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (O2Micro Inc. -> O2Micro International) C:\Windows\System32\drivers\o2flash.exe (O2Micro Inc. -> O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [727896 2014-03-13] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [325704 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [526648 2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [231736 2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-515818796-1705452606-1673915389-1000\...\Run: [BingSvc] => C:\Users\pc1\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation) HKU\S-1-5-21-515818796-1705452606-1673915389-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22256824 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-20] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {02106933-8EDC-422E-8971-52722391A5B9} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {022DCF02-3893-4F92-9996-F6BCA9379A67} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation) Task: {02646028-B84B-4EDF-9DBC-50FD5F8A19B4} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {0694436C-FAF3-4404-97E1-24D4EE7594A3} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {13C848C3-BF11-44E8-A180-B28F21C86B28} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2020-03-12] (Adobe Inc. -> Adobe) Task: {14CD34C3-C3A0-4EFA-920E-F4873B781D5C} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {1865C562-C149-4AAB-BF79-C4C64AA285B2} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1C7D3485-1526-4911-89F7-27809B702176} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1F82C842-1F12-4F48-BFF3-E4FF0AF0B6A6} - System32\Tasks\klcp_update => CodecTweakTool.exe Task: {2069F2C2-58BB-4F77-A0A6-7C9673CFA853} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {2236BA65-1CE5-4E08-9715-4229C54F4CB7} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {31A2096E-99DE-4713-AB53-847052001C6C} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {3215174D-2289-4BED-946A-4ABD76BA9128} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {33739AB2-B5F3-4F1C-9C16-0ED71AE6C742} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {3385C9DC-ECCA-475B-98C8-9EE609A45053} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {36A4F2FD-E264-4037-947B-BC262C1BDABF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-21] (Google Inc -> Google Inc.) Task: {3C96001E-9C2B-45D1-8AFF-0303C39E8C47} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {40151A32-BAE7-487B-B080-4E35385D2BDB} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {40DE24DF-D8F0-4B06-BE5F-0EAD933C8779} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {49A65EFC-F8A9-4996-B9CC-5205A8BF159B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-21] (Google Inc -> Google Inc.) Task: {4EB3F778-00DD-45CE-B3B5-B5FEDC5DFD9E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {585BECE7-79A1-4D90-8ADA-FA1AD71208E2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5A6E2FD5-B9E4-4D24-BB0E-19EAD409C113} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {5D325BC5-A0C2-41AC-B61C-6A8E1B734C38} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {63802F2F-9E72-4051-94B0-5AA26F9050F7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems) Task: {7104CF79-4131-4788-A5B4-25F6C152077D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {7313BAA1-79C8-4591-9041-ACE5E15CFD8A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {81C98C47-6AFC-44FB-BFCE-2A6CF71A035C} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {821F8704-B2B2-4435-BD26-1F717B0398B1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-12] (Adobe Inc. -> Adobe) Task: {83104E54-6401-4660-9D20-5D3F16D0A29D} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe Task: {9455961B-7E60-488C-B760-A0CF2FF34093} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {951A164E-EA78-4D79-AFF9-C11A9B34332C} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {97E40C03-D89F-423A-B182-C7FBE833B45B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd) Task: {9BD398EB-EFBE-4B2B-AC07-E8A7784E9037} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {ACA020FF-6DE6-46F8-9189-DF2B6D11944E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {B00B79E9-E47A-41A1-9731-7A2F74C1962A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B4391A3D-2234-46C2-904E-9428BF7FFF31} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1692296 2020-02-27] (AVG Technologies USA, LLC -> AVG Technologies) Task: {B4DC043A-6497-4AF1-81F5-8EFE78F2E6DC} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B58BE83E-1783-4811-A573-FBC82F701F14} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3942704 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) Task: {B700F709-4EDE-46CE-A3C9-D31B453BEE4A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {CA7ACA11-4646-444D-827D-4499F7EDADD2} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {DBCA847E-50DF-4DEA-B5FB-F2BD0EC62977} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {E60B4215-349A-4E8C-9E86-28459497DFAD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18233016 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd) Task: {E61608FC-2B18-46B2-AE86-73023E6343CB} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2 Tcpip\..\Interfaces\{3d221dcf-b2f9-4d08-9b0e-17def087f041}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{b33fb7af-f72e-4390-9155-c09b8188d082}: [DhcpNameServer] 192.168.0.1 192.168.0.2 Tcpip\..\Interfaces\{e44c4f5b-81b9-4b4a-8fc9-5dcc537b3c05}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== SearchScopes: HKU\S-1-5-21-515818796-1705452606-1673915389-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-02-10] (Oracle America, Inc. -> Oracle Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-02-10] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation -> Microsoft Corporation) Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) FireFox: ======== FF DefaultProfile: 7260146b.default-1534773391722 FF ProfilePath: C:\Users\pc1\AppData\Roaming\Mozilla\Firefox\Profiles\7260146b.default-1534773391722 [2020-03-23] FF Homepage: Mozilla\Firefox\Profiles\7260146b.default-1534773391722 -> www.google.nl FF Notifications: Mozilla\Firefox\Profiles\7260146b.default-1534773391722 -> hxxps://www.facebook.com FF Extension: (Popup Blocker Ultimate) - C:\Users\pc1\AppData\Roaming\Mozilla\Firefox\Profiles\7260146b.default-1534773391722\Extensions\{60B7679C-BED9-11E5-998D-8526BB8E7F8B}.xpi [2020-03-10] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2020-03-12] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-02-10] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-02-10] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2020-03-12] (Adobe Inc. -> ) FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2016-11-07] (Citrix Systems, Inc. -> Citrix Systems, Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-515818796-1705452606-1673915389-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\pc1\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-07-14] (Unity Technologies SF -> Unity Technologies ApS) Chrome: ======= CHR Profile: C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default [2020-03-21] CHR StartupUrls: Default -> "hxxps://www.google.nl/" CHR Extension: (Presentaties) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-05] CHR Extension: (Documenten) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-05] CHR Extension: (Google Drive) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-21] CHR Extension: (YouTube) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-21] CHR Extension: (Spreadsheets) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-05] CHR Extension: (Offline Documenten) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-11] CHR Extension: (AVG SafePrice | Prijsvergelijking, aanbiedingen, waardebonnen) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2019-09-24] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-01] CHR Extension: (Gmail) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-24] CHR Extension: (Chrome Media Router) - C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-24] CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Andrea Electronics Corporation) [Bestand niet getekend] R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [87384 2014-03-27] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [413544 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [6094272 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-03-21] (Malwarebytes Inc -> Malwarebytes) R2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [Bestand niet getekend] S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5929920 2020-03-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [37928 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206160 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [271704 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [207192 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [64344 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16520 2020-02-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [43560 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175472 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [111144 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84096 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [849256 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [459192 2020-03-12] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [235280 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [316840 2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 e1cexpress; C:\WINDOWS\system32\DRIVERS\e1c65x64.sys [488736 2015-08-03] (Intel(R) Intel Network Drivers -> Intel Corporation) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-10-09] (Martin Malik - REALiX -> REALiX(tm)) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-03-21] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-03-21] (Malwarebytes Inc -> Malwarebytes) R3 necbatt; C:\WINDOWS\System32\drivers\necbatt.sys [37240 2018-10-09] (NEC Personal Computers, Ltd. -> NEC Personal Computers, Ltd.) R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2019-03-19] (Microsoft Windows -> Intel Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-03-23 17:23 - 2020-03-23 17:26 - 000031159 _____ C:\Users\pc1\Desktop\FRST.txt 2020-03-23 17:22 - 2020-03-23 17:24 - 000000000 ____D C:\FRST 2020-03-23 17:17 - 2020-03-23 17:17 - 002279936 _____ (Farbar) C:\Users\pc1\Desktop\FRST64.exe 2020-03-23 15:27 - 2020-03-23 15:27 - 008199856 _____ (Malwarebytes) C:\Users\pc1\Desktop\adwcleaner_8.0.3.exe 2020-03-21 15:50 - 2020-02-25 14:28 - 000368088 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe 2020-03-21 14:40 - 2020-03-21 15:13 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-03-21 14:40 - 2020-03-21 14:41 - 000000000 ___RD C:\Users\pc1\Desktop\NASIM 2020-03-21 14:40 - 2020-03-21 14:40 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-03-14 15:14 - 2020-03-14 15:14 - 011607552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2020-03-14 15:14 - 2020-03-14 15:14 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 018027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 004855808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 004580352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 004129648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 003819520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 003488768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 003243296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 002956688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-03-14 15:13 - 2020-03-14 15:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-03-14 15:13 - 2020-03-14 15:13 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 002315680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 002072664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001867816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001770552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001490640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-03-14 15:13 - 2020-03-14 15:13 - 001282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001218632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001190912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001108040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000757632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys 2020-03-14 15:13 - 2020-03-14 15:13 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacEncoder.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacEncoder.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000145208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys 2020-03-14 15:13 - 2020-03-14 15:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-03-14 15:13 - 2020-03-14 15:13 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-03-14 15:13 - 2020-03-14 15:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-03-14 15:12 - 2020-03-14 15:12 - 006520776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 006084344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 005112832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 003971808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 002875904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-03-14 15:12 - 2020-03-14 15:12 - 002773568 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 002740736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 002259872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 002021888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001985104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001684992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001665416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001484600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001054376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001031680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 001007672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000935040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000776488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000769552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000734720 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000668296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000627216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000478792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2020-03-14 15:12 - 2020-03-14 15:12 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-03-14 15:12 - 2020-03-14 15:12 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys 2020-03-14 15:12 - 2020-03-14 15:12 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000213984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys 2020-03-14 15:12 - 2020-03-14 15:12 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000165504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys 2020-03-14 15:12 - 2020-03-14 15:12 - 000133944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000120560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys 2020-03-14 15:12 - 2020-03-14 15:12 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000102760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000042336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys 2020-03-14 15:12 - 2020-03-14 15:12 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys 2020-03-14 15:12 - 2020-03-14 15:12 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe 2020-03-14 15:12 - 2020-03-14 15:12 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2020-03-14 15:12 - 2020-03-14 15:12 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 007905784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 006436352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 004563416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 004471296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 004048896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 003799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 003728896 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 003587896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 003552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 003371720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 003260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 003143168 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 002768440 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 002715648 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 002698040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 002087376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001999952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001972536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001823232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-03-14 15:11 - 2020-03-14 15:11 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001657120 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 001396152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-03-14 15:11 - 2020-03-14 15:11 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000983896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000945384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000929144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000908504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000877232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000642216 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000522384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-03-14 15:11 - 2020-03-14 15:11 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000098104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys 2020-03-14 15:11 - 2020-03-14 15:11 - 000089616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe 2020-03-14 15:11 - 2020-03-14 15:11 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2020-03-14 15:11 - 2020-03-14 15:11 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll 2020-03-14 15:10 - 2020-03-14 15:11 - 002474496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 004622280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 003977216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 002522112 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000833616 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2020-03-14 15:10 - 2020-03-14 15:10 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2020-03-14 15:10 - 2020-03-14 15:10 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Acx01000.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000306696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000250896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000224056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000222520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000180232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2020-03-14 15:10 - 2020-03-14 15:10 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000066336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000056632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS 2020-03-14 15:10 - 2020-03-14 15:10 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000030008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe 2020-03-14 15:10 - 2020-03-14 15:10 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys 2020-03-14 15:10 - 2020-03-14 15:10 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll 2020-03-14 15:10 - 2020-03-14 15:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUserRes.dll 2020-03-14 14:31 - 2020-03-14 14:32 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-03-14 14:31 - 2020-03-14 14:32 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-03-12 17:45 - 2020-03-12 17:45 - 009503800 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe 2020-03-10 17:54 - 2020-03-14 16:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2020-03-10 17:53 - 2020-03-10 17:53 - 022195736 _____ (Piriform Software Ltd) C:\Users\pc1\Downloads\ccsetup564.exe 2020-02-25 14:28 - 2020-02-25 14:28 - 000235280 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys 2020-02-25 14:28 - 2020-02-25 14:28 - 000175472 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-03-23 17:15 - 2019-09-28 15:53 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{F8508043-C268-4856-AEB5-D3AF5AECE229} 2020-03-23 17:13 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-03-23 17:12 - 2019-09-28 15:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-03-23 15:02 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-03-23 15:02 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-03-23 14:54 - 2016-12-03 19:42 - 000000000 ____D C:\Users\pc1\AppData\LocalLow\Mozilla 2020-03-22 17:43 - 2019-09-28 15:53 - 000003356 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-515818796-1705452606-1673915389-1000 2020-03-22 17:43 - 2019-09-28 15:28 - 000002359 _____ C:\Users\pc1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-03-22 17:43 - 2016-07-17 21:27 - 000000000 ___RD C:\Users\pc1\OneDrive 2020-03-21 15:50 - 2019-09-28 15:53 - 000003992 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update 2020-03-21 15:50 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-03-21 15:19 - 2019-09-28 15:41 - 002009354 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-03-21 15:19 - 2019-03-19 13:34 - 000863242 _____ C:\WINDOWS\system32\perfh013.dat 2020-03-21 15:19 - 2019-03-19 13:34 - 000183258 _____ C:\WINDOWS\system32\perfc013.dat 2020-03-21 15:19 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2020-03-21 15:12 - 2019-09-28 15:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-03-21 15:11 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-03-21 15:09 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-03-21 14:41 - 2019-12-06 16:15 - 000000000 ____D C:\Users\pc1\AppData\Local\cache 2020-03-21 14:40 - 2019-12-06 16:15 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-03-21 14:38 - 2019-09-15 14:09 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-03-21 14:38 - 2019-09-15 14:09 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-03-21 14:32 - 2019-09-28 15:53 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-03-21 14:32 - 2019-09-28 15:53 - 000003454 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-03-20 14:55 - 2019-09-28 15:53 - 000003860 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-03-20 14:55 - 2019-09-28 15:53 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2020-03-20 14:55 - 2019-09-28 15:53 - 000003388 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater 2020-03-20 14:55 - 2019-09-28 15:53 - 000003094 _____ C:\WINDOWS\system32\Tasks\Java Platform SE Auto Updater 2020-03-20 14:55 - 2019-09-28 15:53 - 000003032 _____ C:\WINDOWS\system32\Tasks\klcp_update 2020-03-20 14:55 - 2019-09-28 15:53 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-03-20 14:55 - 2019-09-28 15:53 - 000002218 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2020-03-20 14:55 - 2019-09-28 15:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2020-03-20 14:14 - 2016-12-21 19:20 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-03-20 14:14 - 2016-12-21 19:20 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-03-17 14:37 - 2016-07-20 21:33 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-03-14 16:28 - 2018-01-15 15:36 - 000000000 ___RD C:\Users\pc1\3D Objects 2020-03-14 16:28 - 2016-04-27 07:40 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-03-14 16:25 - 2019-09-28 15:15 - 000438256 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-03-14 16:24 - 2016-07-18 18:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-03-14 16:21 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2020-03-14 16:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-03-14 16:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-03-14 16:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-03-14 16:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2020-03-14 16:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup 2020-03-14 16:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-03-14 16:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-03-14 16:20 - 2019-03-19 13:36 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2020-03-14 16:20 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-03-14 16:20 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-03-14 16:20 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-03-14 16:20 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender 2020-03-14 16:20 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\servicing 2020-03-14 15:29 - 2016-07-30 19:01 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2020-03-12 17:47 - 2018-09-25 20:48 - 000459192 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys 2020-03-12 17:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-03-12 17:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-03-10 17:55 - 2016-07-18 18:35 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-03-10 17:53 - 2018-12-03 16:31 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-03-01 18:29 - 2018-10-14 16:46 - 000000000 ____D C:\Users\pc1\AppData\Local\CrashDumps 2020-02-25 15:13 - 2018-01-15 15:11 - 000000000 ____D C:\Users\pc1\AppData\Local\Packages 2020-02-25 14:55 - 2018-12-03 17:31 - 000000000 ___RD C:\Users\pc1\Desktop\Muziek 2020-02-25 14:51 - 2018-08-20 16:31 - 000000000 ____D C:\Users\pc1\AppData\Roaming\DVDVideoSoft 2020-02-25 14:28 - 2018-10-14 14:50 - 000043560 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys 2020-02-25 14:28 - 2018-09-25 20:48 - 000316840 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys 2020-02-25 14:28 - 2018-09-25 20:48 - 000111144 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys 2020-02-25 14:28 - 2018-09-25 20:48 - 000084096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys 2020-02-25 14:28 - 2018-09-25 16:12 - 000016520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys 2020-02-25 14:27 - 2019-09-15 14:02 - 000271704 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys 2020-02-25 14:27 - 2019-09-15 14:02 - 000207192 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys 2020-02-25 14:27 - 2019-09-15 14:02 - 000064344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys 2020-02-25 14:27 - 2019-09-15 14:02 - 000037928 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys 2020-02-25 14:27 - 2018-09-25 20:48 - 000849256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys 2020-02-25 14:27 - 2018-09-25 20:48 - 000206160 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================