Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 12-08-2020 Gestart door Boele (Beheerder) op BOELE-PC (16-08-2020 07:58:09) Gestart vanaf D:\Downloads Geladen Profielen: Boele & Administrator Platform: Windows 10 Home Versie 1909 18363.1016 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) () [Bestand niet getekend] C:\Program Files (x86)\SoulseekQt\SoulseekQt.exe () [Bestand niet getekend] C:\Program Files\DC++\DCPlusPlus.exe (ABBYY Software House -> ABBYY (BIT Software)) C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Aprelium) [Bestand niet getekend] C:\Abyss Web Server\abyssws.exe <2> (Artem Izmaylov -> AIMP DevTeam) [Bestand niet getekend] C:\Program Files (x86)\AIMP3\AIMP3.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Canon Inc. -> CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\104.4.175\QtWebEngineProcess.exe <2> (Ghisler Software GmbH) [Bestand niet getekend] C:\Program Files\Totalcmd2\TOTALCMD64.EXE (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\85.0.4183.6\remoting_host.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Locktime Software s.r.o. -> Locktime Software) C:\Program Files\NetLimiter 4\NLClientApp.exe (Locktime Software s.r.o. -> Locktime Software) C:\Program Files\NetLimiter 4\NLSvc.exe (Logitech -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech Inc -> Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fodhelper.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1012_none_171983fb2a153d25\TiWorker.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\NisSrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Nitro PDF Software -> Nitro PDF Software) C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe (Plex, Inc. -> Plex, Inc.) C:\Program Files (x86)\Plex2\Plex Media Server\Plex Update Service.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (RemixDevs) [Bestand niet getekend] [Bestand is in gebruik] C:\Users\Boele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Deezloader Remix 4.4.0.exe (RemixDevs) [Bestand niet getekend] C:\Users\Boele\AppData\Local\Temp\1beLYgAq4x53nwG8KzjFzJqqXE4\Deezloader Remix.exe <3> (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (VIA Technologies, Inc.) [Bestand niet getekend] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe (WhereIsIt Soft) [Bestand niet getekend] C:\Program Files (x86)\WhereIsIt\WhereIsIt.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [itype] => C:\Program Files\Microsoft IntelliType Pro\itype.exe [2342800 2009-05-21] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [Bestand niet getekend] HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [689488 2008-03-10] (Canon Inc. -> CANON INC.) HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2114376 2008-03-03] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7651840 2020-08-12] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [MalTray] => C:\Program Files (x86)\Glarysoft\Malware Hunter\mhtray.exe [980984 2020-01-15] (Glarysoft LTD -> Glarysoft Ltd) [Bestand niet getekend] HKU\S-1-5-21-3474843776-585149200-3579222082-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-05-28] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-3474843776-585149200-3579222082-1000\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30868464 2019-11-13] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-3474843776-585149200-3579222082-1000\...\Run: [Discord] => C:\Users\Boele\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-3474843776-585149200-3579222082-1000\...\Run: [ABBYY Screenshot Reader Retail] => [X] HKU\S-1-5-21-3474843776-585149200-3579222082-1000\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex2\Plex Media Server\Plex Media Server.exe [19930608 2020-04-29] (Plex, Inc. -> Plex, Inc.) HKU\S-1-5-21-3474843776-585149200-3579222082-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\Canon MP240 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9H.DLL [27648 2008-04-01] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP240 series: C:\WINDOWS\system32\CNMLM9H.DLL [279040 2008-04-01] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\WINDOWS\system32\nitrolocalmon2.dll [29712 2013-05-01] (Nitro PDF Software -> Nitro PDF Software) HKLM\Software\...\AppCompatFlags\InstalledSDB\{a53dd3e5-0283-4ab3-b77c-7bd1bc7550c6}: [DatabasePath] -> C:\WINDOWS\AppPatch\Custom\{a53dd3e5-0283-4ab3-b77c-7bd1bc7550c6}.sdb HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.125\Installer\chrmstp.exe [2020-08-12] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\84.1.12.112\Installer\chrmstp.exe [2020-08-14] (Brave Software, Inc.) [Bestand niet getekend] HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> Startup: C:\Users\Boele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\abyssws - Snelkoppeling.lnk [2019-05-16] ShortcutTarget: abyssws - Snelkoppeling.lnk -> C:\Abyss Web Server\abyssws.exe (Aprelium) [Bestand niet getekend] Startup: C:\Users\Boele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DCPlusPlus - Snelkoppeling.lnk [2017-08-13] ShortcutTarget: DCPlusPlus - Snelkoppeling.lnk -> C:\Program Files\DC++\DCPlusPlus.exe () [Bestand niet getekend] Startup: C:\Users\Boele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Deezloader Remix 4.4.0.exe [2020-05-09] (RemixDevs) [Bestand niet getekend] [Bestand is in gebruik] Startup: C:\Users\Boele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NetLimiter 4 (x64).lnk [2019-04-27] ShortcutTarget: NetLimiter 4 (x64).lnk -> C:\Program Files\NetLimiter 4\NLClientApp.exe (Locktime Software s.r.o. -> Locktime Software) Startup: C:\Users\Boele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SoulseekQt - Snelkoppeling.lnk [2020-07-01] ShortcutTarget: SoulseekQt - Snelkoppeling.lnk -> C:\Program Files (x86)\SoulseekQt\SoulseekQt.exe () [Bestand niet getekend] Startup: C:\Users\Boele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\thunderbird - Snelkoppeling.lnk [2018-04-22] ShortcutTarget: thunderbird - Snelkoppeling.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation -> Mozilla Corporation) GroupPolicy: Restrictie ? <==== AANDACHT GroupPolicyScripts: Restrictie <==== AANDACHT FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {00F84880-AA59-4EA2-9D0D-6588072A9188} - \{1FF50D48-F59C-42C9-B310-F683D7FAE9CC} -> Geen bestand <==== AANDACHT Task: {020E8E60-B572-49F2-A885-F46D0DFE86B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-04] (Google Inc -> Google LLC) Task: {034171E3-EBEA-4CCB-BA0C-726AABE292A8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {039D3739-5850-477C-8F7E-731EB11B520C} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {08242BA3-BD29-4E70-9948-9382E2795CE5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {09CF4D70-8972-4E4C-A4BA-D07DC01DBF85} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {13FD8CFA-D6D3-4E13-B97D-987F0A4EDE6A} - \{60551960-9C69-44C2-AAA8-5C66B6109218} -> Geen bestand <==== AANDACHT Task: {1C0DE542-7E98-4313-AF4E-771D62400892} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1C12CAF4-03F4-48FA-9731-159C27863BA5} - \Microsoft_Hardware_Launch_IType_exe -> Geen bestand <==== AANDACHT Task: {1C83F69B-3F06-4F07-AE04-97443B5FCE75} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {1EA54DF0-0523-44DC-AA70-2C51C7EB4DB1} - System32\Tasks\KMS_VL_ALL => C:\ProgramData\KMS-VL-ALL-7.2RC2\KMS-VL-ALL.cmd -renewalonly Task: {1EF35718-EF24-4F02-B336-91724F9F5F1A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {1F469939-FC54-48B6-A1F1-2EFE650018ED} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe [1471032 2020-08-13] (Adobe Inc. -> Adobe) Task: {24AE3AAF-96EC-4F1E-9FEB-644697012526} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {2C01A599-4CC3-4331-81B3-9F9B44438684} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-22] (Dropbox, Inc -> Dropbox, Inc.) Task: {2CB5EDCA-45E3-4938-A9F7-D6EFF28E423D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {2EF77627-EB37-4011-9655-01BB4D693DDB} - System32\Tasks\{59611496-68FB-4AE3-A3E1-41E8A861DDB2} => C:\WINDOWS\system32\pcalua.exe -a D:\Downloads\jxpiinstall.exe -d D:\Downloads Task: {33567E91-C919-4EBB-A2C2-CDBA2FE47AD9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {34B0C5CC-FA00-4EC5-8A10-1FA2DFE8F157} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {36355402-C418-4B87-9D4C-F1A55D73D6CB} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {43765D5A-C0D4-4C0C-8175-849E476B45D0} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {43FCA83B-4B4A-479D-9F2D-EC8EC04CEA03} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {441B18B6-C438-4C2B-9CCE-35E704773C64} - System32\Tasks\GMHSkipUAC => C:\Program Files (x86)\Glarysoft\Malware Hunter\MalwareHunter.exe [2439160 2020-01-15] (Glarysoft LTD -> Glarysoft Ltd) [Bestand niet getekend] Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {487BED73-F049-4341-8067-9AA00694851F} - System32\Tasks\{8246AC20-3F94-42EC-B6F7-D01BEB9C23CB} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Boele\AppData\Local\Temp\jre-8u151-windows-au.exe -d C:\WINDOWS\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== AANDACHT Task: {50DC077E-655E-4822-92FD-5878A4A2ED98} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {513833FE-C35D-4419-8994-57CF5C567284} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {5C77ABDB-E555-4728-B88E-A1D00F8A5E18} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5E808C1B-A784-4B26-8E82-EC75BF5F44D5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-13] (Adobe Inc. -> Adobe) Task: {67B8D6C4-9DEE-4BD4-9BF3-800F3B9918C0} - \DDP Service -> Geen bestand <==== AANDACHT Task: {6B50155B-CD30-4F50-A18F-71219E0D39C5} - \OneDrive Standalone Update Task v2 -> Geen bestand <==== AANDACHT Task: {6C42D0BF-A214-42D8-9A13-6F861E33766B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {6F39800C-A77D-4496-9615-8602F67445CB} - \DDP Service Task -> Geen bestand <==== AANDACHT Task: {7114FDF9-A26A-4C60-A881-F1FE64A41E73} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {7CDA47A9-B8FA-4D55-A207-570738028E44} - System32\Tasks\{EF127529-D14B-4C28-9306-D5773BE6FA81} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Boele\AppData\Local\Temp\jre-8u181-windows-au.exe -d C:\WINDOWS\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== AANDACHT Task: {7F124796-89AF-4BD9-853A-74BEB63B9C45} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe Task: {80844769-4066-4AD5-B1DE-DC4EFCDA9665} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {83027C8B-E0E2-4F09-853A-DEBB7A11410B} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {84F4C465-9162-4190-A2F6-5CB247D376C1} - System32\Tasks\{F5E42473-F282-4FD2-8FDD-E35C98AE597F} => C:\WINDOWS\system32\pcalua.exe -a I:\AutoPlay\Docs\64\vcredist_x64_2010.exe -d I:\AutoPlay\Docs\64 -c /passive /norestart Task: {84F6295C-B0FA-474A-83F2-6C2BB544A5F4} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe Task: {8637E3B6-6662-4610-ADDA-07148229CD5F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-08-24] (Piriform Ltd -> Piriform Ltd) Task: {86D84F30-127A-48E8-A8C7-43ABC9E0271D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-28] (Avast Software s.r.o. -> Avast Software) Task: {8E731E65-7450-4453-8CEB-3133E4362902} - \Opera scheduled Autoupdate 1399234910 -> Geen bestand <==== AANDACHT Task: {91DC557F-F917-499E-BCCF-8FBB4AAA5459} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {93FB21B1-4417-4BC6-B44E-7C871C4AF9C7} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {99D221CA-99A9-4CFE-A2C8-D07867E46277} - \AutoPico Daily Restart -> Geen bestand <==== AANDACHT Task: {9F1FEB04-88C0-41B7-8BAB-2505AA04CE70} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2019-11-13] (Garmin International, Inc. -> ) Task: {A0E31DDF-3897-4F53-8498-EE7188B82314} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-04] (Google Inc -> Google LLC) Task: {A2F431CA-09A8-4E20-8354-314CA479D9E7} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A321A6D5-11B7-4568-80AD-D66EDA300401} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {A5716AF7-A38F-4556-AD14-41402C4F3DF8} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A6AA0E94-CE7C-4FEA-970D-ED8908745DBD} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {A6D73A2A-2BBF-47FF-995E-76E551A1F848} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-22] (Dropbox, Inc -> Dropbox, Inc.) Task: {A7AEC4FE-BD2D-404E-BA1D-9E7791DDD19C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B95ACC9D-63B1-47A2-BE05-0DDF04F9C447} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {BA1A6432-4079-4C6A-B08F-482DC36EFDBA} - \{60D2085F-9216-40A5-BB21-DC8063CC0CF2} -> Geen bestand <==== AANDACHT Task: {BFE2DEE9-BF43-4C16-93FE-2896D5A1F64B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C02057C3-6570-4376-954E-D34627DF96D3} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe Task: {C409CD6F-9A26-4A21-A0AA-1BD70CB7A0A0} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe [1475640 2020-08-12] (Adobe Inc. -> Adobe) Task: {C9D245CB-7187-4540-9057-8A35455DD2B9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CDE3BEAD-800F-494B-AF2B-205D70081499} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D1579512-2125-4A85-AAA8-AE0E67CBDB9B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DB5CDC69-6C29-4C20-9EF0-579579B68569} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-02-03] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {DFFCDEDF-AA0D-4837-B51B-B42A85065796} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {E12304B2-A10F-47A1-89F7-0E068183D93C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F7F13DF6-07E9-4A36-81F7-C47A10A252E6} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {FAFF86CD-796D-45A3-B662-93A03BE5971E} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-02-03] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {FF09D65A-E06B-49A4-9B97-6F5C1DBA6E33} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) ProxyServer: [S-1-5-21-3474843776-585149200-3579222082-1000] => http=127.0.0.1:7070;https=127.0.0.1:7070 Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\..\Interfaces\{2807FACD-9496-4484-8CCC-1D2EC85F511D}: [NameServer] 89.101.251.228,89.101.251.229,192.168.1.1,8.8.4.4 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-3474843776-585149200-3579222082-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symbaloo.com/ DownloadDir: D:\Downloads SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3474843776-585149200-3579222082-1000 -> DefaultScope {EECC9E59-B581-495D-B472-61A943F440D2} URL = hxxps://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3474843776-585149200-3579222082-1000 -> {EECC9E59-B581-495D-B472-61A943F440D2} URL = hxxps://www.google.com/search?q={searchTerms} BHO: Geen Naam -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Geen bestand BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech Inc -> Logitech, Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll [2020-01-28] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech Inc -> Logitech, Inc.) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-28] (Oracle America, Inc. -> Oracle Corporation) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Geen bestand Edge: ====== DownloadDir: D:\Downloads Edge HomeButtonPage: HKU\S-1-5-21-3474843776-585149200-3579222082-1000 -> hxxp://www.symbaloo.com/ Edge Extension: (Geen Naam) -> EdgeExtension_DashlaneDashlaneEdgeExtension_ks9qrcqmdm1bm => C:\Program Files\WindowsApps\Dashlane.DashlaneEdgeExtension_6.2020.3.0_neutral__ks9qrcqmdm1bm [niet gevonden] Edge Profile: C:\Users\Boele\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-11] Edge DownloadDir: D:\Downloads Edge HomePage: Default -> hxxp://www.symbaloo.com/ Edge StartupUrls: Default -> "hxxps://symbaloo.com/" FireFox: ======== FF DefaultProfile: ekeu21ai.default FF DefaultProfile: 8ynl3mzu.default-1525188825283 FF DefaultProfile: woallqva.default FF ProfilePath: C:\Users\Boele\AppData\Roaming\Waterfox\Profiles\ekeu21ai.default [2019-05-03] FF DownloadDir: D:\Downloads FF Homepage: Waterfox\Profiles\ekeu21ai.default -> www.symbaloo.com FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Boele\AppData\Roaming\Waterfox\Profiles\ekeu21ai.default\Extensions\firefox@ghostery.com.xpi [2018-02-25] FF Extension: (Web of Trust) - C:\Users\Boele\AppData\Roaming\Waterfox\Profiles\ekeu21ai.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}.xpi [2018-02-25] FF Extension: (Adblock Plus) - C:\Users\Boele\AppData\Roaming\Waterfox\Profiles\ekeu21ai.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-02-25] FF ProfilePath: C:\Users\Boele\AppData\Roaming\Mozilla\Firefox\Profiles\8ynl3mzu.default-1525188825283 [2020-03-10] FF Homepage: Mozilla\Firefox\Profiles\8ynl3mzu.default-1525188825283 -> www.symbaloo.com FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Boele\AppData\Roaming\Mozilla\Firefox\Profiles\8ynl3mzu.default-1525188825283\Extensions\firefox@ghostery.com.xpi [2018-10-16] FF Extension: (Avast SafePrice) - C:\Users\Boele\AppData\Roaming\Mozilla\Firefox\Profiles\8ynl3mzu.default-1525188825283\Extensions\sp@avast.com.xpi [2018-08-19] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/sp/update.json] FF Extension: (Avast Online Security) - C:\Users\Boele\AppData\Roaming\Mozilla\Firefox\Profiles\8ynl3mzu.default-1525188825283\Extensions\wrc@avast.com.xpi [2018-07-17] FF Extension: (Adblock Plus) - C:\Users\Boele\AppData\Roaming\Mozilla\Firefox\Profiles\8ynl3mzu.default-1525188825283\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-11-03] FF Extension: (Telemetry coverage) - C:\Users\Boele\AppData\Roaming\Mozilla\Firefox\Profiles\8ynl3mzu.default-1525188825283\features\{92214c40-826d-4e98-8ab2-3c3ea213cee7}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-11-03] [Verouderd] FF SearchPlugin: C:\Users\Boele\AppData\Roaming\Mozilla\Firefox\Profiles\8ynl3mzu.default-1525188825283\searchplugins\bing-lavasoft-ff59.xml [2018-05-23] FF ProfilePath: C:\Users\Boele\AppData\Roaming\Comodo\IceDragon\Profiles\woallqva.default [2019-05-05] FF Homepage: Comodo\IceDragon\Profiles\woallqva.default -> www.symbaloo.com FF Extension: (Geen Naam) - C:\Program Files (x86)\Comodo\IceDragon\browser\features\@csb [niet gevonden] FF Extension: (Geen Naam) - C:\Program Files (x86)\Comodo\IceDragon\browser\features\DnD@comodo.com [niet gevonden] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2016-11-30] [Verouderd] [niet getekend] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_414.dll [2020-08-12] (Adobe Inc. -> ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_414.dll [2020-08-12] (Adobe Inc. -> ) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-28] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-28] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll [2013-05-01] (Nitro PDF Software -> Nitro PDF) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-02-03] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-02-03] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin HKU\S-1-5-21-3474843776-585149200-3579222082-1000: @www.flatcast.com/FlatViewer 5.2 -> C:\PROGRA~2\MOZILL~1\plugins\NpFv530.dll [2011-09-23] (1 mal 1 Software GmbH - Flatcast -> 1 mal 1 Software GmbH) FF Plugin ProgramFiles/Appdata: C:\Users\Boele\AppData\Roaming\mozilla\plugins\NpFp530.dll [2016-02-12] FF Plugin ProgramFiles/Appdata: C:\Users\Boele\AppData\Roaming\mozilla\plugins\NpFv530.dll [2016-02-12] Chrome: ======= CHR Profile: C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default [2020-08-16] CHR DownloadDir: D:\Downloads CHR StartupUrls: Default -> "hxxps://www.symbaloo.com/" CHR Extension: (Presentaties) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-29] CHR Extension: (Web Boost - Wait Less, Browse Faster!) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahbkhnpmoamidjgbneafjipbmdfpefad [2019-11-29] CHR Extension: (Free Download Manager) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2020-07-04] CHR Extension: (Translator voor alle talen) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2019-11-29] CHR Extension: (Documenten) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-29] CHR Extension: (Google Drive) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-11-29] CHR Extension: (WOT: Web of Trust, Website Reputatiescores) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2020-08-10] CHR Extension: (YouTube) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-29] CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-08-08] CHR Extension: (Symbaloo Bookmarker) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnjfgbikbkcmickdalamlmpmkhmbollm [2020-07-29] CHR Extension: (Notifier for Gmail™) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjichoefijpinlfnjghokpkojhlhkgl [2019-11-29] CHR Extension: (Symbaloo) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfnbdccaiknlpdgabdgjijniolkgmoeh [2020-03-27] CHR Extension: (Chrome Remote Desktop) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2020-02-24] CHR Extension: (Avast SafePrice | Prijsvergelijking, aanbiedingen, waardebonnen) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-07-04] CHR Extension: (ZenMate Gratis VPN - Beste VPN voor Chrome) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2020-08-15] CHR Extension: (Spreadsheets) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-29] CHR Extension: (Chrome Remote Desktop) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2020-02-24] CHR Extension: (Offline Documenten) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-14] CHR Extension: (Avast Online Security) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-04] CHR Extension: (Cool Klok) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\icegcmhgphfkgglbljbkdegiaaihifce [2019-11-29] CHR Extension: (Chrome Remote Desktop) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2020-02-24] CHR Extension: (Marktplaats zonder spam) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\lekhkeegnegccgaoakphligfonjmaodh [2020-01-13] CHR Extension: (Skype) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2019-11-29] CHR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2020-08-07] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-29] CHR Extension: (Canvas Defender) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdbgnebcljmgkoljcdddaopadkifnpm [2019-11-29] CHR Extension: (Gmail) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-29] CHR Extension: (Chrome Media Router) - C:\Users\Boele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-22] CHR Profile: C:\Users\Boele\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-19] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 ABBYY.Licensing.FineReader.ScreenshotReader.9.0; C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe [759072 2008-10-27] (ABBYY Software House -> ABBYY (BIT Software)) S3 AbyssWebServer; C:\Abyss Web Server\abyssws.exe [533561 2014-05-02] (Aprelium) [Bestand niet getekend] S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-05-02] (Adobe Systems) [Bestand niet getekend] S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-13] (Adobe Inc. -> Adobe) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-02-03] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-02-03] (Brave Software, Inc. -> BraveSoftware Inc.) R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\85.0.4183.6\remoting_host.exe [72176 2020-06-28] (Google LLC -> Google Inc.) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-22] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-22] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-08-12] (Dropbox, Inc -> Dropbox, Inc.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4132456 2019-05-28] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [635104 2012-04-20] (Intel® Upgrade Service -> Intel(R) Corporation) R2 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-05-01] (Nitro PDF Software -> Nitro PDF Software) R2 nlsvc; C:\Program Files\NetLimiter 4\NLSvc.exe [309664 2019-04-04] (Locktime Software s.r.o. -> Locktime Software) R2 PlexUpdateService; C:\Program Files (x86)\Plex2\Plex Media Server\Plex Update Service.exe [1508336 2020-04-29] (Plex, Inc. -> Plex, Inc.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13109776 2020-07-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-12-19] (Wondershare Technology Co.,Ltd -> Wondershare) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [23240 2016-04-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-02-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-02-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [36280 2019-12-25] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2019-12-25] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) R3 evtap0002; C:\WINDOWS\System32\drivers\evtap0002.sys [36552 2020-01-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 GUMHFilters; C:\Program Files (x86)\Glarysoft\Malware Hunter\Native\winxp_x64\GUMHFilter.sys [41232 2019-06-24] (Glarysoft LTD -> Glarysoft Ltd) R1 GUSBootStartup; C:\WINDOWS\System32\drivers\GUSBootStartup.sys [28936 2020-01-15] (Glarysoft LTD -> Glarysoft Ltd) S3 jakndis; C:\WINDOWS\system32\DRIVERS\jakndis.sys [35648 2011-07-21] (Jaksta Technologies Pty Ltd -> Jaksta Technologies Pty Ltd) R3 LVPr2M64; C:\WINDOWS\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] (Logitech Inc -> ) S3 LVPr2Mon; C:\WINDOWS\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] (Logitech Inc -> ) R0 nldrv; C:\WINDOWS\System32\drivers\nldrv.sys [178432 2019-04-04] (Locktime Software s.r.o. -> Locktime Software) R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 taphss6; C:\WINDOWS\System32\DRIVERS\taphss6.sys [42088 2015-11-13] (AnchorFree Inc -> Anchorfree Inc.) S3 tapprotonvpn; C:\WINDOWS\System32\DRIVERS\tapprotonvpn.sys [36792 2017-08-24] (ProtonVPN AG -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [78216 2020-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [430320 2020-08-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-08-05] (Microsoft Windows -> Microsoft Corporation) S3 WsAudioDevice_383S(1); C:\WINDOWS\System32\drivers\WsAudioDevice_383S(1).sys [29288 2015-02-02] (Wondershare Software Co., Ltd. -> Wondershare) U3 idsvc; geen ImagePath U4 npcap_wifi; geen ImagePath U4 npf_wifi; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-08-16 07:56 - 2020-08-16 07:59 - 000000000 ____D C:\FRST 2020-08-14 13:50 - 2020-08-14 13:50 - 000028387 _____ C:\Users\Boele\Desktop\week 34 Veendam.xlsx 2020-08-14 06:14 - 2020-08-14 06:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2020-08-12 09:44 - 2020-08-12 09:44 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 022642688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 007758848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 007270912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 006294528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 005904896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 004611072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 003516416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2020-08-12 09:44 - 2020-08-12 09:44 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-08-12 09:44 - 2020-08-12 09:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-08-12 09:44 - 2020-08-12 09:44 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2020-08-12 09:44 - 2020-08-12 09:44 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2020-08-12 09:44 - 2020-08-12 09:44 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2020-08-12 09:44 - 2020-08-12 09:44 - 002138280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL 2020-08-12 09:44 - 2020-08-12 09:44 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe 2020-08-12 09:44 - 2020-08-12 09:44 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe 2020-08-12 09:44 - 2020-08-12 09:44 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2020-08-12 09:44 - 2020-08-12 09:44 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000738064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2020-08-12 09:44 - 2020-08-12 09:44 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL 2020-08-12 09:44 - 2020-08-12 09:44 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL 2020-08-12 09:44 - 2020-08-12 09:44 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL 2020-08-12 09:44 - 2020-08-12 09:44 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe 2020-08-12 09:44 - 2020-08-12 09:44 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe 2020-08-12 09:44 - 2020-08-12 09:44 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe 2020-08-12 09:44 - 2020-08-12 09:44 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll 2020-08-12 09:44 - 2020-08-12 09:44 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-08-12 09:43 - 2020-08-12 09:44 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-08-12 09:43 - 2020-08-12 09:43 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 009932088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 007915864 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 007270728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 006074552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 005849872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 005767224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 005283776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 005003824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 003806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 003743056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 003368616 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 002766952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002698048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002471936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002260312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002085632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-08-12 09:43 - 2020-08-12 09:43 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001740800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001654312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 001482568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001420320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-08-12 09:43 - 2020-08-12 09:43 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000823744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000822800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000675040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000564488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-08-12 09:43 - 2020-08-12 09:43 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys 2020-08-12 09:43 - 2020-08-12 09:43 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe 2020-08-12 09:43 - 2020-08-12 09:43 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2020-08-12 09:43 - 2020-08-12 09:43 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-08-12 09:43 - 2020-08-12 09:43 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-08-12 09:42 - 2020-08-12 09:43 - 007583272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 007850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2020-08-12 09:42 - 2020-08-12 09:42 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2020-08-12 09:42 - 2020-08-12 09:42 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-08-12 09:42 - 2020-08-12 09:42 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 002717696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-08-12 09:42 - 2020-08-12 09:42 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-08-12 09:42 - 2020-08-12 09:42 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-08-12 09:42 - 2020-08-12 09:42 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-08-12 09:42 - 2020-08-12 09:42 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2020-08-12 09:42 - 2020-08-12 09:42 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys 2020-08-12 09:42 - 2020-08-12 09:42 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2020-08-12 09:42 - 2020-08-12 09:42 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe 2020-08-12 09:42 - 2020-08-12 09:42 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe 2020-08-12 09:42 - 2020-08-12 09:42 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll 2020-08-12 09:42 - 2020-08-12 09:42 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll 2020-08-12 09:21 - 2020-08-12 09:21 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-08-12 09:21 - 2020-08-12 09:21 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-08-12 03:35 - 2020-08-12 03:35 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2020-08-12 03:35 - 2020-08-12 03:35 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2020-08-12 03:35 - 2020-08-12 03:35 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2020-08-12 03:35 - 2020-08-12 03:35 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2020-08-11 08:42 - 2020-08-11 08:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp 2020-08-11 08:42 - 2020-08-11 08:42 - 000000000 ____D C:\Program Files\Core Temp 2020-07-30 14:02 - 2020-07-31 06:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2020-07-26 07:43 - 2020-08-16 06:39 - 000009048 _____ C:\Users\Boele\Desktop\IP.xlsx 2020-07-24 08:18 - 2020-07-24 08:18 - 008174024 _____ (Tim Kosse) C:\Users\Boele\Downloads\FileZilla_3.49.1_win64-setup.exe 2020-07-22 08:27 - 2020-04-24 02:22 - 000166760 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2020-07-22 08:27 - 2020-04-24 02:22 - 000136040 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-08-16 07:55 - 2018-07-16 16:56 - 000000000 ____D C:\Users\Boele\AppData\Roaming\DC++ 2020-08-16 07:42 - 2018-11-09 12:55 - 000000143 _____ C:\Users\Boele\Desktop\replaced.txt 2020-08-16 07:42 - 2018-06-24 11:05 - 000644536 _____ C:\Users\Boele\Documents\Collectie.xlsx 2020-08-16 07:41 - 2019-12-30 11:45 - 000000000 ____D C:\Users\Boele\AppData\Roaming\AIMP3 2020-08-16 07:29 - 2020-02-25 14:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-08-16 06:21 - 2019-10-22 14:00 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2020-08-16 06:21 - 2019-10-22 14:00 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData 2020-08-16 06:21 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-08-16 06:21 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-08-16 06:18 - 2016-11-21 12:18 - 000000000 ____D C:\Users\Boele\AppData\LocalLow\Mozilla 2020-08-16 06:17 - 2020-06-04 16:56 - 000000000 ____D C:\Users\Boele\AppData\Roaming\Deezloader Remix 2020-08-15 22:26 - 2018-07-16 16:56 - 000000000 ____D C:\Users\Boele\AppData\Local\DC++ 2020-08-14 22:23 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-08-14 13:51 - 2019-05-02 12:19 - 000000000 ____D C:\Users\Boele\AppData\Local\Packages 2020-08-14 06:16 - 2020-02-03 17:12 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2020-08-14 06:16 - 2017-10-22 15:12 - 000000000 ____D C:\Program Files (x86)\Dropbox 2020-08-13 08:22 - 2018-05-03 06:44 - 000000000 ____D C:\Users\Boele\AppData\Roaming\vlc 2020-08-13 08:21 - 2019-05-14 07:32 - 000000000 ____D C:\ProgramData\Spotnet 2020-08-13 07:44 - 2019-12-16 14:56 - 000000946 _____ C:\Users\Boele\AppData\Local\7F68A003.il 2020-08-13 07:44 - 2019-12-16 14:56 - 000000280 _____ C:\Users\Boele\AppData\Local\IndexIE_7F68A003.il 2020-08-13 06:38 - 2020-06-21 05:52 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-08-13 06:22 - 2020-07-14 22:34 - 004510264 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe 2020-08-13 06:22 - 2020-02-25 14:46 - 000004636 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier 2020-08-13 06:22 - 2020-02-25 14:40 - 001926408 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-08-13 06:22 - 2019-03-19 14:33 - 000826988 _____ C:\WINDOWS\system32\perfh013.dat 2020-08-13 06:22 - 2019-03-19 14:33 - 000172486 _____ C:\WINDOWS\system32\perfc013.dat 2020-08-13 06:22 - 2019-03-19 06:56 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2020-08-13 06:22 - 2019-03-19 06:56 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2020-08-13 06:22 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-08-13 06:22 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-08-13 06:22 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2020-08-13 06:17 - 2019-05-02 12:19 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-08-13 06:17 - 2019-05-02 12:19 - 000000000 ___RD C:\Users\Boele\3D Objects 2020-08-13 06:15 - 2020-02-25 14:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-08-13 06:15 - 2020-02-25 14:21 - 000441984 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-08-13 06:15 - 2018-04-05 09:39 - 000000000 ____D C:\Program Files\Opera 2020-08-13 06:15 - 2014-05-02 21:12 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-08-13 06:15 - 2014-05-02 11:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-08-12 22:15 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-08-12 22:14 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-08-12 22:14 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2020-08-12 22:14 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-08-12 22:14 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-08-12 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup 2020-08-12 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-08-12 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-08-12 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-08-12 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-08-12 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-08-12 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning 2020-08-12 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-08-12 22:13 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing 2020-08-12 09:55 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-08-12 09:52 - 2009-07-14 04:34 - 000000550 _____ C:\WINDOWS\win.ini 2020-08-12 06:39 - 2020-02-25 14:46 - 000004684 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-08-11 19:20 - 2020-04-02 19:13 - 000000350 _____ C:\Users\Boele\Desktop\Releases.txt 2020-08-11 16:59 - 2014-05-04 22:21 - 000000000 ____D C:\Users\Boele\AppData\Roaming\Opera Software 2020-08-11 16:59 - 2014-05-04 22:21 - 000000000 ____D C:\Users\Boele\AppData\Local\Opera Software 2020-08-11 16:49 - 2018-06-24 18:38 - 000000000 ____D C:\Users\Boele\Desktop\TipsTruuks 2020-08-10 17:31 - 2017-04-13 19:18 - 000000000 ____D C:\Users\Boele\AppData\Local\Spotify 2020-08-10 17:30 - 2017-04-13 19:18 - 000000000 ____D C:\Users\Boele\AppData\Roaming\Spotify 2020-08-10 15:03 - 2019-04-14 16:01 - 000000000 ____D C:\Users\Boele\AppData\Roaming\spek 2020-08-10 14:56 - 2014-05-02 12:00 - 000000000 ____D C:\Users\Boele\AppData\Roaming\FileZilla 2020-08-10 10:04 - 2015-03-17 08:59 - 000000000 ____D C:\Users\Boele\AppData\Local\CrashDumps 2020-08-10 07:56 - 2019-04-03 16:54 - 000000000 ____D C:\Users\Boele\Desktop\Excel Files 2020-08-06 12:51 - 2020-02-25 14:46 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3474843776-585149200-3579222082-1000 2020-08-06 12:51 - 2020-02-25 14:29 - 000002411 _____ C:\Users\Boele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-08-06 12:51 - 2016-05-28 20:12 - 000000000 ___RD C:\Users\Boele\OneDrive 2020-08-05 20:35 - 2020-02-27 12:03 - 000025833 _____ C:\Users\Boele\Desktop\Declaratie formulier augustus.xlsx 2020-08-05 16:34 - 2019-05-02 12:17 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2020-08-03 11:34 - 2016-04-19 21:36 - 000000000 ____D C:\Users\Boele\AppData\Roaming\uTorrent 2020-08-03 10:33 - 2019-11-23 11:55 - 000000000 ____D C:\Users\Boele\AppData\Local\BitTorrentHelper 2020-07-31 07:47 - 2014-05-02 17:03 - 000315904 _____ C:\Users\Boele\Documents\Mixed Sectie.xls 2020-07-31 06:46 - 2015-04-03 15:31 - 000000000 ____D C:\Users\Boele\Desktop\Tekstfiles 2020-07-27 18:51 - 2014-05-04 17:37 - 000000000 ____D C:\Users\Boele\AppData\Roaming\TeamViewer 2020-07-26 19:20 - 2017-10-22 15:12 - 000001012 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2020-07-26 19:20 - 2017-10-22 15:12 - 000001008 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2020-07-26 10:42 - 2019-12-30 11:27 - 000000000 ____D C:\Users\Boele\AppData\Roaming\AIMP 2020-07-25 06:46 - 2016-12-10 11:48 - 000000000 ____D C:\Users\Boele\AppData\Local\FileZilla 2020-07-25 06:45 - 2019-05-13 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2020-07-25 06:45 - 2019-03-20 09:52 - 000000000 ____D C:\Program Files\FileZilla FTP Client 2020-07-24 16:43 - 2020-02-25 14:46 - 000004072 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2020-07-24 16:43 - 2020-02-25 14:46 - 000003840 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2020-07-22 21:07 - 2014-05-02 11:56 - 000000000 ___RD C:\Users\Boele\Dropbox 2020-07-20 07:20 - 2014-05-02 12:05 - 000000000 ____D C:\Users\Boele\AppData\Roaming\Skype ==================== Bestanden in de root van sommige mappen ======== 2019-10-22 14:18 - 2019-10-22 14:18 - 002475131 _____ ( ) C:\Users\Boele\awsetup.exe 2019-05-07 15:10 - 2008-12-09 04:44 - 000166912 _____ () C:\Program Files (x86)\1026.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000107520 _____ () C:\Program Files (x86)\1029.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000103424 _____ () C:\Program Files (x86)\1031.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000012288 _____ () C:\Program Files (x86)\1033.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000097792 _____ () C:\Program Files (x86)\1034.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000104448 _____ () C:\Program Files (x86)\1036.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000110592 _____ () C:\Program Files (x86)\1038.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000100864 _____ () C:\Program Files (x86)\1040.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000099328 _____ () C:\Program Files (x86)\1043.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000102400 _____ () C:\Program Files (x86)\1045.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000097280 _____ () C:\Program Files (x86)\1046.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000171520 _____ () C:\Program Files (x86)\1049.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000107520 _____ () C:\Program Files (x86)\1051.mst 2019-05-07 15:10 - 2008-12-09 04:44 - 000105472 _____ () C:\Program Files (x86)\1055.mst 2019-05-07 15:10 - 2008-12-10 11:51 - 002589696 _____ () C:\Program Files (x86)\ABBYY Screenshot Reader.msi 2019-05-07 15:10 - 2008-12-09 04:12 - 000439584 _____ (ABBYY Software Ltd) C:\Program Files (x86)\Setup.exe 2019-05-07 15:10 - 2008-12-09 04:01 - 000000252 ____R () C:\Program Files (x86)\setup.ini 2017-06-20 21:11 - 2015-06-13 04:34 - 021677568 _____ () C:\Program Files (x86)\SoulseekQt.exe 2019-05-07 15:10 - 2008-12-09 00:12 - 000245408 _____ (Microsoft Corporation) C:\Program Files (x86)\unicows.dll 2014-10-02 19:47 - 2014-10-02 20:01 - 002919548 _____ (Popcorn Official) C:\Program Files (x86)\update.exe 2018-04-06 17:12 - 2018-04-06 17:12 - 000001024 _____ () C:\Users\Boele\AppData\Roaming\.virtual_ans_win_config 2017-09-30 12:35 - 2017-09-30 12:35 - 000012487 _____ () C:\Users\Boele\AppData\Roaming\Door komma's gescheiden waarden.EML 2015-04-18 12:39 - 2015-04-18 12:39 - 000004375 ____S () C:\Users\Boele\AppData\Local\0d094f5f75.db 2019-12-16 14:56 - 2020-08-13 07:44 - 000000946 _____ () C:\Users\Boele\AppData\Local\7F68A003.il 2018-04-05 11:14 - 2018-04-05 11:14 - 000958218 _____ () C:\Users\Boele\AppData\Local\ars.cache 2018-04-05 11:15 - 2018-04-05 11:15 - 000767883 _____ () C:\Users\Boele\AppData\Local\census.cache 2018-04-05 10:54 - 2018-04-05 10:54 - 000000036 _____ () C:\Users\Boele\AppData\Local\housecall.guid.cache 2019-12-16 14:56 - 2020-08-13 07:44 - 000000280 _____ () C:\Users\Boele\AppData\Local\IndexIE_7F68A003.il 2018-02-25 21:23 - 2018-02-25 21:23 - 000000001 _____ () C:\Users\Boele\AppData\Local\llftool.4.40.agreement 2018-09-29 07:59 - 2018-09-29 07:59 - 000000000 _____ () C:\Users\Boele\AppData\Local\oobelibMkey.log 2015-07-13 16:22 - 2019-05-01 16:31 - 000000600 _____ () C:\Users\Boele\AppData\Local\PUTTY.RND 2014-05-06 17:18 - 2018-04-18 07:51 - 000007672 _____ () C:\Users\Boele\AppData\Local\resmon.resmoncfg 2018-04-05 11:03 - 2018-04-05 11:03 - 000000010 _____ () C:\Users\Boele\AppData\Local\sponge.last.runtime.cache 2015-06-29 11:22 - 2015-06-29 11:22 - 000732064 _____ (DivX, LLC) C:\Users\Boele\AppData\Local\Tempdivx0833.exe 2015-06-29 11:20 - 2015-06-29 11:20 - 001328472 _____ (DivX, LLC) C:\Users\Boele\AppData\Local\Tempdivxd2b3.exe 2015-06-29 11:26 - 2015-06-29 11:26 - 000635544 _____ (DivX, LLC) C:\Users\Boele\AppData\Local\Tempdivxddb8.exe ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================