Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 06-09-2020 Gestart door Ramon (Beheerder) op PC-RAMON (LENOVO 90FN008ENY) (08-09-2020 13:44:17) Gestart vanaf C:\Users\rtull\Dropbox\Mijn pc (PC-RAMON)\Downloads Geladen Profielen: Ramon Platform: Windows 10 Home Versie 1903 18362.1016 (X64) Taal: Nederlands (Nederland) Standaardbrowser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1" Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <19> (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastNM.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5> (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe (Hewlett-Packard Company) [Bestand niet getekend] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) [Bestand niet getekend] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel(R) Driver & Support Assistant -> Intel) C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_5acc9ca73ae7cf4c\jhi_service.exe (Intel(R) Online Connect -> Intel Corporation) C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe (Intel(R) Online Connect Access -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe (Intel(R) Online Connect Access -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_16c0b30f7916739a\Intel_PIE_Service.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingNews_4.51.22441.0_x64__8wekyb3d8bbwe\Microsoft.Msn.News.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12008.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe (Safer Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Symantec Corporation -> ) C:\Program Files (x86)\SurfEasy VPN\client\SurfEasyService.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-09-07] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [318920 2019-03-07] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-05] (CyberLink -> CyberLink) HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink -> CyberLink Corp.) HKLM-x32\...\Run: [Lenovo Silver Silk Wireless Keyboard] => C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe [1742336 2013-08-14] (Lenovo) [Bestand niet getekend] HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) HKLM-x32\...\Run: [RoxioDragToDisc] => C:\Program Files (x86)\Roxio\Drag-to-Disc\DrgToDsc.exe [1116920 2006-10-30] (Sonic Solutions -> Roxio) HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe [131360 2017-12-19] (Intel(R) Driver & Support Assistant -> Intel) HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2138272 2016-10-08] (Shenzhen Jia Xing Investment Co., Ltd. -> AimerSoft) HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\Run: [HP ENVY 4500 series (NET)] => C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\Run: [EssentialPIM] => C:\Program Files (x86)\EssentialPIM\EssentialPIM.exe [18954456 2017-06-05] (ASTONSOFT OU -> Astonsoft) HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-01-24] (Hewlett-Packard Company) [Bestand niet getekend] HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [Bestand niet getekend] HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\Run: [AvastBrowserAutoLaunch_0E113014B90951FAF820BC2914A8EFCB] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1903936 2020-08-31] (Avast Software s.r.o. -> AVAST Software) HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3682968 2019-04-22] (Invincea, Inc. -> Sandboxie Holdings, LLC) HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\MountPoints2: {57b6423d-759e-11ea-afe3-6807158a3a9e} - "E:\LaunchU3.exe" -a HKLM\...\Print\Monitors\HP C511 Status Monitor: C:\WINDOWS\system32\hpinkstsC511LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 4500 series): C:\WINDOWS\system32\HPDiscoPMC511.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.83\Installer\chrmstp.exe [2020-09-02] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\85.0.5674.84\Installer\chrmstp.exe [2020-09-07] (Avast Software s.r.o. -> AVAST Software) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Twonky Server.lnk [2017-03-03] ShortcutTarget: Twonky Server.lnk -> C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe (PacketVideo Corporation -> PacketVideo) [Bestand niet getekend] FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0CE30B30-58CF-424F-90EF-7530F4DBF1AD} - System32\Tasks\Lenovo\SHPrompt => C:\Program Files (x86)\SHAREit\SHAREit\ShareitPrompt.exe Task: {14874B94-E030-4E75-B6AD-BDF29B988106} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {1CDFD615-32D5-4C9C-B2B7-CE618F3D8F5A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4cbcd8ca-25cf-4755-991b-22d0f0ec8679 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.) Task: {21C9D413-005A-4B7D-8035-FFE3093271FF} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-04-21] (LENOVO -> Lenovo) Task: {357A50C5-7002-4E02-8A90-B9DB89F146A5} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation) Task: {3C3D52E4-0D0E-481A-B7BC-DDCDD4EDD2B9} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17744 2016-04-21] (LENOVO -> Lenovo) Task: {441C90A8-F790-402A-B26D-1996B4B6C4D5} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [56136 2020-07-15] (Lenovo -> Lenovo Group Ltd.) Task: {4B3A49D7-BADB-45A9-BDA1-69EECBC61D8A} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-23] (AVAST Software s.r.o. -> AVAST Software) Task: {4E9055DD-6C46-4591-9E1B-6D530C26618C} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {515DBA5B-714F-4647-89E0-5DB08016F734} - System32\Tasks\{A8783C5D-7F51-42A3-BE51-76EA0EF204B7} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Felitec\Mindful\unins000.exe" Task: {523C4003-8A61-4C5E-B3CB-ED6D849C9C4C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1903936 2020-08-31] (Avast Software s.r.o. -> AVAST Software) Task: {5419E130-AA4E-43B0-B911-65E3742AE969} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-28] (Avast Software s.r.o. -> Avast Software) Task: {56145F7C-141D-4884-895C-13354C428169} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation) Task: {584FC020-85C8-46D3-9A92-D0EB967693AF} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [4818848 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) Task: {5999F85D-B161-4981-A02A-91186CE83A4B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe Task: {609C0404-351E-41DF-BFED-F18C78518652} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-07-27] (Lenovo -> Lenovo Group Ltd.) Task: {6A7EBBA9-0E53-4A58-897D-5D9EBBE62334} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\603517f2-54c9-4ed0-afe2-5c96a153f641 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.) Task: {7E624FD5-42EF-4E34-9A83-C8F798A0EDD4} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {9875EF7E-9F94-4BD9-893C-1BB15C72AC99} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-08] (Google Inc -> Google LLC) Task: {987EA20C-4100-41CF-A97C-B56703B46B7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-08] (Google Inc -> Google LLC) Task: {A5A4A66B-9A48-4698-B445-F6DAC08BC380} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {A5DC23EC-EF63-46FF-896E-57F01529FEA8} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3850336 2020-09-07] (Avast Software s.r.o. -> AVAST Software) Task: {AFC485E6-32E2-4C33-AE7B-31460F829F7D} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {B1337527-0BBE-4D40-A9EA-A2B25B529432} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {B20F4184-741E-46AD-9636-5A6A037DEF39} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2897933121-1580215152-3316838448-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\rtull\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms Task: {B3396DEF-443D-4C8F-B787-F5ED288979BA} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3cdd590b-2cc1-4fe4-b968-07a0fafdcb62 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.) Task: {BC1C3755-CC14-457C-BB1D-B2129E63A8B9} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [4747720 2014-06-27] (Safer Networking Ltd. -> Safer-Networking Ltd.) Task: {BD1F6FE9-906F-4B75-89AD-CE5F2ADDA5BD} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe [263504 2016-04-21] (LENOVO -> ) Task: {C8C0AAC4-6A65-476D-89BB-3BCBD2026BEA} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService Task: {C9874C08-3709-4687-849F-8368943E42A5} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1741576 2016-03-17] (Intel(R) Software -> Intel Corporation) Task: {D4A307D4-94D9-409E-8251-E4AE8CADB1E3} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1903936 2020-08-31] (Avast Software s.r.o. -> AVAST Software) Task: {D50C83A0-AF37-477C-ABB5-7C0549A68B4E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [4460472 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) Task: {DF198105-A0A8-426C-BA21-43C32BFC1120} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-23] (AVAST Software s.r.o. -> AVAST Software) Task: {E43E86E2-1624-431A-AF05-1ACEA643DB8B} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9940304 2016-04-21] (LENOVO -> Lenovo) Task: {E9E8E6FC-C98B-4A6C-97D4-2BF297671B5C} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe Task: {EEDCA221-2F65-4851-9EA5-A9C2089F2672} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-20] (CyberLink Corp. -> CyberLink Corp.) Task: {EF11EFBC-BFC4-4E1C-8063-9365D2C00664} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) Task: {F0857E7B-B694-4B7C-B0BD-D9F6105BFA92} - System32\Tasks\Lenovo\SHUpdate => C:\Program Files (x86)\SHAREit\SHAREit\ShareitUpdater.exe Task: {F33B6FF0-B010-47EB-8357-C6F4117D2DEB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.) Task: {F3775B69-0E05-4D1C-A70A-892804CD6357} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3c62e0be-efa6-4c94-8be1-2efa4cd7d797 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.) Task: {F6F3FE68-8F1A-4985-84B4-779CC4F09828} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {FD38890B-7138-4A2C-9B69-85723C0A3312} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9940304 2016-04-21] (LENOVO -> Lenovo) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 62.179.104.196 213.46.228.196 Tcpip\..\Interfaces\{360afcb4-8243-4978-9902-4260c5a56a32}: [DhcpNameServer] 62.179.104.196 213.46.228.196 Tcpip\..\Interfaces\{9cb926b2-afcc-43e6-a27f-e908ae0c432d}: [DhcpNameServer] 62.179.104.196 213.46.228.196 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com/?q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.startpagina.nl/ SearchScopes: HKLM -> DefaultScope {95A95B3E-B21D-4EAF-8287-4BA3B9173C16} URL = SearchScopes: HKLM-x32 -> DefaultScope waarde ontbreekt BHO-x32: iTube Studio 6.1.0 -> {1A6B6AD0-2735-498F-834C-AFCEA37847C2} -> C:\Program Files (x86)\Aimersoft\Free YouTube Downloader voor Windows (Dutch)\BrowserPlugin\KVBrowserAppMgr.dll [2019-08-02] (WONBO TECHNOLOGY Co.,LIMITED -> ) Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Geen bestand Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Geen bestand Handler: WSISAllmytubechrome - {4724F5AF-4E6D-41CA - Geen bestand Handler: WSKVAllmytubechrome - {91AB862D-07B8-4A85 - Geen bestand Edge: ====== DownloadDir: C:\Users\rtull\Downloads Edge Notifications: HKU\S-1-5-21-2897933121-1580215152-3316838448-1001 -> hxxp://www.pc-helpforum.be; hxxps://www.pc-helpforum.be; hxxps://www.facebook.com; hxxps://calendar.google.com; hxxps://www.telegraaf.nl; hxxps://keepvid.com; hxxps://aanbiedingen.telegraaf.nl; hxxps://www.wish.com Edge DefaultProfile: Default Edge Profile: C:\Users\rtull\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-07] Edge DownloadDir: C:\Users\rtull\Downloads Edge Notifications: Default -> hxxp://www.pc-helpforum.be; hxxps://aanbiedingen.telegraaf.nl; hxxps://calendar.google.com; hxxps://keepvid.com; hxxps://www.facebook.com; hxxps://www.pc-helpforum.be; hxxps://www.telegraaf.nl; hxxps://www.wish.com FireFox: ======== FF DefaultProfile: u63cqylq.default FF ProfilePath: C:\Users\rtull\AppData\Roaming\Mozilla\Firefox\Profiles\u63cqylq.default [2020-08-28] FF Homepage: Mozilla\Firefox\Profiles\u63cqylq.default -> hxxps://www.google.com/?bcutc=sp-006 FF NewTab: Mozilla\Firefox\Profiles\u63cqylq.default -> about:newtab FF Extension: (Avast SafePrice | Prijsvergelijking, aanbiedingen, waardebonnen) - C:\Users\rtull\AppData\Roaming\Mozilla\Firefox\Profiles\u63cqylq.default\Extensions\sp@avast.com.xpi [2020-03-28] FF Extension: (Avast Online Security) - C:\Users\rtull\AppData\Roaming\Mozilla\Firefox\Profiles\u63cqylq.default\Extensions\wrc@avast.com.xpi [2018-06-22] FF SearchPlugin: C:\Users\rtull\AppData\Roaming\Mozilla\Firefox\Profiles\u63cqylq.default\searchplugins\google-avast.xml [2018-01-16] FF HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\...\Firefox\Extensions: [KVAllmytube@KeepVid.com] - C:\Program Files (x86)\KeepVid Free\BrowserPlugin\kvallmytube@keepvid.com_xpi FF Extension: (KeepVid Pro) - C:\Program Files (x86)\KeepVid Free\BrowserPlugin\kvallmytube@keepvid.com_xpi [2019-02-02] [Verouderd] FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Geen bestand] FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-08-17] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default [2020-09-07] CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://fortpush.com; hxxps://keepvid.com; hxxps://videoconverter.wondershare.com; hxxps://web.skype.com; hxxps://www.pc-helpforum.be; hxxps://www.youtube.com; hxxps://www.ziggo.nl CHR DefaultSearchURL: Default -> hxxps://static.startpagina.nl/static/rainbow/images/logo/sp192.a43f46f19645.png CHR Extension: (Documenten) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-28] CHR Extension: (Google Drive) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-26] CHR Extension: (YouTube) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-26] CHR Extension: (Tampermonkey) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-07-31] CHR Extension: (Adobe Acrobat) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-08-10] CHR Extension: (Avast SafePrice | Prijsvergelijking, aanbiedingen, waardebonnen) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-07-31] CHR Extension: (iCloud-bladwijzers) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2019-03-10] CHR Extension: (Startpagina) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdmkfnifdlkpkgmpdldkoiplibdfdgjb [2019-10-29] CHR Extension: (Offline Documenten) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-25] CHR Extension: (Avast Online Security) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-04] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-06] CHR Extension: (ING) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\omgmlljncgkodafgbpmdncanhljckcjf [2019-04-12] CHR Extension: (Gmail) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01] CHR Extension: (Chrome Media Router) - C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-31] CHR Profile: C:\Users\rtull\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-08-28] CHR Profile: C:\Users\rtull\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-30] CHR HKU\S-1-5-21-2897933121-1580215152-3316838448-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-07-08] (Adobe Inc. -> Adobe Inc.) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-07] (Avast Software s.r.o. -> AVAST Software) S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-23] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-07] (Avast Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-23] (AVAST Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\85.0.5674.84\elevation_service.exe [1080640 2020-08-31] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R2 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [22304 2017-12-19] (Intel(R) Driver & Support Assistant -> Intel) S3 IDriverT; C:\Program Files (x86)\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Bestand niet getekend] R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.) U3 Intel(R) Online Connect; C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe [25824 2016-10-04] (Intel(R) Online Connect -> Intel Corporation) S2 Intel(R) Online Connect Helper; C:\Program Files\Intel\Intel(R) Online Connect\iocHelperService.exe [22752 2016-10-04] (Intel(R) Online Connect -> Intel Corporation) S3 Intel(R) Online Connect Software Asset Manager; C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Bestand niet getekend] R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe [173288 2016-10-05] (Intel(R) Online Connect Access -> Intel(R) Corporation) R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe [496872 2016-10-05] (Intel(R) Online Connect Access -> Intel(R) Corporation) S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Bestand niet getekend] R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe [18360 2020-07-09] (Lenovo -> Lenovo Group Ltd.) R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2008-01-24] (Hewlett-Packard Company) [Bestand niet getekend] S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-04-21] (LENOVO -> Lenovo) S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7138296 2020-08-28] (Malwarebytes Inc -> Malwarebytes) R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [328344 2019-04-22] (Invincea, Inc. -> Sandboxie Holdings, LLC) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Bestand niet getekend] S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Bestand niet getekend] S3 ShareItSvc; C:\Program Files (x86)\SHAREit\SHAREit\Shareit.Service.exe [31176 2016-01-15] (LENOVO -> SHAREit Technologies Co.Ltd) R2 SurfEasyVPN; C:\Program Files (x86)\SurfEasy VPN\client\SurfEasyService.exe [2780768 2019-07-08] (Symantec Corporation -> ) S2 TwonkyServer; C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe [605048 2014-04-01] (PacketVideo Corporation -> PacketVideo) [Bestand niet getekend] R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2018-04-09] (Reason Software Company Inc. -> Reason Software Company Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-04] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-04] (Microsoft Windows Publisher -> Microsoft Corporation) S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [X] ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206392 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [516560 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469880 2020-09-07] (Avast Software s.r.o. -> AVAST Software) S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217328 2020-09-07] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326408 2020-09-08] (Avast Software s.r.o. -> AVAST Software) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-15] (Microsoft Corporation) [Bestand niet getekend] R2 DLABMFSE; C:\WINDOWS\System32\DLA\DLABMFSE.SYS [43888 2008-02-22] (Sonic Solutions -> Roxio) R2 DLABOIOE; C:\WINDOWS\System32\DLA\DLABOIOE.SYS [41712 2008-02-22] (Sonic Solutions -> Roxio) R1 DLACDBHE; C:\WINDOWS\System32\Drivers\DLACDBHE.SYS [15864 2007-02-08] (Sonic Solutions -> Roxio) R2 DLADResE; C:\WINDOWS\System32\DLA\DLADResE.SYS [10096 2008-02-22] (Sonic Solutions -> Roxio) R2 DLAIFS_E; C:\WINDOWS\System32\DLA\DLAIFS_E.SYS [141296 2008-02-22] (Sonic Solutions -> Roxio) R2 DLAOPIOE; C:\WINDOWS\System32\DLA\DLAOPIOE.SYS [33904 2008-02-22] (Sonic Solutions -> Roxio) R2 DLAPoolE; C:\WINDOWS\System32\DLA\DLAPoolE.SYS [17776 2008-02-22] (Sonic Solutions -> Roxio) R1 DLARTL_E; C:\WINDOWS\System32\Drivers\DLARTL_E.SYS [39160 2007-02-08] (Sonic Solutions -> Roxio) R2 DLAUDFAE; C:\WINDOWS\System32\DLA\DLAUDFAE.SYS [136816 2008-02-22] (Sonic Solutions -> Roxio) R2 DLAUDF_E; C:\WINDOWS\System32\DLA\DLAUDF_E.SYS [142832 2008-02-22] (Sonic Solutions -> Roxio) R0 DRVECDB; C:\WINDOWS\System32\Drivers\DRVECDB.SYS [122776 2006-07-21] (Sonic Solutions -> Sonic Solutions) R2 DRVEDDM; C:\WINDOWS\System32\Drivers\DRVEDDM.SYS [63608 2007-02-09] (Sonic Solutions -> Roxio) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-08-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-09-08] (Malwarebytes Inc -> Malwarebytes) R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [59792 2016-09-13] (Intel(R) Technology Access -> Intel Corporation) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [228616 2019-04-23] (Invincea, Inc. -> Sandboxie Holdings, LLC) R3 SymTAP; C:\WINDOWS\System32\drivers\SymTAP.sys [52512 2018-10-03] (Symantec Corporation -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-04] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-04] (Microsoft Windows -> Microsoft Corporation) S3 LVPr2M64; \SystemRoot\system32\DRIVERS\LVPr2M64.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-09-08 12:23 - 2020-09-08 12:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2020-09-08 12:16 - 2020-09-08 12:16 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-09-07 11:35 - 2020-09-07 11:34 - 000338528 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2020-09-07 11:35 - 2020-09-07 11:34 - 000217328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2020-09-07 11:35 - 2020-09-07 11:34 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2020-08-28 12:31 - 2020-08-28 12:31 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-08-28 12:31 - 2020-08-28 12:30 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-08-24 12:59 - 2020-08-24 12:59 - 000034531 _____ C:\Users\rtull\Dropbox\Mijn pc (PC-RAMON)\Documents\contract_DY1102797470 Vodafone Mobiel.pdf 2020-08-14 13:58 - 2020-09-02 11:12 - 000002363 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-08-12 15:33 - 2020-08-12 15:33 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 007758848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 007270912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 006294528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 005904896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 004611072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 003516416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2020-08-12 15:33 - 2020-08-12 15:33 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-08-12 15:33 - 2020-08-12 15:33 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2020-08-12 15:33 - 2020-08-12 15:33 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2020-08-12 15:33 - 2020-08-12 15:33 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2020-08-12 15:33 - 2020-08-12 15:33 - 002138280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL 2020-08-12 15:33 - 2020-08-12 15:33 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe 2020-08-12 15:33 - 2020-08-12 15:33 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2020-08-12 15:33 - 2020-08-12 15:33 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000738064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2020-08-12 15:33 - 2020-08-12 15:33 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL 2020-08-12 15:33 - 2020-08-12 15:33 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL 2020-08-12 15:33 - 2020-08-12 15:33 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL 2020-08-12 15:33 - 2020-08-12 15:33 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe 2020-08-12 15:33 - 2020-08-12 15:33 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe 2020-08-12 15:33 - 2020-08-12 15:33 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-08-12 15:33 - 2020-08-12 15:33 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 022642688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 009932088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 006074552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 005849872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 005767224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 005003824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 003806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 003743056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 003368616 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 002766952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-08-12 15:32 - 2020-08-12 15:32 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002698048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002085632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001740800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001654312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001482568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001420320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-08-12 15:32 - 2020-08-12 15:32 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000823744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000822800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000675040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000564488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-08-12 15:32 - 2020-08-12 15:32 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys 2020-08-12 15:32 - 2020-08-12 15:32 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe 2020-08-12 15:32 - 2020-08-12 15:32 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2020-08-12 15:32 - 2020-08-12 15:32 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-08-12 15:32 - 2020-08-12 15:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-08-12 15:31 - 2020-08-12 15:32 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 007915864 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 007850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 007583272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 007270728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 005283776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2020-08-12 15:31 - 2020-08-12 15:31 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-08-12 15:31 - 2020-08-12 15:31 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-08-12 15:31 - 2020-08-12 15:31 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 002717696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-08-12 15:31 - 2020-08-12 15:31 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 002471936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 002260312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-08-12 15:31 - 2020-08-12 15:31 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-08-12 15:31 - 2020-08-12 15:31 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-08-12 15:31 - 2020-08-12 15:31 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-08-12 15:31 - 2020-08-12 15:31 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-08-12 15:31 - 2020-08-12 15:31 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys 2020-08-12 15:31 - 2020-08-12 15:31 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe 2020-08-12 15:31 - 2020-08-12 15:31 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll 2020-08-12 15:31 - 2020-08-12 15:31 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll 2020-08-12 15:05 - 2020-08-12 15:05 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-08-12 15:05 - 2020-08-12 15:05 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-09-08 13:44 - 2017-11-04 13:26 - 000000000 ___DC C:\FRST 2020-09-08 13:33 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-09-08 12:42 - 2017-02-07 14:40 - 000000000 ____D C:\Users\rtull\AppData\LocalLow\Mozilla 2020-09-08 12:42 - 2017-02-07 13:28 - 000001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2020-09-08 12:42 - 2017-02-07 13:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-09-08 12:13 - 2018-05-20 14:53 - 000326408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2020-09-08 12:12 - 2019-08-28 14:09 - 000004186 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{AFAA4A5C-C31B-451C-B09E-6BCC6FA19ABB} 2020-09-08 12:12 - 2017-06-15 16:07 - 000000000 ____D C:\Users\rtull\AppData\Local\CrashDumps 2020-09-07 13:19 - 2020-05-17 11:46 - 000003602 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-09-07 13:19 - 2020-05-17 11:46 - 000003378 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-09-07 13:19 - 2019-08-28 14:09 - 000003506 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-09-07 13:19 - 2019-08-28 14:09 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2020-09-07 13:19 - 2019-08-28 14:09 - 000003282 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-09-07 13:19 - 2019-08-28 14:09 - 000003074 _____ C:\WINDOWS\system32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 2020-09-07 13:19 - 2019-08-28 14:09 - 000003042 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2020-09-07 13:19 - 2019-08-28 14:09 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-09-07 13:19 - 2019-08-28 14:09 - 000002970 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 2020-09-07 13:19 - 2019-08-28 14:09 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2897933121-1580215152-3316838448-1001 2020-09-07 13:19 - 2019-08-28 14:09 - 000002708 _____ C:\WINDOWS\system32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon 2020-09-07 13:19 - 2019-08-28 14:09 - 000002696 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP ENVY 4500 series 2020-09-07 13:19 - 2019-08-28 14:09 - 000002690 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK 2020-09-07 13:19 - 2019-08-28 14:09 - 000002604 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon 2020-09-07 13:19 - 2019-08-28 14:09 - 000002250 _____ C:\WINDOWS\system32\Tasks\{A8783C5D-7F51-42A3-BE51-76EA0EF204B7} 2020-09-07 13:19 - 2019-08-28 14:09 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2020-09-07 13:19 - 2019-08-28 14:09 - 000002212 _____ C:\WINDOWS\system32\Tasks\PDVDServ12 Task 2020-09-07 13:19 - 2019-08-28 14:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2020-09-07 12:23 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2020-09-07 11:43 - 2019-08-28 14:00 - 001773648 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-09-07 11:43 - 2019-03-19 14:33 - 000786140 _____ C:\WINDOWS\system32\perfh013.dat 2020-09-07 11:43 - 2019-03-19 14:33 - 000154170 _____ C:\WINDOWS\system32\perfc013.dat 2020-09-07 11:42 - 2017-02-07 14:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2020-09-07 11:41 - 2017-03-03 14:52 - 000000000 ____D C:\ProgramData\TwonkyServer 2020-09-07 11:37 - 2019-08-28 14:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-09-07 11:37 - 2017-06-18 15:56 - 000000000 ___DC C:\Intel 2020-09-07 11:36 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-09-07 11:35 - 2019-08-28 14:09 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2020-09-07 11:35 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-09-07 11:34 - 2020-04-03 13:27 - 000516560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2020-09-07 11:34 - 2019-01-15 12:39 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2020-09-07 11:34 - 2019-01-06 14:16 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2020-09-07 11:34 - 2019-01-06 14:16 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2020-09-07 11:34 - 2019-01-06 14:16 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2020-09-07 11:34 - 2018-10-10 13:21 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2020-09-07 11:34 - 2018-05-20 14:53 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2020-09-07 11:34 - 2018-05-20 14:53 - 000469880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2020-09-07 11:34 - 2018-05-20 14:53 - 000206392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2020-09-07 11:34 - 2018-05-20 14:53 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2020-09-07 11:34 - 2018-05-20 14:53 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2020-09-06 19:30 - 2019-08-28 13:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-09-04 13:34 - 2019-09-08 10:38 - 000002619 _____ C:\Users\rtull\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2020-09-04 13:32 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-09-04 13:32 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-09-02 11:12 - 2017-04-26 15:11 - 000002404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-09-02 11:03 - 2020-05-17 11:47 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-08-29 15:30 - 2019-02-02 16:04 - 000000000 ____D C:\Users\rtull\AppData\Roaming\Free YouTube Downloader 2020-08-28 15:30 - 2019-02-02 16:03 - 000000000 ____D C:\ProgramData\Free YouTube Downloader 2020-08-28 15:30 - 2017-12-30 13:47 - 000000000 ___DC C:\KeepVid Free Downloaded 2020-08-28 12:31 - 2019-07-19 12:46 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-08-28 12:30 - 2019-07-19 12:46 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-08-22 11:12 - 2019-08-28 13:50 - 000002415 _____ C:\Users\rtull\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-08-22 11:12 - 2017-02-06 17:44 - 000000000 ___RD C:\Users\rtull\OneDrive 2020-08-22 11:11 - 2018-03-08 14:04 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-08-17 12:58 - 2017-02-07 13:28 - 000001277 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk 2020-08-13 11:51 - 2017-03-08 14:03 - 000000000 ___RD C:\Users\rtull\3D Objects 2020-08-13 11:51 - 2016-11-21 13:53 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-08-13 11:49 - 2019-08-28 13:43 - 000706040 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning 2020-08-12 16:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-08-12 16:20 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing 2020-08-12 15:40 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-08-12 14:52 - 2020-04-07 11:26 - 000000000 ____D C:\WINDOWS\TempInst 2020-08-10 12:42 - 2017-06-02 11:12 - 000000000 ____D C:\ProgramData\firebird ==================== Bestanden in de root van sommige mappen ======== 2017-06-20 11:24 - 2017-06-20 11:24 - 002795392 _____ () C:\Users\rtull\ZHPCleaner.exe ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================