Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 15-07-2019 01 Gestart door geoff (Beheerder) op DESKTOP-VB7DISC (Gigabyte Technology Co., Ltd. GA-990FXA-UD5) (24-07-2019 08:22:01) Gestart vanaf C:\Users\geoff\Desktop\Farbar's Recovery Scan Tool Geladen Profielen: geoff (Beschikbare Profielen: geoff) Platform: Windows 10 Pro Versie 1809 17763.615 (X64) Taal: Nederlands (Nederland) Standaardbrowser: FF Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) () [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe () [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1905.30.0_x64__8wekyb3d8bbwe\Calculator.exe () [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19062.451.0_x64__8wekyb3d8bbwe\YourPhone.exe () [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atiesrxx.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\geoff\AppData\Roaming\uTorrent\helper\helper.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\geoff\AppData\Roaming\uTorrent\updates\3.5.5_45291\utorrentie.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\geoff\AppData\Roaming\uTorrent\updates\3.5.5_45291\utorrentie.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\geoff\AppData\Roaming\uTorrent\uTorrent.exe (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\CryptoTabCrashHandler.exe (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\CryptoTabCrashHandler64.exe (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe (Discord Inc. -> Discord Inc.) C:\Users\geoff\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\geoff\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\geoff\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\geoff\AppData\Local\Discord\app-0.0.305\Discord.exe (Elaborate Bytes AG -> Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Fitbit, Inc. -> Fitbit, Inc.) C:\Program Files (x86)\Fitbit Connect\Fitbit Connect.exe (Fitbit, Inc. -> Fitbit, Inc.) C:\Program Files (x86)\Fitbit Connect\FitbitConnectService.exe (Golden Frog, GmbH.) [Bestand niet getekend] C:\Program Files (x86)\VyprVPN\VyprVPNService.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe (Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Bestand niet getekend] C:\Users\geoff\AppData\Roaming\uTorrent Web\utweb.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\geoff\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Microsoft Corporation) [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe (Microsoft Corporation) [Bestand niet getekend] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) [Bestand niet getekend] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11905.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Skillbrains) [Bestand niet getekend] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TEFINCOM S.A. -> ) C:\Program Files (x86)\NordVPN\nordvpn-service.exe (TEFINCOM S.A. -> NordVPN) C:\Program Files (x86)\NordVPN\NordVPN.exe (TunnelBear -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG -> Elaborate Bytes AG) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] (OOO Lightshot -> ) HKLM-x32\...\Run: [Fitbit Connect] => C:\Program Files (x86)\Fitbit Connect\Fitbit Connect.exe [7429280 2018-07-25] (Fitbit, Inc. -> Fitbit, Inc.) HKLM-x32\...\Run: [CryptoTab Browser] => C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1702952 2019-07-12] (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [23153344 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210016 2019-07-17] (Valve -> Valve Corporation) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [HP ENVY 4500 series (NET)] => C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [Discord] => C:\Users\geoff\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [utweb] => C:\Users\geoff\AppData\Roaming\uTorrent Web\utweb.exe [5425368 2019-07-02] (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Bestand niet getekend] HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [uTorrent] => C:\Users\geoff\AppData\Roaming\uTorrent\uTorrent.exe [1820392 2019-07-17] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [Fitbit Connect] => C:\Program Files (x86)\Fitbit Connect\Fitbit Connect.exe [7429280 2018-07-25] (Fitbit, Inc. -> Fitbit, Inc.) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [NordVPN] => C:\Program Files (x86)\NordVPN\NordVPN.exe [2229200 2019-02-21] (TEFINCOM S.A. -> NordVPN) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3114256 2019-07-12] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-2561563179-2014599348-3302424708-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3682968 2019-04-22] (Invincea, Inc. -> Sandboxie Holdings, LLC) HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) HKLM\Software\Microsoft\Active Setup\Installed Components: [{401C381F-E0DE-4B85-8BD8-3F3F14FBDA57}] -> C:\Program Files (x86)\Google\Chrome Dev\Application\77.0.3854.3\Installer\chrmstp.exe [2019-07-17] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{7D2B3E1D-D096-4594-9D8F-A6667F12E0AC}] -> C:\Program Files (x86)\CryptoTab Browser\Application\75.0.3770.100\Installer\chrmstp.exe [2019-07-22] (The Chromium and CryptoTab Browser Authors) [Bestand niet getekend] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.142\Installer\chrmstp.exe [2019-07-17] (Google LLC -> Google LLC) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0ACF980D-3314-4E22-911C-BD79E0BEE44B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0DFCB3A8-D40B-4147-B77B-13E605E82D18} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe Task: {0E35D250-573E-4157-9B9D-D6BE3700A34D} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [Bestand niet getekend] Task: {12807516-CD18-4455-A05E-2AB75D0D805B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {17A6426F-B6FF-46A5-A63E-A8BDF742BA0D} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [72336 2019-04-25] (Microsoft Corporation -> Microsoft Corporation) Task: {17E9C63A-82E2-4ABF-B69C-A873FEDB6D84} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {22B4513F-E515-447D-AD33-7CCA94E0811A} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {25A4E592-89F5-489E-A769-4BF19BFCAD54} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {27489BF5-5DA1-412F-A9CC-2C202A5F93C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-28] (Google Inc -> Google Inc.) Task: {2BA6F094-ACEB-48B2-8AA6-3DA9981B3618} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3D6CC701-4F24-4ADD-9540-C4A2159116B6} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2369128 2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Task: {4DFF5E3F-F299-42D0-A604-4440007CA161} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-28] (Google Inc -> Google Inc.) Task: {4FE71E3F-FD62-4ED7-B6F6-218EDE987CF7} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) Task: {4FEC635C-23DA-46AC-B575-90AB06EAF5BE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe Task: {561B1BBF-0563-436A-9790-167153EA18C5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3838296 2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Task: {62C3209E-E3B0-48B1-9F1E-D71AB404E494} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3838296 2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Task: {8267D4EA-C3D0-434F-B051-195C7B25C19C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2369128 2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Task: {93DE5988-980F-4E80-9A92-BBF46B223E5A} - System32\Tasks\CryptoTabUpdateTaskMachineCore => C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2019-05-22] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) Task: {A2F7B4D5-0D8A-4125-9A47-99CAA22FF223} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {A99E98EF-482B-41CF-9316-FE9B0A20285B} - System32\Tasks\DriverUpdate Scan => C:\Program Files\DriverUpdate\DriverUpdate.exe Task: {B63B5CE5-7284-452E-923E-3C4B25F83BE7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23967928 2019-06-27] (Microsoft Corporation -> Microsoft Corporation) Task: {B716B7AB-18CC-4A98-A6B7-89F5F81D6278} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [566592 2008-07-30] (Apple Inc. -> Apple Inc.) Task: {C62A515A-BE50-4E42-8D96-16CAD87E2D9B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe Task: {CF278CB2-F060-4E8D-8DBC-04EA99BEDA28} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2281944 2019-06-06] (AVAST Software s.r.o. -> AVAST Software) Task: {D3E2A35E-0ED7-4281-88DC-11728E40B4FD} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23967928 2019-06-27] (Microsoft Corporation -> Microsoft Corporation) Task: {D9802CCD-7D69-4B6B-BF7B-F8FDE81D1A75} - System32\Tasks\update-S-1-5-21-2561563179-2014599348-3302424708-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {DD5AE515-F66E-4D2A-9B9B-E4CCA050CCEC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E7988348-D4B7-4488-B44E-7324BD5FB458} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [Bestand niet getekend] Task: {E7A68203-1F77-49AA-8213-0B96ECB4908B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe) Task: {E842CDA6-B767-4DC0-B82F-27145E2C8F70} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe) Task: {F7FD935B-D471-4B95-B6B1-4FB8FB491308} - System32\Tasks\CryptoTabUpdateTaskMachineUA => C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2019-05-22] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-2561563179-2014599348-3302424708-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) ProxyServer: [S-1-5-21-2561563179-2014599348-3302424708-1001] => 172.98.170.208:59515 Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{1a3c7f8b-76bf-445e-bfd3-896885263421}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-02] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-17] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: qka2zgra.default-1556191962905 FF ProfilePath: C:\Users\geoff\AppData\Roaming\Mozilla\Firefox\Profiles\19f6y5zr.default-nightly [2019-07-18] FF ProfilePath: C:\Users\geoff\AppData\Roaming\Mozilla\Firefox\Profiles\qka2zgra.default-1556191962905 [2019-07-24] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> ) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.CryptoTab.com/CryptoTab Update;version=3 -> C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\npCryptoTabUpdate3.dll [2019-05-22] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) FF Plugin-x32: @tools.CryptoTab.com/CryptoTab Update;version=9 -> C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\npCryptoTabUpdate3.dll [2019-05-22] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN) FF Plugin HKU\S-1-5-21-2561563179-2014599348-3302424708-1001: connective.be/BrowserPlugin -> C:\Users\geoff\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-07-17] (Connective n.v.) [Bestand niet getekend] StartMenuInternet: Firefox-6F193CCC56814779 - C:\Program Files\Firefox Nightly\firefox.exe Chrome: ======= CHR NewTab: Default -> "active": false, "entry": "chrome-extension://jlmilpphhoonfclkcaakafcmkgfalkhl/newtab.html" CHR DefaultSearchURL: Default -> hxxps://search.cryptobrowser.site/?q={searchTerms}&f=cb CHR DefaultSearchKeyword: Default -> cryptotabsearch CHR Profile: C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default [2019-07-18] CHR Extension: (Presentaties) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-28] CHR Extension: (Documenten) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-28] CHR Extension: (Google Drive) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-28] CHR Extension: (YouTube) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-28] CHR Extension: (Spreadsheets) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-28] CHR Extension: (Offline Documenten) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-04-02] CHR Extension: (HandyTab) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\ichlgjlpcclmlojahkhhbgmklkphcgll [2019-05-22] CHR Extension: (CryptoTab START) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlmilpphhoonfclkcaakafcmkgfalkhl [2019-06-08] CHR Extension: (CryptoTab) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfkbiebcnkfgfmegkpmnbfmecjmldom [2019-06-08] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-28] CHR Extension: (Gmail) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-06] CHR Extension: (Chrome Media Router) - C:\Users\geoff\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-08] StartMenuInternet: Google Chrome Dev - C:\Program Files (x86)\Google\Chrome Dev\Application\chrome.exe ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atiesrxx.exe [508208 2019-04-03] (Advanced Micro Devices, Inc. -> AMD) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9699512 2019-06-27] (Microsoft Corporation -> Microsoft Corporation) S2 cryptobrowser; C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2019-05-22] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) S3 cryptobrowserm; C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2019-05-22] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803456 2019-03-07] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 Fitbit Connect; C:\Program Files (x86)\Fitbit Connect\FitbitConnectService.exe [6115488 2018-07-25] (Fitbit, Inc. -> Fitbit, Inc.) S3 GoogleChromeDevElevationService; C:\Program Files (x86)\Google\Chrome Dev\Application\77.0.3854.3\elevation_service.exe [1106928 2019-07-16] (Google LLC -> Google LLC) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.) R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [217040 2019-02-21] (TEFINCOM S.A. -> ) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2332464 2019-07-12] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3206448 2019-07-12] (Electronic Arts, Inc. -> Electronic Arts) R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [328344 2019-04-22] (Invincea, Inc. -> Sandboxie Holdings, LLC) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5356848 2019-07-17] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11969880 2019-07-03] (TeamViewer GmbH -> TeamViewer GmbH) R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [139896 2019-01-07] (TunnelBear -> TunnelBear) S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [152480 2019-02-21] (Microsoft Corporation -> Microsoft Corporation) R2 VyprVPN; C:\Program Files (x86)\VyprVPN\VyprVPNService.exe [309248 2019-01-17] (Golden Frog, GmbH.) [Bestand niet getekend] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-18] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-18] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [58136 2018-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atikmdag.sys [52888368 2019-04-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atikmpag.sys [590128 2019-04-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [101224 2018-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [107400 2018-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R3 DroidCam; C:\WINDOWS\system32\DRIVERS\droidcam.sys [33592 2015-05-24] (DEV47 APPS -> Dev47Apps) R3 DroidCamVideo; C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys [230712 2015-05-24] (DEV47 APPS -> Windows (R) Win 7 DDK provider) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [33448 2016-12-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Bestand niet getekend] R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech) R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.) R3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.) R3 LGSUsbFilt; C:\WINDOWS\system32\DRIVERS\LGSUsbFilt.Sys [41752 2018-10-05] (Logitech -> Logitech Inc.) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1118648 2018-10-20] (Realtek Semiconductor Corp. -> Realtek ) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [228616 2019-04-23] (Invincea, Inc. -> Sandboxie Holdings, LLC) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project) R3 tapvyprvpn; C:\WINDOWS\System32\drivers\tapvyprvpn.sys [44896 2019-01-03] (Golden Frog, GmbH -> The OpenVPN Project) U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [47616 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-07-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [344288 2019-07-18] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-18] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) ======== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-07-24 08:21 - 2019-07-24 08:22 - 000000000 ___DC C:\FRST 2019-07-24 08:20 - 2019-07-24 08:22 - 000000000 ___DC C:\Users\geoff\Desktop\Farbar's Recovery Scan Tool 2019-07-24 08:14 - 2019-07-24 08:14 - 000000000 __HDC C:\OneDriveTemp 2019-07-23 09:54 - 2019-07-23 09:54 - 000103799 _____ C:\Users\geoff\Downloads\CRS 2017.pdf 2019-07-20 00:49 - 2019-07-24 08:14 - 000000000 ___DC C:\Program Files\Mozilla Firefox 2019-07-18 08:46 - 2019-07-18 08:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie 2019-07-18 08:44 - 2019-07-18 08:44 - 000110064 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2019-07-18 08:44 - 2019-07-18 08:44 - 000000000 ___DC C:\Users\geoff\AppData\LocalLow\Sun 2019-07-18 08:44 - 2019-07-18 08:44 - 000000000 ____D C:\Users\geoff\AppData\Roaming\Sun 2019-07-18 08:44 - 2019-07-18 08:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-07-18 08:43 - 2019-07-18 08:43 - 079607256 _____ (Oracle Corporation) C:\Users\geoff\Downloads\jre-8u221-windows-x64.exe 2019-07-18 08:43 - 2019-07-18 08:43 - 000000000 ____D C:\ProgramData\Oracle 2019-07-18 08:43 - 2019-07-18 08:43 - 000000000 ____D C:\Program Files\Java 2019-07-18 07:59 - 2019-07-18 07:59 - 020891464 _____ (Piriform Software Ltd) C:\Users\geoff\Downloads\ccsetup560.exe 2019-07-17 12:57 - 2019-07-17 12:58 - 109001728 _____ (Foxit Software Inc. ) C:\Users\geoff\Downloads\FoxitReader96_L10N_Setup_Prom.exe 2019-07-17 12:57 - 2019-07-17 12:57 - 000028548 ___CT C:\Users\geoff\Documents\MVancompernolle 2019-07-17 12:53 - 2019-07-17 12:53 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 023454208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 019012096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 012938752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 012243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 008900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 007876096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 007727336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 006925312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 006545304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 006308232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 006068224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 005587976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 005115384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 004880896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 003818416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 003738624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002982400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002871816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 002778760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002714624 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002701000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002693120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002626872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 002469432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002278784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2019-07-17 12:53 - 2019-07-17 12:53 - 002073472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2019-07-17 12:53 - 2019-07-17 12:53 - 002013696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001837136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001721352 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001477648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001465464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001427592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001266192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2019-07-17 12:53 - 2019-07-17 12:53 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL 2019-07-17 12:53 - 2019-07-17 12:53 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001162320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001125416 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001075712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000964608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000807480 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000804744 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000747568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL 2019-07-17 12:53 - 2019-07-17 12:53 - 000743216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2019-07-17 12:53 - 2019-07-17 12:53 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000687896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL 2019-07-17 12:53 - 2019-07-17 12:53 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000673520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL 2019-07-17 12:53 - 2019-07-17 12:53 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000660032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000652528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000637968 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000553992 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000514136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000431416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2019-07-17 12:53 - 2019-07-17 12:53 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000397688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000333128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000317456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000279920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000219448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000149232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000137864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000121896 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000092592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys 2019-07-17 12:53 - 2019-07-17 12:53 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompMgmtLauncher.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2019-07-17 12:53 - 2019-07-17 12:53 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe 2019-07-17 12:53 - 2019-07-17 12:53 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 022115472 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 009683472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 007687784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 005566464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 005561312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 005528064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 005297664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 004588752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 004351448 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 003636224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 003630592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 003335216 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 003081728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002766136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002593336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 002406928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002200080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 002050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001966904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001794048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001715000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001713976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001702088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-07-17 12:52 - 2019-07-17 12:52 - 001676288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001662480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001622016 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001522488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 001472808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001397048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001345168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-07-17 12:52 - 2019-07-17 12:52 - 001321784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001316352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001259520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001199616 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 001052984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 001052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001048592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 001043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL 2019-07-17 12:52 - 2019-07-17 12:52 - 001038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000998928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000987736 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000895552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000871784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000865272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000850992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000810504 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000799776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000770096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000768224 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000758896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000756224 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000731104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000680176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000652296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2019-07-17 12:52 - 2019-07-17 12:52 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000511504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2019-07-17 12:52 - 2019-07-17 12:52 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000439096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000423480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000310288 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000294000 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000241944 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL 2019-07-17 12:52 - 2019-07-17 12:52 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000203272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000197832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL 2019-07-17 12:52 - 2019-07-17 12:52 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000157024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000141216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000117720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2019-07-17 12:52 - 2019-07-17 12:52 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys 2019-07-17 12:52 - 2019-07-17 12:52 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll 2019-07-17 12:52 - 2019-07-17 12:52 - 000036360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2019-07-17 12:52 - 2019-07-17 12:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-07-17 12:52 - 2019-07-17 12:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-07-17 12:52 - 2019-07-17 12:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-07-17 12:52 - 2019-07-17 12:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-07-17 12:52 - 2019-07-17 12:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-07-17 12:52 - 2019-07-17 12:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-07-17 12:52 - 2019-07-17 12:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-07-17 12:52 - 2019-07-17 12:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-07-17 12:48 - 2019-07-17 12:48 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2019-07-09 19:05 - 2019-07-22 09:54 - 000000000 ____D C:\Users\geoff\AppData\Roaming\Telegram Desktop 2019-07-09 19:05 - 2019-07-09 19:05 - 020607584 _____ (Telegram Messenger LLP ) C:\Users\geoff\Downloads\tsetup.1.7.13.exe 2019-07-09 19:05 - 2019-07-09 19:05 - 000001032 ____C C:\Users\geoff\Desktop\Telegram.lnk 2019-07-09 19:05 - 2019-07-09 19:05 - 000000000 ___DC C:\Users\geoff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2019-07-02 18:17 - 2019-07-03 19:22 - 000000000 ____D C:\WINDOWS\Minidump 2019-07-01 22:41 - 2019-07-01 22:41 - 000021495 _____ C:\Users\geoff\Downloads\3fA2W93jmQ4L0QO6MNBi.nzb 2019-07-01 19:59 - 2019-07-01 20:00 - 000140589 _____ C:\Users\geoff\Downloads\5ASM3iZElHRzM84 (9).nzb 2019-06-26 20:01 - 2019-06-26 20:01 - 001993528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll ==================== Een maand (gewijzigd) ======== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-07-24 08:22 - 2018-12-30 08:43 - 000000000 ___DC C:\Users\geoff\AppData\Roaming\uTorrent 2019-07-24 08:15 - 2019-04-25 06:37 - 000001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk 2019-07-24 08:15 - 2019-04-25 06:37 - 000001104 ____C C:\Users\Public\Desktop\TeamViewer 14.lnk 2019-07-24 08:15 - 2019-04-25 06:36 - 000000000 ___DC C:\Program Files (x86)\TeamViewer 2019-07-24 08:15 - 2019-01-13 09:15 - 000000000 ___DC C:\Users\geoff\AppData\Roaming\uTorrent Web 2019-07-24 08:15 - 2018-10-14 09:57 - 000000000 ___DC C:\Users\geoff\AppData\LocalLow\Mozilla 2019-07-24 08:14 - 2019-06-06 05:54 - 000000000 ____D C:\Users\geoff\AppData\Local\BitTorrentHelper 2019-07-24 08:14 - 2019-06-03 19:50 - 000000000 ___DC C:\Users\geoff\AppData\LocalLow\uTorrent 2019-07-24 08:14 - 2018-10-22 21:40 - 000000000 ___DC C:\Program Files (x86)\Steam 2019-07-24 08:14 - 2018-10-14 09:57 - 000000965 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-07-24 08:14 - 2018-10-14 09:57 - 000000000 ___DC C:\Program Files (x86)\Mozilla Maintenance Service 2019-07-24 08:14 - 2018-10-14 08:47 - 000000000 __RDC C:\Users\geoff\OneDrive 2019-07-24 08:13 - 2019-06-18 17:18 - 000003112 _____ C:\WINDOWS\System32\Tasks\AMDLinkUpdate 2019-07-24 08:13 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-07-23 19:49 - 2019-05-15 07:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-07-23 17:34 - 2019-01-02 09:29 - 000000000 ___DC C:\Users\geoff\AppData\Local\CrashDumps 2019-07-23 16:52 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps 2019-07-23 16:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-07-23 01:58 - 2019-03-26 20:06 - 000000000 ___DC C:\Program Files (x86)\Origin 2019-07-23 01:57 - 2018-10-15 20:07 - 000000000 ___DC C:\Users\geoff\AppData\Local\D3DSCache 2019-07-22 14:46 - 2019-05-22 06:41 - 000002316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CryptoTab Browser.lnk 2019-07-22 14:46 - 2019-05-22 06:41 - 000002275 ____C C:\Users\Public\Desktop\CryptoTab Browser.lnk 2019-07-22 14:46 - 2019-05-22 06:40 - 000000000 ____D C:\Program Files (x86)\CryptoTab Browser 2019-07-22 07:44 - 2018-11-02 10:18 - 000000000 ___DC C:\Users\geoff\AppData\Roaming\vlc 2019-07-22 07:44 - 2018-11-02 10:18 - 000000000 ___DC C:\Users\geoff\AppData\Roaming\dvdcss 2019-07-19 17:50 - 2019-05-15 07:17 - 001771828 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-07-19 17:50 - 2018-09-15 18:44 - 000785984 _____ C:\WINDOWS\system32\perfh013.dat 2019-07-19 17:50 - 2018-09-15 18:44 - 000154002 _____ C:\WINDOWS\system32\perfc013.dat 2019-07-19 17:50 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF 2019-07-19 17:41 - 2019-01-13 09:15 - 000001879 ____C C:\Users\geoff\Desktop\uTorrent Web.lnk 2019-07-19 17:41 - 2019-01-13 09:15 - 000001865 ____C C:\Users\geoff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk 2019-07-19 17:40 - 2019-05-15 07:15 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT 2019-07-19 17:40 - 2019-05-15 07:06 - 000446112 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-07-19 17:40 - 2019-01-22 19:27 - 000000000 ___DC C:\Program Files (x86)\TunnelBear 2019-07-19 17:40 - 2018-10-14 08:45 - 000000000 _RHDC C:\Users\Public\AccountPictures 2019-07-19 17:40 - 2018-10-14 08:45 - 000000000 __RDC C:\Users\geoff\3D Objects 2019-07-19 17:39 - 2018-10-14 08:43 - 000065536 ____C C:\WINDOWS\system32\spu_storage.bin 2019-07-19 17:39 - 2018-09-15 18:46 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2019-07-19 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2019-07-19 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2019-07-19 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-07-19 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\appraiser 2019-07-19 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-07-19 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents 2019-07-19 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Provisioning 2019-07-19 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-07-19 17:39 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-07-19 17:39 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism 2019-07-19 08:37 - 2018-12-13 18:33 - 000000000 ___DC C:\Users\geoff\AppData\Roaming\discord 2019-07-18 11:33 - 2018-10-14 08:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-07-18 08:47 - 2018-10-14 08:45 - 000000000 ___DC C:\Users\geoff\AppData\Local\Packages 2019-07-18 08:46 - 2018-11-27 19:57 - 000000000 ___DC C:\ProgramData\Garmin 2019-07-18 08:46 - 2018-10-14 08:44 - 000000000 ___DC C:\ProgramData\Package Cache 2019-07-18 08:43 - 2018-11-02 10:18 - 000001143 ____C C:\Users\Public\Desktop\VLC media player.lnk 2019-07-18 08:42 - 2018-12-31 16:24 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2019-07-18 08:42 - 2018-12-31 16:24 - 000000000 ___DC C:\Program Files\FileZilla FTP Client 2019-07-18 08:42 - 2018-11-04 17:49 - 000000000 ___DC C:\Users\geoff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-07-18 08:42 - 2018-11-04 17:49 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-07-18 08:42 - 2018-11-04 17:49 - 000000000 ___DC C:\Program Files\WinRAR 2019-07-18 08:41 - 2018-10-20 08:04 - 000000000 ___DC C:\Program Files\CCleaner 2019-07-18 08:00 - 2019-05-15 07:15 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update 2019-07-18 08:00 - 2018-10-20 08:04 - 000000863 ____C C:\Users\Public\Desktop\CCleaner.lnk 2019-07-17 22:45 - 2019-04-25 06:05 - 000002363 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome Dev.lnk 2019-07-17 22:45 - 2019-04-25 06:05 - 000002322 ____C C:\Users\Public\Desktop\Google Chrome Dev.lnk 2019-07-17 12:59 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-07-17 12:58 - 2018-10-14 08:57 - 000000000 ___DC C:\WINDOWS\system32\MRT 2019-07-17 12:55 - 2018-10-14 08:57 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-07-17 12:52 - 2018-10-14 09:28 - 000408810 __RSH C:\bootmgr 2019-07-17 12:48 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-07-17 12:47 - 2019-02-23 08:45 - 000000000 ___DC C:\Program Files\Microsoft Office 2019-07-17 12:44 - 2018-10-14 08:49 - 000741432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2019-07-17 12:43 - 2018-11-28 14:37 - 000002321 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-07-17 12:43 - 2018-11-28 14:37 - 000002280 ____C C:\Users\Public\Desktop\Google Chrome.lnk 2019-07-17 12:42 - 2019-04-06 06:48 - 000001778 ____C C:\WINDOWS\Sandboxie.ini 2019-07-09 18:21 - 2019-05-15 07:15 - 000004698 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier 2019-07-09 18:21 - 2019-05-15 07:15 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2561563179-2014599348-3302424708-1001 2019-07-09 18:21 - 2019-05-15 07:09 - 000002369 ____C C:\Users\geoff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-07-09 18:20 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-07-09 18:20 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-07-03 06:11 - 2019-05-15 07:09 - 000000000 ____D C:\Users\geoff ==================== Bestanden in de root van sommige mappen ================ 2019-01-22 22:49 - 2019-01-22 22:49 - 000000003 ____C () C:\Users\geoff\AppData\Local\updater.log 2019-01-22 22:49 - 2019-01-22 22:49 - 000000425 ____C () C:\Users\geoff\AppData\Local\UserProducts.xml ==================== SigCheck =============================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ============================