Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 01-11-2019 Gestart door lenovo (Beheerder) op DESKTOP-H2EJPNK (LENOVO 4480B2G) (05-11-2019 20:21:39) Gestart vanaf C:\Users\lenovo\Documents\Kladblok\Frst Geladen Profielen: lenovo (Beschikbare Profielen: lenovo) Platform: Windows 10 Pro Versie 1903 18362.418 (X64) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\84.4.170\QtWebEngineProcess.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\84.4.170\QtWebEngineProcess.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\84.4.170\QtWebEngineProcess.exe (Gadwin, Ltd. -> Gadwin Systems, Inc) C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\NisSrv.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-30] (Dropbox, Inc -> Dropbox, Inc.) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Run: [Gadwin PrintScreen] => C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [1842384 2012-05-30] (Gadwin, Ltd. -> Gadwin Systems, Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.87\Installer\chrmstp.exe [2019-11-03] (Google LLC -> Google LLC) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {2AE2688A-A2AF-4348-BDE2-4717261C9A70} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) Task: {526A3F87-0434-4DC2-A57C-A8C3C316468F} - System32\Tasks\Opera scheduled Autoupdate 1560681574 => C:\Users\lenovo\AppData\Local\Programs\Opera\launcher.exe [1534488 2019-10-30] (Opera Software AS -> Opera Software) Task: {5C414472-086B-45AC-BABA-303B1B0F2AA2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5CFE8071-6A40-4ACB-9E52-AAA8089181A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6C1A9F69-E2D5-4209-BF93-35671C5CE18D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-16] (Google Inc -> Google LLC) Task: {75C5B08B-BFA2-4B64-A157-C31A41809CEE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {93886AD2-44E8-4085-987F-6958B86AADCB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {981316D8-DCD5-4EC6-819C-C893BF28703D} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\lenovo\Desktop\esetonlinescanner_enu.exe Task: {981DE96C-E661-464D-9B2E-B399FB285624} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A8C83E3D-BAD0-4137-A46A-4D8C6AF2BC56} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd) Task: {E5A24E2F-EFAD-4C6F-99CD-36C8D1199D0D} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\lenovo\Desktop\esetonlinescanner_enu.exe Task: {F8DC90D6-C5E3-4537-B7A5-367AF0CAE72C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) Task: {F9928937-6C4D-4314-8563-055D2B720D13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-16] (Google Inc -> Google LLC) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 84.116.46.22 84.116.46.23 Tcpip\..\Interfaces\{ae9af8b6-7675-4463-a24c-21cddb475ef9}: [DhcpNameServer] 84.116.46.22 84.116.46.23 Internet Explorer: ================== HKU\S-1-5-21-3808283307-1243482618-78075021-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://goldlady.jouwpagina.nl/ BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2017-01-03] (Eyeo GmbH -> Eyeo GmbH) BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03] (Eyeo GmbH -> Eyeo GmbH) FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC) Chrome: ======= CHR HomePage: Default -> hxxp://pspismagic.jouwpagina.nl/ CHR StartupUrls: Default -> "hxxp://pspismagic.jouwpagina.nl/" CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default [2019-11-05] CHR Extension: (Presentaties) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-25] CHR Extension: (Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-25] CHR Extension: (Google Drive) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-06-25] CHR Extension: (ColorZilla) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2019-11-01] CHR Extension: (YouTube) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-25] CHR Extension: (Adblock Plus - gratis adblocker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23] CHR Extension: (Spreadsheets) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-25] CHR Extension: (I don’t care about cookies) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2019-10-11] CHR Extension: (Offline Documenten) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-06-25] CHR Extension: (IE Tab) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2019-09-29] CHR Extension: (Google Mail Checker) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2019-06-25] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04] CHR Extension: (Gmail) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-25] CHR Extension: (Chrome Media Router) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-24] CHR Extension: (Extensie Wachtwoordcheck) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pncabnpcffmalkkjpajodfhijclecjno [2019-08-29] Opera: ======= OPR Extension: (Notifier for Gmail™) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\flkijckbigolpahbkklilflpmkalfohc [2019-06-25] OPR Extension: (I don't care about cookies) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\iambaeepkgdclnmbfdnnohkjjpdglbeo [2019-10-13] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-06-16] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-10-30] (Dropbox, Inc -> Dropbox, Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2019-11-05] (Reason Software Company Inc. -> Reason Software Company Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-11-03] (Malwarebytes Corporation -> Malwarebytes) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [351968 2019-10-30] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-30] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-11-05 20:21 - 2019-11-05 20:22 - 000000000 ____D C:\FRST 2019-11-05 20:17 - 2019-11-05 20:17 - 000001101 _____ C:\Users\Public\Desktop\Unchecky.lnk 2019-11-05 20:17 - 2019-11-05 20:17 - 000000000 ____D C:\ProgramData\Unchecky 2019-11-05 20:17 - 2019-11-05 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unchecky 2019-11-05 20:17 - 2019-11-05 20:17 - 000000000 ____D C:\Program Files (x86)\Unchecky 2019-11-05 17:40 - 2019-11-05 17:44 - 000000000 ____D C:\Users\lenovo\Documents\ZZBrush 2019-11-05 17:39 - 2019-11-05 17:39 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\abrViewer.NET 2019-11-05 17:38 - 2019-11-05 17:38 - 003737649 _____ C:\Users\lenovo\Downloads\brush omzetten.zip 2019-11-05 15:13 - 2019-11-05 15:13 - 000299480 _____ C:\Users\lenovo\Downloads\materiel_princesse_gilda.rar 2019-11-05 14:23 - 2019-11-05 14:23 - 000000000 ___HD C:\OneDriveTemp 2019-11-04 20:18 - 2019-11-04 20:18 - 000145984 _____ C:\Users\lenovo\Downloads\NarahsMasks_1491-1495.zip 2019-11-04 18:37 - 2019-11-04 18:37 - 001355459 _____ C:\Users\lenovo\Downloads\dbv xmas masks 01-08.zip 2019-11-03 10:15 - 2019-11-03 10:15 - 000000000 ____D C:\WINDOWS\Panther 2019-11-03 07:22 - 2019-11-03 07:22 - 000138076 _____ C:\Users\lenovo\Documents\Steamy.otf 2019-11-03 07:22 - 2019-11-03 07:22 - 000091196 _____ C:\Users\lenovo\Documents\master_of_break.ttf 2019-11-03 07:21 - 2019-11-03 07:21 - 000012636 _____ C:\Users\lenovo\Documents\EvidenceFont.ttf 2019-11-03 07:20 - 2019-11-03 07:20 - 000154124 _____ C:\Users\lenovo\Documents\Calarabella.ttf 2019-11-03 07:20 - 2019-11-03 07:20 - 000044780 _____ C:\Users\lenovo\Documents\Calarabella.otf 2019-11-03 07:15 - 2007-08-01 00:00 - 000161924 ____N C:\Users\lenovo\Documents\Stamper.ttf 2019-11-03 07:15 - 2007-08-01 00:00 - 000154532 ____N C:\Users\lenovo\Documents\Valentine.ttf 2019-11-03 07:15 - 2007-08-01 00:00 - 000036308 ____N C:\Users\lenovo\Documents\TwiggleeBold.ttf 2019-11-03 07:12 - 2019-11-03 07:12 - 000084908 _____ C:\Users\lenovo\Documents\Matilda7.ttf 2019-11-02 08:39 - 2019-11-02 08:39 - 000024716 _____ C:\Users\lenovo\Documents\moondust-Medium.ttf 2019-11-02 08:39 - 2019-11-02 08:39 - 000021160 _____ C:\Users\lenovo\Documents\moondust-Medium.otf 2019-11-02 08:35 - 2019-11-02 08:35 - 002219528 _____ C:\Users\lenovo\Documents\GratitudeScriptPro.ttf 2019-11-02 08:34 - 2019-11-02 08:34 - 000030148 _____ C:\Users\lenovo\Documents\Godsownjunkyard-Regular.otf 2019-11-01 13:25 - 2019-11-01 13:26 - 000000000 ____D C:\Users\lenovo\Documents\ZScrap 2019-11-01 07:15 - 2019-11-01 07:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-10-31 19:22 - 2014-09-28 19:59 - 000407786 _____ C:\Users\lenovo\Documents\hair brushes.abr 2019-10-31 18:54 - 2019-11-05 06:44 - 000000000 ____D C:\Users\lenovo\Documents\Maandopdrachten 2019-10-30 19:45 - 2019-10-30 19:45 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2019-10-30 19:45 - 2019-10-30 19:45 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2019-10-30 19:45 - 2019-10-30 19:45 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2019-10-30 19:45 - 2019-10-30 19:45 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2019-10-24 17:26 - 2019-10-24 17:26 - 007622344 _____ (Malwarebytes) C:\Users\lenovo\Desktop\adwcleaner_7.4.2.exe 2019-10-22 14:45 - 2019-11-03 10:15 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2019-10-20 15:12 - 2019-10-20 15:12 - 000000192 _____ C:\WINDOWS\ulead32.ini 2019-10-20 15:11 - 2019-10-20 15:33 - 000000000 ____D C:\ProgramData\Ulead Systems 2019-10-20 15:10 - 2019-10-20 15:10 - 000000000 ____D C:\WINDOWS\Downloaded Installations 2019-10-18 15:19 - 2019-10-18 15:19 - 000000000 ____D C:\WINDOWS\Corel 2019-10-18 11:17 - 2019-10-18 15:27 - 000000000 ____D C:\TEMP 2019-10-18 11:11 - 2019-10-18 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KnockOut 2 2019-10-18 11:11 - 2019-10-18 15:19 - 000000639 _____ C:\WINDOWS\PowerReg.dat 2019-10-18 11:09 - 1998-10-29 15:45 - 000306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe 2019-10-12 08:10 - 2019-10-12 08:10 - 000000000 ____D C:\Users\lenovo\AppData\Local\ElevatedDiagnostics 2019-10-11 06:50 - 2019-11-01 10:21 - 000000000 ____D C:\Users\lenovo\Documents\ZCorel info 2019-10-10 11:44 - 2019-10-10 11:44 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 025443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 022628352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 019811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 018019840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 009928504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 008010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 007600664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 007195648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 007015936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 006517640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 006232064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 005915648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 004129616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 004012544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 003701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002762504 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2019-10-10 11:44 - 2019-10-10 11:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2019-10-10 11:44 - 2019-10-10 11:44 - 002723328 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-10-10 11:44 - 2019-10-10 11:44 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002494440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002456064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002422592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2019-10-10 11:44 - 2019-10-10 11:44 - 002314648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002236144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002138472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL 2019-10-10 11:44 - 2019-10-10 11:44 - 002114048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 002000168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001952360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001743672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001730560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001664928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001656392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001562424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001439744 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001273392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001217904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001152016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000904208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000890472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000880088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000856576 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2019-10-10 11:44 - 2019-10-10 11:44 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000829536 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000818688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000774672 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000758584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mousocoreworker.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000679880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000598024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000516408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000515896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000466416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2019-10-10 11:44 - 2019-10-10 11:44 - 000452408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000412152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000300184 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000225080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys 2019-10-10 11:44 - 2019-10-10 11:44 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2019-10-10 11:44 - 2019-10-10 11:44 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000202040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys 2019-10-10 11:44 - 2019-10-10 11:44 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2019-10-10 11:44 - 2019-10-10 11:44 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2019-10-10 11:44 - 2019-10-10 11:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2019-10-10 11:44 - 2019-10-10 11:44 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000037176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys 2019-10-10 11:44 - 2019-10-10 11:44 - 000033048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL 2019-10-10 11:44 - 2019-10-10 11:44 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll 2019-10-10 11:44 - 2019-10-10 11:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll 2019-10-10 11:43 - 2019-10-10 11:43 - 003947008 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2019-10-10 11:43 - 2019-10-10 11:43 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2019-10-10 11:43 - 2019-10-10 11:43 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll 2019-10-10 11:43 - 2019-10-10 11:43 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2019-10-10 11:31 - 2019-10-10 11:31 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2019-10-10 11:31 - 2019-10-10 11:31 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-11-05 20:20 - 2018-12-29 15:04 - 000000000 ____D C:\Users\lenovo\Documents\Kladblok 2019-11-05 18:56 - 2019-06-16 11:19 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-11-05 18:07 - 2019-06-16 10:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-11-05 17:39 - 2019-07-09 13:24 - 000000000 ____D C:\Program Files (x86)\abrViewer.NET 2019-11-05 14:23 - 2018-09-13 11:14 - 000000000 ___RD C:\Users\lenovo\OneDrive 2019-11-05 12:09 - 2019-06-16 10:57 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2019-11-05 12:09 - 2019-06-16 10:57 - 000003454 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2019-11-05 12:09 - 2019-06-16 10:57 - 000000000 ____D C:\Program Files (x86)\Google 2019-11-04 17:41 - 2019-06-25 14:27 - 000000000 ____D C:\Users\lenovo\AppData\Local\CrashDumps 2019-11-04 16:41 - 2019-06-16 10:55 - 000000000 ____D C:\Users\lenovo\AppData\Local\Comms 2019-11-03 20:37 - 2019-06-16 10:38 - 000000000 ____D C:\Users\lenovo 2019-11-03 16:11 - 2018-12-30 15:24 - 000000000 ____D C:\Users\lenovo\Documents\PrintScreen Files 2019-11-03 10:27 - 2019-06-16 11:19 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-11-03 10:20 - 2019-06-16 11:23 - 000786144 _____ C:\WINDOWS\system32\perfh013.dat 2019-11-03 10:20 - 2019-06-16 11:23 - 000154174 _____ C:\WINDOWS\system32\perfc013.dat 2019-11-03 10:20 - 2019-06-16 11:17 - 000000000 ____D C:\WINDOWS\INF 2019-11-03 10:20 - 2019-06-16 10:47 - 001771852 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-11-03 10:19 - 2019-06-16 10:57 - 000000000 ____D C:\Users\lenovo\AppData\Local\PlaceholderTileLogoFolder 2019-11-03 10:19 - 2019-06-16 10:51 - 000000000 ____D C:\Users\lenovo\AppData\Local\Packages 2019-11-03 10:14 - 2019-06-16 10:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-11-03 09:02 - 2019-06-16 10:58 - 000002334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-11-02 07:54 - 2019-08-12 13:27 - 000000000 ____D C:\Users\lenovo\Documents\Font-Diana 2019-11-02 07:52 - 2019-07-07 11:16 - 000000000 ____D C:\Users\lenovo\Documents\Mamija Fonts 2019-11-02 07:50 - 2019-05-02 20:11 - 000000000 ____D C:\Users\lenovo\Documents\Mamija Fonts1 2019-11-02 07:40 - 2018-12-30 09:08 - 000000000 ____D C:\Users\lenovo\Documents\Opdrachten 2019-11-02 06:13 - 2019-06-16 11:19 - 000000000 ___HD C:\Program Files\WindowsApps 2019-11-02 06:13 - 2019-06-16 10:52 - 000000000 ____D C:\ProgramData\Packages 2019-11-01 14:13 - 2018-12-30 12:34 - 000000000 ____D C:\Users\lenovo\Documents\ZZWekelijkseawards 2019-11-01 13:25 - 2019-05-20 18:48 - 000000000 ____D C:\Users\lenovo\Documents\Filters 2019-11-01 07:15 - 2019-06-16 11:14 - 000000000 ____D C:\Program Files (x86)\Dropbox 2019-10-31 13:13 - 2019-06-16 11:39 - 000004214 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1560681574 2019-10-31 13:13 - 2019-06-16 11:39 - 000001415 _____ C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-browser.lnk 2019-10-30 06:44 - 2019-06-16 10:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-10-27 15:49 - 2019-06-16 11:29 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Corel 2019-10-25 15:26 - 2018-12-29 15:04 - 000000000 ____D C:\Users\lenovo\Documents\Insteekfilters 2019-10-22 14:44 - 2019-06-16 11:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-10-22 14:39 - 2019-06-16 11:51 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2019-10-20 18:23 - 2019-06-16 10:28 - 000485064 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-10-20 15:34 - 2019-06-16 13:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-10-20 15:13 - 2019-06-16 11:29 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Ulead Systems 2019-10-20 15:11 - 2019-06-16 11:28 - 000000000 ____D C:\Program Files (x86)\Corel 2019-10-20 13:47 - 2019-01-05 07:49 - 000000000 ____D C:\Users\lenovo\Documents\My PSP files 2019-10-19 09:41 - 2019-01-03 13:05 - 000000000 ____D C:\Users\lenovo\Documents\Icons 2019-10-18 17:34 - 2019-06-16 10:56 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3808283307-1243482618-78075021-1001 2019-10-18 17:34 - 2019-06-16 10:38 - 000002381 _____ C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-10-17 05:46 - 2019-06-16 11:14 - 000000000 ____D C:\Users\lenovo\AppData\Local\Dropbox 2019-10-16 11:17 - 2019-06-16 11:50 - 000000000 ____D C:\Program Files\CCleaner 2019-10-14 08:52 - 2019-07-02 14:20 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2019-10-10 11:56 - 2019-06-16 11:19 - 000000000 ___RD C:\WINDOWS\PrintDialog 2019-10-10 11:56 - 2019-06-16 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2019-10-10 11:56 - 2019-06-16 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2019-10-10 11:56 - 2019-06-16 11:19 - 000000000 ____D C:\WINDOWS\SystemResources 2019-10-10 11:56 - 2019-06-16 11:19 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2019-10-10 11:56 - 2019-06-16 11:19 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-10-10 11:56 - 2019-06-16 11:19 - 000000000 ____D C:\WINDOWS\system32\Dism 2019-10-10 11:56 - 2019-06-16 11:19 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-10-10 11:51 - 2019-06-16 11:11 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-10-10 11:50 - 2019-06-16 12:01 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-10-10 11:48 - 2019-06-16 12:01 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-10-10 11:29 - 2018-12-29 16:53 - 000000000 ___RD C:\Users\lenovo\Dropbox 2019-10-08 10:24 - 2019-06-16 11:51 - 000000876 _____ C:\Users\Public\Desktop\CCleaner.lnk ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================