Scanresultaten van Farbar Recovery Scan Tool (FRST) (x86) Versie: 16-11-2020 Gestart door Fred (Beheerder) op FRED-PC (Acer, inc. TravelMate 7730) (17-11-2020 11:52:09) Gestart vanaf C:\Users\Fred\Desktop Geladen Profielen: Fred Platform: Microsoft Windows 10 Pro Versie 2009 19042.630 (X86) Taal: Nederlands (Nederland) Standaardbrowser: Chrome Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x86__nzyj5cx40ttqa\AMDS32\AppleMobileDeviceProcess.exe (AuthenTec, Inc. -> AuthenTec, Inc.) C:\Program Files\Fingerprint Sensor\AtService.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Egis Technology Inc.) [Bestand niet getekend] C:\Program Files\Acer Bio Protection\BASVC.exe (Egis Technology Inc.) [Bestand niet getekend] C:\Program Files\Acer Bio Protection\CompPtcVUI.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Temp\scoped_dir1628_177969418\old_chrome.exe (HP Inc -> HP Inc.) C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe (Intel® Corporation) [Bestand niet getekend] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 20.0\avpui.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe <2> (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x86__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.4-0\NisSrv.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe (QNAP Systems, Inc. -> ) C:\Program Files\QNAP\Qfinder\iSCSIAgent.exe (QNAP Systems, Inc. -> QNAP Systems, Inc.) C:\Program Files\QNAP\NetBak\NetBak.exe (QNAP Systems, Inc. -> QNAP Systems, Inc.) C:\Program Files\QNAP\NetBak\QVssService.exe (Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [7992832 2020-11-04] (Dropbox, Inc -> Dropbox, Inc.) HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [89088 2015-03-16] (Intel® Corporation) [Bestand niet getekend] HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe [3029480 2018-05-09] (Sony Imaging Products & Solutions Inc. -> Sony Corporation) HKLM\...\Run: [QfinderPro] => C:\Program Files\QNAP\Qfinder\QfinderPro.exe [4323128 2020-09-14] (QNAP Systems, Inc. -> QNAP) HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3091136 2020-09-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl) HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\Run: [CA18C1364169DF7C28F3D94BAE929B6DF4DD18F7._service_run] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8 HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [26069176 2020-10-23] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\Run: [iCloudDrive] => C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\Run: [iCloudPhotos] => C:\Program Files\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2020-09-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\Run: [HP ENVY 5640 series (NET)] => C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe [2631584 2019-03-19] (HP Inc -> HP Inc.) HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\RunOnce: [Application Restart #0] => C:\Program Files\Google\Chrome\Application\chrome.exe --notification-launch-id=0|0|Default|0|hxxps://www.standaard.be/|p#hxxps://www.standaard.be/#010349 --flag-switches-begin --disable-quic --flag-switches-end --enable-audio-service-sandbox --restore-last-session HKU\S-1-5-21-798369426-4070403183-260610259-1000\...\MountPoints2: {e549a621-b28a-11e8-8538-001e68fdd08c} - "F:\Setup.exe" HKLM\...\Print\Monitors\gcp_portmon.dll: C:\WINDOWS\system32\gcp_portmon.dll [354184 2018-02-26] (Google Inc -> Google Inc.) HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\WINDOWS\system32\hpinkstsCC11LM.dll [314680 2019-03-15] (HP Inc -> HP Inc.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 5640 series): C:\WINDOWS\system32\HPDiscoPMCC11.dll [659592 2017-05-23] (Hewlett Packard -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-13] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> HKLM\Software\...\Authentication\Credential Providers: [{5ECD2B32-EE53-4D02-8C18-089742CE5065}] -> C:\Program Files\Acer Bio Protection\CompPtcV32.dll [2016-12-04] (Egis Technology Inc.) [Bestand niet getekend] Lsa: [Notification Packages] C:\Program Files\Acer Bio Protection\PwdFilter GroupPolicy: Restrictie ? <==== AANDACHT HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {01908754-1836-46CC-BE95-586A4F83B1E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {05C88D0C-D062-45AB-8F77-724236D393EE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {0C12E87B-B501-42B2-8BD0-FA1D2F321C47} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-20] (Dropbox, Inc -> Dropbox, Inc.) Task: {0FFD4926-38CF-4BEF-B778-C2271B2686F7} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {13653FEE-0A2D-4AD3-A456-D393F9BD2654} - System32\Tasks\HPCustPartic.exe_{B48829A9-DDA7-4B86-B6C3-AF59DC92319B} => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [4422560 2019-03-19] (HP Inc -> HP Inc.) Task: {1B0400FA-AEC1-45B5-9429-D2C01B065F30} - System32\Tasks\{E0A83336-5291-412E-AA71-FC34021C7C0A} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe" -d "C:\Program Files\VS Revo Group\Revo Uninstaller" Task: {1DB39F0A-9DCC-440A-99C4-108047E6DD2B} - System32\Tasks\{BE89F68E-DF76-4C11-AE8A-733C677A569F} => C:\Users\Fred\Desktop\adwcleaner_7.2.7.0.exe Task: {1E071624-D9E3-4848-833B-41DDC0979DF8} - System32\Tasks\{327C5C14-EA9F-42D7-9CF6-4E7D26E55311} => C:\Windows\system32\pcalua.exe -a "C:\Users\Fred\Desktop\OpenOffice 4.1.6 (nl) Installation Files\setup.exe" -d "C:\Users\Fred\Desktop\OpenOffice 4.1.6 (nl) Installation Files" Task: {22BE40D6-F7F9-45E1-803E-9F729AE22195} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {2477A921-4443-4572-84FC-4AC27243F13B} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {2495C5F9-CD0A-4C62-AD84-512AFE705F39} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {2C179220-4F31-48FA-90D2-6BE34B3AEEB1} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {372DEC40-B87C-486E-911C-D011DE5138A6} - System32\Tasks\HPCustParticipation HP ENVY 5640 series => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [4422560 2019-03-19] (HP Inc -> HP Inc.) Task: {3D0C517D-14FD-46BF-9080-3653293274EC} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {4617ACA9-A138-4DEA-975F-E9529562574C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2016-10-11] (Google Inc -> Google Inc.) Task: {4B54F6AA-E932-477A-8371-88B553937F35} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {4BF00084-2755-46E8-80E5-9AD55A11F1C3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {4BFA7353-8F4E-4726-AA0A-739EBF8B2357} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {510B2E26-ACBB-42BB-8633-FA5C1A3E7A73} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [610000 2020-11-03] (Mozilla Corporation -> Mozilla Foundation) Task: {53452745-B394-4A82-BC84-266287DB263F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {6C4621B2-C5A6-451D-8393-1C064ADAD2CC} - System32\Tasks\iSCSIAgentAutoStartup => C:\Program Files\QNAP\Qfinder\iSCSIAgent.exe [1740088 2020-09-14] (QNAP Systems, Inc. -> ) Task: {727B7D2D-0AEC-4B43-AC56-BEED978F8F26} - \Microsoft\Windows\Setup\EOSNotify -> Geen bestand <==== AANDACHT Task: {767083F3-0F72-4E81-97BD-F25C7FCD4831} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {76EACD83-D408-48CD-BB1B-CD14E55B6BA9} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {77A96446-7408-410D-A49D-091AFECB48A7} - System32\Tasks\{53B79C20-15DB-4754-B665-886C1CFB3001} => C:\Program Files\VideoLAN\VLC\vlc.exe [962760 2020-06-04] (VideoLAN -> VideoLAN) Task: {7A04975A-E7DB-4980-A80F-50AE08161DFC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {7FF2E782-5FFB-4D74-BCEF-CC5715358092} - System32\Tasks\{383FEFF1-42A6-4209-AE76-DCEDBB316ABF} => C:\Windows\system32\pcalua.exe -a C:\Windows\system32\pcwrun.exe -c "C:\Program Files\OpenOffice 4\program\swriter.exe" Task: {840B2D73-9BA2-4DCA-94D8-7A843788422E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-20] (Dropbox, Inc -> Dropbox, Inc.) Task: {8DEC35DB-24DC-4F26-814B-DF234121E818} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-10-23] (Piriform Software Ltd -> Piriform Software Ltd) Task: {9C613C13-C1BE-4A9F-8B81-E1777BE7C1DE} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {A0D56DA4-9A12-47A6-A765-75B2D2E7C8DC} - System32\Tasks\{5C115664-5700-48E6-9B75-5A181ABBF7C7} => C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe Task: {A6AB5205-C8F7-49DF-9A15-B735ED078DD8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {A8025B1D-E818-41C3-B88D-F76D27BD0625} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A872CF0D-2BE5-4DFD-AA2D-524897AE0D2B} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A8B6F703-C1A7-4C1A-9D3B-9034D6F86EFE} - System32\Tasks\Opera scheduled Autoupdate 1504713351 => C:\Program Files\Opera\launcher.exe Task: {AA9815D6-9C05-4E43-A98F-DA72E1DAE1D2} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {AE1E6FF7-A4FF-4841-BAE9-B330A837A42D} - System32\Tasks\{463C01FF-A7C5-4020-881C-5A541224BA83} => C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe Task: {C1404A7D-F58F-4B09-8E38-7C6094596BAC} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C2DAE1CC-36A2-4B3B-851C-C909378C93B1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C3FCA11B-2DE7-49B6-BB10-C245B5D6C7C7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {C699CAF2-E68A-4CCA-9F74-10B7AA2C4ED4} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {D1CB0387-8248-4AA1-87DE-C179C51D97E7} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D3115678-A460-4D92-8487-29EB1F031967} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DCEB03DF-3601-4576-9105-F05038594C05} - System32\Tasks\{8E4C72C9-FBB6-49D4-8D67-4574D04A4342} => C:\Windows\system32\pcalua.exe -a "C:\Users\Fred\Desktop\eid-web-browser-mw-install-1.1.9 (1).exe" -d C:\Users\Fred\Desktop Task: {DDBF8524-5249-486C-98DD-F095FF87D196} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E349418C-EA1F-408B-B083-2A5C79495DD6} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [89088 2015-03-16] (Intel® Corporation) [Bestand niet getekend] Task: {E4DC48F5-3CB0-43B9-A750-7D80FE16631D} - System32\Tasks\NetBak-Fred-PC-Fred-AutoStartup => C:\Program Files\QNAP\NetBak\NetBak.exe [12213048 2019-11-08] (QNAP Systems, Inc. -> QNAP Systems, Inc.) Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {EFAC201F-3480-47E7-8B00-89FEF53DB42B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2016-10-11] (Google Inc -> Google Inc.) Task: {F0BAC81A-457D-4B27-979A-B0D1BE67654F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26069176 2020-10-23] (Piriform Software Ltd -> Piriform Software Ltd) Task: {F395D40F-2C74-43AB-96A6-893F050C461A} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {F5087FF3-7D9E-48A5-AA83-7844AE49E205} - System32\Tasks\hpUrlLauncher.exe_{84C399D4-6A92-46B8-A236-E8A750392B2A} => C:\Program Files\HP\HP ENVY 5640 series\Bin\utils\hpUrlLauncher.exe [228256 2019-03-19] (HP Inc -> HP Inc.) Task: {FB1D81D1-3A26-4C96-A11B-D09BCD9AE968} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.) Task: {FB3E3BB9-AE40-424F-A5BE-A305E0C9F749} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FF042A44-85C6-49D5-AC11-04F04FB2896E} - System32\Tasks\{D3AA5803-4726-4841-98BA-4EDB98F7BC73} => C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe Task: {FF2B854C-6E24-4956-97CF-8F3ED7762285} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1499240 2020-09-17] (Avast Software s.r.o. -> Avast Software) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 195.130.130.2 195.130.131.2 Tcpip\..\Interfaces\{42EBF99C-0087-407F-8A30-C5CBC09AFA30}: [DhcpNameServer] 195.130.130.2 195.130.131.2 Tcpip\..\Interfaces\{688b92f0-ff96-49cb-b752-2e58bde25afc}: [NameServer] 8.8.8.8,8.8.4.4 Edge: ====== DownloadDir: C:\Users\Fred\Desktop Edge HomeButtonPage: HKU\S-1-5-21-798369426-4070403183-260610259-1000 -> hxxps://www.hln.be/ Edge DefaultProfile: Default Edge Profile: C:\Users\Fred\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-16] Edge DownloadDir: C:\Users\Fred\Downloads Edge HomePage: Default -> hxxps://www.hln.be/ Edge StartupUrls: Default -> "hxxps://www.hln.be/" Edge Extension: (Kaspersky Protection) - C:\Users\Fred\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-09-07] Edge HKU\S-1-5-21-798369426-4070403183-260610259-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] FireFox: ======== FF DefaultProfile: 81jwf1w0.default FF ProfilePath: C:\Users\Fred\AppData\Roaming\TomTom\HOME\Profiles\qa5b18h2.default [2017-05-31] FF Extension: (Emulator) - C:\Users\Fred\AppData\Roaming\TomTom\HOME\Profiles\qa5b18h2.default\Extensions\Navcore.9.510.1234792@tomtom.com [2017-05-23] [Verouderd] [niet getekend] FF ProfilePath: C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\81jwf1w0.default [2020-11-17] FF DownloadDir: C:\Users\Fred\Desktop FF Homepage: Mozilla\Firefox\Profiles\81jwf1w0.default -> hxxp://www.standaard.be/ FF Notifications: Mozilla\Firefox\Profiles\81jwf1w0.default -> hxxps://www.standaard.be FF Extension: (eID België) - C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\81jwf1w0.default\Extensions\belgiumeid@eid.belgium.be.xpi [2018-11-11] FF Extension: (eID Chrome Extension) - C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\81jwf1w0.default\Extensions\eid-chrome-extension@e-contract.be.xpi [2018-02-09] [UpdateUrl:hxxps://www.e-contract.be/eid-chrome/releases/eid-chrome-extension-updates.json] FF Extension: (SConnect) - C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\81jwf1w0.default\Extensions\jid1-HfFCNbAsKx6Aow@jetpack.xpi [2019-02-15] FF Extension: (TrafficLight) - C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\81jwf1w0.default\Extensions\trafficlight@bitdefender.com.xpi [2020-10-14] FF Extension: (Connective signing extension) - C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\81jwf1w0.default\Extensions\{4f643bc8-78f5-49c6-8efd-78ee30289f0b}.xpi [2017-12-15] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-798369426-4070403183-260610259-1000: connective.be/BrowserPlugin -> C:\Users\Fred\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-07-17] (Connective n.v.) [Bestand niet getekend] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-08-19] <==== AANDACHT (Gericht op * .cfg bestand) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-08-19] <==== AANDACHT Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default [2020-11-17] CHR DownloadDir: C:\Users\Fred\Desktop CHR Notifications: Default -> hxxps://helena.care; hxxps://nl.aliexpress.com; hxxps://www.aliexpress.com; hxxps://www.qnap.com; hxxps://www.standaard.be; hxxps://www.tomtom.com CHR HomePage: Default -> hxxp://uk.mg40.mail.yahoo.com/neo/launch?.rand=b6mm8msj0sc2q CHR StartupUrls: Default -> "hxxps://www.standaard.be/" CHR Extension: (Google Translate) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18] CHR Extension: (eID Chrome Extension) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2019-09-24] CHR Extension: (TrafficLight) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2020-10-13] CHR Extension: (Kaspersky Protection) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-08-24] CHR Extension: (iCloud-bladwijzers) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2019-09-24] CHR Extension: (AdBlock - de beste advertentieblokker) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-10-29] CHR Extension: (Google Agenda) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2020-06-26] CHR Extension: (Google Photos) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcglmfcclpfgljeaiahehebeoaiicbko [2019-09-24] CHR Extension: (Google Play Music) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2019-09-24] CHR Extension: (Connective signing extension) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2019-11-16] CHR Extension: (Google Play) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2019-09-24] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Chrome Media Router) - C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-11] CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk Opera: ======= OPR StartupUrls: "hxxp://www.standaard.be/" OPR Extension: (Google™ Translator Lite) - C:\Users\Fred\AppData\Roaming\Opera Software\Opera Stable\Extensions\cbjljabajpnmappjhlnnlbahmmcngkpf [2017-09-06] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 ATService; C:\Program Files\Fingerprint Sensor\AtService.exe [1815800 2009-09-21] (AuthenTec, Inc. -> AuthenTec, Inc.) R2 AVP20.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-20] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-20] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [37384 2020-11-04] (Dropbox, Inc -> Dropbox, Inc.) R2 IGBASVC; C:\Program Files\Acer Bio Protection\BASVC.exe [3449856 2016-12-04] (Egis Technology Inc.) [Bestand niet getekend] R2 KSDE3.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5748400 2020-09-28] (Malwarebytes Inc -> Malwarebytes) R2 PMBDeviceInfoProvider; C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [498152 2018-05-09] (Sony Imaging Products & Solutions Inc. -> Sony Corporation) R2 QVssService; C:\Program Files\QNAP\NetBak\QVssService.exe [1618232 2019-11-08] (QNAP Systems, Inc. -> QNAP Systems, Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3921240 2020-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) S2 SonosLibraryService; C:\Program Files\Sonos\SonosLibraryService.exe [28160 2020-09-09] () [Bestand niet getekend] S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [6658496 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.4-0\NisSrv.exe [1499832 2020-08-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.4-0\MsMpEng.exe [86104 2020-08-19] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [Bestand niet getekend] R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [180352 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab) R2 int15; C:\Windows\system32\drivers\int15.sys [69632 2016-12-04] () [Bestand niet getekend] R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [69528 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [118872 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78976 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [30136 2020-05-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [198552 2020-08-24] (Kaspersky Lab -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [533816 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [779056 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [210464 2020-10-23] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [777112 2020-08-24] (Kaspersky Lab -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [51536 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [66960 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [52864 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [48768 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [42320 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [45496 2018-02-12] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [241160 2020-10-23] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [96080 2020-08-19] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [262920 2020-10-26] (Kaspersky Lab JSC -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [98216 2020-10-26] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [178776 2020-10-31] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [87680 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [172648 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199080 2020-08-24] (Kaspersky Lab -> AO Kaspersky Lab) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [182032 2020-11-11] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [17360 2020-09-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [213912 2020-10-15] (Malwarebytes Inc -> Malwarebytes) R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7518208 2019-12-07] (Microsoft Windows -> Intel Corporation) R3 QDrive; C:\Users\Fred\AppData\Local\Temp\QDrive.sys [117904 2020-11-11] (QNAP Systems, Inc. -> QNAP Systems, Inc.) <==== AANDACHT S3 RvNetMP60; C:\WINDOWS\System32\DRIVERS\RvNetMP60.sys [53688 2018-01-25] (Famatech Corp. -> Famatech Corp.) R3 SrvHsfHDA; C:\WINDOWS\system32\DRIVERS\VSTAZL3.SYS [207360 2019-12-07] (Microsoft Windows -> Conexant Systems, Inc.) R3 SrvHsfV92; C:\WINDOWS\system32\DRIVERS\VSTDPV3.SYS [980992 2019-12-07] (Microsoft Windows -> Conexant Systems, Inc.) R3 SrvHsfWinac; C:\WINDOWS\system32\DRIVERS\VSTCNXT3.SYS [661504 2019-12-07] (Microsoft Windows -> Conexant Systems, Inc.) S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [33280 2019-04-02] (TunnelBear, Inc. -> The OpenVPN Project) S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2020-09-09] (Microsoft Windows -> Microsoft Corporation) S3 VBoxNetAdp; C:\WINDOWS\System32\DRIVERS\VBoxNetAdp6.sys [188520 2019-01-28] (Oracle Corporation -> Oracle Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [39320 2020-08-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330984 2020-08-19] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [49384 2020-08-19] (Microsoft Windows -> Microsoft Corporation) R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) =================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-11-17 11:52 - 2020-11-17 11:53 - 000032536 _____ C:\Users\Fred\Desktop\FRST.txt 2020-11-17 11:51 - 2020-11-17 11:52 - 000000000 ____D C:\FRST 2020-11-17 11:49 - 2020-11-17 11:49 - 002009600 _____ (Farbar) C:\Users\Fred\Desktop\FRST.exe 2020-11-16 10:05 - 2020-11-16 10:05 - 000001006 _____ C:\Users\Public\Desktop\Speccy.lnk 2020-11-16 10:05 - 2020-11-16 10:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2020-11-16 10:05 - 2020-11-16 10:05 - 000000000 ____D C:\Program Files\Speccy 2020-11-15 17:41 - 2020-11-15 17:41 - 000000000 ____D C:\Users\Fred\Desktop\ssdlife pro 2.5.82 2020-11-15 17:40 - 2020-11-16 10:24 - 000000000 ____D C:\ProgramData\TEMP 2020-11-15 14:28 - 2020-11-15 14:29 - 000000000 ____D C:\Users\Fred\Desktop\CrystalDiskInfo8_8_9 2020-11-15 12:04 - 2020-11-15 12:04 - 002491765 _____ C:\Users\Fred\Desktop\Demonteren radio yaris.pdf 2020-11-15 11:41 - 2020-11-15 11:41 - 002491765 _____ C:\Users\Fred\Desktop\Yaris_TAS500_PW600_0D001_AIM_004_322_3.pdf 2020-11-13 13:55 - 2020-11-13 13:55 - 000001094 _____ C:\Users\Public\Desktop\OpenOffice 4.1.8.lnk 2020-11-13 13:55 - 2020-11-13 13:55 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.8 2020-11-11 10:22 - 2020-11-11 10:22 - 000182032 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-11-11 10:02 - 2020-11-11 10:02 - 007107584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 004277248 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 001917752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 001632056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 001030144 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000919368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000450336 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2020-11-11 10:02 - 2020-11-11 10:02 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe 2020-11-11 10:02 - 2020-11-11 10:02 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbnetlib.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000087872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PktMon.sys 2020-11-11 10:02 - 2020-11-11 10:02 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcXtrnal.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll 2020-11-11 10:02 - 2020-11-11 10:02 - 000036168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe 2020-11-11 10:02 - 2020-11-11 10:02 - 000018248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 019870720 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 018083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 008895680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 007196472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 006422016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 006368392 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 006001208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 005430992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 004935168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 004752896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 004069992 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 003869184 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 003821064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 003469824 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 003416576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 003240448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002973184 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002917696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 002861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002822656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002757632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 002607104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002477384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002437120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002368824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 002352440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 002318848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002268456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002227712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002127872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 002012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 002004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\FluencyDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001972736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001683456 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001677080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001590584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001568256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001544328 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001449984 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001391616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001360384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001252352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001214464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001163776 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001163264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 001152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 001134728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 001073984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 001063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001017472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000873272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000859400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000815104 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000795896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000788704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000756680 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000700376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000695808 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000693048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_9.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000562984 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000552136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000546968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000544376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000534536 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000489128 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000482120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000442168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000410936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000410072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000400184 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000400184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000399752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxAPDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxHAPDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000358208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000352056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-11-11 10:01 - 2020-11-11 10:01 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtCangjieDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000337784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtBopomofoDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtHkStrokeDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsStrokeDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtQuickDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000312120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000288680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000282952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpndecoder.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxDecoder.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000266240 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtfDecoder.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxinputrouter.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpnranker.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000225088 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000201536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000195144 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000192320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2020-11-11 10:01 - 2020-11-11 10:01 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000148480 _____ C:\WINDOWS\system32\IHDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000142648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPolEng.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\trie.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFFuzzyDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InkingTypingPrivacy.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000133448 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000118784 _____ C:\WINDOWS\system32\EoAExperiences.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdvancedEmojiDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000115000 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BrowserDeclutter.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerApi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\VocabRoamingHandler.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxranker.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\HashtagDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtAdvancedDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000076616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFAppServiceDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuleBasedDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000061760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000059208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000052592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2020-11-11 10:01 - 2020-11-11 10:01 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gmsaclient.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys 2020-11-11 10:01 - 2020-11-11 10:01 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsiproxy.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll 2020-11-11 10:01 - 2020-11-11 10:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2020-11-11 10:00 - 2020-11-11 10:00 - 001699248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll 2020-11-11 10:00 - 2020-11-11 10:00 - 000585016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll 2020-11-11 10:00 - 2020-11-11 10:00 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000252224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000244552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000169280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000159032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\devauthe.sys 2020-11-11 10:00 - 2020-11-11 10:00 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll 2020-11-11 10:00 - 2020-11-11 10:00 - 000014496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys 2020-11-11 09:52 - 2020-10-15 04:14 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-11-06 12:04 - 2020-11-06 12:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2020-11-04 21:41 - 2020-11-04 21:41 - 000037384 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2020-11-04 21:41 - 2020-11-04 21:41 - 000036848 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2020-11-04 21:41 - 2020-11-04 21:41 - 000036848 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2020-11-04 21:41 - 2020-11-04 21:41 - 000036848 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2020-11-03 10:29 - 2020-11-03 10:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2020-10-31 11:23 - 2020-10-31 11:23 - 000003028 _____ C:\WINDOWS\system32\Tasks\iSCSIAgentAutoStartup 2020-10-31 11:23 - 2020-10-31 11:23 - 000001138 _____ C:\Users\Public\Desktop\Qfinder Pro.lnk 2020-10-26 14:21 - 2020-10-26 14:21 - 000262920 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys 2020-10-26 14:20 - 2020-10-26 14:20 - 000098216 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys 2020-10-23 11:26 - 2020-10-31 11:32 - 000178776 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys 2020-10-23 11:26 - 2020-10-23 11:26 - 000241160 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2020-11-17 11:52 - 2020-08-19 15:39 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2020-11-17 11:44 - 2017-12-09 11:07 - 000000000 ____D C:\Users\Fred\AppData\LocalLow\Mozilla 2020-11-17 11:30 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-11-16 23:28 - 2020-06-26 15:09 - 000000000 ____D C:\Users\Fred 2020-11-16 23:02 - 2016-10-11 15:02 - 131089152 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-11-16 11:02 - 2016-11-02 12:35 - 000000000 ____D C:\Users\Fred\AppData\Roaming\vlc 2020-11-16 10:01 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps 2020-11-16 10:01 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-11-15 18:54 - 2016-10-11 14:56 - 000652152 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2020-11-15 11:14 - 2020-05-04 17:24 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-11-14 13:16 - 2019-12-07 07:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2020-11-13 14:46 - 2016-10-20 16:06 - 000000000 ____D C:\Users\Fred\AppData\Roaming\KeePass 2020-11-13 14:41 - 2016-10-20 16:05 - 000001132 _____ C:\Users\Fred\Desktop\KeePass 2.lnk 2020-11-13 13:58 - 2016-10-10 12:49 - 000010206 _____ C:\Users\Fred\Documents\NieuweDatabase keepass 2..kdbx 2020-11-13 13:55 - 2018-12-13 16:16 - 000000000 ____D C:\Program Files\OpenOffice 4 2020-11-13 13:51 - 2016-10-20 16:05 - 000001144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk 2020-11-13 13:51 - 2016-10-20 16:05 - 000000000 ____D C:\Program Files\KeePass Password Safe 2 2020-11-13 11:27 - 2019-09-24 22:33 - 000002267 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-11-12 10:38 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF 2020-11-11 12:29 - 2020-06-26 15:22 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-11-11 10:28 - 2020-06-26 15:15 - 001902108 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-11-11 10:28 - 2019-12-07 13:23 - 000827516 _____ C:\WINDOWS\system32\perfh013.dat 2020-11-11 10:28 - 2019-12-07 13:23 - 000172076 _____ C:\WINDOWS\system32\perfc013.dat 2020-11-11 10:22 - 2020-08-24 10:58 - 000000000 ____D C:\Program Files\Common Files\Kaspersky Lab 2020-11-11 10:22 - 2020-06-26 15:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-11-11 10:22 - 2020-06-26 15:08 - 000293352 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-11-11 10:22 - 2020-06-26 15:08 - 000008192 ___SH C:\DumpStack.log.tmp 2020-11-11 10:22 - 2019-12-07 07:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2020-11-11 10:22 - 2017-12-09 11:07 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service 2020-11-11 10:22 - 2016-10-20 16:14 - 000000998 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2020-11-11 10:22 - 2016-10-20 16:14 - 000000994 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2020-11-11 10:22 - 2016-10-20 15:08 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-11-11 10:21 - 2019-12-07 13:25 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2020-11-11 10:21 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-11-11 10:21 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources 2020-11-11 10:21 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\setup 2020-11-11 10:21 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-11-11 10:21 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-11-11 10:21 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-11-11 10:21 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2020-11-11 10:21 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-11-11 10:05 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-11-06 12:04 - 2016-10-20 16:14 - 000000000 ____D C:\Program Files\Dropbox 2020-11-04 11:34 - 2020-06-26 15:22 - 000004058 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2020-11-04 11:34 - 2020-06-26 15:22 - 000003826 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2020-11-03 10:28 - 2017-12-09 11:07 - 000001077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-11-01 12:59 - 2020-06-26 15:22 - 000003662 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-11-01 12:59 - 2020-06-26 15:22 - 000003538 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-10-31 11:59 - 2016-10-20 16:09 - 000000000 ____D C:\ProgramData\Sonos,_Inc 2020-10-31 11:23 - 2018-06-29 11:56 - 000000000 ____D C:\Users\Fred\AppData\Local\CrashDumps 2020-10-31 11:23 - 2017-10-11 09:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QNAP 2020-10-31 11:20 - 2020-06-26 15:09 - 000002399 _____ C:\Users\Fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-10-31 11:20 - 2016-12-10 15:50 - 000000000 ___RD C:\Users\Fred\OneDrive 2020-10-26 17:55 - 2016-10-22 11:55 - 000001034 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-10-26 17:21 - 2020-03-31 10:50 - 000000000 ____D C:\Users\Fred\AppData\Roaming\WhatsApp 2020-10-22 11:47 - 2019-09-09 09:51 - 000015461 _____ C:\Users\Fred\Desktop\Yaris 1500 cc.ods ==================== Bestanden in de root van sommige mappen ======== 2018-07-07 19:39 - 2019-09-18 15:36 - 000005120 _____ () C:\Users\Fred\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-12-04 17:35 - 2019-08-18 15:44 - 000021223 _____ () C:\Users\Fred\AppData\Local\HWVendorDetection.log 2017-03-06 12:21 - 2017-03-06 12:21 - 000000017 _____ () C:\Users\Fred\AppData\Local\resmon.resmoncfg 2018-01-19 11:19 - 2020-05-17 11:04 - 000002183 _____ () C:\Users\Fred\AppData\Local\restore.vbs 2018-04-13 08:29 - 2018-04-13 08:29 - 000000000 _____ () C:\Users\Fred\AppData\Local\{5EC4BC27-1473-45D4-BE95-E841E24BA925} 2016-11-26 11:09 - 2016-11-26 11:10 - 000000000 _____ () C:\Users\Fred\AppData\Local\{BB38A652-F0E0-412C-8BDC-CEB0F0A445AA} ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) ==================== Einde van FRST.txt ========================