Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 03-02-2021 Gestart door wendy_000 (Beheerder) op WENDITA (Acer Aspire V3-572G) (03-02-2021 14:17:43) Gestart vanaf C:\Users\wendy_000\Downloads Geladen Profielen: UpdatusUser & wendy_000 Platform: Windows 10 Home Versie 2004 19041.746 (X64) Taal: Dutch (Netherlands) Standaardbrowser: Chrome Boot Modus: Normal ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe (Acer Incorporated -> acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Cockos Incorporated) [Bestand niet getekend] C:\Program Files\REAPER (x64)\reaper.exe (CyberLink -> ) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\114.4.426\QtWebEngineProcess.exe <2> (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpn-browser-helper.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe (F.lux Software LLC -> f.lux Software LLC) C:\Users\wendy_000\AppData\Local\FluxSoftware\Flux\flux.exe (Fortemedia Inc. -> ) C:\Program Files\Realtek\Audio\HDA\FMAPP.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <43> (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Corporation) [Bestand niet getekend] C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) Technology Access -> Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe (Intel(R) Technology Access -> Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe (Microsoft Corporation) [Bestand niet getekend] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\29789e904b65142199b99d3e8eabaf84\unifiedinstaller.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MpCmdRun.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Softdeluxe) [Bestand niet getekend] C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Bestand niet getekend] C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Vladislavas Jarmalis -> Mixesoft Project) C:\Users\wendy_000\AppData\Local\Mixesoft\AppNHost\appnhost.exe ==================== Register (gefilterd) =================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16405744 2015-08-23] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403136 2015-08-23] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-25] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [465120 2020-09-22] (Express Vpn LLC -> ExpressVPN) HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software) HKU\S-1-5-21-2738978234-4125683323-18102037-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-2738978234-4125683323-18102037-1002\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [9198512 2019-10-17] (Support.com, Inc. -> SUPERAntiSpyware) HKU\S-1-5-21-2738978234-4125683323-18102037-1002\...\Run: [f.lux] => C:\Users\wendy_000\AppData\Local\FluxSoftware\Flux\flux.exe [1469968 2020-06-17] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-2738978234-4125683323-18102037-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2738978234-4125683323-18102037-1002\...\Run: [appnhost] => C:\Users\wendy_000\AppData\Local\Mixesoft\AppNHost\appnhost.exe [453176 2014-08-08] (Vladislavas Jarmalis -> Mixesoft Project) HKU\S-1-5-21-2738978234-4125683323-18102037-1002\...\Run: [Free Download Manager] => C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe [4441600 2020-09-04] (Softdeluxe) [Bestand niet getekend] HKLM\...\Windows x64\Print Processors\Canon MG3500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBV.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series: C:\Windows\system32\CNMLMBV.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.146\Installer\chrmstp.exe [2021-02-02] (Google LLC -> Google LLC) Startup: C:\Users\wendy_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2020-02-13] ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Geplande Taken (gefilterd) ============ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0114DD4C-DF78-4C9C-8B5E-65E06D46855B} - System32\Tasks\Opera scheduled assistant Autoupdate 1547130563 => C:\Program Files (x86)\Opera\launcher.exe [1583256 2021-01-14] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera\assistant" $(Arg0) Task: {0405D95F-7FA9-4258-8B87-57A26A01E819} - System32\Tasks\{F19EFA9A-EE30-43B4-AB8D-697EBA68C050} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.2.60.103/nl/abandoninstall?page=tsBing Task: {1036966C-85D2-4F26-BEF1-E2EE87ACCCE8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation) Task: {105D8A81-8883-4B4B-B98E-FBB0FB1DBCC6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {12FDEA1F-E53D-4951-BA5F-D13B30632AB7} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {31ADC25E-8329-4D62-A4B5-4AEA4CCF2F92} - System32\Tasks\Opera scheduled Autoupdate 1448448647 => C:\Program Files (x86)\Opera\launcher.exe [1583256 2021-01-14] (Opera Software AS -> Opera Software) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3B0BD357-AD29-4BD5-AB27-7E8D99FC2BEF} - System32\Tasks\G2MUpdateTask-S-1-5-21-2738978234-4125683323-18102037-1002 => C:\Users\wendy_000\AppData\Local\GoToMeeting\19228\g2mupdate.exe [31320 2020-12-19] (LogMeIn, Inc. -> LogMeIn, Inc.) Task: {426D0F73-70AA-4EE8-9690-6FB3867CFF9A} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe Task: {45750715-744E-486E-9FA8-2D4823F6278A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-27] (Dropbox, Inc -> Dropbox, Inc.) Task: {465364F4-F817-486C-9AB8-106F5F044087} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65824 2017-09-26] (Acer Incorporated -> Acer Incorporated) Task: {47BFB6BF-59F5-4F75-91C6-74A904909761} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [324328 2014-06-26] (Acer Incorporated -> Acer Incorporate) Task: {54C9C533-7222-4B8B-9621-62A13AE967A5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.) Task: {5BC59769-98CB-4CCF-B764-7DC607C2C3C1} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-27] (Dropbox, Inc -> Dropbox, Inc.) Task: {6481ABD8-7590-4509-AE6F-F1201D112949} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {67AC1CA9-7AB8-4F05-B421-72E1A949B5C4} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation) Task: {699FFCF3-F81B-4A9B-AFC0-E5E55F6FE1B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {71EB5B9B-E7C2-4708-897A-7660A1DC0118} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo) Task: {747984BE-24A6-4D34-A7F9-165263EA2FFA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd) Task: {7CC3A020-2B4B-420B-B12D-B45BF4A1101B} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [490728 2014-06-17] (Acer Incorporated -> Acer Incorporated) Task: {83F37388-7E28-4AF3-A8A8-28695517D5CA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd) Task: {8444D8D6-1279-442B-BAC8-AFC452772F82} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {996CA956-BD12-4F20-86EA-9234C0CC038D} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1738504 2015-09-04] (Intel(R) Software -> Intel Corporation) Task: {A20E04C1-AC06-4B63-A7C0-60B83AE95256} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B4DAB412-BF2C-43DB-B314-C573069426A4} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) Task: {B9088656-1468-4FD5-86A9-6A4428AE6CC1} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [384232 2014-06-12] (Acer Incorporated -> Acer Incorporated) Task: {BC75B52D-57F5-429F-8919-33501664065B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.) Task: {BCFCDC89-F2E6-41D5-84A8-B0B9DEA4FAB8} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2017-09-28] (Acer Incorporated -> ) Task: {BD5A709A-2AB9-4C3A-8780-3B849308A74D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {C0AC4AAA-91A0-4BC0-95B1-31C090BDE528} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C50D93AF-B906-4456-B6BF-AD096C8FB05A} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [439016 2014-06-10] (Acer Incorporated -> Acer Incorporate) Task: {C783B15E-DF49-441D-B1CA-969A568CF22B} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-18] (AVG Technologies USA, LLC -> AVG Technologies) Task: {CC449116-F40E-451C-98D4-5519952BDB8A} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {DE05A851-AB3F-4B78-A20A-0825634037E9} - System32\Tasks\G2MUploadTask-S-1-5-21-2738978234-4125683323-18102037-1002 => C:\Users\wendy_000\AppData\Local\GoToMeeting\19228\g2mupload.exe [31320 2020-12-19] (LogMeIn, Inc. -> LogMeIn, Inc.) Task: {E4F26ED0-0B9B-4D23-A1E7-1FB456F147E6} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe [144896 2020-09-04] (Softdeluxe) [Bestand niet getekend] Task: {F0E56D35-1D7F-4422-B7F6-9D2E8C0C96FF} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation) Task: {F17BD125-875F-454B-A0CC-E1173576576E} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [324328 2014-06-26] (Acer Incorporated -> Acer Incorporate) Task: {F31ED907-6FE2-4688-BE76-E89357F56BC8} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) Task: {F69239AC-BF10-463C-8CAE-7FD508923AE7} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-03-13] (Acer Incorporated -> TODO: ) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2738978234-4125683323-18102037-1002.job => C:\Users\wendy_000\AppData\Local\GoToMeeting\19228\g2mupdate.exe Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2738978234-4125683323-18102037-1002.job => C:\Users\wendy_000\AppData\Local\GoToMeeting\19228\g2mupload.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{107f1d15-c1ef-4f21-8f70-06d0d229a018}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{1f03f701-aea8-41ea-ac70-bca193ca2f42}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{b4df43f6-7e53-4849-9b45-4e8de30ca84f}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\wendy_000\Downloads Edge DefaultProfile: Default Edge Profile: C:\Users\wendy_000\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-31] Edge DownloadDir: C:\Users\wendy_000\Downloads FireFox: ======== FF DefaultProfile: ovxaajab.default-1545045904416 FF ProfilePath: C:\Users\wendy_000\AppData\Roaming\Mozilla\Firefox\Profiles\ovxaajab.default-1545045904416 [2021-01-24] FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] (Apple Inc. -> ) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] (Foxit Corporation -> ) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] (Foxit Corporation -> ) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-19] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] (WildTangent Inc -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2738978234-4125683323-18102037-1002: @zoom.us/ZoomVideoPlugin -> C:\Users\wendy_000\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-15] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default [2021-02-03] CHR Notifications: Default -> hxxps://www.upwork.com CHR DefaultSearchURL: Default -> hxxps://search.tb.ask.com/search/GGmain.jhtml?searchfor={searchTerms}&enableSearch=true&rdrct=no&redirect=CPC CHR DefaultSearchKeyword: Default -> askwebs CHR DefaultSuggestURL: Default -> hxxps://ss.search.ask.com/ss?li=ff&sstype=prefix&limit=10&hl=en&q={searchTerms}&enableSearch=true&rdrct=no CHR Extension: (Presentaties) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15] CHR Extension: (Documenten) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15] CHR Extension: (Google Drive) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (YouTube) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-28] CHR Extension: (Adblock voor Youtube™) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2020-10-11] CHR Extension: (Google Search) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-28] CHR Extension: (KDP / Amazon BSR & Keyword Research SEO Tool) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eefljgmhgaidffapnppcmmafobefjece [2020-12-21] CHR Extension: (Convertio) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2021-01-02] CHR Extension: (Facebook Pixel Helper) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2020-10-02] CHR Extension: (Spreadsheets) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15] CHR Extension: (ExpressVPN: VPN proxy voor een beter internet) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgddmllnllkalaagkghckoinaemmogpe [2021-01-18] CHR Extension: (News Feed Eradicator for Facebook) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjcldmjmjhkklehbacihaiopjklihlgg [2021-01-27] CHR Extension: (Offline Documenten) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-11] CHR Extension: (Click&Clean) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2021-01-12] CHR Extension: (Ask Web Search) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hapkhkcjeoklmeklalckjempdbgbagai [2020-12-11] CHR Extension: (LastPass: Free Password Manager) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-02-02] CHR Extension: (Grammarly for Chrome) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-01-28] CHR Extension: (Connective signing extension) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2020-09-19] CHR Extension: (Tag Assistant Legacy (by Google)) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2021-01-20] CHR Extension: (Loom for Chrome) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2021-01-28] CHR Extension: (Skype) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-04] CHR Extension: (Pocket) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-12-01] CHR Extension: (My IP address) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\monhkdcehmbdgkhgpccaccbbcgcfpjkd [2020-09-30] CHR Extension: (Save to Pocket) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2020-11-11] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Spelling- en grammaticacontrole - LanguageTool) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2021-01-27] CHR Extension: (UserTesting Browser Recorder) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlhphabpmijgblopkcjmphbbmeliagn [2020-12-04] CHR Extension: (Evernote Web Clipper) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2020-12-07] CHR Extension: (Gmail) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25] CHR Extension: (Chrome Media Router) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-27] CHR Extension: (Bellen via Skype) - C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\poghlonenmjdkfghdpfomojhhfggildk [2016-05-25] CHR Profile: C:\Users\wendy_000\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-10-25] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Opera: ======= OPR Profile: C:\Users\wendy_000\AppData\Roaming\Opera Software\Opera Stable [2021-01-24] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\wendy_000\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-29] ==================== Services (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-02-10] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc. -> Apple Inc.) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) S2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417304 2016-04-26] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) S2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [921112 2016-04-26] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052944 2020-07-14] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-27] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-27] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-01-25] (Dropbox, Inc -> Dropbox, Inc.) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated -> Acer Incorporated) R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [437472 2020-09-22] (Express Vpn LLC -> ExpressVPN) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Bestand niet getekend] S3 Intel(R) TA SAM; C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation) R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe [153296 2016-04-26] (Intel(R) Technology Access -> Intel(R) Corporation) R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [478416 2016-04-26] (Intel(R) Technology Access -> Intel(R) Corporation) S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [625632 2015-07-22] (LENOVO -> Lenovo) R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [466664 2014-06-10] (Acer Incorporated -> Acer Incorporate) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-03-07] (Malwarebytes Inc -> Malwarebytes) R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Bestand niet getekend] R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporated -> Acer Incorporate) R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] (CyberLink -> ) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12757520 2020-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (Acer Incorporated -> acer) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) ===================== Drivers (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [154168 2016-04-26] (Bluestack Systems, Inc. -> BlueStack Systems) R2 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2016-04-06] (Bluestack Systems, Inc. -> Bluestack System Inc.) S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [37024 2020-09-22] (ExprsVPN LLC -> ExpressVPN) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-27] (Malwarebytes Inc -> Malwarebytes) R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [50448 2015-07-28] (Intel(R) Technology Access -> Intel Corporation) R3 NetTap630; C:\WINDOWS\system32\DRIVERS\nettap630.sys [67800 2015-04-30] (Intel(R) Technology Access -> Intel Corporation) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated) R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-24] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [52904 2020-09-22] (ExprsVPN LLC -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation) R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-02-03 14:15 - 2021-02-03 14:16 - 002297856 _____ (Farbar) C:\Users\wendy_000\Downloads\FRST64 (2).exe 2021-02-03 13:46 - 2021-02-03 13:47 - 000033585 _____ C:\Users\wendy_000\Desktop\Addition.txt 2021-02-03 12:55 - 2021-02-03 13:46 - 000035737 _____ C:\Users\wendy_000\Desktop\FRST.txt 2021-01-28 22:40 - 2021-01-28 22:40 - 000000000 ____D C:\Users\wendy_000\Downloads\Autoruns 2021-01-28 22:36 - 2021-01-28 22:36 - 002670815 _____ C:\Users\wendy_000\Downloads\Autoruns.zip 2021-01-28 13:37 - 2021-01-28 13:37 - 001185861 _____ C:\Users\wendy_000\Downloads\AI-MARKETING-PRESENTATIE-NL (3).pdf 2021-01-28 13:33 - 2021-01-28 13:33 - 001185861 _____ C:\Users\wendy_000\Downloads\AI-MARKETING-PRESENTATIE-NL (2).pdf 2021-01-28 13:33 - 2021-01-28 13:33 - 001185861 _____ C:\Users\wendy_000\Downloads\AI-MARKETING-PRESENTATIE-NL (1).pdf 2021-01-28 13:32 - 2021-01-28 13:32 - 001185861 _____ C:\Users\wendy_000\Downloads\AI-MARKETING-PRESENTATIE-NL.pdf 2021-01-27 12:17 - 2021-01-27 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-01-26 22:11 - 2021-01-26 22:11 - 000022536 _____ C:\Users\wendy_000\Downloads\Instap-opties-.xlsb-bestand-Erik.xlsx 2021-01-26 20:01 - 2021-01-26 20:01 - 000010056 _____ C:\Users\wendy_000\Downloads\VO Artist Tracker (JB091220SQ)_Wendy C (2).xlsx 2021-01-25 18:59 - 2021-01-25 19:02 - 000000000 ____D C:\Users\wendy_000\Documents\Captura 2021-01-25 17:12 - 2021-01-25 17:12 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2021-01-25 17:12 - 2021-01-25 17:12 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2021-01-25 17:12 - 2021-01-25 17:12 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2021-01-25 17:12 - 2021-01-25 17:12 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2021-01-24 19:31 - 2021-01-24 19:31 - 030584912 _____ (Piriform Software Ltd) C:\Users\wendy_000\Downloads\ccsetup576.exe 2021-01-24 19:08 - 2021-01-24 19:11 - 000178709 _____ C:\Users\wendy_000\Downloads\WhatsApp Image 2021-01-24 at 19.08.14.jpeg 2021-01-23 19:55 - 2021-01-23 19:55 - 000000023 _____ C:\Users\wendy_000\Downloads\recovery-code.txt 2021-01-23 16:39 - 2021-01-23 16:39 - 000029323 _____ C:\Users\wendy_000\Downloads\Report.pdf 2021-01-21 15:43 - 2021-01-21 15:43 - 000668190 _____ C:\Users\wendy_000\Downloads\e-mailgeheimen.nl-rapport (1).zip 2021-01-19 22:39 - 2021-01-19 22:41 - 000000000 ____D C:\Users\wendy_000\Documents\sleep music 2021-01-19 22:35 - 2021-01-19 22:38 - 532875698 _____ C:\Users\wendy_000\Downloads\Deepest Sleep Music _ 432Hz Sleep Music to Fall Asleep Fast _ NO ADS _.m4a 2021-01-19 22:31 - 2021-01-19 22:35 - 474032950 _____ C:\Users\wendy_000\Downloads\432Hz ➤ Meditation Sleeping Music - Music To Help You Sleep - Relaxing Sleep Music.m4a 2021-01-19 22:27 - 2021-01-19 22:30 - 582206203 _____ C:\Users\wendy_000\Downloads\White Noise, Black Screen • 10 hours • No ads, no interruptions.m4a 2021-01-19 22:20 - 2021-01-19 22:26 - 593058472 _____ C:\Users\wendy_000\Downloads\The Best SLEEP Music _ 432hz - Healing Frequency _ Deeply Relaxing _ Raise Positive Vibrations.m4a 2021-01-18 22:47 - 2021-01-20 17:54 - 000003408 _____ C:\Users\wendy_000\Documents\twitter research.txt 2021-01-15 13:06 - 2021-01-15 13:06 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-01-15 13:06 - 2021-01-15 13:06 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-01-15 13:06 - 2021-01-15 13:06 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2021-01-15 13:06 - 2021-01-15 13:06 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax 2021-01-15 13:06 - 2021-01-15 13:06 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2021-01-15 13:06 - 2021-01-15 13:06 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-01-15 13:05 - 2021-01-15 13:05 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2021-01-15 13:05 - 2021-01-15 13:05 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2021-01-15 13:05 - 2021-01-15 13:05 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-01-15 13:05 - 2021-01-15 13:05 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2021-01-15 13:05 - 2021-01-15 13:05 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-01-15 13:04 - 2021-01-15 13:04 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2021-01-15 13:04 - 2021-01-15 13:04 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax 2021-01-15 13:03 - 2021-01-15 13:03 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2021-01-15 13:03 - 2021-01-15 13:03 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2021-01-15 13:03 - 2021-01-15 13:03 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2021-01-15 13:03 - 2021-01-15 13:03 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-01-15 13:02 - 2021-01-15 13:02 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2021-01-15 13:02 - 2021-01-15 13:02 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2021-01-15 13:02 - 2021-01-15 13:02 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-01-15 13:01 - 2021-01-15 13:01 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-01-15 13:01 - 2021-01-15 13:01 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-01-15 13:01 - 2021-01-15 13:01 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-01-15 12:59 - 2021-01-15 12:59 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-01-15 12:59 - 2021-01-15 12:59 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-01-15 12:59 - 2021-01-15 12:59 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-01-15 12:59 - 2021-01-15 12:59 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl 2021-01-15 12:58 - 2021-01-15 12:58 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2021-01-15 12:57 - 2021-01-15 12:57 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2021-01-15 12:57 - 2021-01-15 12:57 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2021-01-15 12:57 - 2021-01-15 12:57 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-01-15 12:57 - 2021-01-15 12:57 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2021-01-15 12:55 - 2021-01-15 12:55 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-01-15 12:55 - 2021-01-15 12:55 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-01-15 12:55 - 2021-01-15 12:55 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2021-01-15 12:53 - 2021-01-15 12:53 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-01-15 12:53 - 2021-01-15 12:53 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2021-01-15 12:53 - 2021-01-15 12:53 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-01-15 12:52 - 2021-01-15 12:52 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2021-01-15 12:52 - 2021-01-15 12:52 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-01-12 18:56 - 2021-01-12 18:56 - 002083044 _____ C:\Users\wendy_000\Downloads\0008-0016newhannapack2_2_2.wav 2021-01-12 18:56 - 2021-01-12 18:56 - 001150932 _____ C:\Users\wendy_000\Downloads\0056-0059newhannapack2_2_1.wav 2021-01-11 16:32 - 2021-01-11 16:32 - 005254804 _____ C:\Users\wendy_000\Downloads\0410-0436Helenecutextra.wav 2021-01-11 16:32 - 2021-01-11 16:32 - 002017136 _____ C:\Users\wendy_000\Downloads\2ndlasthelenecut.wav 2021-01-11 16:32 - 2021-01-11 16:32 - 001298432 _____ C:\Users\wendy_000\Downloads\lasthelenecut.wav 2021-01-11 12:36 - 2021-01-11 12:36 - 000000000 ____D C:\Users\wendy_000\Downloads\Pack 3 (1) 2021-01-11 12:35 - 2021-01-11 13:17 - 077931170 _____ C:\Users\wendy_000\Downloads\Pack 3.zip 2021-01-11 12:35 - 2021-01-11 13:03 - 105360057 _____ C:\Users\wendy_000\Downloads\Pack 3 (1).zip 2021-01-11 12:07 - 2021-01-11 12:28 - 039059935 _____ C:\Users\wendy_000\Downloads\Pack 2.zip 2021-01-11 11:16 - 2021-01-11 11:16 - 000000000 ____D C:\Users\wendy_000\Downloads\Pack 1 2021-01-11 11:15 - 2021-01-11 11:16 - 115946478 _____ C:\Users\wendy_000\Downloads\Pack 1.zip 2021-01-08 12:06 - 2021-01-08 12:06 - 000310213 _____ C:\Users\wendy_000\Downloads\671756148_1610103987795.pdf 2021-01-08 12:05 - 2021-01-08 12:05 - 000359048 _____ C:\Users\wendy_000\Downloads\671756148_1610103949415.pdf 2021-01-08 11:57 - 2021-01-08 11:57 - 000359048 _____ C:\Users\wendy_000\Downloads\671756148_1610103473366.pdf 2021-01-08 11:57 - 2021-01-08 11:57 - 000358710 _____ C:\Users\wendy_000\Downloads\671756148_1610103441324.pdf 2021-01-08 11:56 - 2021-01-08 11:56 - 000359114 _____ C:\Users\wendy_000\Downloads\671756148_1610103405915.pdf 2021-01-08 11:55 - 2021-01-08 11:55 - 000310213 _____ C:\Users\wendy_000\Downloads\671756148_1610103305223.pdf 2021-01-07 12:18 - 2021-01-07 12:18 - 001303898 _____ C:\Users\wendy_000\Downloads\capitol.mp4 2021-01-07 12:16 - 2021-01-07 12:16 - 001303898 _____ C:\Users\wendy_000\Documents\capitol.mp4 2021-01-06 19:07 - 2021-01-06 19:08 - 017762874 _____ C:\Users\wendy_000\Downloads\noise Removed sample (1).wav 2021-01-05 18:04 - 2021-01-05 18:04 - 017762874 _____ C:\Users\wendy_000\Downloads\noise Removed sample.wav 2021-01-05 17:16 - 2021-01-05 17:16 - 032879638 _____ C:\Users\wendy_000\Downloads\MarinaM12b.wav 2021-01-04 15:40 - 2021-01-04 15:42 - 074518646 _____ C:\Users\wendy_000\Downloads\Lina Mobile EN (1).mp4 2021-01-04 15:39 - 2021-01-04 15:39 - 074628501 _____ C:\Users\wendy_000\Downloads\Lina Mobile Fr.mp4 2021-01-04 15:37 - 2021-01-04 15:38 - 074518646 _____ C:\Users\wendy_000\Downloads\Lina Mobile EN.mp4 ==================== Een maand (gewijzigd) ================== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2021-02-03 14:35 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-03 14:24 - 2019-10-23 14:39 - 000037174 _____ C:\Users\wendy_000\Downloads\FRST.txt 2021-02-03 14:22 - 2019-10-23 14:38 - 000000000 ____D C:\FRST 2021-02-03 12:50 - 2020-10-25 12:22 - 002297856 _____ (Farbar) C:\Users\wendy_000\Desktop\FRST64 (1).exe 2021-02-03 12:50 - 2019-10-30 17:25 - 000000000 ____D C:\Users\wendy_000\Desktop\FRST-OlderVersion 2021-02-03 12:28 - 2020-09-17 20:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-02-03 12:04 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-02-03 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-02-03 11:16 - 2017-06-05 09:29 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2021-02-03 11:16 - 2015-01-20 05:48 - 000000000 __SHD C:\Users\wendy_000\IntelGraphicsProfiles 2021-02-03 11:01 - 2018-03-28 20:33 - 000000000 ____D C:\Program Files\CCleaner 2021-02-03 10:48 - 2017-06-05 09:30 - 000000000 ____D C:\ProgramData\NVIDIA 2021-02-02 22:22 - 2015-01-23 15:13 - 000002325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-02-02 22:22 - 2015-01-23 15:13 - 000002284 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-02-02 22:22 - 2015-01-23 15:13 - 000002284 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2021-02-02 15:52 - 2020-08-25 14:44 - 000000000 ____D C:\Temp Reaper 2021-02-01 22:30 - 2020-09-17 21:30 - 000003418 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-02-01 22:30 - 2020-09-17 21:30 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-01-30 23:26 - 2020-06-18 08:50 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-01-30 23:26 - 2020-06-18 08:50 - 000002263 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-01-30 23:26 - 2020-06-18 08:50 - 000002263 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2021-01-30 22:53 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-01-28 22:26 - 2017-12-05 11:51 - 000000000 ____D C:\Users\wendy_000\AppData\Local\Packages 2021-01-28 18:59 - 2016-10-18 20:55 - 000000000 ____D C:\Users\wendy_000\AppData\Local\ElevatedDiagnostics 2021-01-27 12:19 - 2017-02-27 16:31 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-01-26 16:03 - 2015-11-26 18:45 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-01-25 18:53 - 2019-03-20 16:35 - 000000000 ____D C:\Users\wendy_000\AppData\Local\PlaceholderTileLogoFolder 2021-01-25 18:53 - 2018-07-11 17:13 - 000000000 ____D C:\ProgramData\Packages 2021-01-25 10:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-01-24 20:51 - 2020-09-17 21:30 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-01-24 20:51 - 2018-03-28 20:33 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk 2021-01-24 20:51 - 2018-03-28 20:33 - 000000867 _____ C:\ProgramData\Desktop\CCleaner.lnk 2021-01-24 20:32 - 2016-10-18 14:09 - 000000000 ____D C:\Users\wendy_000\AppData\Roaming\TeamViewer 2021-01-24 20:30 - 2020-09-15 12:57 - 000000000 ___DC C:\WINDOWS\Panther 2021-01-24 19:11 - 2020-12-26 14:22 - 000000000 ____D C:\Users\wendy_000\Documents\te koop 2021-01-24 17:45 - 2020-04-26 11:45 - 000000000 ____D C:\Users\wendy_000\Documents\EURO 2021-01-23 12:24 - 2020-09-17 21:30 - 000003990 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2021-01-23 12:24 - 2020-09-17 21:30 - 000003758 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2021-01-23 12:24 - 2017-02-27 16:31 - 000000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2021-01-23 12:24 - 2017-02-27 16:31 - 000000926 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2021-01-22 13:02 - 2015-01-19 20:02 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2021-01-21 17:08 - 2020-05-18 10:21 - 000000000 ____D C:\Users\wendy_000\AppData\Roaming\Telegram Desktop 2021-01-21 15:51 - 2020-09-17 20:51 - 001771328 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-01-21 15:51 - 2019-12-07 16:12 - 000786922 _____ C:\WINDOWS\system32\perfh013.dat 2021-01-21 15:51 - 2019-12-07 16:12 - 000154088 _____ C:\WINDOWS\system32\perfc013.dat 2021-01-20 13:01 - 2016-09-20 13:28 - 000097528 _____ C:\Users\wendy_000\AppData\Local\GDIPFONTCACHEV1.DAT 2021-01-20 11:43 - 2015-01-19 15:55 - 000000000 ____D C:\Program Files\Microsoft Office 15 2021-01-19 12:44 - 2020-09-17 21:30 - 000003954 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1448448647 2021-01-19 12:44 - 2019-07-16 09:47 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera-browser.lnk 2021-01-19 12:44 - 2015-11-25 11:49 - 000000000 ____D C:\Program Files (x86)\Opera 2021-01-17 23:04 - 2020-09-17 21:30 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-01-17 23:04 - 2020-09-17 21:30 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-01-17 12:17 - 2017-02-27 17:13 - 000000000 ___RD C:\Users\wendy_000\Dropbox 2021-01-16 14:29 - 2020-09-17 21:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-01-16 14:29 - 2020-09-17 20:26 - 000008192 ___SH C:\DumpStack.log.tmp 2021-01-16 00:41 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2021-01-16 00:31 - 2020-09-17 20:26 - 000459408 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-01-16 00:24 - 2020-09-17 20:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB 2021-01-16 00:24 - 2019-12-07 16:15 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-01-16 00:24 - 2019-12-07 16:15 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-01-16 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-01-15 18:20 - 2020-11-25 19:38 - 000004241 _____ C:\Users\wendy_000\Documents\trading view uitleg.txt 2021-01-15 13:21 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-01-15 12:52 - 2020-09-17 20:35 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2021-01-15 11:49 - 2020-09-15 12:04 - 000000000 ___HD C:\$WinREAgent 2021-01-15 11:37 - 2015-01-19 17:55 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-01-15 11:30 - 2015-01-19 17:55 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-01-14 18:23 - 2015-03-12 14:28 - 000000000 ____D C:\ProgramData\BlueStacksSetup 2021-01-14 17:54 - 2020-06-03 13:29 - 000000000 ____D C:\Users\wendy_000\Downloads\Telegram Desktop 2021-01-08 12:52 - 2020-10-28 10:55 - 000000000 ____D C:\Users\wendy_000\Desktop\VOICE WERK WENDY ==================== Bestanden in de root van sommige mappen ======== 2018-04-06 10:42 - 2018-04-06 10:42 - 000003584 _____ () C:\Users\wendy_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ==================== SigCheck ============================ (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)