Eerste gevraagde logje van de frst scan-
-
de compostmeester - Lid geworden op: 12 aug 2006, 23:22
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x86) Versie: 20-08-2017
Gestart door Johan (Beheerder) op JOHAN (24-08-2017 07:47:41)
Gestart vanaf C:\Users\Johan\Desktop
Geladen Profielen: Johan (Beschikbare Profielen: defaultuser0 & Johan)
Platform: Microsoft Windows 10 Pro Versie 1703 (X86) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processen (gefilterd) =================
(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)
(CANON INC.) C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe
() C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
() C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\nsbu.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(© pdfforge GmbH.) C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(Wondershare) C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\nsbu.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Update\DropboxUpdate.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Register (gefilterd) ====================
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3487032 2017-08-22] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\Run: [Gadwin PrintScreen (32-bit)] => C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe [11507872 2014-10-15] (Gadwin Systems)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\Run: [Kaspersky Software Updater] => C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [29184 2017-03-18] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\\SOPHOS~1.DLL => Geen bestand
BootExecute: autocheck autochk * sdnclean.exe
GroupPolicy: Restrictie ? <==== AANDACHT
GroupPolicyScripts: Restrictie <==== AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT
==================== Internet (gefilterd) ====================
(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)
Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2812e8b1-c471-4686-aed8-1a3e61848346}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6f8cad46-0ee6-48c2-b95f-fd78c26d9916}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <==== AANDACHT
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-2a7df7a4
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NSBU&chn=1011&geo=BE&ver=22.10.0.85&locale=nl_BE&guid=A959ADFB-CBDF-4736-B9FD-BA2DAAE3AC65&doi=2016-09-01&gct=kwd&qsrc=2869
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-07-29] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files\LastPass\LPToolbar.dll [2017-02-11] (LastPass)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
BHO: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files\PDF Architect 5\creator-ie-helper.dll [2017-05-08] (pdfforge GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-07-29] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files\LastPass\LPToolbar.dll [2017-02-11] (LastPass)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-05-08] (pdfforge GmbH)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
Toolbar: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Handler: WSAllMyTubechrome - Geen CLSID Waarde -
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2017-06-14]
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.2.0.0_neutral__c1wakc4j0nefm [2017-07-13]
Edge Extension: (LastPass: Free Password Manager) -> hdokiejnpimakedhajhdlcegeplioahd_LastPassLastPassFreePasswordManager_qq0fmhteeht3j => C:\Program Files\WindowsApps\LastPass.LastPassFreePasswordManager_4.1.45.0_neutral__qq0fmhteeht3j [2017-06-23]
FireFox:
========
FF DefaultProfile: ba8xwqi9.default
FF ProfilePath: C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default [2017-08-22]
FF NewTab: Mozilla\Firefox\Profiles\ba8xwqi9.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ba8xwqi9.default -> Search Provided by Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ba8xwqi9.default -> Search Provided by Bing
FF Homepage: Mozilla\Firefox\Profiles\ba8xwqi9.default -> hxxps://www.google.be
FF Keyword.URL: Mozilla\Firefox\Profiles\ba8xwqi9.default -> user_pref("keyword.URL", true);
FF Extension: (Belgium eID) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\belgiumeid@eid.belgium.be.xpi [2017-07-01]
FF Extension: (Enhancer for YouTube™) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2017-08-17]
FF Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\firefox@ghostery.com.xpi [2017-08-14]
FF Extension: (Privacy Badger) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2017-08-17]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2017-08-14]
FF Extension: (S3.Google Translator) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\s3google@translator.xpi [2017-06-05]
FF Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\support@lastpass.com [2017-08-17]
FF Extension: (Adblock Plus) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-09]
FF Extension: (Belgium eID) - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-02-11]
FF HKLM\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.9.0.71\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.9.0.71\coFFAddon [2017-08-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-09] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Geen bestand]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Geen bestand]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-07-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-07-29] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files\LastPass\nplastpass.dll [2017-02-11] (LastPass)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
FF Plugin: PDF Architect 5 -> C:\Program Files\PDF Architect 5\np-previewer.dll [2017-05-08] (pdfforge GmbH)
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Update;version=3 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Update;version=9 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.be/"
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default [2017-08-22]
CHR Extension: (Google Presentaties) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-09]
CHR Extension: (Google Documenten) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-09]
CHR Extension: (Google Drive) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-09]
CHR Extension: (YouTube) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-09]
CHR Extension: (Adblock Plus) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-13]
CHR Extension: (Norton Security Toolbar) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2017-08-15]
CHR Extension: (Google Spreadsheets) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-09]
CHR Extension: (Small Waterfall) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjmpmheefpadfkjkkeeeanlkhdlpmeom [2017-02-10]
CHR Extension: (Offline Documenten) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-10]
CHR Extension: (Vertalen.nu) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\giapagjeblcapfphboclikepoeelhgkj [2017-02-11]
CHR Extension: (Norton Safe) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2017-06-17]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2017-08-02]
CHR Extension: (Advertenties blocker voor YouTube ™) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2017-08-14]
CHR Extension: (Norton Identity Safe) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-05-07]
CHR Extension: (Ghostery) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2017-08-10]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Vertalen.nu woordenboek) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooiedhfkmchachmfaehplpcacmdleobg [2017-02-11]
CHR Extension: (Photobucket Album Downloader) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\papfjgooflcelknccdephbdnhogadkfj [2017-02-17]
CHR Extension: (Gmail) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-09]
CHR Extension: (Chrome Media Router) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-30]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\Exts\Chrome.crx [2017-08-15]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR StartupUrls:
OPR Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2017-08-15]
OPR Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\cfbekbndggmbdkfhjandenfihkdkndil [2017-04-21]
OPR Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2017-07-01]
OPR Extension: (Custom Home Page) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\pdkmcmpnodclbbopghhicfkifklpokkf [2017-04-18]
OPR Extension: (AdBlocker Ultimate) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\pmpmnoinbkdojlnknogfeoagmhmhgakc [2017-02-10]
==================== Services (gefilterd) ====================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R2 CIJSRegister; C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe [153736 2016-06-02] (CANON INC.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-10] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-10] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [43336 2017-08-22] (Dropbox, Inc.)
R2 HuaweiHiSuiteService.exe; C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe [155848 2016-11-25] () [Bestand niet getekend]
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [387144 2017-03-31] ()
R3 ksu; C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
R2 NSBU; C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\NSBU.exe [288504 2017-07-15] (Symantec Corporation)
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2468128 2017-05-08] (pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [979744 2017-05-08] (pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [778528 2017-05-08] (pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (© pdfforge GmbH.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2545848 2017-03-19] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-06-20] (Microsoft Corporation)
R2 WsAppService; C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe [437392 2016-11-16] (Wondershare)
===================== Drivers (gefilterd) ======================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
S3 ACSSCR; C:\WINDOWS\system32\DRIVERS\a38usb.sys [65544 2016-11-28] (Advanced Card Systems Ltd.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [35760 2016-12-26] ()
R1 BHDrvx86; C:\Program Files\Norton Security with Backup\NortonData\22.9.0.71\Definitions\BASHDefs\20170813.001\BHDrvx86.sys [1359520 2017-08-07] (Symantec Corporation)
R1 ccSet_NSBU; C:\WINDOWS\system32\drivers\NSBU\160A000.055\ccSetx86.sys [147072 2017-07-14] (Symantec Corporation)
R3 cvusbdrv; C:\WINDOWS\System32\Drivers\cvusbdrv.sys [52352 2017-02-22] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [393344 2017-08-15] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [126592 2017-08-15] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton Security with Backup\NortonData\22.9.0.71\Definitions\IPSDefs\20170816.001\IDSvix86.sys [845976 2017-08-12] (Symantec Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [221600 2017-08-22] (Malwarebytes)
S1 MpKslf114526f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B959E5EA-0B74-4F6F-8237-B2E944DD28EA}\MpKslf114526f.sys [39168 2017-08-18] () [Bestand niet getekend]
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7530736 2013-12-12] (Intel Corporation)
R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [100272 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212016 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [119600 2016-07-05] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [135856 2016-07-05] (Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [68376 2016-07-06] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [116144 2016-07-05] (Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [77232 2016-07-05] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [130736 2016-07-05] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [316336 2016-07-05] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [233264 2016-07-05] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [117808 2016-07-05] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [261808 2016-07-05] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [111536 2016-07-05] (Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [152336 2017-02-12] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [112400 2017-02-12] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [175888 2017-02-20] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [121616 2017-02-12] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [132880 2017-02-12] (Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [107792 2017-02-12] (Panda Security, S.L.)
S3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [60200 2016-08-11] (Panda Security, S.L.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-09-08] (Synaptics Incorporated)
R3 SRTSP; C:\WINDOWS\System32\Drivers\NSBU\160A000.055\SRTSP.SYS [659616 2017-07-14] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\NSBU\160A000.055\SRTSPX.SYS [41112 2017-07-14] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NSBU\160A000.055\SYMEFASI.SYS [1393792 2017-07-14] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NSBU\160A000.055\SYMELAM.SYS [20512 2017-07-14] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [89264 2017-08-15] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\NSBU\160A000.055\Ironx86.SYS [241888 2017-07-14] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\NSBU\160A000.055\SYMNETS.SYS [423552 2017-07-14] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een Maand Gemaakt bestanden en mappen ========
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
2017-08-24 07:47 - 2017-08-24 07:47 - 001792512 _____ (Farbar) C:\Users\Johan\Desktop\FRST.exe
2017-08-24 07:47 - 2017-08-24 07:47 - 000026566 _____ C:\Users\Johan\Desktop\FRST.txt
2017-08-24 07:47 - 2017-08-24 07:47 - 000000000 ____D C:\Users\Johan\Desktop\FRST-OlderVersion
2017-08-24 07:45 - 2017-08-24 07:45 - 001792512 _____ (Farbar) C:\Users\Johan\Downloads\FRST (1).exe
2017-08-24 07:42 - 2017-08-24 07:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-08-24 07:39 - 2017-08-24 07:39 - 000002087 _____ C:\Users\Public\Desktop\Google Slides.lnk
2017-08-24 07:39 - 2017-08-24 07:39 - 000002085 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2017-08-24 07:39 - 2017-08-24 07:39 - 000002075 _____ C:\Users\Public\Desktop\Google Docs.lnk
2017-08-22 23:32 - 2017-08-22 23:32 - 000001048 _____ C:\Users\Johan\Desktop\HijackThis - Snelkoppeling.lnk
2017-08-22 18:55 - 2017-08-22 18:55 - 000043336 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-08-22 18:55 - 2017-08-22 18:55 - 000035432 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-08-22 18:55 - 2017-08-22 18:55 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-08-22 18:55 - 2017-08-22 18:55 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-08-22 18:42 - 2017-08-22 18:42 - 000002074 _____ C:\Users\Johan\Desktop\Quick Menu.lnk
2017-08-17 18:18 - 2017-08-17 18:21 - 000055549 _____ C:\Users\Johan\Downloads\Addition.txt
2017-08-17 18:17 - 2017-08-24 07:47 - 000000000 ____D C:\FRST
2017-08-17 18:17 - 2017-08-17 18:21 - 000072057 _____ C:\Users\Johan\Downloads\FRST.txt
2017-08-16 18:54 - 2017-02-27 23:13 - 000454232 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20170816-185404.backup
2017-08-16 18:38 - 2017-08-22 21:48 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-08-16 18:37 - 2017-08-16 18:37 - 051725936 _____ (Safer-Networking Ltd. ) C:\Users\Johan\Downloads\spybotsd-2.6.46.exe
2017-08-16 18:23 - 2017-08-16 18:23 - 000001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera-browser.lnk
2017-08-16 14:49 - 2017-08-16 14:50 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2017-08-16 14:49 - 2017-08-16 14:49 - 000804936 _____ C:\Users\Johan\Downloads\dvd-creator_setup_full619.exe
2017-08-16 14:32 - 2017-08-16 14:33 - 144507904 _____ (Online Media Technologies Ltd. ) C:\Users\Johan\Downloads\AVSVideoEditor.exe
2017-08-15 23:49 - 2017-08-15 23:49 - 133741288 _____ (OpenShot Studios, LLC ) C:\Users\Johan\Downloads\OpenShot-v2.3.4-x86_64.exe
2017-08-15 22:51 - 2017-08-15 22:51 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2017-08-15 22:49 - 2017-08-15 22:49 - 000000000 ____D C:\Program Files\FreeCodecPack
2017-08-15 22:47 - 2017-08-15 22:48 - 059098016 _____ (Digital Wave Ltd ) C:\Users\Johan\Downloads\FreeStudio_6.6.39.707_d.exe
2017-08-15 19:03 - 2017-08-15 22:24 - 000000000 ____D C:\Program Files\Common Files\AVSMedia
2017-08-15 19:02 - 2017-08-15 19:07 - 000000000 ____D C:\ProgramData\AVS4YOU
2017-08-15 19:02 - 2012-03-23 18:59 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3a.dll
2017-08-15 19:01 - 2017-08-15 19:01 - 065536184 _____ (Online Media Technologies Ltd. ) C:\Users\Johan\Downloads\AVSVideoConverter.exe
2017-08-15 17:58 - 2017-08-15 17:58 - 000000000 ____D C:\Users\Johan\Downloads\Ashampoo Burning Studio FREE
2017-08-15 17:54 - 2017-08-15 17:54 - 000001366 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio FREE.lnk
2017-08-15 17:53 - 2017-08-15 17:53 - 031700392 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Johan\Downloads\ashampoo_burning_studio_free_24045.exe
2017-08-15 11:45 - 2017-08-15 11:45 - 000002508 _____ C:\Users\Public\Desktop\Norton Security with Backup.lnk
2017-08-15 11:44 - 2017-08-15 11:44 - 000089264 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
2017-08-15 10:56 - 2017-08-15 11:44 - 000008232 _____ C:\WINDOWS\system32\Drivers\SYMEVENT.CAT
2017-08-15 10:56 - 2017-08-15 11:20 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2017-08-15 10:55 - 2017-08-15 11:45 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security with Backup
2017-08-15 10:55 - 2017-08-15 10:55 - 000000000 ____D C:\Program Files\Norton Security with Backup
2017-08-15 10:54 - 2017-08-15 10:55 - 000000000 ____D C:\Program Files\NortonInstaller
2017-08-15 10:54 - 2017-08-15 10:54 - 001027864 _____ (Symantec Corporation) C:\Users\Johan\Downloads\NSBUDownloader (1).exe
2017-08-15 10:43 - 2017-08-15 10:43 - 014417536 _____ (Symantec Corporation) C:\Users\Johan\Downloads\NRnR.exe
2017-08-14 18:15 - 2017-08-22 18:41 - 000000000 ____D C:\Users\Johan\AppData\Roaming\Canon
2017-08-14 18:15 - 2017-08-14 18:15 - 000000000 ___HD C:\ProgramData\CanonIJQuickMenu
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Canon Easy-WebPrint EX2
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Canon Easy-WebPrint EX
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\ProgramData\CanonIJWSpt
2017-08-14 13:57 - 2017-08-14 13:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon TS5000 series Schermhandleiding
2017-08-14 13:54 - 2017-08-14 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon TS5000 series
2017-08-14 13:47 - 2017-08-14 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-08-14 13:46 - 2017-08-14 13:46 - 000000000 ___HD C:\ProgramData\CanonBJ
2017-08-14 13:46 - 2017-08-14 13:46 - 000000000 ___HD C:\Program Files\CanonBJ
2017-08-14 13:46 - 2016-06-20 05:00 - 000393728 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMDF.DLL
2017-08-14 13:46 - 2016-03-02 10:31 - 000346624 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFL.dll
2017-08-14 13:46 - 2016-02-15 10:05 - 000097280 _____ C:\WINDOWS\system32\CNC1802D.TBL
2017-08-14 13:46 - 2015-10-19 18:53 - 000477696 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFC.dll
2017-08-14 13:46 - 2015-10-19 18:53 - 000238592 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFI.dll
2017-08-14 13:46 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA.dll
2017-08-14 13:44 - 2017-08-14 18:15 - 000000000 ____D C:\ProgramData\CanonIJPLM
2017-08-14 13:44 - 2017-08-14 14:01 - 000000000 ____D C:\Program Files\Canon
2017-08-14 13:44 - 2017-08-14 13:44 - 000000000 ____D C:\ProgramData\Canon
2017-08-14 10:49 - 2017-08-14 10:49 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-11 09:00 - 2012-08-20 06:19 - 001534464 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\BrWi209c.dll
2017-08-11 08:58 - 2017-08-11 08:58 - 000000000 ____D C:\Users\Johan\Downloads\install
2017-08-10 23:40 - 2017-08-11 09:00 - 000000050 _____ C:\WINDOWS\system32\BRIDF10B.DAT
2017-08-10 23:39 - 2017-08-10 23:39 - 000000000 ____D C:\ProgramData\Brother
2017-08-10 23:38 - 2017-08-10 23:38 - 000000000 ____D C:\Users\Johan\Downloads\wlan_wiz
2017-08-10 23:37 - 2017-08-10 23:37 - 122970256 _____ (A.I.SOFT,INC.) C:\Users\Johan\Downloads\dcp-j715w-inst-C1-cd3.EXE
2017-08-10 23:30 - 2017-08-10 23:30 - 000000000 ____D C:\Users\Johan\Downloads\RemPnP
2017-08-10 23:29 - 2017-08-10 23:29 - 000472320 _____ (SEIKO EPSON CORPORATION) C:\Users\Johan\Downloads\delinf_10270.EXE
2017-08-09 19:25 - 2017-07-31 17:15 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-08-09 19:25 - 2017-07-31 17:15 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-08-08 19:44 - 2017-08-01 04:47 - 005862816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-08 19:44 - 2017-08-01 04:43 - 000273312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-08 19:44 - 2017-08-01 04:41 - 000095648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-08 19:44 - 2017-08-01 04:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-08 19:44 - 2017-08-01 04:36 - 000173984 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-08 19:44 - 2017-08-01 04:11 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-08-08 19:44 - 2017-08-01 04:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-08 19:44 - 2017-08-01 04:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 001831936 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-08 19:44 - 2017-08-01 04:01 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-08-08 19:44 - 2017-07-28 06:48 - 001972128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-08 19:44 - 2017-07-28 06:47 - 000572320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-08 19:44 - 2017-07-28 06:44 - 000239008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-08 19:44 - 2017-07-28 06:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-08 19:44 - 2017-07-28 06:39 - 000434592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-08 19:44 - 2017-07-28 06:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-08 19:44 - 2017-07-28 06:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-08 19:44 - 2017-07-28 06:33 - 002081184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-08 19:44 - 2017-07-28 06:21 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-08 19:44 - 2017-07-28 06:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-08 19:44 - 2017-07-28 06:20 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-08 19:44 - 2017-07-28 06:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-08 19:44 - 2017-07-28 06:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-08 19:44 - 2017-07-28 06:15 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-08 19:44 - 2017-07-28 06:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-08 19:44 - 2017-07-28 06:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-08 19:44 - 2017-07-28 06:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-08 19:44 - 2017-07-28 06:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-08-08 19:44 - 2017-07-28 06:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-08 19:44 - 2017-07-28 06:04 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-08 19:43 - 2017-08-01 04:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-08 19:43 - 2017-08-01 04:37 - 002023832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-08 19:43 - 2017-08-01 04:37 - 000582560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-08 19:43 - 2017-08-01 04:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-08 19:43 - 2017-08-01 04:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-08 19:43 - 2017-08-01 04:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-08 19:43 - 2017-08-01 04:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-08 19:43 - 2017-08-01 04:34 - 000060312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-08 19:43 - 2017-08-01 04:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-08 19:43 - 2017-08-01 04:20 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-08 19:43 - 2017-08-01 04:20 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-08 19:43 - 2017-08-01 04:20 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-08 19:43 - 2017-08-01 04:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-08 19:43 - 2017-08-01 04:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-08 19:43 - 2017-08-01 04:17 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2017-08-08 19:43 - 2017-08-01 04:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-08 19:43 - 2017-08-01 04:16 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-08 19:43 - 2017-08-01 04:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-08 19:43 - 2017-08-01 04:15 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-08 19:43 - 2017-08-01 04:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-08 19:43 - 2017-08-01 04:10 - 000905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-08 19:43 - 2017-08-01 04:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-08 19:43 - 2017-08-01 04:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-08-08 19:43 - 2017-08-01 04:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-08 19:43 - 2017-08-01 04:08 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-08 19:43 - 2017-08-01 04:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-08 19:43 - 2017-08-01 04:07 - 003447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 001585152 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-08 19:43 - 2017-08-01 04:06 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-08 19:43 - 2017-08-01 04:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-08 19:43 - 2017-08-01 04:01 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-08 19:43 - 2017-08-01 04:01 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-08-08 19:43 - 2017-08-01 00:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjet40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswdat10.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrepl40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000518144 _____ C:\WINDOWS\system32\msjetoledb40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxbde40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspbde40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd3x40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd2x40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjtes40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstext40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msltus40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjter40.dll
2017-08-08 19:43 - 2017-07-28 07:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 001854832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000358816 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000358816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-08 19:43 - 2017-07-28 06:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-08 19:43 - 2017-07-28 06:46 - 000698384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-08 19:43 - 2017-07-28 06:40 - 000755616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-08 19:43 - 2017-07-28 06:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 000597920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-08 19:43 - 2017-07-28 06:38 - 000216504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-08 19:43 - 2017-07-28 06:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-08 19:43 - 2017-07-28 06:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-08 19:43 - 2017-07-28 06:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-08 19:43 - 2017-07-28 06:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-08 19:43 - 2017-07-28 06:33 - 000440184 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-08 19:43 - 2017-07-28 06:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-08 19:43 - 2017-07-28 06:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-08 19:43 - 2017-07-28 06:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-08 19:43 - 2017-07-28 06:24 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-08 19:43 - 2017-07-28 06:21 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-08 19:43 - 2017-07-28 06:20 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-08 19:43 - 2017-07-28 06:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-08-08 19:43 - 2017-07-28 06:19 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-08 19:43 - 2017-07-28 06:18 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-08 19:43 - 2017-07-28 06:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000661504 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-08 19:43 - 2017-07-28 06:17 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-08 19:43 - 2017-07-28 06:17 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-08 19:43 - 2017-07-28 06:16 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-08 19:43 - 2017-07-28 06:13 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-08 19:43 - 2017-07-28 06:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 001513984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 000962048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-08 19:43 - 2017-07-28 06:09 - 002370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-08 19:43 - 2017-07-28 06:09 - 002040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 002122240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-08 19:43 - 2017-07-28 06:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-08 19:43 - 2017-07-28 06:06 - 001126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-08 19:43 - 2017-07-28 06:06 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-08 19:43 - 2017-07-28 06:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-08 19:43 - 2017-07-28 06:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-08 19:43 - 2017-07-28 06:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-08 19:43 - 2017-07-28 06:04 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-08 19:43 - 2017-07-28 06:03 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 001377280 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 001244160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-08 19:43 - 2017-07-28 06:01 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-08 19:42 - 2017-07-28 06:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-08 12:13 - 2017-08-08 12:18 - 1302233088 _____ C:\Users\Johan\Downloads\xubuntu-16.04.2-desktop-i386.iso
2017-08-07 23:31 - 2017-08-07 23:31 - 000000000 ____D C:\Users\Johan\AppData\Roaming\IObit
2017-08-07 23:30 - 2017-08-07 23:30 - 000001388 _____ C:\Users\Public\Desktop\Random Password Generator.lnk
2017-08-07 23:30 - 2017-08-07 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Random Password Generator
2017-08-07 23:30 - 2017-08-07 23:30 - 000000000 ____D C:\Program Files\IObit
2017-08-07 23:29 - 2017-08-07 23:29 - 003722312 _____ (IObit ) C:\Users\Johan\Downloads\rpg-setup_1.3.exe
2017-08-04 09:44 - 2017-08-04 09:44 - 000022701 _____ C:\Users\Johan\Downloads\dda0c8c4-f80b-4a1f-b817-ca19f2894793.tmp
2017-08-03 21:18 - 2017-08-15 17:55 - 000000000 ____D C:\Users\Johan\AppData\Roaming\Ashampoo
2017-08-03 21:17 - 2017-08-15 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2017-08-03 21:17 - 2017-08-03 21:17 - 000001382 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio 6 FREE.lnk
2017-08-03 21:17 - 2017-08-03 21:17 - 000000000 ____D C:\Users\Johan\AppData\Local\ashampoo
2017-08-03 21:04 - 2017-08-03 21:04 - 014340520 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Johan\Downloads\ashampoo_burning_studio_6_free_21592.exe
2017-08-03 09:23 - 2017-08-03 09:23 - 000131760 _____ C:\Users\Johan\Downloads\administratief personeel leesbevordering volwassenen (3).pdf
2017-07-29 12:51 - 2017-07-29 12:51 - 000095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2017-07-29 12:51 - 2017-07-29 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-07-29 12:51 - 2017-07-29 12:51 - 000000000 ____D C:\Program Files\Common Files\Java
2017-07-29 12:50 - 2017-07-29 12:50 - 000000000 ____D C:\Program Files\Java
2017-07-28 11:41 - 2017-07-28 11:41 - 001101419 _____ C:\Users\Johan\Downloads\clearly.crx
2017-07-28 11:31 - 2017-07-28 11:31 - 001833112 _____ (Epic Privacy Browser) C:\Users\Johan\Downloads\EpicSetup (1).exe
2017-07-27 12:00 - 2017-07-27 12:00 - 000002391 _____ C:\Users\Johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== Een Maand Gewijzigd bestanden en mappen ========
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
2017-08-24 07:47 - 2017-03-18 20:23 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-24 07:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-24 07:43 - 2017-02-10 23:27 - 000000000 ____D C:\Program Files\Dropbox
2017-08-24 07:39 - 2017-02-11 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-08-24 07:37 - 2017-03-18 20:21 - 000000000 ____D C:\WINDOWS\INF
2017-08-22 23:35 - 2017-04-13 21:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-22 23:35 - 2017-04-13 20:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-22 23:35 - 2017-02-11 10:36 - 000221600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-08-22 23:34 - 2017-03-18 08:02 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2017-08-22 22:46 - 2017-02-27 23:51 - 000000000 ____D C:\Users\Johan\Downloads\register Ccleaner
2017-08-22 22:39 - 2017-03-30 20:55 - 000000000 ____D C:\ProgramData\SecTaskMan
2017-08-22 22:36 - 2017-05-09 13:51 - 000000000 ____D C:\Users\Johan\AppData\Local\CrashDumps
2017-08-22 22:36 - 2017-04-27 22:00 - 000000000 ____D C:\WINDOWS\Minidump
2017-08-22 22:04 - 2017-02-10 07:58 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-08-22 22:03 - 2017-04-13 20:58 - 000000000 ____D C:\Users\Johan
2017-08-22 21:48 - 2017-02-27 22:46 - 000000079 _____ C:\WINDOWS\wininit.ini
2017-08-22 21:12 - 2017-02-09 22:00 - 000000000 ___RD C:\Users\Johan\OneDrive
2017-08-22 18:36 - 2017-02-10 07:58 - 000001194 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-22 18:36 - 2017-02-10 07:58 - 000001182 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-22 18:36 - 2017-02-10 07:58 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-22 18:34 - 2017-03-18 08:02 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-08-18 20:57 - 2017-02-10 00:01 - 000449704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-18 20:51 - 2017-07-14 02:15 - 000059936 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-08-18 20:17 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-17 18:37 - 2017-06-05 16:59 - 000000000 ____D C:\ProgramData\Ashampoo
2017-08-16 18:23 - 2017-02-10 08:38 - 000000000 ____D C:\Program Files\Opera
2017-08-16 18:22 - 2017-07-11 17:09 - 000001042 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-16 18:22 - 2017-02-09 22:45 - 000002318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-16 18:22 - 2017-02-09 22:45 - 000002306 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-16 15:36 - 2017-02-10 07:59 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Mozilla
2017-08-16 15:35 - 2017-02-16 12:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-08-16 15:35 - 2017-02-16 12:42 - 000000000 ____D C:\Program Files\Wondershare
2017-08-16 15:32 - 2017-02-16 12:43 - 000000000 ____D C:\Program Files\Common Files\Wondershare
2017-08-16 06:40 - 2017-03-18 20:23 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-08-15 17:54 - 2017-06-05 16:59 - 000000000 ____D C:\Program Files\Ashampoo
2017-08-15 12:02 - 2017-02-27 23:02 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-15 11:45 - 2017-05-07 23:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\NSBU
2017-08-15 11:01 - 2017-05-07 23:15 - 000000000 ____D C:\ProgramData\Norton
2017-08-14 14:03 - 2017-02-09 21:57 - 000000000 ____D C:\Users\Johan\AppData\Local\Packages
2017-08-14 13:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\Media
2017-08-14 12:02 - 2017-05-17 10:08 - 000000000 ____D C:\Program Files\PDF Architect 5
2017-08-13 14:20 - 2017-02-09 22:06 - 000000000 ____D C:\Users\Johan\AppData\Local\Comms
2017-08-11 09:00 - 2017-02-11 11:58 - 000000434 _____ C:\WINDOWS\BRWMARK.INI
2017-08-11 08:57 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-10 23:00 - 2017-02-10 14:39 - 000001097 _____ C:\Users\Johan\Desktop\PhotoFiltre 7.lnk
2017-08-10 22:49 - 2017-07-20 15:38 - 000001190 _____ C:\Users\Johan\Desktop\Paint.lnk
2017-08-10 19:45 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-08-09 19:50 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\rescache
2017-08-09 19:29 - 2017-04-13 21:11 - 002401898 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-09 19:29 - 2017-03-19 11:33 - 001115822 _____ C:\WINDOWS\system32\perfh013.dat
2017-08-09 19:29 - 2017-03-19 11:33 - 000249720 _____ C:\WINDOWS\system32\perfc013.dat
2017-08-09 19:26 - 2016-11-20 12:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-08-09 19:22 - 2017-04-13 20:56 - 000290776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\ShellExperiences
Gestart door Johan (Beheerder) op JOHAN (24-08-2017 07:47:41)
Gestart vanaf C:\Users\Johan\Desktop
Geladen Profielen: Johan (Beschikbare Profielen: defaultuser0 & Johan)
Platform: Microsoft Windows 10 Pro Versie 1703 (X86) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processen (gefilterd) =================
(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)
(CANON INC.) C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe
() C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
() C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\nsbu.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(© pdfforge GmbH.) C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(Wondershare) C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\nsbu.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Update\DropboxUpdate.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Register (gefilterd) ====================
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3487032 2017-08-22] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\Run: [Gadwin PrintScreen (32-bit)] => C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe [11507872 2014-10-15] (Gadwin Systems)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\Run: [Kaspersky Software Updater] => C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [29184 2017-03-18] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\\SOPHOS~1.DLL => Geen bestand
BootExecute: autocheck autochk * sdnclean.exe
GroupPolicy: Restrictie ? <==== AANDACHT
GroupPolicyScripts: Restrictie <==== AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT
==================== Internet (gefilterd) ====================
(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)
Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2812e8b1-c471-4686-aed8-1a3e61848346}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6f8cad46-0ee6-48c2-b95f-fd78c26d9916}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <==== AANDACHT
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-2a7df7a4
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NSBU&chn=1011&geo=BE&ver=22.10.0.85&locale=nl_BE&guid=A959ADFB-CBDF-4736-B9FD-BA2DAAE3AC65&doi=2016-09-01&gct=kwd&qsrc=2869
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-07-29] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files\LastPass\LPToolbar.dll [2017-02-11] (LastPass)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
BHO: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files\PDF Architect 5\creator-ie-helper.dll [2017-05-08] (pdfforge GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-07-29] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files\LastPass\LPToolbar.dll [2017-02-11] (LastPass)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-05-08] (pdfforge GmbH)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
Toolbar: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Handler: WSAllMyTubechrome - Geen CLSID Waarde -
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2017-06-14]
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.2.0.0_neutral__c1wakc4j0nefm [2017-07-13]
Edge Extension: (LastPass: Free Password Manager) -> hdokiejnpimakedhajhdlcegeplioahd_LastPassLastPassFreePasswordManager_qq0fmhteeht3j => C:\Program Files\WindowsApps\LastPass.LastPassFreePasswordManager_4.1.45.0_neutral__qq0fmhteeht3j [2017-06-23]
FireFox:
========
FF DefaultProfile: ba8xwqi9.default
FF ProfilePath: C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default [2017-08-22]
FF NewTab: Mozilla\Firefox\Profiles\ba8xwqi9.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ba8xwqi9.default -> Search Provided by Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ba8xwqi9.default -> Search Provided by Bing
FF Homepage: Mozilla\Firefox\Profiles\ba8xwqi9.default -> hxxps://www.google.be
FF Keyword.URL: Mozilla\Firefox\Profiles\ba8xwqi9.default -> user_pref("keyword.URL", true);
FF Extension: (Belgium eID) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\belgiumeid@eid.belgium.be.xpi [2017-07-01]
FF Extension: (Enhancer for YouTube™) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2017-08-17]
FF Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\firefox@ghostery.com.xpi [2017-08-14]
FF Extension: (Privacy Badger) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2017-08-17]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2017-08-14]
FF Extension: (S3.Google Translator) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\s3google@translator.xpi [2017-06-05]
FF Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\support@lastpass.com [2017-08-17]
FF Extension: (Adblock Plus) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-09]
FF Extension: (Belgium eID) - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-02-11]
FF HKLM\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.9.0.71\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.9.0.71\coFFAddon [2017-08-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-09] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Geen bestand]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Geen bestand]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-07-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-07-29] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files\LastPass\nplastpass.dll [2017-02-11] (LastPass)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
FF Plugin: PDF Architect 5 -> C:\Program Files\PDF Architect 5\np-previewer.dll [2017-05-08] (pdfforge GmbH)
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Update;version=3 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Update;version=9 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.be/"
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default [2017-08-22]
CHR Extension: (Google Presentaties) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-09]
CHR Extension: (Google Documenten) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-09]
CHR Extension: (Google Drive) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-09]
CHR Extension: (YouTube) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-09]
CHR Extension: (Adblock Plus) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-13]
CHR Extension: (Norton Security Toolbar) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2017-08-15]
CHR Extension: (Google Spreadsheets) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-09]
CHR Extension: (Small Waterfall) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjmpmheefpadfkjkkeeeanlkhdlpmeom [2017-02-10]
CHR Extension: (Offline Documenten) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-10]
CHR Extension: (Vertalen.nu) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\giapagjeblcapfphboclikepoeelhgkj [2017-02-11]
CHR Extension: (Norton Safe) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2017-06-17]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2017-08-02]
CHR Extension: (Advertenties blocker voor YouTube ™) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2017-08-14]
CHR Extension: (Norton Identity Safe) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-05-07]
CHR Extension: (Ghostery) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2017-08-10]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Vertalen.nu woordenboek) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooiedhfkmchachmfaehplpcacmdleobg [2017-02-11]
CHR Extension: (Photobucket Album Downloader) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\papfjgooflcelknccdephbdnhogadkfj [2017-02-17]
CHR Extension: (Gmail) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-09]
CHR Extension: (Chrome Media Router) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-30]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\Exts\Chrome.crx [2017-08-15]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR StartupUrls:
OPR Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2017-08-15]
OPR Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\cfbekbndggmbdkfhjandenfihkdkndil [2017-04-21]
OPR Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2017-07-01]
OPR Extension: (Custom Home Page) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\pdkmcmpnodclbbopghhicfkifklpokkf [2017-04-18]
OPR Extension: (AdBlocker Ultimate) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\pmpmnoinbkdojlnknogfeoagmhmhgakc [2017-02-10]
==================== Services (gefilterd) ====================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R2 CIJSRegister; C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe [153736 2016-06-02] (CANON INC.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-10] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-10] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [43336 2017-08-22] (Dropbox, Inc.)
R2 HuaweiHiSuiteService.exe; C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe [155848 2016-11-25] () [Bestand niet getekend]
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [387144 2017-03-31] ()
R3 ksu; C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
R2 NSBU; C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\NSBU.exe [288504 2017-07-15] (Symantec Corporation)
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2468128 2017-05-08] (pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [979744 2017-05-08] (pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [778528 2017-05-08] (pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (© pdfforge GmbH.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2545848 2017-03-19] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-06-20] (Microsoft Corporation)
R2 WsAppService; C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe [437392 2016-11-16] (Wondershare)
===================== Drivers (gefilterd) ======================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
S3 ACSSCR; C:\WINDOWS\system32\DRIVERS\a38usb.sys [65544 2016-11-28] (Advanced Card Systems Ltd.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [35760 2016-12-26] ()
R1 BHDrvx86; C:\Program Files\Norton Security with Backup\NortonData\22.9.0.71\Definitions\BASHDefs\20170813.001\BHDrvx86.sys [1359520 2017-08-07] (Symantec Corporation)
R1 ccSet_NSBU; C:\WINDOWS\system32\drivers\NSBU\160A000.055\ccSetx86.sys [147072 2017-07-14] (Symantec Corporation)
R3 cvusbdrv; C:\WINDOWS\System32\Drivers\cvusbdrv.sys [52352 2017-02-22] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [393344 2017-08-15] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [126592 2017-08-15] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton Security with Backup\NortonData\22.9.0.71\Definitions\IPSDefs\20170816.001\IDSvix86.sys [845976 2017-08-12] (Symantec Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [221600 2017-08-22] (Malwarebytes)
S1 MpKslf114526f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B959E5EA-0B74-4F6F-8237-B2E944DD28EA}\MpKslf114526f.sys [39168 2017-08-18] () [Bestand niet getekend]
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7530736 2013-12-12] (Intel Corporation)
R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [100272 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212016 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [119600 2016-07-05] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [135856 2016-07-05] (Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [68376 2016-07-06] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [116144 2016-07-05] (Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [77232 2016-07-05] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [130736 2016-07-05] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [316336 2016-07-05] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [233264 2016-07-05] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [117808 2016-07-05] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [261808 2016-07-05] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [111536 2016-07-05] (Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [152336 2017-02-12] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [112400 2017-02-12] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [175888 2017-02-20] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [121616 2017-02-12] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [132880 2017-02-12] (Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [107792 2017-02-12] (Panda Security, S.L.)
S3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [60200 2016-08-11] (Panda Security, S.L.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-09-08] (Synaptics Incorporated)
R3 SRTSP; C:\WINDOWS\System32\Drivers\NSBU\160A000.055\SRTSP.SYS [659616 2017-07-14] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\NSBU\160A000.055\SRTSPX.SYS [41112 2017-07-14] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NSBU\160A000.055\SYMEFASI.SYS [1393792 2017-07-14] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NSBU\160A000.055\SYMELAM.SYS [20512 2017-07-14] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [89264 2017-08-15] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\NSBU\160A000.055\Ironx86.SYS [241888 2017-07-14] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\NSBU\160A000.055\SYMNETS.SYS [423552 2017-07-14] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een Maand Gemaakt bestanden en mappen ========
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
2017-08-24 07:47 - 2017-08-24 07:47 - 001792512 _____ (Farbar) C:\Users\Johan\Desktop\FRST.exe
2017-08-24 07:47 - 2017-08-24 07:47 - 000026566 _____ C:\Users\Johan\Desktop\FRST.txt
2017-08-24 07:47 - 2017-08-24 07:47 - 000000000 ____D C:\Users\Johan\Desktop\FRST-OlderVersion
2017-08-24 07:45 - 2017-08-24 07:45 - 001792512 _____ (Farbar) C:\Users\Johan\Downloads\FRST (1).exe
2017-08-24 07:42 - 2017-08-24 07:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-08-24 07:39 - 2017-08-24 07:39 - 000002087 _____ C:\Users\Public\Desktop\Google Slides.lnk
2017-08-24 07:39 - 2017-08-24 07:39 - 000002085 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2017-08-24 07:39 - 2017-08-24 07:39 - 000002075 _____ C:\Users\Public\Desktop\Google Docs.lnk
2017-08-22 23:32 - 2017-08-22 23:32 - 000001048 _____ C:\Users\Johan\Desktop\HijackThis - Snelkoppeling.lnk
2017-08-22 18:55 - 2017-08-22 18:55 - 000043336 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-08-22 18:55 - 2017-08-22 18:55 - 000035432 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-08-22 18:55 - 2017-08-22 18:55 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-08-22 18:55 - 2017-08-22 18:55 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-08-22 18:42 - 2017-08-22 18:42 - 000002074 _____ C:\Users\Johan\Desktop\Quick Menu.lnk
2017-08-17 18:18 - 2017-08-17 18:21 - 000055549 _____ C:\Users\Johan\Downloads\Addition.txt
2017-08-17 18:17 - 2017-08-24 07:47 - 000000000 ____D C:\FRST
2017-08-17 18:17 - 2017-08-17 18:21 - 000072057 _____ C:\Users\Johan\Downloads\FRST.txt
2017-08-16 18:54 - 2017-02-27 23:13 - 000454232 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20170816-185404.backup
2017-08-16 18:38 - 2017-08-22 21:48 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-08-16 18:37 - 2017-08-16 18:37 - 051725936 _____ (Safer-Networking Ltd. ) C:\Users\Johan\Downloads\spybotsd-2.6.46.exe
2017-08-16 18:23 - 2017-08-16 18:23 - 000001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera-browser.lnk
2017-08-16 14:49 - 2017-08-16 14:50 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2017-08-16 14:49 - 2017-08-16 14:49 - 000804936 _____ C:\Users\Johan\Downloads\dvd-creator_setup_full619.exe
2017-08-16 14:32 - 2017-08-16 14:33 - 144507904 _____ (Online Media Technologies Ltd. ) C:\Users\Johan\Downloads\AVSVideoEditor.exe
2017-08-15 23:49 - 2017-08-15 23:49 - 133741288 _____ (OpenShot Studios, LLC ) C:\Users\Johan\Downloads\OpenShot-v2.3.4-x86_64.exe
2017-08-15 22:51 - 2017-08-15 22:51 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2017-08-15 22:49 - 2017-08-15 22:49 - 000000000 ____D C:\Program Files\FreeCodecPack
2017-08-15 22:47 - 2017-08-15 22:48 - 059098016 _____ (Digital Wave Ltd ) C:\Users\Johan\Downloads\FreeStudio_6.6.39.707_d.exe
2017-08-15 19:03 - 2017-08-15 22:24 - 000000000 ____D C:\Program Files\Common Files\AVSMedia
2017-08-15 19:02 - 2017-08-15 19:07 - 000000000 ____D C:\ProgramData\AVS4YOU
2017-08-15 19:02 - 2012-03-23 18:59 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3a.dll
2017-08-15 19:01 - 2017-08-15 19:01 - 065536184 _____ (Online Media Technologies Ltd. ) C:\Users\Johan\Downloads\AVSVideoConverter.exe
2017-08-15 17:58 - 2017-08-15 17:58 - 000000000 ____D C:\Users\Johan\Downloads\Ashampoo Burning Studio FREE
2017-08-15 17:54 - 2017-08-15 17:54 - 000001366 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio FREE.lnk
2017-08-15 17:53 - 2017-08-15 17:53 - 031700392 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Johan\Downloads\ashampoo_burning_studio_free_24045.exe
2017-08-15 11:45 - 2017-08-15 11:45 - 000002508 _____ C:\Users\Public\Desktop\Norton Security with Backup.lnk
2017-08-15 11:44 - 2017-08-15 11:44 - 000089264 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
2017-08-15 10:56 - 2017-08-15 11:44 - 000008232 _____ C:\WINDOWS\system32\Drivers\SYMEVENT.CAT
2017-08-15 10:56 - 2017-08-15 11:20 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2017-08-15 10:55 - 2017-08-15 11:45 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security with Backup
2017-08-15 10:55 - 2017-08-15 10:55 - 000000000 ____D C:\Program Files\Norton Security with Backup
2017-08-15 10:54 - 2017-08-15 10:55 - 000000000 ____D C:\Program Files\NortonInstaller
2017-08-15 10:54 - 2017-08-15 10:54 - 001027864 _____ (Symantec Corporation) C:\Users\Johan\Downloads\NSBUDownloader (1).exe
2017-08-15 10:43 - 2017-08-15 10:43 - 014417536 _____ (Symantec Corporation) C:\Users\Johan\Downloads\NRnR.exe
2017-08-14 18:15 - 2017-08-22 18:41 - 000000000 ____D C:\Users\Johan\AppData\Roaming\Canon
2017-08-14 18:15 - 2017-08-14 18:15 - 000000000 ___HD C:\ProgramData\CanonIJQuickMenu
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Canon Easy-WebPrint EX2
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Canon Easy-WebPrint EX
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\ProgramData\CanonIJWSpt
2017-08-14 13:57 - 2017-08-14 13:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon TS5000 series Schermhandleiding
2017-08-14 13:54 - 2017-08-14 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon TS5000 series
2017-08-14 13:47 - 2017-08-14 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-08-14 13:46 - 2017-08-14 13:46 - 000000000 ___HD C:\ProgramData\CanonBJ
2017-08-14 13:46 - 2017-08-14 13:46 - 000000000 ___HD C:\Program Files\CanonBJ
2017-08-14 13:46 - 2016-06-20 05:00 - 000393728 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMDF.DLL
2017-08-14 13:46 - 2016-03-02 10:31 - 000346624 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFL.dll
2017-08-14 13:46 - 2016-02-15 10:05 - 000097280 _____ C:\WINDOWS\system32\CNC1802D.TBL
2017-08-14 13:46 - 2015-10-19 18:53 - 000477696 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFC.dll
2017-08-14 13:46 - 2015-10-19 18:53 - 000238592 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFI.dll
2017-08-14 13:46 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA.dll
2017-08-14 13:44 - 2017-08-14 18:15 - 000000000 ____D C:\ProgramData\CanonIJPLM
2017-08-14 13:44 - 2017-08-14 14:01 - 000000000 ____D C:\Program Files\Canon
2017-08-14 13:44 - 2017-08-14 13:44 - 000000000 ____D C:\ProgramData\Canon
2017-08-14 10:49 - 2017-08-14 10:49 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-11 09:00 - 2012-08-20 06:19 - 001534464 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\BrWi209c.dll
2017-08-11 08:58 - 2017-08-11 08:58 - 000000000 ____D C:\Users\Johan\Downloads\install
2017-08-10 23:40 - 2017-08-11 09:00 - 000000050 _____ C:\WINDOWS\system32\BRIDF10B.DAT
2017-08-10 23:39 - 2017-08-10 23:39 - 000000000 ____D C:\ProgramData\Brother
2017-08-10 23:38 - 2017-08-10 23:38 - 000000000 ____D C:\Users\Johan\Downloads\wlan_wiz
2017-08-10 23:37 - 2017-08-10 23:37 - 122970256 _____ (A.I.SOFT,INC.) C:\Users\Johan\Downloads\dcp-j715w-inst-C1-cd3.EXE
2017-08-10 23:30 - 2017-08-10 23:30 - 000000000 ____D C:\Users\Johan\Downloads\RemPnP
2017-08-10 23:29 - 2017-08-10 23:29 - 000472320 _____ (SEIKO EPSON CORPORATION) C:\Users\Johan\Downloads\delinf_10270.EXE
2017-08-09 19:25 - 2017-07-31 17:15 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-08-09 19:25 - 2017-07-31 17:15 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-08-08 19:44 - 2017-08-01 04:47 - 005862816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-08 19:44 - 2017-08-01 04:43 - 000273312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-08 19:44 - 2017-08-01 04:41 - 000095648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-08 19:44 - 2017-08-01 04:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-08 19:44 - 2017-08-01 04:36 - 000173984 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-08 19:44 - 2017-08-01 04:11 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-08-08 19:44 - 2017-08-01 04:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-08 19:44 - 2017-08-01 04:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 001831936 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-08 19:44 - 2017-08-01 04:01 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-08-08 19:44 - 2017-07-28 06:48 - 001972128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-08 19:44 - 2017-07-28 06:47 - 000572320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-08 19:44 - 2017-07-28 06:44 - 000239008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-08 19:44 - 2017-07-28 06:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-08 19:44 - 2017-07-28 06:39 - 000434592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-08 19:44 - 2017-07-28 06:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-08 19:44 - 2017-07-28 06:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-08 19:44 - 2017-07-28 06:33 - 002081184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-08 19:44 - 2017-07-28 06:21 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-08 19:44 - 2017-07-28 06:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-08 19:44 - 2017-07-28 06:20 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-08 19:44 - 2017-07-28 06:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-08 19:44 - 2017-07-28 06:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-08 19:44 - 2017-07-28 06:15 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-08 19:44 - 2017-07-28 06:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-08 19:44 - 2017-07-28 06:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-08 19:44 - 2017-07-28 06:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-08 19:44 - 2017-07-28 06:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-08-08 19:44 - 2017-07-28 06:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-08 19:44 - 2017-07-28 06:04 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-08 19:43 - 2017-08-01 04:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-08 19:43 - 2017-08-01 04:37 - 002023832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-08 19:43 - 2017-08-01 04:37 - 000582560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-08 19:43 - 2017-08-01 04:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-08 19:43 - 2017-08-01 04:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-08 19:43 - 2017-08-01 04:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-08 19:43 - 2017-08-01 04:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-08 19:43 - 2017-08-01 04:34 - 000060312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-08 19:43 - 2017-08-01 04:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-08 19:43 - 2017-08-01 04:20 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-08 19:43 - 2017-08-01 04:20 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-08 19:43 - 2017-08-01 04:20 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-08 19:43 - 2017-08-01 04:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-08 19:43 - 2017-08-01 04:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-08 19:43 - 2017-08-01 04:17 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2017-08-08 19:43 - 2017-08-01 04:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-08 19:43 - 2017-08-01 04:16 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-08 19:43 - 2017-08-01 04:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-08 19:43 - 2017-08-01 04:15 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-08 19:43 - 2017-08-01 04:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-08 19:43 - 2017-08-01 04:10 - 000905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-08 19:43 - 2017-08-01 04:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-08 19:43 - 2017-08-01 04:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-08-08 19:43 - 2017-08-01 04:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-08 19:43 - 2017-08-01 04:08 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-08 19:43 - 2017-08-01 04:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-08 19:43 - 2017-08-01 04:07 - 003447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 001585152 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-08 19:43 - 2017-08-01 04:06 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-08 19:43 - 2017-08-01 04:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-08 19:43 - 2017-08-01 04:01 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-08 19:43 - 2017-08-01 04:01 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-08-08 19:43 - 2017-08-01 00:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjet40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswdat10.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrepl40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000518144 _____ C:\WINDOWS\system32\msjetoledb40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxbde40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspbde40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd3x40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd2x40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjtes40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstext40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msltus40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjter40.dll
2017-08-08 19:43 - 2017-07-28 07:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 001854832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000358816 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000358816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-08 19:43 - 2017-07-28 06:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-08 19:43 - 2017-07-28 06:46 - 000698384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-08 19:43 - 2017-07-28 06:40 - 000755616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-08 19:43 - 2017-07-28 06:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 000597920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-08 19:43 - 2017-07-28 06:38 - 000216504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-08 19:43 - 2017-07-28 06:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-08 19:43 - 2017-07-28 06:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-08 19:43 - 2017-07-28 06:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-08 19:43 - 2017-07-28 06:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-08 19:43 - 2017-07-28 06:33 - 000440184 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-08 19:43 - 2017-07-28 06:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-08 19:43 - 2017-07-28 06:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-08 19:43 - 2017-07-28 06:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-08 19:43 - 2017-07-28 06:24 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-08 19:43 - 2017-07-28 06:21 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-08 19:43 - 2017-07-28 06:20 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-08 19:43 - 2017-07-28 06:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-08-08 19:43 - 2017-07-28 06:19 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-08 19:43 - 2017-07-28 06:18 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-08 19:43 - 2017-07-28 06:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000661504 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-08 19:43 - 2017-07-28 06:17 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-08 19:43 - 2017-07-28 06:17 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-08 19:43 - 2017-07-28 06:16 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-08 19:43 - 2017-07-28 06:13 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-08 19:43 - 2017-07-28 06:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 001513984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 000962048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-08 19:43 - 2017-07-28 06:09 - 002370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-08 19:43 - 2017-07-28 06:09 - 002040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 002122240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-08 19:43 - 2017-07-28 06:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-08 19:43 - 2017-07-28 06:06 - 001126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-08 19:43 - 2017-07-28 06:06 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-08 19:43 - 2017-07-28 06:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-08 19:43 - 2017-07-28 06:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-08 19:43 - 2017-07-28 06:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-08 19:43 - 2017-07-28 06:04 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-08 19:43 - 2017-07-28 06:03 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 001377280 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 001244160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-08 19:43 - 2017-07-28 06:01 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-08 19:42 - 2017-07-28 06:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-08 12:13 - 2017-08-08 12:18 - 1302233088 _____ C:\Users\Johan\Downloads\xubuntu-16.04.2-desktop-i386.iso
2017-08-07 23:31 - 2017-08-07 23:31 - 000000000 ____D C:\Users\Johan\AppData\Roaming\IObit
2017-08-07 23:30 - 2017-08-07 23:30 - 000001388 _____ C:\Users\Public\Desktop\Random Password Generator.lnk
2017-08-07 23:30 - 2017-08-07 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Random Password Generator
2017-08-07 23:30 - 2017-08-07 23:30 - 000000000 ____D C:\Program Files\IObit
2017-08-07 23:29 - 2017-08-07 23:29 - 003722312 _____ (IObit ) C:\Users\Johan\Downloads\rpg-setup_1.3.exe
2017-08-04 09:44 - 2017-08-04 09:44 - 000022701 _____ C:\Users\Johan\Downloads\dda0c8c4-f80b-4a1f-b817-ca19f2894793.tmp
2017-08-03 21:18 - 2017-08-15 17:55 - 000000000 ____D C:\Users\Johan\AppData\Roaming\Ashampoo
2017-08-03 21:17 - 2017-08-15 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2017-08-03 21:17 - 2017-08-03 21:17 - 000001382 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio 6 FREE.lnk
2017-08-03 21:17 - 2017-08-03 21:17 - 000000000 ____D C:\Users\Johan\AppData\Local\ashampoo
2017-08-03 21:04 - 2017-08-03 21:04 - 014340520 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Johan\Downloads\ashampoo_burning_studio_6_free_21592.exe
2017-08-03 09:23 - 2017-08-03 09:23 - 000131760 _____ C:\Users\Johan\Downloads\administratief personeel leesbevordering volwassenen (3).pdf
2017-07-29 12:51 - 2017-07-29 12:51 - 000095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2017-07-29 12:51 - 2017-07-29 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-07-29 12:51 - 2017-07-29 12:51 - 000000000 ____D C:\Program Files\Common Files\Java
2017-07-29 12:50 - 2017-07-29 12:50 - 000000000 ____D C:\Program Files\Java
2017-07-28 11:41 - 2017-07-28 11:41 - 001101419 _____ C:\Users\Johan\Downloads\clearly.crx
2017-07-28 11:31 - 2017-07-28 11:31 - 001833112 _____ (Epic Privacy Browser) C:\Users\Johan\Downloads\EpicSetup (1).exe
2017-07-27 12:00 - 2017-07-27 12:00 - 000002391 _____ C:\Users\Johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== Een Maand Gewijzigd bestanden en mappen ========
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
2017-08-24 07:47 - 2017-03-18 20:23 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-24 07:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-24 07:43 - 2017-02-10 23:27 - 000000000 ____D C:\Program Files\Dropbox
2017-08-24 07:39 - 2017-02-11 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-08-24 07:37 - 2017-03-18 20:21 - 000000000 ____D C:\WINDOWS\INF
2017-08-22 23:35 - 2017-04-13 21:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-22 23:35 - 2017-04-13 20:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-22 23:35 - 2017-02-11 10:36 - 000221600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-08-22 23:34 - 2017-03-18 08:02 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2017-08-22 22:46 - 2017-02-27 23:51 - 000000000 ____D C:\Users\Johan\Downloads\register Ccleaner
2017-08-22 22:39 - 2017-03-30 20:55 - 000000000 ____D C:\ProgramData\SecTaskMan
2017-08-22 22:36 - 2017-05-09 13:51 - 000000000 ____D C:\Users\Johan\AppData\Local\CrashDumps
2017-08-22 22:36 - 2017-04-27 22:00 - 000000000 ____D C:\WINDOWS\Minidump
2017-08-22 22:04 - 2017-02-10 07:58 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-08-22 22:03 - 2017-04-13 20:58 - 000000000 ____D C:\Users\Johan
2017-08-22 21:48 - 2017-02-27 22:46 - 000000079 _____ C:\WINDOWS\wininit.ini
2017-08-22 21:12 - 2017-02-09 22:00 - 000000000 ___RD C:\Users\Johan\OneDrive
2017-08-22 18:36 - 2017-02-10 07:58 - 000001194 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-22 18:36 - 2017-02-10 07:58 - 000001182 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-22 18:36 - 2017-02-10 07:58 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-22 18:34 - 2017-03-18 08:02 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-08-18 20:57 - 2017-02-10 00:01 - 000449704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-18 20:51 - 2017-07-14 02:15 - 000059936 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-08-18 20:17 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-17 18:37 - 2017-06-05 16:59 - 000000000 ____D C:\ProgramData\Ashampoo
2017-08-16 18:23 - 2017-02-10 08:38 - 000000000 ____D C:\Program Files\Opera
2017-08-16 18:22 - 2017-07-11 17:09 - 000001042 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-16 18:22 - 2017-02-09 22:45 - 000002318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-16 18:22 - 2017-02-09 22:45 - 000002306 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-16 15:36 - 2017-02-10 07:59 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Mozilla
2017-08-16 15:35 - 2017-02-16 12:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-08-16 15:35 - 2017-02-16 12:42 - 000000000 ____D C:\Program Files\Wondershare
2017-08-16 15:32 - 2017-02-16 12:43 - 000000000 ____D C:\Program Files\Common Files\Wondershare
2017-08-16 06:40 - 2017-03-18 20:23 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-08-15 17:54 - 2017-06-05 16:59 - 000000000 ____D C:\Program Files\Ashampoo
2017-08-15 12:02 - 2017-02-27 23:02 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-15 11:45 - 2017-05-07 23:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\NSBU
2017-08-15 11:01 - 2017-05-07 23:15 - 000000000 ____D C:\ProgramData\Norton
2017-08-14 14:03 - 2017-02-09 21:57 - 000000000 ____D C:\Users\Johan\AppData\Local\Packages
2017-08-14 13:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\Media
2017-08-14 12:02 - 2017-05-17 10:08 - 000000000 ____D C:\Program Files\PDF Architect 5
2017-08-13 14:20 - 2017-02-09 22:06 - 000000000 ____D C:\Users\Johan\AppData\Local\Comms
2017-08-11 09:00 - 2017-02-11 11:58 - 000000434 _____ C:\WINDOWS\BRWMARK.INI
2017-08-11 08:57 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-10 23:00 - 2017-02-10 14:39 - 000001097 _____ C:\Users\Johan\Desktop\PhotoFiltre 7.lnk
2017-08-10 22:49 - 2017-07-20 15:38 - 000001190 _____ C:\Users\Johan\Desktop\Paint.lnk
2017-08-10 19:45 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-08-09 19:50 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\rescache
2017-08-09 19:29 - 2017-04-13 21:11 - 002401898 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-09 19:29 - 2017-03-19 11:33 - 001115822 _____ C:\WINDOWS\system32\perfh013.dat
2017-08-09 19:29 - 2017-03-19 11:33 - 000249720 _____ C:\WINDOWS\system32\perfc013.dat
2017-08-09 19:26 - 2016-11-20 12:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-08-09 19:22 - 2017-04-13 20:56 - 000290776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\ShellExperiences