Suspected Malware - screen distortion, flashes and programs opening [C

Hi,

I'd like some help with determining if my PC has some malware. Starting yesterday (15 Mar 2019), I've had some unusual symptoms:

Before formatting computer yesterday evening:

-Upon opening, Chrome warning me that my connection was private

-Text within the browser become distorted and pixelated

-Random tabs started opening in Chrome

After formatting computer yesterday evening:

-Every minute or so, a new icon appears on the task bar at the bottom of the screen, my entire screen briefly turns white like someone is taking a flash photo, and then the icon disappears.

-The icons on the task bar at bottom of screen keep refreshing every few minutes

Like mentioned above, I have tried reformatting my computer (keeping my personal files) but it looks like this didn't help.

Here are the logs. They are in Dutch since the program didn't give me a language choice. If you need them in English, I'll try to figure out how to do this. Just let me know.

Thank you!

______________________________________________

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 13.03.2019 01
Gestart door Alex (Beheerder) op ALEX-PC (15-03-2019 21:58:43)
Gestart vanaf C:\Users\Alex\Desktop
Geladen Profielen: Alex (Beschikbare Profielen: Alex)
Platform: Windows 10 Home Versie 1803 17134.590 (X64) Taal: Dutch (Netherlands)
Standaardbrowser: Edge
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)

(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Users\Alex\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileCoAuth.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.41.54.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() [Bestand niet getekend] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.41.54.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Register (gefilterd) ===========================

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8496344 2016-01-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.75\Installer\chrmstp.exe [2019-03-15] (Google LLC -> Google Inc.)

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e3c21bfb-6644-420f-ae38-ea481044d980}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-03-15] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-03-15] (Google Inc -> Google Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default [2019-03-15]
CHR Extension: (Slides) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-15]
CHR Extension: (Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-15]
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-15]
CHR Extension: (eID Chrome Extension) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2019-03-15]
CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-15]
CHR Extension: (Adblock for Youtube™) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2019-03-15]
CHR Extension: (LingQ Importer) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\eaanhanppiifopiabnfmhjbikjmeeale [2019-03-15]
CHR Extension: (Table-of-contents-crx) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeknhipceeelbgdbcmchicoaoalfdnhi [2019-03-15]
CHR Extension: (Sheets) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-15]
CHR Extension: (Readium) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepbnnnkkadjhjahcafoaglimekefifl [2019-03-15]
CHR Extension: (Google Docs Offline) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-15]
CHR Extension: (Screencastify - Screen Video Recorder) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2019-03-15]
CHR Extension: (Google Hangouts) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-03-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-03-15]
CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-03-15]
CHR Extension: (Chrome Media Router) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-15]

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [264224 2015-10-08] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2016-01-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4403496 2019-01-09] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107136 2018-09-21] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [55696 2018-08-31] (HP Inc. -> HP)
R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [17640 2013-10-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
S3 amdkmcsp; C:\WINDOWS\System32\drivers\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21653520 2015-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [683032 2015-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [36608 2013-12-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [108856 2013-12-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 dot4; C:\WINDOWS\System32\drivers\Dot4.sys [151968 2012-10-19] (Hewlett-Packard Company -> Windows ® Win 7 DDK provider)
S3 dot4usb; C:\WINDOWS\System32\drivers\dot4usb.sys [49056 2012-10-19] (Hewlett-Packard Company -> Microsoft Corporation)
S3 FlashUSB; C:\WINDOWS\System32\drivers\FlashUSB.sys [19968 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Mobile Communications)
R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [42384 2018-08-31] (HP Inc. -> HP)
R3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2018-04-12] (Microsoft Windows -> MediaTek Inc.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [784264 2018-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 shspusb; C:\WINDOWS\System32\drivers\HSPUSB.sys [24064 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> MobileTop)
R3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [53848 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [55384 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
S3 sscdserd; C:\WINDOWS\System32\drivers\sscdserd.sys [158024 2013-12-26] (MCCI Corporation -> MCCI Corporation)
S3 ssceserd; C:\WINDOWS\System32\drivers\ssceserd.sys [158024 2013-12-26] (MCCI Corporation -> MCCI Corporation)
S3 ssdudfu; C:\WINDOWS\System32\drivers\ssdudfu.sys [101960 2013-12-26] (MCCI Corporation -> MCCI)
S3 ssm_bus; C:\WINDOWS\System32\drivers\ssm_bus.sys [136192 2013-12-26] (MCCI Corporation -> MCCI Corporation)
S3 ssm_mdm; C:\WINDOWS\System32\drivers\ssm_mdm.sys [172032 2013-12-26] (MCCI Corporation -> MCCI Corporation)
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206136 2013-12-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206136 2013-12-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70456 2013-12-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206136 2013-12-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_bserd; C:\WINDOWS\System32\drivers\ss_bserd.sys [128000 2013-12-26] (MCCI Corporation -> MCCI Corporation)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26424 2013-12-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

==================== Een maand (aangemaakt) ========

(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)

2019-03-15 21:58 - 2019-03-15 22:00 - 000014215 _____ C:\Users\Alex\Desktop\FRST.txt
2019-03-15 21:57 - 2019-03-15 21:57 - 002433536 _____ (Farbar) C:\Users\Alex\Desktop\FRST64 (1).exe
2019-03-15 21:55 - 2019-03-15 21:55 - 002433536 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2019-03-15 21:30 - 2019-03-15 21:50 - 000000000 ____D C:\ProgramData\Packages
2019-03-15 21:29 - 2019-03-15 21:29 - 000000000 ____D C:\Users\Alex\AppData\Local\Comms
2019-03-15 21:28 - 2019-03-15 21:28 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2019-03-15 21:26 - 2019-03-15 21:26 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Google
2019-03-15 21:24 - 2019-03-15 21:24 - 000002380 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-15 21:24 - 2019-03-15 21:24 - 000002339 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-15 21:23 - 2019-03-15 21:24 - 000000000 ____D C:\Program Files (x86)\Google
2019-03-15 21:23 - 2019-03-15 21:23 - 000003418 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-15 21:23 - 2019-03-15 21:23 - 000003294 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-15 21:22 - 2019-03-15 21:41 - 000000000 ____D C:\Users\Alex\AppData\Local\Google
2019-03-15 21:22 - 2019-03-15 21:22 - 000000000 ____D C:\Users\Alex\AppData\Local\PlaceholderTileLogoFolder
2019-03-15 21:19 - 2019-03-15 21:19 - 000003272 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2019-03-15 21:19 - 2019-03-15 21:19 - 000000000 ____D C:\Users\Alex\AppData\Local\DBG
2019-03-15 21:18 - 2019-03-15 21:21 - 000000000 ____D C:\Users\Alex\AppData\Local\MicrosoftEdge
2019-03-15 21:18 - 2019-03-15 21:18 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-03-15 21:17 - 2019-03-15 21:17 - 000000000 ____D C:\Users\Alex\AppData\Local\Publishers
2019-03-15 21:16 - 2019-03-15 21:38 - 000000000 ____D C:\Users\Alex\AppData\Local\Packages
2019-03-15 21:16 - 2019-03-15 21:16 - 000000020 ___SH C:\Users\Alex\ntuser.ini
2019-03-15 21:16 - 2019-03-15 21:16 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Synaptics
2019-03-15 21:16 - 2019-03-15 21:16 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Adobe
2019-03-15 21:16 - 2019-03-15 21:16 - 000000000 ____D C:\Users\Alex\AppData\Local\VirtualStore
2019-03-15 21:16 - 2019-03-15 21:16 - 000000000 ____D C:\Users\Alex\AppData\Local\ConnectedDevicesPlatform
2019-03-15 21:16 - 2019-03-15 21:16 - 000000000 ____D C:\ProgramData\Synaptics
2019-03-14 23:24 - 2019-03-14 23:24 - 001767124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-03-14 23:23 - 2019-03-14 23:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Geschiedenis
2019-03-14 23:23 - 2019-03-14 23:23 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Geschiedenis
2019-03-14 23:23 - 2019-03-14 23:23 - 000000000 _SHDL C:\Users\Default User
2019-03-14 23:23 - 2019-03-14 23:23 - 000000000 _SHDL C:\Users\All Users
2019-03-14 23:23 - 2019-03-14 23:23 - 000000000 _SHDL C:\ProgramData\Sjablonen
2019-03-14 23:23 - 2019-03-14 23:23 - 000000000 _SHDL C:\ProgramData\Menu Start
2019-03-14 23:23 - 2019-03-14 23:23 - 000000000 _SHDL C:\ProgramData\Documenten
2019-03-14 23:23 - 2019-03-14 23:23 - 000000000 _SHDL C:\ProgramData\Bureaublad
2019-03-14 23:22 - 2019-03-14 23:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-14 23:22 - 2019-03-14 23:22 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-03-14 23:16 - 2019-03-15 21:19 - 000002367 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-14 23:16 - 2019-03-15 21:16 - 000000000 ____D C:\Users\Alex
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\Sjablonen
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\Netwerkprinteromgeving
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\Mijn documenten
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\Menu Start
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\Documents\Mijn video's
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\Documents\Mijn muziek
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\Documents\Mijn afbeeldingen
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's
2019-03-14 23:16 - 2019-03-14 23:16 - 000000000 _SHDL C:\Users\Alex\AppData\Local\Geschiedenis
2019-03-14 23:09 - 2019-03-14 23:17 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-03-14 23:09 - 2019-03-14 23:09 - 000005680 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2019-03-14 23:09 - 2019-03-14 23:09 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2019-03-14 23:09 - 2019-03-14 23:09 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2019-03-14 23:09 - 2019-03-14 23:09 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-03-14 23:09 - 2019-03-14 23:09 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2019-03-14 23:09 - 2019-03-14 23:09 - 000000000 ____D C:\Program Files\Realtek
2019-03-14 23:09 - 2019-03-14 23:09 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2019-03-14 23:09 - 2019-03-14 23:09 - 000000000 ____D C:\Program Files\AMD
2019-03-14 23:09 - 2019-03-14 23:09 - 000000000 _____ C:\WINDOWS\ativpsrm.bin
2019-03-14 23:08 - 2019-03-14 23:08 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_AMDASF_01011.Wdf
2019-03-14 23:08 - 2019-03-14 23:08 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf
2019-03-14 23:08 - 2019-03-14 23:08 - 000000000 ____D C:\ProgramData\USOShared
2019-03-14 23:07 - 2018-04-12 00:33 - 002752000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-03-14 23:03 - 2019-03-15 21:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-03-14 23:03 - 2019-03-14 23:18 - 000277576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-14 23:01 - 2019-03-14 23:01 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-03-14 23:01 - 2019-03-14 23:01 - 000000000 ____D C:\Windows.old
2019-03-14 22:59 - 2019-03-14 23:00 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-03-14 22:58 - 2019-03-14 22:58 - 000000000 ____D C:\WINDOWS\AMDTAs
2019-03-14 22:56 - 2019-03-14 22:56 - 000000000 ____D C:\Program Files\Synaptics
2019-03-14 22:53 - 2019-03-14 22:53 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-03-14 22:51 - 2019-03-14 22:51 - 000000000 ____D C:\WINDOWS\Setup
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\te-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\or-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\km-KH
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\is-IS
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2019-03-14 22:43 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\id-ID
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\be-BY
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\as-IN
2019-03-14 22:43 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\OCR
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\Program Files\MSBuild
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-03-14 22:43 - 2019-03-14 22:43 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-03-14 22:42 - 2019-03-14 22:42 - 000000000 ____D C:\WINDOWS\system32\th
2019-03-14 22:38 - 2019-03-14 23:24 - 000785364 _____ C:\WINDOWS\system32\perfh013.dat
2019-03-14 22:38 - 2019-03-14 23:24 - 000153682 _____ C:\WINDOWS\system32\perfc013.dat
2019-03-14 22:38 - 2019-03-14 22:38 - 000347800 _____ C:\WINDOWS\system32\perfi013.dat
2019-03-14 22:38 - 2019-03-14 22:38 - 000045450 _____ C:\WINDOWS\system32\perfd013.dat
2019-03-14 22:38 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\SysWOW64\nl
2019-03-14 22:38 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\system32\nl
2019-03-14 22:35 - 2019-03-14 22:42 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-03-14 22:35 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2019-03-14 22:35 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2019-03-14 22:35 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2019-03-14 22:35 - 2019-03-14 22:35 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2019-03-14 22:34 - 2019-03-14 22:42 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-03-14 22:34 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\system32\winrm
2019-03-14 22:34 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\system32\slmgr
2019-03-14 22:34 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2019-03-14 22:34 - 2019-03-14 22:34 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2019-03-14 22:34 - 2019-03-14 22:34 - 000000000 ____D C:\WINDOWS\system32\0409
2019-03-14 22:34 - 2019-03-14 22:34 - 000000000 ____D C:\WINDOWS\DigitalLocker
2019-03-14 22:30 - 2019-02-02 23:53 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-03-14 22:30 - 2019-02-02 23:53 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-03-14 22:26 - 2019-03-14 22:21 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2019-03-14 22:26 - 2019-03-14 22:21 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2019-03-14 22:26 - 2019-03-14 22:21 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2019-03-14 22:25 - 2019-03-15 22:00 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-14 22:25 - 2019-03-15 21:51 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-03-14 22:25 - 2019-03-15 21:50 - 000000000 ___HD C:\Program Files\WindowsApps
2019-03-14 22:25 - 2019-03-15 21:24 - 000000000 ___RD C:\Program Files (x86)
2019-03-14 22:25 - 2019-03-14 23:23 - 000000000 ____D C:\Program Files\windows nt
2019-03-14 22:25 - 2019-03-14 23:21 - 000000000 ____D C:\WINDOWS\system32\spool
2019-03-14 22:25 - 2019-03-14 23:21 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2019-03-14 22:25 - 2019-03-14 23:11 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-03-14 22:25 - 2019-03-14 23:11 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-03-14 22:25 - 2019-03-14 23:01 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-03-14 22:25 - 2019-03-14 23:01 - 000000000 __RHD C:\Users\Public\Libraries
2019-03-14 22:25 - 2019-03-14 23:01 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\TextInput
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ta-in
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\si-lk
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\setup
2019-03-14 22:25 - 2019-03-14 22:50 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ___SD C:\WINDOWS\system32\F12
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\system32\am-et
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\Provisioning
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\Program Files\Windows Defender
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-03-14 22:25 - 2019-03-14 22:49 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-14 22:25 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-03-14 22:25 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-03-14 22:25 - 2019-03-14 22:43 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-03-14 22:25 - 2019-03-14 22:42 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2019-03-14 22:25 - 2019-03-14 22:42 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-03-14 22:25 - 2019-03-14 22:42 - 000000000 ____D C:\WINDOWS\IME
2019-03-14 22:25 - 2019-03-14 22:42 - 000000000 ____D C:\WINDOWS\Help
2019-03-14 22:25 - 2019-03-14 22:42 - 000000000 ____D C:\Program Files\Common Files\system
2019-03-14 22:25 - 2019-03-14 22:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-03-14 22:25 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\SysWOW64\com
2019-03-14 22:25 - 2019-03-14 22:38 - 000000000 ____D C:\WINDOWS\system32\com
2019-03-14 22:25 - 2019-03-14 22:34 - 000000000 ___SD C:\WINDOWS\system32\dsc
2019-03-14 22:25 - 2019-03-14 22:34 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-03-14 22:25 - 2019-03-14 22:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2019-03-14 22:25 - 2019-03-14 22:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2019-03-14 22:25 - 2019-03-14 22:26 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2019-03-14 22:25 - 2019-03-14 22:26 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2019-03-14 22:25 - 2019-03-14 22:26 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2019-03-14 22:25 - 2019-03-14 22:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2019-03-14 22:25 - 2019-03-14 22:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 __SHD C:\Program Files\Windows Sidebar
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 __RSD C:\WINDOWS\media
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ___SD C:\WINDOWS\system32\Nui
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\Web
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\WaaS
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\Vss
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\tracing
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\TAPI
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SystemResources
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SystemApps
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\winevt
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\ras
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\my-mm
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\IME
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\icsxml
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\ias
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\hydrogen
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\DriverState
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\downlevel
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\DDFs
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\System
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SKB
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\ServiceState
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\security
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\schemas
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\SchCache
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\Resources
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\rescache
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\Registration
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\PLA
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\Performance
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\ModemLogs
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\L2Schemas
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\InputMethod
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\IdentityCRL
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\Globalization
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\Cursors
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\Branding
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\appcompat
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\addins
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\ProgramData\USOPrivate
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\Program Files\Windows Security
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\Program Files\Windows Portable Devices
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\Program Files\Common Files\Services
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\Program Files (x86)\windows nt
2019-03-14 22:25 - 2019-03-14 22:25 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2019-03-14 22:25 - 2019-03-14 22:21 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2019-03-14 22:25 - 2019-03-14 22:21 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2019-03-14 22:25 - 2019-03-14 22:21 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2019-03-14 22:25 - 2019-03-14 22:21 - 000017346 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-03-14 22:25 - 2019-03-14 22:21 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2019-03-14 22:25 - 2019-03-14 22:21 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2019-03-14 22:25 - 2019-03-14 22:21 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2019-03-14 22:25 - 2019-03-14 22:21 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2019-03-14 22:25 - 2019-03-14 22:21 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2019-03-14 22:25 - 2019-03-14 22:21 - 000000219 _____ C:\WINDOWS\system.ini
2019-03-14 22:25 - 2019-03-14 22:21 - 000000092 _____ C:\WINDOWS\win.ini
2019-03-14 22:22 - 2019-03-15 21:37 - 000000000 ____D C:\WINDOWS\INF
2019-03-14 22:11 - 2019-03-14 22:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-14 22:00 - 2019-03-14 23:23 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-03-14 22:00 - 2019-03-14 23:23 - 000000000 ____D C:\WINDOWS\Panther
2019-03-14 22:00 - 2019-03-14 23:17 - 135004160 _____ C:\WINDOWS\system32\config\SYSTEM
2019-03-14 22:00 - 2019-03-14 23:17 - 079167488 _____ C:\WINDOWS\system32\config\SOFTWARE
2019-03-14 22:00 - 2019-03-14 23:17 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2019-03-14 22:00 - 2019-03-14 23:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-03-14 22:00 - 2019-03-14 23:17 - 000032768 _____ C:\WINDOWS\system32\config\SAM
2019-03-14 22:00 - 2019-03-14 23:17 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY
2019-03-14 22:00 - 2019-03-14 22:42 - 000000000 ____D C:\WINDOWS\servicing
2019-03-14 22:00 - 2019-03-14 22:25 - 000000000 ____D C:\WINDOWS\system32\SMI
2019-03-14 21:36 - 2019-03-14 23:02 - 000000000 ___HD C:\$SysReset
2019-03-07 19:28 - 2019-03-07 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2019-03-07 19:11 - 2019-03-14 23:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-03-01 18:13 - 2019-03-01 18:13 - 000244728 _____ C:\Users\Alex\Downloads\eticket inschrijving_inscription (2).pdf
2019-03-01 18:13 - 2019-03-01 18:13 - 000243607 _____ C:\Users\Alex\Downloads\eticket inschrijving_inscription (1).pdf
2019-03-01 18:13 - 2019-03-01 18:13 - 000243361 _____ C:\Users\Alex\Downloads\eticket inschrijving_inscription (3).pdf
2019-03-01 18:13 - 2019-03-01 18:13 - 000241696 _____ C:\Users\Alex\Downloads\eticket inschrijving_inscription (4) (1).pdf
2019-03-01 10:18 - 2019-03-01 10:18 - 000241696 _____ C:\Users\Alex\Downloads\eticket-inschrijving_inscription-4.pdf
2019-03-01 10:18 - 2019-03-01 10:18 - 000241696 _____ C:\Users\Alex\Downloads\eticket-inschrijving_inscription-4 (1).pdf
2019-03-01 10:18 - 2019-03-01 10:18 - 000241696 _____ C:\Users\Alex\Downloads\eticket inschrijving_inscription (4).pdf
2019-02-28 13:48 - 2018-04-10 21:10 - 001118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Models001E.dll
2019-02-28 13:48 - 2018-04-10 21:10 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB7001E.dll
2019-02-28 13:48 - 2018-04-10 21:10 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Lexicons001E.dll
2019-02-28 13:48 - 2018-04-10 21:09 - 000785408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NL7Data001E.dll
2019-02-28 13:48 - 2018-04-10 21:07 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data001E.dll
2019-02-28 13:48 - 2018-04-10 21:06 - 000712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7001E.dll
2019-02-28 13:48 - 2017-10-29 18:18 - 000000697 _____ C:\WINDOWS\system32\NOISE.THA
2019-02-26 22:10 - 2019-02-26 22:10 - 000088793 _____ C:\Users\Alex\Desktop\student_status_letter_30002423_260220190909.pdf
2019-02-21 23:10 - 2019-02-21 23:11 - 002810542 _____ C:\Users\Alex\Downloads\9781469648521_1.zip
2019-02-17 20:54 - 2019-02-17 20:54 - 000095757 _____ C:\Users\Alex\Downloads\ToneRulesChart.pdf
2019-02-17 16:54 - 2019-02-17 16:54 - 004042908 _____ C:\Users\Alex\Downloads\Lumbini-Antiquity2013.pdf
2019-02-17 16:54 - 2019-02-17 16:54 - 004042908 _____ C:\Users\Alex\Desktop\Lumbini-Antiquity2013.pdf
2019-02-17 16:09 - 2019-02-17 16:09 - 003406609 _____ C:\Users\Alex\Desktop\flashcards-A4-9-paiboonplus.pdf
2019-02-17 00:00 - 2019-02-17 00:00 - 002218473 _____ C:\Users\Alex\Desktop\Dhamma as sonic praxis.pdf
2019-02-16 18:10 - 2019-02-16 18:10 - 000254220 _____ C:\Users\Alex\Downloads\enuspali.zip
2019-02-16 17:59 - 2019-02-16 17:59 - 001763015 _____ (SIL International) C:\Users\Alex\Downloads\GentiumPlus-5.000 (1).exe
2019-02-16 17:57 - 2019-02-16 17:57 - 002025499 _____ C:\Users\Alex\Downloads\GentiumPlus-5.000.zip
2019-02-16 12:25 - 2019-02-16 12:25 - 000527423 _____ ( ) C:\Users\Alex\Downloads\Lame_v3.99.3_for_Windows.exe
2019-02-16 12:05 - 2019-02-20 21:33 - 000000000 ____D C:\Users\Alex\Desktop\Williams - American Sutra
2019-02-16 09:33 - 2019-02-16 09:33 - 000000000 ____D C:\Users\Alex\Documents\Custom Office Templates

==================== Een maand (gewijzigd) ========

(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)

2019-03-15 21:58 - 2018-04-29 19:07 - 000000000 ____D C:\FRST
2019-03-15 21:19 - 2014-09-02 15:21 - 000000000 ___RD C:\Users\Alex\OneDrive
2019-03-15 21:18 - 2019-02-09 14:11 - 000001417 _____ C:\Users\Alex\Desktop\Microsoft Edge.lnk
2019-03-15 21:16 - 2017-12-13 19:38 - 000000000 ___RD C:\Users\Alex\3D Objects
2019-03-15 21:16 - 2014-09-02 13:40 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-03-14 23:21 - 2019-02-09 14:04 - 000008168 _____ C:\Users\Alex\Desktop\Verwijderde apps.html
2019-03-14 23:21 - 2018-03-20 22:31 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MuseScore 2
2019-03-14 23:09 - 2017-05-21 09:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2019-03-14 23:01 - 2019-02-10 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SIL
2019-03-14 23:01 - 2017-03-22 14:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ActivePerl 5.24.1 Build 2402 (64-bit)
2019-03-14 23:01 - 2015-01-08 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2019-03-14 23:01 - 2014-12-11 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics
2019-03-14 23:01 - 2014-09-13 23:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-03-14 23:01 - 2014-09-03 16:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-03-14 23:01 - 2014-06-10 16:30 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2019-03-14 23:01 - 2014-05-04 10:38 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2019-03-14 23:01 - 2014-05-04 10:26 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2019-03-14 23:01 - 2014-05-04 10:25 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2019-02-21 19:28 - 2016-01-03 12:53 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-02-20 21:33 - 2019-02-11 21:09 - 000000000 ____D C:\Users\Alex\Desktop\Salomon - Gandhara
2019-02-16 13:57 - 2014-09-02 18:28 - 000000000 ___RD C:\Users\Alex\Dropbox
2019-02-16 13:38 - 2019-02-02 18:23 - 000006131 _____ C:\Users\Alex\Downloads\Outro.aup
2019-02-16 13:24 - 2019-02-02 09:07 - 000009185 _____ C:\Users\Alex\Downloads\Intro.aup
2019-02-16 10:32 - 2019-01-31 22:11 - 000000000 ____D C:\Users\Alex\Documents\Audacity
2019-02-13 18:14 - 2018-12-15 17:02 - 000000000 ____D C:\Users\Alex\Documents\MA Buddhist Studies

==================== Bamital & volsnap ======================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
C:\WINDOWS\system32\wininit.exe => Bestand is getekend
C:\WINDOWS\explorer.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
C:\WINDOWS\system32\svchost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
C:\WINDOWS\system32\services.exe => Bestand is getekend
C:\WINDOWS\system32\User32.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
C:\WINDOWS\system32\userinit.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
C:\WINDOWS\system32\dllhost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\dllhost.exe => Bestand is getekend
C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend

LastRegBack: 2019-03-14 23:03

==================== Einde van FRST.txt ============================

Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 13.03.2019 01
Gestart door Alex (15-03-2019 22:02:12)
Gestart vanaf C:\Users\Alex\Desktop
Windows 10 Home Versie 1803 17134.590 (X64) (2019-03-14 22:23:33)
Boot Modus: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1448901694-870787660-863190903-500 - Administrator - Disabled)
Alex (S-1-5-21-1448901694-870787660-863190903-1002 - Administrator - Enabled) => C:\Users\Alex
DefaultAccount (S-1-5-21-1448901694-870787660-863190903-503 - Limited - Disabled)
Gast (S-1-5-21-1448901694-870787660-863190903-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1448901694-870787660-863190903-1004 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-1448901694-870787660-863190903-504 - Limited - Disabled)

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.75 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1448901694-870787660-863190903-1002\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-1448901694-870787660-863190903-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-1448901694-870787660-863190903-1002_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Geen bestand
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Geen bestand

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {76F3D0E0-711B-4FDF-8765-DD24E7B13A14} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {F8E7825C-6DBB-4A3E-AB40-5D6F2EDD6294} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)

(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

==================== Snelkoppelingen & WMI ========================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

ShortcutWithArgument: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Readium.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google Inc.) -> --profile-directory=Default --app-id=fepbnnnkkadjhjahcafoaglimekefifl

==================== Geladen Modules (gefilterd) ==============

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.)

AlternateDataStreams: C:\Users\Alex\Dropbox:user.myxattr [0]
AlternateDataStreams: C:\Users\Alex\Desktop\NBBuddhistStudies_Grombrich_Intro.mp3:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Alex\Desktop\NBBuddhistStudies_Outro.mp3:com.dropbox.attributes [168]

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.)

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.)

==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.)

==================== Hosts inhoud: ===============================

(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)

2019-03-14 22:25 - 2019-03-14 22:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-1448901694-870787660-863190903-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

Als een item is opgenomen in de fixlist, zal het worden verwijderd.

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{50E3F99E-29BA-461A-9CDB-40CB538B4074}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Herstelpunten =========================

AANDACHT: Systeemherstel is uitgeschakeld

==================== Defecte Apparaatbeheer Apparaten =============

==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (03/15/2019 09:19:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OneDrive.exe, version: 17.3.6816.313, time stamp: 0x58c723fb
Faulting module name: ntdll.dll, version: 10.0.17134.556, time stamp: 0x319e0a75
Exception code: 0xc0000374
Fault offset: 0x000d8529
Faulting process id: 0x1e8c
Faulting application start time: 0x01d4db6c62c26a28
Faulting application path: C:\Users\Alex\AppData\Local\Microsoft\OneDrive\OneDrive.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: eec1b0f5-3005-48c5-bcb0-367de0afe428
Faulting package full name:
Faulting package-relative application ID:

Error: (03/15/2019 09:16:36 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8024402C
Command-line arguments:
RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (03/14/2019 11:24:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007139F
Command-line arguments:
RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=TimerEvent

Error: (03/14/2019 11:23:29 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating Windows Defender status to SECURITY_PRODUCT_STATE_ON.

Error: (03/14/2019 11:23:28 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating Windows Defender status to SECURITY_PRODUCT_STATE_ON.

Systeemfouten:
=============
Error: (03/15/2019 09:31:03 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The toepassingsspecifiek permission settings do not grant Lokaal Activeren permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (via LRPC) running in the application container Niet beschikbaar SID (Niet beschikbaar). This security permission can be modified using the Component Services administrative tool.

Error: (03/15/2019 09:28:47 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The toepassingsspecifiek permission settings do not grant Lokaal Activeren permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (via LRPC) running in the application container Niet beschikbaar SID (Niet beschikbaar). This security permission can be modified using the Component Services administrative tool.

Error: (03/15/2019 09:24:32 PM) (Source: DCOM) (EventID: 10016) (User: ALEX-PC)
Description: The toepassingsspecifiek permission settings do not grant Lokaal Activeren permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user Alex-PC\Alex SID (S-1-5-21-1448901694-870787660-863190903-1002) from address LocalHost (via LRPC) running in the application container Niet beschikbaar SID (Niet beschikbaar). This security permission can be modified using the Component Services administrative tool.

Error: (03/15/2019 09:21:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The toepassingsspecifiek permission settings do not grant Lokaal Activeren permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (via LRPC) running in the application container Niet beschikbaar SID (Niet beschikbaar). This security permission can be modified using the Component Services administrative tool.

Error: (03/15/2019 09:21:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The toepassingsspecifiek permission settings do not grant Lokaal Activeren permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (via LRPC) running in the application container Niet beschikbaar SID (Niet beschikbaar). This security permission can be modified using the Component Services administrative tool.

Error: (03/15/2019 09:16:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The toepassingsspecifiek permission settings do not grant Lokaal Activeren permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (via LRPC) running in the application container Niet beschikbaar SID (Niet beschikbaar). This security permission can be modified using the Component Services administrative tool.

Error: (03/15/2019 09:16:18 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The toepassingsspecifiek permission settings do not grant Lokaal Activeren permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (via LRPC) running in the application container Niet beschikbaar SID (Niet beschikbaar). This security permission can be modified using the Component Services administrative tool.

==================== Geheugen info ===========================

Processor: AMD A8-6410 APU with AMD Radeon R5 Graphics
Percentage geheugen in gebruik: 53%
Totaal fysiek RAM-geheugen: 5055.68 MB
Beschikbaar fysiek RAM-geheugen: 2354.98 MB
Totaal Virtueel geheugen: 6591.68 MB
Beschikbaar Virtueel geheugen: 3443.84 MB

==================== Schijven ================================

Drive c: (Windows) (Fixed) (Total:446.87 GB) (Free:170.42 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:16.91 GB) (Free:1.66 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)]

\\?\Volume{a0a64192-b5b0-4bd7-8d70-659671e86d8a}\ (WINRE) (Fixed) (Total:0.63 GB) (Free:0.37 GB) NTFS
\\?\Volume{2c2ba7f4-42aa-46fd-ae3f-f864a15e9a9d}\ () (Fixed) (Total:0.96 GB) (Free:0.39 GB) NTFS
\\?\Volume{5f9a9cda-5bcd-4e8f-9845-2395c35d00e5}\ () (Fixed) (Total:0.25 GB) (Free:0.14 GB) FAT32

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 7FA3E06E)

Partition: GPT.

==================== Einde van Addition.txt ============================

Edited by Kabouterke, 15 March 2019 - 03:25 PM.

Suspected Malware - screen distortion, flashes and programs opening [C

#1
Kabouterke

Posted 15 March 2019 - 03:21 PM

Advertisements

#2
iMacg3

Posted 16 March 2019 - 05:35 PM

#3
Kabouterke

Posted 17 March 2019 - 08:41 AM

#4
iMacg3

Posted 17 March 2019 - 10:33 AM

#5
Kabouterke

Posted 19 March 2019 - 02:58 PM

#6
iMacg3

Posted 19 March 2019 - 03:44 PM

#7
iMacg3

Posted 24 March 2019 - 06:53 PM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Suspected Malware - screen distortion, flashes and programs opening [C

#1 Kabouterke Posted 15 March 2019 - 03:21 PM

Advertisements

#2 iMacg3 Posted 16 March 2019 - 05:35 PM

#3 Kabouterke Posted 17 March 2019 - 08:41 AM

#4 iMacg3 Posted 17 March 2019 - 10:33 AM

#5 Kabouterke Posted 19 March 2019 - 02:58 PM

#6 iMacg3 Posted 19 March 2019 - 03:44 PM

#7 iMacg3 Posted 24 March 2019 - 06:53 PM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Sign In

#1
Kabouterke

Posted 15 March 2019 - 03:21 PM

#2
iMacg3

Posted 16 March 2019 - 05:35 PM

#3
Kabouterke

Posted 17 March 2019 - 08:41 AM

#4
iMacg3

Posted 17 March 2019 - 10:33 AM

#5
Kabouterke

Posted 19 March 2019 - 02:58 PM

#6
iMacg3

Posted 19 March 2019 - 03:44 PM

#7
iMacg3

Posted 24 March 2019 - 06:53 PM