Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

system infected after bad decision of me to ... [Solved]


  • This topic is locked This topic is locked

#1
HaraMo

HaraMo

    Member

  • Member
  • PipPipPip
  • 329 posts

This happend today (2nd sept 2016) a few hours ago.

I think I fooled myself by trusting a so called legal site (Softwarestab) (after googling it , it should be safe).

It fully my responsibility, as I tried first time to use a crack , but will never use this. Instead I went to buy a cheaper alternative to adobe reader DC pro, namely PDFSAM, even here I got paying twice (bankaccount) while on page it says that payment was not processed (sofort).

                                         

I just hope it’s not the virus of the first thing I did that causes this, also slow internet surfing (suddenly it takes more time to open a link, even the text message in google chrome appears: it takes to long, and asks me if I want to wait).

 

After uninstalling adobe reader, then installing the crack Adobe Acrobat Pro DC Crack 2015-2016 Free Download: the first windows appears ask me to click ok to install, a test in it appears:   aclick.adhoc1.net.

I searched this in google, only thing I get is thing about  create an ad hoc wireless network.

So I though it was safe to go.

I wanted to uninstall the crack from remove programms, but it’s not there.

 

Please help me get rid of this crack an alle it potential problems. I’m scared to reboot, maybe it will make more harm… .

My antivirus did block a page that opened after the installation was finished.

The application ..  accesses  a web  resource http:// lolv  trun  diminelle  ru / installs / 2091 / 7562afc9.exe … . virus name  Gen:Variant Strictor. 110738. The web source has been successfully blocked  and your pc is now safe.

 

Another report: same text but link is: http:// 52.89dot93dot226/ ytab_big.exe                                              

The pdf sam: when I want to contact them about my 2 payments (even received no licence or anyting through email!) I fllled in the support form, then after I send it, I read above the fields a line that says :

 

Need any help with the PDFsam Enhanced checkout process?

 

 

If you need support regarding the payment process or you have questions around the PDFsam Enhanced purchase, please visit the payment support

I clicked on it and send me to upclk.com but antivirus also says  that this site is infected with malware  (report antivirus successfully saved my pc, but when the windows of my antivirus appeared and bloced the site, I clicked on the little text to bring me to the page anyway, knowing the risks), strange as this page only explained that if there were issues with payment with credit card (although I used sofort) and that I could enter my email (I did) and enter the order ID or the last digits of creditcard. I had no order ID, I just tried a number that was shown on my bankacount.

 

Thinking about it, I think this page just collect info (email, last digits of creditcard!) to hack me!

 

 

I Just want to be sure pc is 100% clean. Surfing is too slow, not normal before this infection.

I also want to be sure PDFsam is legal software.

I will scan using FRST, but normally I always disable antivirus if I start FRST but because I’m not sure, I will leave antivirus enabled until you notice me otherwise.

 

 

 

 


  • 0

Advertisements


#2
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 31-08-2016
Gestart door USER (Beheerder) op USERX (02-09-2016 22:27:20)
Gestart vanaf C:\Users\USER\Contacts\Desktop
Geladen Profielen: USER & MSSQL$SQLEXPRESS & ReportServer$SQLEXPRESS & MSSQLFDLauncher$SQLEXPRESS (Beschikbare Profielen: USER & Surfen & MSSQL$SQLEXPRESS & ReportServer$SQLEXPRESS & MSSQLFDLauncher$SQLEXPRESS)
Platform: Windows 8.1 (Update) (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: IE)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\FreedomeService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Reflect\ReflectService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSRS12.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\fdhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Hobbyist Software) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\Freedome.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Isabel SA/NV) C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Apple, Inc.) C:\Config.Msi\94097f.rbf
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Andrea Vacondio) C:\Program Files\PDFsam Enhanced\ws.exe
(Andrea Vacondio) C:\Program Files\PDFsam Enhanced\creator-ws.exe
(ANDREA VACONDIO) C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe
(Andrea Vacondio) C:\Program Files\PDFsam Enhanced\sam.exe
(Andrea Vacondio) C:\Program Files\PDFsam Enhanced\sam.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\seccenter.exe

==================== Register (gefilterd) ===========================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-07-02] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [280576 2013-10-21] (Realtek Semiconductor Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2893104 2014-07-02] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Radio Manager] => C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2013-09-26] (MSI)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [408744 2013-09-26] (MSI)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe [1654160 2016-06-29] (Bitdefender)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3933496 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-26] (Apple Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-09] (CyberLink Corp.)
HKLM-x32\...\Run: [SUPER CHARGER] => C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe [1047536 2014-02-21] (MSI)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23889496 2016-08-24] (Dropbox, Inc.)
HKLM-x32\...\Run: [FreedomeAutoStart] => C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\Freedome.exe [5286368 2016-08-29] (F-Secure Corporation)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [79192 2011-02-18] (Research In Motion Limited)
HKLM-x32\...\Run: [IsaKbcCertUpdate] => C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe [1335832 2015-02-06] (Isabel SA/NV)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM Group Policy restriction on software: *.gif*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.mp3*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.wma*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.xls*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %allusersprofile%\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.wma*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.png*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.xlsx*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.wmv*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.wma*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.wmv*.jse <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: C:\Users\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.avi*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.ppt*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.docx*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.avi*.scr <====== AANDACHT
HKLM Group Policy restriction on software: vssadmin.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.bmp*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.ppt*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.avi*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.xls*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.rar*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.bmp*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.pub*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.docx*.js <====== AANDACHT
HKLM Group Policy restriction on software: %programfiles(x86)%\*\svchost.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.bmp*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.doc*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.zip*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.rtf*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.mp4*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.gif*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.xlsx*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.ppt*.com <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.mp4*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.mp3*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.divx*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.pub*.com <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.doc*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*\*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.jpeg*.com <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.rar*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.rar*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.mp3*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.txt*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.wmv*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.doc*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %systemdrive%\*\svchost.exe <====== AANDACHT
HKLM Group Policy restriction on software: %programfiles%\*\svchost.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.pptx*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.jpeg*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.jpeg*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: cipher.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.rtf*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.jpeg*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.rtf*.com <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: syskey.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.pub*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.docx*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *:\$Recycle.Bin <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: C:\Users\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.xls*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.jpeg*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.zip*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.bmp*.com <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.bmp*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.wmv*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.jpg*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.mp3*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.docx*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.divx*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.divx*.com <====== AANDACHT
HKLM Group Policy restriction on software: C:\Users\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.wav*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.7z*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.rtf*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %allusersprofile%\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.txt*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.doc*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.7z*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.jpg*.com <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.xls*.js <====== AANDACHT
HKLM Group Policy restriction on software: %allusersprofile%\*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.ppt*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.gif*.com <====== AANDACHT
HKLM Group Policy restriction on software: %allusersprofile%\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.wmv*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.avi*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.pptx*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.pub*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.pptx*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.mp4*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.mp3*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: scsvserv.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.jpeg*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.png*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.xls*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.xls*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.rar*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.7z*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.pub*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.js <====== AANDACHT
HKLM Group Policy restriction on software: ** <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.wma*.jse <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.avi*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.divx*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.pdf*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.avi*.jse <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.wav*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.pptx*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.pdf*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.png*.jse <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.xlsx*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.gif*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.wav*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.txt*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.pdf*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.rtf*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.rtf*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.png*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.pdf*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.zip*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.wav*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.pdf*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.jpg*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*\svchost.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.wma*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.pub*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.divx*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.png*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.bmp*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %allusersprofile%\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.ppt*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.ppt*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %allusersprofile%\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.wma*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.mp4*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.png*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.doc*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.wmv*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.wav*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.rar*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.docx*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.7z*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.txt*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.wav*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.doc*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.wma*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.txt*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.rar*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.mp3*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.pub*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.docx*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\*.com <====== AANDACHT
HKLM Group Policy restriction on software: lsassw86s.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.mp4*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.js <====== AANDACHT
HKLM Group Policy restriction on software: %allusersprofile%\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.docx*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\Appdata\Roaming\Microsoft\Windows\IEUpdate\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.ppt*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.rar*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.js <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.mp4*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.rtf*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.bmp*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.jpg*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.jpg*.jse <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.mp4*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.pptx*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.pdf*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.7z*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.pdf*.com <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.com <====== AANDACHT
HKLM Group Policy restriction on software: %allusersprofile%\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: C:\Users\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.pptx*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.jpeg*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.wav*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.avi*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*.js <====== AANDACHT
HKLM Group Policy restriction on software: C:\Users\*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.pptx*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.wma*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.mp3*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.jpeg*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.pdf*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.divx*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.bmp*.js <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.jpg*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.7z*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.jpg*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.pub*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.gif*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.xlsx*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.xlsx*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.wmv*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: C:\Users\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.avi*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.zip*.js <====== AANDACHT
HKLM Group Policy restriction on software: *.rar*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.wav*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.mp3*.jse <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.doc*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.docx*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.pif <====== AANDACHT
HKLM Group Policy restriction on software: C:\Users\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.gif*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.xlsx*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.7z*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.txt*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.xls*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.gif*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.txt*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.zip*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.pptx*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.com <====== AANDACHT
HKLM Group Policy restriction on software: *.wmv*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.divx*.scr <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.zip*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.xlsx*.pif <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.xls*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.txt*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.js <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.com <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.cmd <====== AANDACHT
HKLM Group Policy restriction on software: *.mp4*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.doc*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.ppt*.bat <====== AANDACHT
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.jse <====== AANDACHT
HKLM Group Policy restriction on software: *.png*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.jpg*.pif <====== AANDACHT
HKLM Group Policy restriction on software: *.7z*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.xlsx*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.divx*.exe <====== AANDACHT
HKLM Group Policy restriction on software: *.zip*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.png*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.gif*.scr <====== AANDACHT
HKLM Group Policy restriction on software: *.zip*.exe <====== AANDACHT
HKLM Group Policy restriction on software: lsassvrtdbks.exe <====== AANDACHT
HKLM Group Policy restriction on software: %appdata%\*\*.bat <====== AANDACHT
HKLM Group Policy restriction on software: *.rtf*.exe <====== AANDACHT
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.bat <====== AANDACHT
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [HP Photosmart 5520 series (NET)] => C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50622080 2016-01-19] (Skype Technologies S.A.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23375200 2016-07-29] (Google)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [4DCC62711CE5BD90D5D50E05AB83CC9465F43C40._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [961352 2016-08-03] (Google Inc.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [Hobbyist Software VLC Streamer] => C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe [1236520 2016-06-09] (Hobbyist Software)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [Adobe Acrobat Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [67384 2016-07-08] (Apple Inc.)
SecurityProviders: credssp.dll, schannel.dll
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [  Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.42.dll [2016-08-24] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-06-01]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2015-04-26]
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-03-09]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2016-03-12]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
Startup: C:\Users\Surfen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-05-27]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0452F641-75D7-4425-B06E-673F79DEAE28}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{436A4649-415B-4D8B-AFC4-2F7B0A78F00A}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4BBCE8AD-68DD-46B2-8C5A-69506A6A5BE3}: [DhcpNameServer] 195.130.130.131 195.130.131.131 195.238.2.21

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.be/?gws_rd=ssl
URLSearchHook: [S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133] AANDACHT => Standaard URLSearchHook ontbreekt
URLSearchHook: [S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933] AANDACHT => Standaard URLSearchHook ontbreekt
URLSearchHook: [S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786] AANDACHT => Standaard URLSearchHook ontbreekt
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001 -> {D48171A6-7A9E-4F5E-B742-CEC9AFF4ECF5} URL =
BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2016-06-29] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-07-19] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-07-12] (Microsoft Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2016-06-29] (Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-07-19] (Microsoft Corporation)
BHO-x32: PDFsam Enhanced Helper -> {6401BC8F-9AD0-430B-BF2C-2A34B0E98466} -> C:\Program Files (x86)\PDFsam Enhanced\creator-ie-helper.dll [2016-07-06] (Andrea Vacondio)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-02] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-06-01] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-07-12] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-02] (Oracle Corporation)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2016-06-29] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2016-06-29] (Bitdefender)
Toolbar: HKLM-x32 - PDFsam Enhanced Toolbar - {AD42CFE2-C0AD-487E-8224-C2AEF09F4CEB} - C:\Program Files (x86)\PDFsam Enhanced\creator-ie-plugin.dll [2016-07-06] (Andrea Vacondio)
Toolbar: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001 -> Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2016-06-29] (Bitdefender)

FireFox:
========
FF ProfilePath: C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\fzacbsgr.default
FF NetworkProxy: "type", 0
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Geen bestand]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-02] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2011-05-26] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-31] (Google Inc.)
FF Plugin-x32: PDFsam Enhanced -> C:\Program Files (x86)\PDFsam Enhanced\np-previewer.dll [2016-07-06] (Andrea Vacondio)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)
FF Extension: (Belgium eID) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\fzacbsgr.default\extensions\[email protected] [2016-07-27]
FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected] [2016-06-26]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff [2016-05-12]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\PDFsam Enhanced\resources\pdfsamenhancedfirefoxextension
FF Extension: (PDFsam Enhanced Creator) - C:\Program Files\PDFsam Enhanced\resources\pdfsamenhancedfirefoxextension [2016-09-02] [ niet getekend]
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2016-05-12] [ niet getekend]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext

Chrome:
=======
CHR HomePage: Profile 2 -> hxxp://www.google.com/
CHR StartupUrls: Profile 2 -> "hxxps://www.google.be/"
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (The Guardian) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\amckaikgfcndaokapfcedicfmagoghlg [2016-06-12]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-08]
CHR Extension: (Telegraph) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegbfkbjdbjmbjggbneiopjmhjjmffdp [2016-06-12]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-08]
CHR Extension: (AdBlock) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-12]
CHR Extension: (Adblock for Pirate Bay) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd [2015-06-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-11]
CHR Extension: (Google Maps) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-09-19]
CHR Extension: (The Independent) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdonfjaemnemdnnpebbcelibeocdmkai [2016-06-12]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-08]
CHR Extension: (Evernote Web Clipper) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2016-06-12]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-05]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-05]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google Cast) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2016-03-25]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Bitdefender Wallet) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dhhejlifdlcgcmogbggeomfodgklfaem [2016-06-13]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-05]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-08]
CHR Extension: (Hotspot Shield Free VPN Proxy – Unblock Sites) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nlbejmccbhkncgokjcmghpfloaajcffj [2016-08-26]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-07]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-05]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-29]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-11]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-11]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Bitdefender Wallet) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dhhejlifdlcgcmogbggeomfodgklfaem [2016-06-14]
CHR Extension: (Adobe Acrobat) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-08-19]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-11]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-08]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-11]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-29]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-13]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-13]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Bitdefender Wallet) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\dhhejlifdlcgcmogbggeomfodgklfaem [2016-06-14]
CHR Extension: (Adobe Acrobat) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-08-22]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-13]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-29]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-09]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-08]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-13]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-29]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-18]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-18]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-25]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-25]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-18]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-18]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-25]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-03-25]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-26]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-18]
CHR HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\USER\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-01-08]
CHR HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dhhejlifdlcgcmogbggeomfodgklfaem] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nlbejmccbhkncgokjcmghpfloaajcffj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159320 2016-08-22] (Adobe Systems, Incorporated)
S2 AnimationService; C:\Program Files\WALTR\x86\AnimationService.exe [55744 2015-10-08] ()
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S3 Blackberry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [577536 2011-02-17] (Research In Motion Limited) [Bestand niet getekend]
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [69120 2013-10-22] () [Bestand niet getekend]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-14] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-14] (Dropbox, Inc.)
R2 Freedome Service; C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\FreedomeService.exe [446432 2016-08-29] (F-Secure Corporation)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Bestand niet getekend]
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2710648 2016-08-24] (AnchorFree Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [103168 2016-08-24] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-08-04] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-07-02] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel® Corporation) [Bestand niet getekend]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2014-07-02] (Intel Corporation)
R2 Micro Star SCM; c:\Program Files (x86)\SCM\MSIService.exe [160768 2013-09-26] (Micro-Star International Co., Ltd.) [Bestand niet getekend]
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe [162800 2014-02-21] (MSI)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [370368 2015-06-10] (Microsoft Corporation)
R3 MSSQLFDLauncher$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe [50880 2014-02-21] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
R3 PDFsam Enhanced; C:\Program Files\PDFsam Enhanced\ws.exe [2322496 2016-07-06] (Andrea Vacondio)
S3 PDFsam Enhanced CrashHandler; C:\Program Files\PDFsam Enhanced\crash-handler-ws.exe [921664 2016-07-06] (Andrea Vacondio)
R2 PDFsam Enhanced Creator; C:\Program Files\PDFsam Enhanced\creator-ws.exe [734272 2016-07-06] (Andrea Vacondio)
R2 PDFsam Manager; C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe [1050224 2015-11-13] (ANDREA VACONDIO)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [950200 2016-05-24] (Bitdefender)
R2 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [3446224 2015-02-23] (Paramount Software UK Ltd)
R2 ReportServer$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSRS12.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe [2450112 2014-02-21] (Microsoft Corporation)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-06-10] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7534864 2016-08-25] (TeamViewer GmbH)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [Bestand niet getekend]
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [156016 2016-06-29] (Bitdefender)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1693104 2016-06-29] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (gefilterd) ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S3 ACSSCR; C:\Windows\system32\DRIVERS\a38usb.sys [72208 2015-07-10] (Advanced Card Systems Ltd.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1603264 2016-08-22] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [850464 2016-08-22] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-29] (BitDefender LLC)
S4 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows ® Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows ® Win 7 DDK provider)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 fsfreedometap; C:\Windows\system32\DRIVERS\fsfreedometap.sys [34344 2016-08-29] (The OpenVPN Project)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [182936 2015-12-16] (BitDefender LLC)
R0 ignis; C:\Windows\system32\DRIVERS\ignis.sys [299816 2016-06-29] (Bitdefender)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-07-02] (Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\SUPER CHARGER\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)
S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [169480 2015-02-23] (Windows ® Win 7 DDK provider)
S3 PSVolAcc; C:\Windows\System32\Drivers\PSVolAcc.sys [12760 2014-07-21] (Paramount Software UK Ltd)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [74240 2011-02-16] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd)
R1 RsFx0300; C:\Windows\System32\DRIVERS\RsFx0300.sys [247488 2014-02-21] (Microsoft Corporation)
S3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [554712 2014-07-02] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3410136 2015-11-04] (Realtek Semiconductor Corporation                           )
R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42088 2015-11-13] (Anchorfree Inc.)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [520032 2016-06-29] (BitDefender S.R.L.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S0 b06bdrv; System32\drivers\bxvbda.sys [X]

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2016-09-02 22:26 - 2016-09-02 22:27 - 00000000 ____D C:\FRST
2016-09-02 21:01 - 2016-09-02 21:01 - 00000000 ____D C:\ProgramData\ANDREA VACONDIO
2016-09-02 21:00 - 2016-09-02 21:02 - 00000000 ____D C:\Users\USER\AppData\Roaming\PDFsam Enhanced
2016-09-02 21:00 - 2016-09-02 21:01 - 00000000 ____D C:\Program Files\PDFsam Enhanced
2016-09-02 21:00 - 2016-09-02 21:00 - 00000786 _____ C:\Users\Public\Desktop\PDFsam Enhanced.lnk
2016-09-02 21:00 - 2016-09-02 21:00 - 00000000 ____D C:\Users\USER\Documents\PDFsam Enhanced Files
2016-09-02 21:00 - 2016-09-02 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFsam Enhanced
2016-09-02 21:00 - 2016-09-02 21:00 - 00000000 ____D C:\Program Files (x86)\PDFsam Enhanced
2016-09-02 20:59 - 2016-09-02 21:02 - 00000000 ____D C:\ProgramData\PDFsam Enhanced
2016-09-02 20:55 - 2016-09-02 20:55 - 00001775 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-09-02 20:55 - 2016-09-02 20:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-09-02 20:54 - 2016-09-02 20:55 - 00000000 ____D C:\Program Files\iTunes
2016-09-02 20:54 - 2016-09-02 20:54 - 00000000 ____D C:\Program Files\iPod
2016-09-02 20:54 - 2016-09-02 20:54 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-09-02 20:51 - 2016-09-02 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2016-09-02 18:14 - 2016-09-02 18:14 - 00000000 _____ C:\Users\USER\Downloads\Adobe Acrobat Pro DC Crack 2015_2016 Keygen
2016-09-02 17:52 - 2016-09-02 18:50 - 03618496 _____ (.Company ) C:\Users\USER\Downloads\Adobe Acrobat Pro DC Crack 2015_2016 Keygen.exe
2016-09-02 17:50 - 2016-09-02 17:51 - 03618602 _____ C:\Users\USER\Downloads\Adobe Acrobat Pro DC Crack 2015_2016 Keygen.rar
2016-08-30 20:22 - 2016-08-30 20:22 - 00012306 _____ C:\Users\USER\Downloads\opvragingen - of misschiein verkoop kun je dat nazien (1).xlsx
2016-08-29 16:47 - 2016-08-29 16:47 - 00000000 ___RD C:\Users\USER\Documents\Scanned Documents
2016-08-29 16:47 - 2016-08-29 16:47 - 00000000 ____D C:\Users\USER\Documents\Fax
2016-08-29 16:04 - 2016-08-29 16:04 - 00034344 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\fsfreedometap.sys
2016-08-29 16:04 - 2016-08-29 16:04 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-08-29 16:04 - 2016-08-29 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freedome
2016-08-29 12:15 - 2016-08-29 12:16 - 37455728 _____ (A.I.SOFT,INC.) C:\Users\USER\Downloads\HL-2250DN-inst-C1-useu.EXE
2016-08-26 15:56 - 2016-08-26 15:56 - 00024858 _____ C:\Users\USER\Downloads\GLTransactionsReport (1).pdf
2016-08-25 16:15 - 2016-08-25 16:15 - 08140064 _____ (TeamViewer) C:\Users\USER\Downloads\TeamViewerQS_nl-vxe (1).exe
2016-08-25 15:58 - 2016-08-25 15:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-08-23 13:00 - 2016-08-23 13:00 - 00000000 ____D C:\Users\USER\Downloads\Imperium.2016.HDRip.XViD-ETRG
2016-08-22 20:34 - 2016-08-22 21:07 - 00000000 ____D C:\Users\USER\Downloads\Now.You.See.Me.2.2016.BDRip.XviD.AC3-EVO
2016-08-21 11:52 - 2016-08-21 11:52 - 00000000 ____D C:\Users\USER\AppData\Roaming\PDAppFlex
2016-08-19 16:40 - 2016-08-19 16:40 - 09859728 _____ (TeamViewer GmbH) C:\Users\USER\Downloads\TeamViewer_Setup_nl-vxe.exe
2016-08-19 11:49 - 2016-08-19 11:49 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-08-19 11:43 - 2016-08-19 11:44 - 05463416 _____ (PDFsam Enhanced) C:\Users\USER\Downloads\PDFsam_Enhanced_Installer.exe
2016-08-19 11:35 - 2016-08-19 11:35 - 02094184 _____ (Adobe) C:\Users\USER\Downloads\acrobatproDC_00000000000000000000000409.exe
2016-08-13 00:26 - 2016-08-13 00:27 - 00000000 ____D C:\Users\Surfen\Downloads\The Legend of Tarzan 2016 HD-TS x264-CPG
2016-08-13 00:26 - 2016-08-13 00:26 - 00000000 ____D C:\Users\Surfen\Downloads\Warcraft.2016.HC.HDRip.XViD.AC3-ETRG
2016-08-13 00:22 - 2016-08-13 00:24 - 00000000 ____D C:\Users\Surfen\Downloads\Jason Bourne 2016  HD-TS x264-CPG
2016-08-13 00:22 - 2016-08-13 00:23 - 00025088 ___SH C:\Users\Surfen\Downloads\Thumbs.db
2016-08-13 00:20 - 2016-08-05 21:34 - 894960738 ____R C:\Users\Surfen\Downloads\Central.Intelligence.2016.720p.HC.WEBRip.850MB.MkvCage.mkv
2016-08-11 17:20 - 2016-08-11 17:20 - 06423986 _____ C:\Users\USER\Downloads\20160731-1 - oorzaak - inhoud.pdf
2016-08-10 21:04 - 2016-08-10 21:04 - 00405621 _____ C:\Users\USER\Downloads\VAT_0808126893_20160810_0021994411.pdf
2016-08-10 21:04 - 2016-08-10 21:04 - 00004247 _____ C:\Users\USER\Downloads\VAT_0808126893_20160810_0021994411.xml
2016-08-10 21:01 - 2016-08-10 21:03 - 00369240 _____ C:\Users\USER\Downloads\toSign_TVA_20160810_id=21994411.pdf
2016-08-10 11:48 - 2016-08-02 08:54 - 25808384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-08-10 11:48 - 2016-08-02 08:32 - 02894336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-08-10 11:48 - 2016-08-02 08:31 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-08-10 11:48 - 2016-08-02 08:20 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-08-10 11:48 - 2016-08-02 08:18 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-08-10 11:48 - 2016-08-02 08:18 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-08-10 11:48 - 2016-08-02 07:55 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-08-10 11:48 - 2016-08-02 07:54 - 20343808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-08-10 11:48 - 2016-08-02 07:51 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-08-10 11:48 - 2016-08-02 07:47 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-08-10 11:48 - 2016-08-02 07:46 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-08-10 11:48 - 2016-08-02 07:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-08-10 11:48 - 2016-08-02 07:40 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-08-10 11:48 - 2016-08-02 07:39 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-08-10 11:48 - 2016-08-02 07:38 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-08-10 11:48 - 2016-08-02 07:38 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-08-10 11:48 - 2016-08-02 07:36 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-08-10 11:48 - 2016-08-02 07:28 - 15412224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-08-10 11:48 - 2016-08-02 07:23 - 02868224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-08-10 11:48 - 2016-08-02 07:21 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-08-10 11:48 - 2016-08-02 07:20 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-08-10 11:48 - 2016-08-02 07:15 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-08-10 11:48 - 2016-08-02 07:15 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-08-10 11:48 - 2016-08-02 07:14 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-08-10 11:48 - 2016-08-02 07:11 - 13808128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-08-10 11:48 - 2016-08-02 07:10 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-08-10 11:48 - 2016-08-02 06:59 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-08-10 11:48 - 2016-08-02 06:56 - 02393088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-08-10 11:48 - 2016-08-02 06:53 - 01316352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-08-10 11:47 - 2016-08-02 06:51 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-08-10 11:41 - 2016-07-08 16:18 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-08-10 11:36 - 2016-07-09 02:09 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-08-10 11:36 - 2016-07-09 02:08 - 00332632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-08-10 11:36 - 2016-07-08 16:19 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-08-10 11:36 - 2016-07-08 16:17 - 00696832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2016-08-10 11:36 - 2016-07-06 16:26 - 07793152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-08-10 11:36 - 2016-07-06 16:26 - 07075328 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2016-08-10 11:36 - 2016-07-06 16:23 - 05270016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2016-08-10 11:36 - 2016-07-06 16:21 - 05265920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-08-10 11:35 - 2016-07-12 16:08 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-08-10 11:35 - 2016-07-08 16:32 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-08-10 11:35 - 2016-07-08 16:25 - 01491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-08-10 11:35 - 2016-07-08 16:22 - 01445376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-08-10 11:35 - 2016-07-08 00:33 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-08-10 11:35 - 2016-07-07 23:53 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-08-10 11:35 - 2016-07-07 22:06 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-08-10 11:35 - 2016-05-19 01:18 - 00563024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-08-10 11:35 - 2016-05-19 01:18 - 00397232 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-08-10 11:35 - 2016-05-19 01:16 - 00178016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-08-10 11:35 - 2016-05-19 00:28 - 00340880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-08-05 21:24 - 2016-08-05 21:34 - 894960738 ____R C:\Users\USER\Downloads\Central.Intelligence.2016.720p.HC.WEBRip.850MB.MkvCage.mkv
2016-08-05 20:47 - 2016-08-05 20:49 - 00000000 ____D C:\Users\USER\Downloads\Jason Bourne 2016  HD-TS x264-CPG
2016-08-04 15:51 - 2016-08-04 17:43 - 00000000 ____D C:\Users\USER\Downloads\Warcraft.2016.HC.HDRip.XViD.AC3-ETRG
2016-08-04 14:00 - 2016-08-04 14:18 - 00000000 ____D C:\Users\USER\Downloads\The Legend of Tarzan 2016 HD-TS x264-CPG

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2016-09-02 21:43 - 2016-06-13 19:42 - 00000000 ____D C:\Program Files\Bitdefender Agent
2016-09-02 21:07 - 2015-03-06 20:50 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1548863103-2308270600-2068238051-1001
2016-09-02 20:54 - 2015-06-13 20:47 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-09-02 20:51 - 2016-03-16 20:55 - 00000000 ___RD C:\Users\USER\iCloudDrive
2016-09-02 20:50 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-09-02 20:43 - 2015-10-25 17:01 - 00000000 ____D C:\Users\USER\AppData\Roaming\Skype
2016-09-02 18:13 - 2016-04-21 13:45 - 00000000 ___RD C:\Users\USER\Google Drive
2016-09-02 18:10 - 2016-04-10 21:25 - 00000000 ____D C:\Users\USER\AppData\Local\TSVNCache
2016-09-02 18:10 - 2015-06-14 11:59 - 00001066 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-09-02 18:09 - 2015-06-14 11:59 - 00001062 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-09-02 18:09 - 2015-04-05 12:18 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-02 18:09 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-02 18:07 - 2015-04-26 16:28 - 00060598 _____ C:\bdlog.txt
2016-09-02 18:07 - 2015-04-25 09:18 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-09-02 18:06 - 2015-04-05 12:18 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-02 17:59 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2016-09-02 17:58 - 2013-08-22 16:44 - 00510376 _____ C:\Windows\system32\FNTCACHE.DAT
2016-09-02 17:58 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-09-02 16:34 - 2015-03-06 20:58 - 00004030 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BC896310-65AA-4E49-8CE9-99FBAE103639}
2016-09-01 18:16 - 2015-03-06 20:43 - 00000000 ____D C:\Users\USER\AppData\Local\Packages
2016-08-31 12:09 - 2016-03-16 20:54 - 00003456 _____ C:\Windows\System32\Tasks\Apple Diagnostics
2016-08-31 09:01 - 2015-03-07 08:18 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-08-29 19:46 - 2016-03-16 20:55 - 00000000 ____D C:\Users\USER\AppData\Local\AF131CA3-542B-4BFC-AB07-8E70BD7DA898.aplzod
2016-08-29 16:04 - 2016-06-15 20:29 - 00002344 _____ C:\Users\Public\Desktop\Freedome.lnk
2016-08-29 16:04 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-08-27 16:05 - 2015-12-15 21:30 - 00000993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-08-27 16:05 - 2015-12-15 21:30 - 00000981 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-08-26 16:52 - 2014-04-30 19:19 - 00915970 _____ C:\Windows\system32\perfh013.dat
2016-08-26 16:52 - 2014-04-30 19:19 - 00205800 _____ C:\Windows\system32\perfc013.dat
2016-08-26 16:52 - 2014-03-18 12:03 - 02135482 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-26 14:00 - 2015-08-22 21:03 - 00000000 ____D C:\Users\USER\AppData\Local\CutePDF Writer
2016-08-26 11:58 - 2015-12-08 23:13 - 00000000 ____D C:\ProgramData\Hotspot Shield
2016-08-26 11:58 - 2015-12-08 23:13 - 00000000 ____D C:\Program Files (x86)\Hotspot Shield
2016-08-26 11:57 - 2016-07-04 21:50 - 00001074 _____ C:\Users\Public\Desktop\Hotspot Shield.lnk
2016-08-25 15:59 - 2015-06-14 11:59 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-08-23 15:05 - 2015-10-01 20:56 - 00000000 ____D C:\Users\USER\AppData\Roaming\uTorrent
2016-08-23 15:02 - 2015-05-30 22:42 - 00000000 ____D C:\Users\USER\AppData\Roaming\vlc
2016-08-22 19:12 - 2016-06-13 19:47 - 01603264 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2016-08-22 19:12 - 2016-06-13 19:47 - 00850464 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2016-08-22 18:58 - 2016-01-02 23:45 - 00047104 ___SH C:\Users\USER\Thumbs.db
2016-08-22 18:57 - 2015-03-06 20:43 - 00000000 ____D C:\Users\USER
2016-08-21 13:11 - 2015-07-22 01:09 - 00000000 ____D C:\Users\USER\AppData\Local\Windows Live
2016-08-21 12:08 - 2016-01-08 23:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-08-21 12:04 - 2015-03-09 22:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-08-19 12:03 - 2015-04-25 09:17 - 00000000 ____D C:\Users\USER\AppData\Local\Adobe
2016-08-19 11:55 - 2015-03-06 20:44 - 00000000 ____D C:\Users\USER\AppData\Roaming\Adobe
2016-08-19 11:54 - 2015-03-07 08:20 - 00000000 ____D C:\Users\USER\AppData\Local\CrashDumps
2016-08-19 11:50 - 2015-04-25 09:17 - 00000000 ____D C:\ProgramData\Adobe
2016-08-18 17:54 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-08-17 15:50 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-08-15 16:52 - 2016-05-17 20:44 - 00000000 ____D C:\Users\Surfen\AppData\Local\TSVNCache
2016-08-15 01:16 - 2015-05-30 00:27 - 00000000 ____D C:\Users\Surfen\AppData\Roaming\vlc
2016-08-15 00:49 - 2016-05-17 20:45 - 00003990 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{79A7C7CA-26B2-4C89-9D78-966CAB61B5FC}
2016-08-14 00:06 - 2015-05-27 20:34 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1548863103-2308270600-2068238051-1002
2016-08-13 00:39 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-13 00:34 - 2015-05-27 20:29 - 00000000 ____D C:\Users\Surfen\AppData\Roaming\Bitdefender
2016-08-11 16:37 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-08-10 16:10 - 2013-08-22 15:25 - 00000202 _____ C:\Windows\win.ini
2016-08-10 16:09 - 2015-03-06 22:19 - 00000000 ____D C:\Windows\system32\MRT
2016-08-10 15:56 - 2015-05-27 20:27 - 00000000 ____D C:\Users\Surfen
2016-08-10 15:32 - 2015-03-06 22:19 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-08-10 15:31 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2016-08-08 21:09 - 2015-04-05 12:18 - 00002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-08 21:09 - 2015-04-05 12:18 - 00002233 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-06 23:26 - 2015-06-23 17:56 - 00000000 ____D C:\Users\USER\AppData\Local\Popcorn-Time
2016-08-03 13:51 - 2016-08-02 18:33 - 00000000 ____D C:\Users\USER\Downloads\The.Walking.Dead.Season.6.720p.HDTV.x265.ShAaNiG

==================== Bestanden in de root van sommige mappen =======

2015-08-05 21:59 - 2015-08-06 06:34 - 0000385 _____ () C:\Users\USER\AppData\Roaming\Rim.Desktop.Exception.log
2015-08-05 21:57 - 2015-08-06 06:10 - 0003048 _____ () C:\Users\USER\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2015-08-05 21:59 - 2015-08-06 06:34 - 0000385 _____ () C:\Users\USER\AppData\Roaming\Rim.DesktopHelper.Exception.log
2015-07-20 17:34 - 2015-07-20 17:34 - 0000037 ___SH () C:\Users\USER\AppData\Local\70149b02515b3bb20dd492.47983420
2015-03-06 20:43 - 2016-09-02 21:08 - 1976287 _____ () C:\Users\USER\AppData\Local\BTServer.log
2015-08-06 06:14 - 2015-08-06 06:14 - 0003584 _____ () C:\Users\USER\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-28 18:10 - 2015-06-28 18:10 - 0000017 _____ () C:\Users\USER\AppData\Local\resmon.resmoncfg
2016-06-13 19:48 - 2016-06-13 19:48 - 0427540 _____ () C:\ProgramData\1465839864.bdinstall.bin
2016-06-14 20:32 - 2016-06-14 20:32 - 0026794 _____ () C:\ProgramData\1465929168.bdinstall.bin
2015-06-15 19:04 - 2015-06-15 19:04 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-06-01 00:11 - 2016-01-17 16:32 - 0001374 _____ () C:\ProgramData\hpzinstall.log

Bestanden om te verplaatsen of verwijderen:
====================
C:\Users\USER\Evernote_5.8.4.6870.exe
C:\Users\USER\PSISetup.exe
C:\Users\USER\TeamViewer_Setup_nl.exe

Sommige bestanden in TEMP:
====================
C:\Users\USER\AppData\Local\Temp\COMAP.EXE
C:\Users\USER\AppData\Local\Temp\converter.exe
C:\Users\USER\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpx5qksa.dll
C:\Users\USER\AppData\Local\Temp\jre-8u101-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u51-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u66-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\USER\AppData\Local\Temp\reflectPatch.exe
C:\Users\USER\AppData\Local\Temp\SkypeSetup.exe
C:\Users\USER\AppData\Local\Temp\update.exe
C:\Users\USER\AppData\Local\Temp\vlc-2.2.4-win64.exe
C:\Users\USER\AppData\Local\Temp\VLCStreamerSetup_5.26.exe
C:\Users\USER\AppData\Local\Temp\VLCStreamerSetup_5.27.exe
C:\Users\Surfen\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp8khmtx.dll

==================== Bamital & volsnap =================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

C:\Windows\system32\winlogon.exe => Bestand is getekend
C:\Windows\system32\wininit.exe => Bestand is getekend
C:\Windows\explorer.exe => Bestand is getekend
C:\Windows\SysWOW64\explorer.exe => Bestand is getekend
C:\Windows\system32\svchost.exe => Bestand is getekend
C:\Windows\SysWOW64\svchost.exe => Bestand is getekend
C:\Windows\system32\services.exe => Bestand is getekend
C:\Windows\system32\User32.dll => Bestand is getekend
C:\Windows\SysWOW64\User32.dll => Bestand is getekend
C:\Windows\system32\userinit.exe => Bestand is getekend
C:\Windows\SysWOW64\userinit.exe => Bestand is getekend
C:\Windows\system32\rpcss.dll => Bestand is getekend
C:\Windows\system32\dnsapi.dll => Bestand is getekend
C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend
C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend

LastRegBack: 2016-08-27 17:37

==================== Eind van FRST.txt ============================

 

 

Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 31-08-2016
Gestart door USER (02-09-2016 22:28:44)
Gestart vanaf C:\Users\USER\Contacts\Desktop
Windows 8.1 (Update) (X64) (2015-03-06 18:43:16)
Boot Modus: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1548863103-2308270600-2068238051-500 - Administrator - Disabled)
Gast (S-1-5-21-1548863103-2308270600-2068238051-501 - Limited - Enabled)
USER (S-1-5-21-1548863103-2308270600-2068238051-1001 - Administrator - Enabled) => C:\Users\USER
HomeGroupUser$ (S-1-5-21-1548863103-2308270600-2068238051-1004 - Limited - Enabled)
Surfen (S-1-5-21-1548863103-2308270600-2068238051-1002 - Administrator - Enabled) => C:\Users\Surfen

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Bitdefender Antivirus (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antispyware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

„Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
µTorrent (HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.)
5600 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
5600_Help (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
5600Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
[email protected] KillDisk 10 (HKLM\...\{58F0BF80-D1C1-49BF-AF13-EFF421E1AD39}_is1) (Version: 10 - LSoft Technologies Inc)
AIO_CDB_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1405.0701 - Micro-Star International Co., Ltd.)
Belgium e-ID middleware 4.1.18 (build 1730) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71730}) (Version: 4.1.1730 - Belgian Government)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.26.1436 - Bitdefender)
Bitdefender Internet Security 2016 (HKLM\...\Bitdefender) (Version: 20.0.28.1478 - Bitdefender)
BlackBerry Desktop Software 6.1 (HKLM-x32\...\BlackBerry_Desktop) (Version: 6.1.0.35 - Research In Motion Ltd.)
BlackBerry Desktop Software 6.1 (x32 Version: 6.1.0.35 - Research In Motion Ltd.) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Boot Configure (HKLM-x32\...\{AB72B3BB-A389-4F62-86EE-C08326B4BE60}) (Version: 20.014.05233 - Micro-Star International Co., Ltd.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 4.0.1402.2601 - )
Canon MP540 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP540_series) (Version:  - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CryptoPrevent (HKLM-x32\...\{5C5B24E7-4694-4049-A222-CCE7D3FAC63F}_is1) (Version:  - Foolish IT LLC)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version:  3.0 - Acro Software Inc.)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5509.52 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 8.4.21 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.33 - Dropbox, Inc.) Hidden
ELAN Touchpad 11.13.11.4_X64_WHQL (HKLM\...\Elantech) (Version: 11.13.11.4 - ELAN Microelectronic Corp.)
EPUB File Reader (HKLM-x32\...\{818C5857-5C74-4CAC-9F43-E5597086852D}_is1) (Version:  - epubfilereader.com)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Evernote v. 6.1.2 (HKLM-x32\...\{A46ABD1E-2837-11E6-9E7C-005056951CAD}) (Version: 6.1.2.2292 - Evernote Corp.)
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
Fotoattēlu galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foto-galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freedome (HKLM-x32\...\F-Secure Freedome) (Version: 1.6.3289.0 - F-Secure Corporation)
Galeria de Fotografias (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GDR 2269 for SQL Server 2014 (KB3045324) (64-bit) (HKLM\...\KB3045324) (Version: 12.0.2269.0 - Microsoft Corporation)
GetDataBack for NTFS (HKLM-x32\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.33.000 - Runtime Software)
GetDataBack Simple (HKLM-x32\...\{D06B8000-52B4-4D0B-A003-DA83ED982B51}) (Version: 2.01.000 - Runtime Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Hotspot Shield 5.4.11 (HKLM-x32\...\HotspotShield) (Version: 5.4.11 - AnchorFree Inc.)
Hotspot Shield 5.4.11 Embedded (x32 Version: 5.4.11.9772 - Buildbot) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart 5520 series Basissoftware van het apparaat (HKLM\...\{D2FFE8A1-980E-4CF9-A48F-453D767BA661}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 5520 series Help (HKLM-x32\...\{193C95A3-E4D5-4482-A9C9-1510E29849E4}) (Version: 27.0.0 - Hewlett Packard)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
iBackupBot 5.3.0 (HKLM-x32\...\iBackupBot) (Version: 5.3.0 - VOWSoft, Ltd.)
iCloud (HKLM\...\{724A887F-2B55-4306-B6F9-8F0E7A04B1B5}) (Version: 5.2.2.87 - Apple Inc.)
inSSIDer 3 (HKLM-x32\...\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}) (Version: 3.0.7.48 - MetaGeek, LLC)
Intel® Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.2.4.1000 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
IsoBuster 3.7 (HKLM-x32\...\IsoBuster_is1) (Version: 3.7 - Smart Projects)
iTunes (HKLM\...\{955524E7-79EB-4CA9-BA4D-FD2DF587651B}) (Version: 12.4.3.1 - Apple Inc.)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
KB9X Radio Switch Driver (HKLM\...\5AADE1068CF70DD983F763B20CF2CAAB72883915) (Version: 1.1.0.0 - ENE TECHNOLOGY INC.)
KBC-beveiligingscomponenten (HKLM-x32\...\{DDF58C15-38E6-4085-A3F9-FD73705AD4F1}) (Version: 6.29.0001 - KBC Groep NV)
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 6.0 - Paramount Software (UK) Ltd.)
Macrium Reflect Free Edition (Version: 6.0.708 - Paramount Software (UK) Ltd.) Hidden
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version:  - )
MAGIX MX Suite (HKLM-x32\...\MAGIX_{43136332-880B-458A-966C-900C18752B66}) (Version: 1.13.0.121 - MAGIX AG)
MAGIX MX Suite (Version: 1.13.0.121 - MAGIX AG) Hidden
Manager (x32 Version: 3.0.7.25771 - ANDREA VACONDIO) Hidden
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{A106FA6F-E94C-44C9-8A0F-C34BD82C9FE6}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Report Viewer 2014 Runtime (HKLM-x32\...\{327E9C0D-1687-414F-923E-F5979E549548}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{83F2B8F4-5CF3-4BE9-9772-9543EAE4AC5F}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{D9C53793-2E6A-4C6D-BA0B-898A17876A5D}) (Version: 12.0.2269.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Policies  (HKLM-x32\...\{1C30FE7E-8A8C-4492-89D6-10CB20C3B0EB}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{37C44B5C-E839-4A9D-9E20-A93E1B2FD35A}) (Version: 12.0.2269.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL Compiler Service  (HKLM\...\{537203CB-708E-43A3-BA16-3D5C14A587BB}) (Version: 12.0.2269.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{C3F6F200-6D7B-4879-B9EE-700C0CE1FCDA}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{8C06D6DB-A391-4686-B050-99CC522A7843}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (HKLM-x32\...\{8B27067F-75D8-4C9D-834D-27952C63488E}) (Version: 1.0.0 - soft.distancija.lt)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.4 (x86 nl) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 nl)) (Version: 43.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4.5848 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MSI Social Media Collection (HKLM-x32\...\{7ADEC426-BE95-48EF-84D4-086BD0F4D331}) (Version: 1.14.2251 - Micro-Star International Co., Ltd.)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
OpenOffice 4.1.2 (HKLM-x32\...\{41E7B095-1618-49CF-972F-72B5D5235423}) (Version: 4.12.9782 - Apache Software Foundation)
Oracle VM VirtualBox 4.3.28 (HKLM\...\{E8BB81BC-E67C-4750-84EE-128DA5A7ADA5}) (Version: 4.3.28 - Oracle Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDFsam Enhanced (HKLM-x32\...\PDFsam Enhanced) (Version: 3.1.14.28706 - Copyright 2016 Andrea Vacondio)
PDFsam Enhanced Asian Fonts Pack (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced Convert Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced Create Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced Edit Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced Forms Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced Insert Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced OCR Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced Review Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced Secure Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
PDFsam Enhanced View Module (Version: 3.1.14.28668 - Andrea Vacondio) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PolarEdit9750 v 0.2.6 (HKLM-x32\...\{086AB3E1-D390-4B30-8EF3-A28AE0AD76B7}_is1) (Version:  - Polarstern)
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 5.4.0.0 - Popcorn Time) <==== AANDACHT
Popcorn Time (HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Popcorn Time) (Version:  - Popcorn Official) <==== AANDACHT
Port Forward Network Utilities (HKLM-x32\...\{88B1D36C-7B70-4C48-8D2F-AAB956ECF4C3}) (Version: 2.0.9 - Portforward, LLC)
QBSDK 8.0 - QBFC8.0 (x32 Version: 8.0.0.1 - Intuit Developer Network) Hidden
Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.780.780.102113 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.30169 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7090 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.30.0239 - REALTEK Semiconductor Corp.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SCM (HKLM\...\{0DD4DB96-E920-4D84-9137-9987FABAEB57}) (Version: 10.013.09262 - Application)
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
SHARP MX/DX Series PCL/PS Printer Driver (HKLM-x32\...\SHARP MX-2300 2700 3500 4500 Series PCL PS Printer Driver) (Version: 1.00.000 - SHARP)
SHARP MX/MX-M/DX Series PCL/PS Printer Driver (HKLM-x32\...\SHARP MX-2310U PCL PS Printer Driver) (Version: 1.00.000 - SHARP)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SimpleInvoicer 1.1.5.1 (HKLM-x32\...\SimpleInvoicer) (Version: 1.1.5.1 - Dycode Software)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
SQL Server 2014 Client Tools (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Documentation Components (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Full text search (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Management Studio (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Reporting Services (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.0.2000.8 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Stuurprogrammapakket voor Windows - Fedict SmartCard  (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict)
SUPER CHARGER (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.024 - MSI)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.65452 - TeamViewer)
TomTom MyDrive Connect 4.1.0.2658 (HKLM-x32\...\MyDriveConnect) (Version: 4.1.0.2658 - TomTom)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TortoiseSVN 1.9.3.27038 (64 bit) (HKLM\...\{2114A96B-51D7-4C45-B2E1-003562464D99}) (Version: 1.9.27038 - TortoiseSVN)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
UMPlayer 0.98 [P4] (HKLM-x32\...\UMPlayer) (Version: 0.98 - Ori Rejwan)
Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0413-0000-0000000FF1CE}_Office15.PROPLUSR_{343EEE91-078C-45DE-8A1E-37C660A616E2}) (Version:  - Microsoft)
Valokuvavalikoima (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC Setup Helper (HKLM-x32\...\VLC Setup Helper_is1) (Version:  - Hobbyist Software)
VLC Streamer 5.27 (HKLM-x32\...\VLC Streamer_is1) (Version:  - Hobbyist Software)
WALTR version 1.1.33 (HKLM\...\{20AFC2A1-9E47-4A77-96E8-89AAED7B6AEB}_is1) (Version: 1.1.33 - Softorino, Inc.)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WhoCrashed 5.03 (HKLM\...\WhoCrashed_is1) (Version:  - Resplendence Software Projects Sp.)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
WinDirStat 1.1.2 (HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\WinDirStat) (Version:  - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}) (Version: 17.5.10562 - WinZip Computing, S.L. )
Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Основи Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотоальбом (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотографии (общедоступная версия) (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотоколекція (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {0756B1A4-7A4F-4155-95CE-2E0A50A9763E} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {1FC1EF61-7112-414E-81BF-6CD6BBDD7B8A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-14] (Dropbox, Inc.)
Task: {20A58DD7-D50C-445E-A39C-6A1287D2E2B6} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-04-18] (Bitdefender)
Task: {2799E106-3486-41B6-8C7F-6EA2E48B8BA2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {28F9DB22-7FB7-450B-BC56-AA94FF75B1F3} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {556147A0-1EFB-4726-8D58-6B2D57694C7A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {589D5C57-2A2D-4BA5-A03C-6CF933ED3AA9} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-08-10] (Microsoft Corporation)
Task: {720BBC21-AE6C-475C-AAC6-80F7C8E53E31} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {72D89087-D3D8-4C46-8F91-18A3DF212D9E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {9EF3C8DA-34B2-4AB1-9B60-7D86F17DA565} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe
Task: {B1746854-552B-4151-BE68-8F1F3B2265A4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {B97E6D3D-E152-4FEC-8EAA-2D6D0720C9DB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks [Argument = /run /TN "\Microsoft\Windows\Setup\gwx\refreshgwxconfig"]
Task: {C58DBB6A-F246-4983-BED0-47747CD75552} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-14] (Dropbox, Inc.)
Task: {D4D753AD-FEEE-4B83-ABE4-D26CD8761A73} - System32\Tasks\MSI_Reminder => C:\Program Files (x86)\MSI\MSI Remind Manager\MSI Reminder.exe
Task: {E6702D15-960B-421B-971A-5683DFCCC2B4} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2016-07-08] (Apple Inc.)
Task: {EC678A15-AB5F-4AD2-A8A0-5AF9637D4362} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {FB455AAC-DDA1-4A44-BF99-B2EA967D8F95} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Snelkoppelingen =============================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

ShortcutWithArgument: C:\Users\USER\Contacts\Desktop\KBC-Online for Business.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxps://www.kbc.be/ondernemen
ShortcutWithArgument: C:\Users\USER\Contacts\Desktop\Gebruikte programma's\KBC-Online for Business.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxps://www.kbc.be/ondernemen
ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\ff13ca23fee04978\Privé - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 5"
ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Pc technieker - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Stagiair boekhouder fiscalist - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 3"

==================== Geladen Modules (gefilterd) ==============

2016-06-13 19:47 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bdmetrics.dll
2016-06-13 19:47 - 2016-05-09 11:29 - 01006336 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpbr.mdl
2016-06-13 19:47 - 2016-05-09 11:29 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpdsp.mdl
2016-06-13 19:47 - 2016-05-09 11:29 - 03035488 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpph.mdl
2016-06-13 19:47 - 2016-05-09 11:29 - 01541440 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttprbl.mdl
2015-08-22 21:01 - 2013-10-23 15:24 - 00087600 _____ () C:\Windows\System32\cpwmon64.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-07-02 20:44 - 2013-10-22 02:06 - 00069120 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2015-12-13 16:10 - 2015-12-13 16:10 - 00094080 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2016-07-06 16:29 - 2016-07-06 16:29 - 00199680 _____ () C:\Program Files\PDFsam Enhanced\libidn.dll
2016-06-13 19:47 - 2016-06-29 13:14 - 00521112 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\intermsec.dll
2016-06-13 19:47 - 2016-04-05 16:31 - 00159232 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\ui\ltr\intermsec.ui
2016-06-13 19:47 - 2016-05-12 17:48 - 00030208 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\lang\en-US\intermsec.txtui
2016-06-13 19:47 - 2016-05-12 17:48 - 00004608 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\lang\en-US\bdaphconp.txtui
2016-06-13 19:47 - 2016-06-29 13:16 - 00061392 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bddpsp.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00166520 _____ () C:\Program Files (x86)\Hotspot Shield\bin\CrashRpt1403.dll
2016-07-14 19:48 - 2016-07-12 04:07 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-08-25 15:58 - 2016-07-12 04:07 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-08-25 15:58 - 2016-07-12 04:07 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-08-25 15:58 - 2016-07-12 04:07 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2016-07-14 19:48 - 2016-07-12 04:07 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2016-07-14 19:48 - 2016-07-12 04:07 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2016-07-14 19:48 - 2016-08-24 01:17 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2016-07-14 19:48 - 2016-07-12 04:07 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2016-07-14 19:48 - 2016-07-12 04:07 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2016-08-05 20:19 - 2016-08-24 01:17 - 00021312 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-08-05 20:19 - 2016-08-24 01:17 - 00025424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-08-25 15:58 - 2016-07-12 04:07 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2016-08-25 15:58 - 2016-07-12 04:09 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2016-07-14 19:48 - 2016-08-24 01:17 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-07-14 19:48 - 2016-08-24 01:17 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-07-14 19:48 - 2016-08-24 01:17 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-07-14 19:48 - 2016-08-24 01:17 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2016-07-14 19:48 - 2016-07-12 04:07 - 00144848 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2016-08-05 20:19 - 2016-07-12 04:08 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2016-07-14 19:48 - 2016-08-24 01:17 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-07-14 19:48 - 2016-08-24 01:17 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-08-25 15:58 - 2016-07-12 04:09 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-08-25 15:58 - 2016-08-24 01:17 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-08-25 15:58 - 2016-08-24 01:17 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2016-07-14 19:48 - 2016-07-12 04:07 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 03929392 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 01972016 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00132912 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00224056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-08-05 20:19 - 2016-08-24 01:17 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd
2016-07-14 19:48 - 2016-07-12 04:09 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-08-05 20:19 - 2016-08-24 01:17 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00168248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2016-08-25 15:58 - 2016-08-24 01:17 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2016-08-25 15:58 - 2016-07-12 04:11 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2016-08-25 15:58 - 2016-07-12 04:11 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2016-07-14 19:48 - 2016-07-12 04:12 - 00697304 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-06-01 14:39 - 2016-06-01 14:39 - 00439480 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2016-06-01 14:39 - 2016-06-01 14:39 - 00321208 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2016-08-29 16:04 - 2016-08-29 16:04 - 00698848 _____ () C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-08-29 16:04 - 2016-08-29 16:04 - 00019424 _____ () C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\libEGL.dll
2016-08-29 16:04 - 2016-08-29 16:04 - 01610720 _____ () C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\libGLESv2.dll
2016-09-02 18:11 - 2016-09-02 18:11 - 00098816 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32api.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00110080 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\pywintypes27.dll
2016-09-02 18:11 - 2016-09-02 18:11 - 00364544 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\pythoncom27.dll
2016-09-02 18:11 - 2016-09-02 18:11 - 00320512 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32com.shell.shell.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00776704 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\_hashlib.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 01176576 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\wx._core_.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00806400 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\wx._gdi_.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00816128 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\wx._windows_.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 01067008 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\wx._controls_.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00733184 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\wx._misc_.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00682496 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\pysqlite2._sqlite.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00088064 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\_ctypes.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00119808 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32file.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00108544 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32security.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00007168 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\hashobjs_ext.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00017920 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\thumbnails_ext.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00088064 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\usb_ext.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00012800 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\common.time34.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00018432 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32event.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00167936 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32gui.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00046080 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\_socket.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 01208320 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\_ssl.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00128512 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\_elementtree.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00127488 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\pyexpat.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00038912 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32inet.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00036864 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\_psutil_windows.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00525208 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\windows._lib_cacheinvalidation.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00011264 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32crypt.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00077312 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\wx._html2.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00027136 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\_multiprocessing.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00020480 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\_yappi.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00035840 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32process.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00686080 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\unicodedata.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00078848 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\wx._animate.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00123392 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\wx._wizard.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00024064 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32pipe.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00010240 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\select.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00025600 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32pdh.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00017408 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32profile.pyd
2016-09-02 18:11 - 2016-09-02 18:11 - 00022528 ____R () C:\Users\USER\AppData\Local\Temp\_MEI68402\win32ts.pyd
2016-07-05 15:23 - 2016-07-05 15:23 - 01041208 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-02 20:49 - 2014-07-02 03:36 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 00244536 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)

AlternateDataStreams: C:\Users\USER\PSISetup.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\acrobatproDC_00000000000000000000000409.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\Apache_OpenOffice_4.1.2_Win_x86_install_nl.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\Belgium-eID-QuickInstaller-4.1.18-signed.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\CryptoPreventSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\HL-2250DN-inst-C1-useu.EXE:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\PDFsam_Enhanced_Installer.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\SQLManagementStudio_x86_ENU.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\TeamViewerQS_nl-vxe (1).exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\TeamViewerQS_nl-vxe.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\TeamViewer_Setup_nl-vxe.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\windirstat1_1_2_setup (1).exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\windirstat1_1_2_setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Surfen\Desktop\setup-network-utilities.exe:BDU [0]
AlternateDataStreams: C:\Users\Surfen\Desktop\vlc-2.2.1-win64.exe:BDU [0]

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)

HKLM\...\.scr: CryptoPreventSCR => "C:\Program Files (x86)\Foolish IT\CryptoPrevent\CryptoPreventFilterMod.CryptoPreventEXEC" "%1" /S %*

==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)

IE trusted site: HKU\.DEFAULT\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\.DEFAULT\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\.DEFAULT\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\.DEFAULT\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\.DEFAULT\...\csob.cz -> hxxp://www.csob.cz
IE trusted site: HKU\.DEFAULT\...\csob.sk -> hxxp://www.csob.sk
IE trusted site: HKU\.DEFAULT\...\fgov.be -> hxxps://*.minfin.fgov.be
IE trusted site: HKU\.DEFAULT\...\go-and-deal.fx.com -> hxxps://go-and-deal.fx.com
IE trusted site: HKU\.DEFAULT\...\isabel.be -> hxxps://*.IBS6.isabel.be
IE trusted site: HKU\.DEFAULT\...\isabel.eu -> hxxps://www.isabel.eu
IE trusted site: HKU\.DEFAULT\...\isabel.eu -> hxxp://www.isabel.eu
IE trusted site: HKU\.DEFAULT\...\kbc.be -> hxxps://ipa-a.kbc.be
IE trusted site: HKU\.DEFAULT\...\kbc.com -> hxxps://ipa-a.kbc.com
IE trusted site: HKU\.DEFAULT\...\kbc.eu -> hxxps://ipa-a.kbc.eu
IE trusted site: HKU\.DEFAULT\...\kbcam.be -> hxxps://www.kbcam.be
IE trusted site: HKU\.DEFAULT\...\kbcam.be -> hxxp://www.kbcam.be
IE trusted site: HKU\.DEFAULT\...\kbcam.com -> hxxps://www.kbcam.com
IE trusted site: HKU\.DEFAULT\...\kbcam.com -> hxxp://www.kbcam.com
IE trusted site: HKU\.DEFAULT\...\kbcbankingforbusiness.com -> hxxps://wp-a.kbcbankingforbusiness.com
IE trusted site: HKU\.DEFAULT\...\kbcbankingforbusiness.com -> hxxp://wp-a.kbcbankingforbusiness.com

Er zijn 11 Meer websites.

IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\csob.cz -> hxxp://www.csob.cz
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\csob.sk -> hxxp://www.csob.sk
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\fgov.be -> *.minfin.fgov.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\go-and-deal.fx.com -> hxxps://go-and-deal.fx.com
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\isabel.be -> hxxps://*.IBS6.isabel.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\isabel.eu -> hxxps://www.isabel.eu
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\isabel.eu -> hxxp://www.isabel.eu
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbc.be -> hxxps://ipa-a.kbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbc.com -> hxxps://ipa-a.kbc.com
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbc.eu -> hxxps://ipa-a.kbc.eu
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbcam.be -> hxxps://www.kbcam.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbcam.be -> hxxp://www.kbcam.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbcam.com -> hxxps://www.kbcam.com
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbcam.com -> hxxp://www.kbcam.com
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbcbankingforbusiness.com -> hxxps://wp-a.kbcbankingforbusiness.com
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\kbcbankingforbusiness.com -> hxxp://wp-a.kbcbankingforbusiness.com

Er zijn 11 Meer websites.

IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\csob.cz -> hxxp://www.csob.cz
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\csob.sk -> hxxp://www.csob.sk
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\fgov.be -> hxxps://*.minfin.fgov.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\go-and-deal.fx.com -> hxxps://go-and-deal.fx.com
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\isabel.be -> hxxps://*.IBS6.isabel.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\isabel.eu -> hxxps://www.isabel.eu
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\isabel.eu -> hxxp://www.isabel.eu
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbc.be -> hxxps://ipa-a.kbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbc.com -> hxxps://ipa-a.kbc.com
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbc.eu -> hxxps://ipa-a.kbc.eu
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbcam.be -> hxxps://www.kbcam.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbcam.be -> hxxp://www.kbcam.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbcam.com -> hxxps://www.kbcam.com
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbcam.com -> hxxp://www.kbcam.com
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbcbankingforbusiness.com -> hxxps://wp-a.kbcbankingforbusiness.com
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\kbcbankingforbusiness.com -> hxxp://wp-a.kbcbankingforbusiness.com

Er zijn 11 Meer websites.

IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\csob.cz -> hxxp://www.csob.cz
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\csob.sk -> hxxp://www.csob.sk
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\fgov.be -> hxxps://*.minfin.fgov.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\go-and-deal.fx.com -> hxxps://go-and-deal.fx.com
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\isabel.be -> hxxps://*.IBS6.isabel.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\isabel.eu -> hxxps://www.isabel.eu
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\isabel.eu -> hxxp://www.isabel.eu
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbc.be -> hxxps://ipa-a.kbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbc.com -> hxxps://ipa-a.kbc.com
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbc.eu -> hxxps://ipa-a.kbc.eu
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbcam.be -> hxxps://www.kbcam.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbcam.be -> hxxp://www.kbcam.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbcam.com -> hxxps://www.kbcam.com
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbcam.com -> hxxp://www.kbcam.com
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbcbankingforbusiness.com -> hxxps://wp-a.kbcbankingforbusiness.com
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\kbcbankingforbusiness.com -> hxxp://wp-a.kbcbankingforbusiness.com

Er zijn 11 Meer websites.

IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\csob.cz -> hxxp://www.csob.cz
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\csob.sk -> hxxp://www.csob.sk
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\fgov.be -> hxxps://*.minfin.fgov.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\go-and-deal.fx.com -> hxxps://go-and-deal.fx.com
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\isabel.be -> hxxps://*.IBS6.isabel.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\isabel.eu -> hxxps://www.isabel.eu
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\isabel.eu -> hxxp://www.isabel.eu
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbc.be -> hxxps://ipa-a.kbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbc.com -> hxxps://ipa-a.kbc.com
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbc.eu -> hxxps://ipa-a.kbc.eu
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbcam.be -> hxxps://www.kbcam.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbcam.be -> hxxp://www.kbcam.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbcam.com -> hxxps://www.kbcam.com
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbcam.com -> hxxp://www.kbcam.com
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbcbankingforbusiness.com -> hxxps://wp-a.kbcbankingforbusiness.com
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\kbcbankingforbusiness.com -> hxxp://wp-a.kbcbankingforbusiness.com

Er zijn 11 Meer websites.

==================== Hosts inhoud: ===============================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2013-08-22 15:25 - 2016-09-02 21:43 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\System32\oobe\info\Wallpaper\backgroundDefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

(Momenteel is er geen automatische fix voor dit onderdeel.)

MSCONFIG\Services: HssTrayService => 3
MSCONFIG\Services: SkypeUpdate => 2
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\StartupApproved\StartupFolder: => "MagicDisc.lnk"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{3E1A4FE6-BBB2-43A6-B8FD-6FAE7253F698}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{8EE8F019-7089-4310-9B9F-B9EB9664B64A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{A1F6B198-6673-4300-A16E-BF585DF91015}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{65EE413F-59B4-4802-812D-BC040BE4BB0B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{4038554A-B10D-45E6-AB39-6BE076E46C70}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{DDF62EA7-762D-4CF3-88CF-F691DCAF4A18}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{944E1430-1FD3-46FB-8F02-917FF6F0AD17}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{9C3A54F5-28C7-428A-BAC1-A192A67AA3E1}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{F265F79D-EFFC-4209-AD12-29B8385BC431}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{B1C3E2A6-49BF-451E-942D-440FD7D117CD}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{2724A239-9485-47D4-980E-990D1B26AE60}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{64556C24-5D85-4380-98B2-0E2C2B514430}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{A292CD80-CAAD-4BBE-ADB0-76501C8C1398}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{828E4948-FFE2-44C4-B948-B34F7A55E2E9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{6B210931-60A0-41F6-B2A4-8FBEABBEC428}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{398FA671-9B69-41D8-B714-353850EEB2FB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{AE27DF8D-5076-4A97-A057-2C109B5CE2C1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{06699CA3-A9D0-4DF6-9BE0-6D53E91524B6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{F24029F7-84C9-4AB6-9869-B6FCE70DABAA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{0C9AB609-E61C-475D-9D39-2C2F835C19ED}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{27EF6C78-277C-46FB-A8D8-9A67F6272A79}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{D73A8041-A1A0-4199-9BA9-6569E35F9889}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7772EDF5-017D-4B5D-AA2E-23B0704996D7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{3D0C5EA3-7C56-4741-A5B3-95A1D91A8DE5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{E3CA3D51-61E3-4B74-8EE7-8298176DB8BB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{D66CDC69-56F6-4D2A-8189-EBFFBB3045FA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{19843850-EBED-446A-BAE6-E8F04FF03721}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{D32CA142-FBCE-4EA5-A75D-F566A8AD1EFC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{8EBAA194-0B63-45A4-8BB0-AC4F56F5A13E}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{2CDB48C1-E3F3-4D23-9DE0-DCBA1D8DD9B7}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{E8441050-D7DC-4B8A-A6EC-5AD1FDEFEDD4}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{4FF7A272-D813-493F-BBA2-2D5E16130176}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{9F92B9F4-CC11-40EE-A910-11788470576D}C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [UDP Query User{33778A01-11B8-49FE-9716-8AABDEF028C2}C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [{0CE74991-626E-4C4A-B368-8CE914BE86C1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{F86F7865-F241-45F9-9D59-EC61B7F1193C}] => (Allow) LPort=2869
FirewallRules: [{A772480F-7F95-49EE-9424-AFAD6C2BFBB2}] => (Allow) LPort=1900
FirewallRules: [{5BE84485-AAF3-4A42-A318-FD8DE1AC2C06}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CF6D3631-8434-4C01-AEAC-5B74F1DB3B36}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{62B6BA0E-F428-490F-B188-C1C4E68C33CB}] => (Allow) C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe
FirewallRules: [{FC04BA0E-6F8C-46ED-BDD6-16E38B77C863}] => (Allow) C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe
FirewallRules: [{C84A089D-FE49-433F-B8F0-2E4B0F4B3FFE}] => (Allow) LPort=4481
FirewallRules: [{4F484CF3-AEFE-4CB9-BADA-491BCA6AB55B}] => (Allow) LPort=4481
FirewallRules: [{8C7758B3-4246-40F1-A488-804921C3C9FE}] => (Allow) LPort=4482
FirewallRules: [{EDD2B09E-B18F-4FA2-A16D-C09B9B75FA9F}] => (Allow) LPort=4482
FirewallRules: [TCP Query User{5FCF44AD-B5E5-462F-8FE9-F78349558939}C:\users\USER\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\nw.exe
FirewallRules: [UDP Query User{9F4A8A59-A3D9-48DD-84D3-8B7210E9E285}C:\users\USER\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\nw.exe
FirewallRules: [{AAF9E945-F651-48D9-BBD3-2B7367B4CD20}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{44416B51-F640-4E97-8A8E-F35DCAC3A132}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F73C44D9-E6AE-45ED-867A-9EB6A521E3BB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2567138B-0636-49F9-BABA-58AC9C20A888}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F7C74387-44CF-47C2-ADD4-D7FE6679C2C2}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{4524FC4B-9E19-47C5-AE0E-902C46FAFB30}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{8E1128A9-B3A7-4ECA-AD2D-DE6952AABEBF}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
FirewallRules: [{DEA4150B-93A4-4A50-BB4C-64EDD5EF5031}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
FirewallRules: [{85B273ED-8675-4722-801C-684A4949CBE2}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
FirewallRules: [{89CFF0A9-C422-4256-9583-9847EBD6F846}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
FirewallRules: [TCP Query User{C575D5A8-465A-43E6-A2A1-6273D4B8F7D3}C:\users\surfen\appdata\roaming\utorrent\updates\3.4.3_40760.exe] => (Allow) C:\users\surfen\appdata\roaming\utorrent\updates\3.4.3_40760.exe
FirewallRules: [UDP Query User{199EFBC4-80D8-4C94-9AFF-AA274DE4C621}C:\users\surfen\appdata\roaming\utorrent\updates\3.4.3_40760.exe] => (Allow) C:\users\surfen\appdata\roaming\utorrent\updates\3.4.3_40760.exe
FirewallRules: [TCP Query User{3FBD124B-015E-45C6-B939-AED0966D76BF}C:\program files (x86)\popcorn time\chromecast\node.exe] => (Allow) C:\program files (x86)\popcorn time\chromecast\node.exe
FirewallRules: [UDP Query User{332F51EB-4B6F-49B5-93DA-7DE08FC3C4C6}C:\program files (x86)\popcorn time\chromecast\node.exe] => (Allow) C:\program files (x86)\popcorn time\chromecast\node.exe
FirewallRules: [TCP Query User{21DC9060-C242-4164-BFAC-21676CD1C3C2}C:\program files (x86)\popcorn time\popcorntimedesktop.exe] => (Allow) C:\program files (x86)\popcorn time\popcorntimedesktop.exe
FirewallRules: [UDP Query User{8A4740B3-7AFA-47AB-9E40-0CCCA4E429C2}C:\program files (x86)\popcorn time\popcorntimedesktop.exe] => (Allow) C:\program files (x86)\popcorn time\popcorntimedesktop.exe
FirewallRules: [{53DA04A8-0EB8-4AD0-92F3-CADB15412813}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{85893B4A-094A-44B7-86F1-8C616AAFE92E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{470A0954-1F9F-40BD-9C65-015A5CDB55D9}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{6F7BD00D-7213-4B8B-A1AD-F11B69A893B4}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{AB4122D4-89C7-4F26-9D95-B698A639E857}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe
FirewallRules: [{C4AD91E6-0FDF-45E8-A13B-FD2788107A90}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\mDNSResponder.exe
FirewallRules: [{49C1ADFE-D734-417A-9D9B-BBD88D341310}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{74194C16-326C-48EE-A014-FCB3FA3A91FD}C:\users\USER\appdata\local\temp\bduninstall\x32\pcsftool.exe] => (Allow) C:\users\USER\appdata\local\temp\bduninstall\x32\pcsftool.exe
FirewallRules: [UDP Query User{E1D70F8D-E555-44A3-A2E2-87302BC7E1B7}C:\users\USER\appdata\local\temp\bduninstall\x32\pcsftool.exe] => (Allow) C:\users\USER\appdata\local\temp\bduninstall\x32\pcsftool.exe
FirewallRules: [TCP Query User{BC907129-57BD-46F6-A0F2-60F76E23A995}C:\users\USER\appdata\local\temp\bduninstall\x64\pcsftool.exe] => (Allow) C:\users\USER\appdata\local\temp\bduninstall\x64\pcsftool.exe
FirewallRules: [UDP Query User{C54074A8-5A0E-48DC-8643-CFB548D3FD25}C:\users\USER\appdata\local\temp\bduninstall\x64\pcsftool.exe] => (Allow) C:\users\USER\appdata\local\temp\bduninstall\x64\pcsftool.exe
FirewallRules: [TCP Query User{43F28565-83EB-43BE-8010-066C19518C53}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{2EC093F9-7204-4293-96A3-C26E9363264E}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{3191E76D-8165-417A-8FA1-E822CA7AAD24}C:\users\USER\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\nw.exe
FirewallRules: [UDP Query User{2A74F904-F36E-4CD4-9C94-B7140F009632}C:\users\USER\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\nw.exe
FirewallRules: [TCP Query User{CA186464-F8FE-43B7-A757-A0D4BB788050}C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe] => (Allow) C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe
FirewallRules: [UDP Query User{DEB6F45F-C22D-4D10-95A9-01C259AC29BB}C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe] => (Allow) C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe
FirewallRules: [{DC8F9803-0589-45EE-A1D3-8453661C1ADC}] => (Block) C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe
FirewallRules: [{E73B5740-92E8-4A74-A0AB-043AACE5F81B}] => (Block) C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe
FirewallRules: [TCP Query User{E8787F41-2940-45CB-A00F-D3E1C7E6A77D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{0ADC28DD-B51B-4CDB-88EE-BAC453CEC293}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{8C0BB26F-5A6B-4BAD-868F-8BB7ABB72AD1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{D02D2BC3-16E1-48AA-8F2A-F6E3C22F8D6B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{6C9A1558-26C1-43FC-920C-4C90B6BFC53D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BE281B93-EBAA-4585-9F49-8C028855881B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{40221D63-7DD6-45FA-975D-0B0C617FAA88}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{82F7F4D3-C273-46DA-97A8-E93EFA6441B3}] => (Allow) C:\Users\USER\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DD95041A-EAA0-4832-95C9-0B8252747C14}] => (Allow) C:\Users\USER\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C6361157-C38E-4982-BB1D-FEA217691346}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{85C8717B-5934-42F1-8E77-C5D0CA23D126}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{EEB6786F-3477-475E-B8E2-7DAA2B24CC4D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{D68EF63E-64F2-4912-AB76-85A0FEA97C07}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F17379FA-EA7C-49A1-9482-BB1F019473D5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{9C5B794D-8749-4515-9142-B2A2AEB50057}] => (Allow) C:\Program Files\iTunes\iTunes.exe

==================== Herstelpunten =========================

17-08-2016 11:39:56 Windows Update
21-08-2016 11:58:39 Windows Update
24-08-2016 12:32:07 Windows Update
27-08-2016 15:58:12 Windows Update
31-08-2016 09:15:46 Windows Update
02-09-2016 17:52:46 Removed Adobe Acrobat DC.

==================== Defecte Apparaatbeheer Apparaten =============

Name: Realtek Bluetooth 4.0 + High Speed Chip
Description: Realtek Bluetooth 4.0 + High Speed Chip
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Realtek Semiconductor Corp.
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (09/02/2016 07:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6031

Error: (09/02/2016 07:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6031

Error: (09/02/2016 07:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/02/2016 07:26:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: 712: ERROR: read_msg errno 0 (De bewerking is voltooid.)

Error: (09/02/2016 07:26:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: mDNSPlatformReadTCP - recv: 10053

Error: (09/02/2016 06:14:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: PSIA.exe, versie: 3.0.0.10004, tijdstempel: 0x54784a82
Naam van module met fout: PSIA.exe, versie: 3.0.0.10004, tijdstempel: 0x54784a82
Uitzonderingscode: 0xc0000409
Foutmarge: 0x00093524
Id van proces met fout: 0xd3c
Starttijd van toepassing met fout: 0x01d205345f4cb021
Pad naar toepassing met fout: C:\Program Files (x86)\Secunia\PSI\PSIA.exe
Pad naar module met fout: C:\Program Files (x86)\Secunia\PSI\PSIA.exe
Rapport-id: 4d679b4b-7128-11e6-82cd-448a5bf02e56
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (09/02/2016 06:10:16 PM) (Source: Report Server Windows Service (SQLEXPRESS)) (EventID: 107) (User: )
Description: Report Server Windows Service (SQLEXPRESS) cannot connect to the report server database.

Error: (09/02/2016 06:06:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: PSIA.exe, versie: 3.0.0.10004, tijdstempel: 0x54784a82
Naam van module met fout: PSIA.exe, versie: 3.0.0.10004, tijdstempel: 0x54784a82
Uitzonderingscode: 0xc0000409
Foutmarge: 0x00093524
Id van proces met fout: 0xf04
Starttijd van toepassing met fout: 0x01d205332883491d
Pad naar toepassing met fout: C:\Program Files (x86)\Secunia\PSI\PSIA.exe
Pad naar module met fout: C:\Program Files (x86)\Secunia\PSI\PSIA.exe
Rapport-id: 30cb9134-7127-11e6-82cc-448a5bf02e56
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (09/02/2016 06:01:45 PM) (Source: Report Server Windows Service (SQLEXPRESS)) (EventID: 107) (User: )
Description: Report Server Windows Service (SQLEXPRESS) cannot connect to the report server database.

Error: (09/02/2016 04:56:56 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Systeemfouten:
=============
Error: (09/02/2016 10:31:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Group Policy Client-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:30:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Application Experience-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:26:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Application Experience-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:26:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Application Experience-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:26:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Application Experience-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:26:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Group Policy Client-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:21:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Group Policy Client-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:16:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Group Policy Client-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:11:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Group Policy Client-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (09/02/2016 10:06:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Application Experience-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

CodeIntegrity:
===================================
  Date: 2016-06-13 18:52:01.603
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:52:01.416
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:52:01.181
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:52:00.994
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:52:00.791
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:52:00.603
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:52:00.431
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:52:00.230
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:48:34.230
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-06-13 18:48:34.027
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Geheugen info ===========================

Processor: Intel® Core™ i5-4210M CPU @ 2.60GHz
Percentage geheugen in gebruik: 45%
Totaal fysiek RAM-geheugen: 8111.53 MB
Beschikbaar fysiek RAM-geheugen: 4433.64 MB
Totaal Virtueel geheugen: 9583.53 MB
Beschikbaar Virtual geheugen: 5656.07 MB

==================== Schijven ================================

Drive c: (OS_Install) (Fixed) (Total:434.73 GB) (Free:45.02 GB) NTFS
Drive d: (Data) (Fixed) (Total:245.78 GB) (Free:107.13 GB) NTFS

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 70CF4065)

Partition: GPT.

==================== Eind van Addition.txt ============================


  • 0

#3
dbreeze

dbreeze

    Trusted Helper

  • Malware Removal
  • 2,213 posts

HaraMo,

 

Do you still need any assistance with this issue?  Sorry for the delay but just let me know by posting a reply on this thread and we will start with some fresh information / scans.  Thanks.


  • 0

#4
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

yes, thank a lot, I'm not sure if my laptop is virus free, according to bitdefender it is, but who knows what else is on my laptop.

 

I will make a nesw scan as I thing some things have changed.


  • 0

#5
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 04-11-2016
Gestart door USER (Beheerder) op USERX (10-11-2016 12:11:50)
Gestart vanaf C:\Users\USER\Contacts\Desktop
Geladen Profielen: USER & MSSQL$SQLEXPRESS & ReportServer$SQLEXPRESS & MSSQLFDLauncher$SQLEXPRESS (Beschikbare Profielen: USER & Surfen & MSSQL$SQLEXPRESS & ReportServer$SQLEXPRESS & MSSQLFDLauncher
 
$SQLEXPRESS)
Platform: Windows 8.1 (Update) (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: IE)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processen (gefilterd) =================
 
(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)
 
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Freedome\Freedome\1.1\FreedomeService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Reflect\ReflectService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSRS12.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\fdhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
() C:\Program Files\WALTR\x86\AnimationService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Hobbyist Software) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Freedome\Freedome\1.1\Freedome.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Isabel SA/NV) C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
() C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
(ExpressVPN) C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVpn.exe
() C:\Program Files\WALTR2\x86\WALTR2Service.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxcr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxcr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxcr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Register (gefilterd) ====================
 
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-07-02] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [280576 2013-10-21] (Realtek Semiconductor Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2893104 2014-07-02] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Radio Manager] => C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2013-09-26] (MSI)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [408744 2013-09-26] (MSI)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe [1654160 2016-06-29] (Bitdefender)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942232 2016-10-14] (Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [SUPER CHARGER] => C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe [1047536 2014-02-21] (MSI)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25424008 2016-10-24] (Dropbox, Inc.)
HKLM-x32\...\Run: [FreedomeAutoStart] => C:\Program Files (x86)\F-Secure\Freedome\Freedome\1.1\Freedome.exe [4391392 2016-10-25] (F-Secure Corporation)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [79192 2011-02-18] (Research In Motion Limited)
HKLM-x32\...\Run: [IsaKbcCertUpdate] => C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe [1335832 2015-02-06] (Isabel SA/NV)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [HP Photosmart 5520 series (NET)] => C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-
 
Packard Co.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29645440 2016-09-12] (Skype Technologies S.A.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818712 2016-10-12] (Google)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [4DCC62711CE5BD90D5D50E05AB83CC9465F43C40._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [921704 2016-10-20] (Google 
 
Inc.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [Hobbyist Software VLC Streamer] => C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe [1236520 2016-06-09] 
 
(Hobbyist Software)
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [Adobe Acrobat Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Run: [ExpressVPN4] => C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVpn.exe [806904 2016-06-24] (ExpressVPN)
SecurityProviders: credssp.dll, schannel.dll
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-10-12] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-10-12] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-10-12] (Google)
ShellIconOverlayIdentifiers: [  Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [  Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [  Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] 
 
(hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-05-31]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2015-04-26]
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-03-09]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2016-03-12]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
Startup: C:\Users\Surfen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-05-27]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
 
==================== Internet (gefilterd) ====================
 
(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0452F641-75D7-4425-B06E-673F79DEAE28}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{436A4649-415B-4D8B-AFC4-2F7B0A78F00A}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{436A4649-415B-4D8B-AFC4-2F7B0A78F00A}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4BBCE8AD-68DD-46B2-8C5A-69506A6A5BE3}: [DhcpNameServer] 195.130.130.131 195.130.131.131 195.238.2.21
Tcpip\..\Interfaces\{EAF66FF0-5416-4537-94E7-BE80C04E0A93}: [DhcpNameServer] 10.10.0.1
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.be/?gws_rd=ssl
URLSearchHook: [S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133] AANDACHT => Standaard URLSearchHook ontbreekt
URLSearchHook: [S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933] AANDACHT => Standaard URLSearchHook ontbreekt
URLSearchHook: [S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786] AANDACHT => Standaard URLSearchHook ontbreekt
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001 -> {D48171A6-7A9E-4F5E-B742-CEC9AFF4ECF5} URL = 
BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2016-06-29] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-10-18] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-29] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-10-11] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-29] (Oracle Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2016-06-29] (Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-29] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-06-01] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-10-11] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-29] (Oracle Corporation)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2016-06-29] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2016-06-29] (Bitdefender)
Toolbar: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001 -> Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2016-06-29] 
 
(Bitdefender)
 
FireFox:
========
FF DefaultProfile: fzacbsgr.default
FF ProfilePath: C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\fzacbsgr.default [2016-10-29]
FF NetworkProxy: Mozilla\Firefox\Profiles\fzacbsgr.default -> type", 0
FF Extension: (Belgium eID) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\fzacbsgr.default\Extensions\[email protected] [2016-10-29]
FF Extension: (Firefox Hotfix) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\fzacbsgr.default\Extensions\[email protected] [2016-09-16]
FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected] [2016-10-21]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff [2016-05-12]
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2016-05-12] [ niet getekend]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiu[email protected]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-29] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Geen bestand]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-29] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2011-05-26] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-31] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
 
Chrome: 
=======
CHR DefaultProfile: Profile 2
CHR HomePage: Profile 2 -> hxxp://www.google.com/
CHR StartupUrls: Profile 2 -> "hxxps://www.google.be/"
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default [2016-06-12]
CHR Extension: (The Guardian) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\amckaikgfcndaokapfcedicfmagoghlg [2016-06-12]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-08]
CHR Extension: (Telegraph) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegbfkbjdbjmbjggbneiopjmhjjmffdp [2016-06-12]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-08]
CHR Extension: (AdBlock) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-12]
CHR Extension: (Adblock for Pirate Bay) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd [2015-06-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-11]
CHR Extension: (Google Maps) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-09-19]
CHR Extension: (The Independent) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdonfjaemnemdnnpebbcelibeocdmkai [2016-06-12]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-08]
CHR Extension: (Evernote Web Clipper) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2016-06-12]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2 [2016-11-10]
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-05]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-05]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google Cast) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2016-03-25]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Bitdefender Wallet) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dhhejlifdlcgcmogbggeomfodgklfaem [2016-06-13]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-05]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-08]
CHR Extension: (Hotspot Shield Free VPN Proxy – Unblock Sites) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nlbejmccbhkncgokjcmghpfloaajcffj [2016-11-09]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-06]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-05]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-17]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3 [2016-11-10]
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-11]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-11]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Bitdefender Wallet) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dhhejlifdlcgcmogbggeomfodgklfaem [2016-06-14]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-11]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-08]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-11]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-17]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5 [2016-11-10]
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-13]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-13]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Bitdefender Wallet) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\dhhejlifdlcgcmogbggeomfodgklfaem [2016-06-14]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-13]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-29]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-09]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-08]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-13]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-23]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6 [2016-05-30]
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-18]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-18]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-25]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-25]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-18]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-18]
CHR Extension: (Offline Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-25]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-03-25]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-26]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-18]
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\System Profile [2015-09-11]
CHR Extension: (Google Presentaties) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-05]
CHR Extension: (Google Documenten) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-06]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-18]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-06]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-06]
CHR Extension: (Google Spreadsheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-05]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-06]
CHR HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\HIDARA~1\AppData\Local\Google\Drive\user_default
 
\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-01-08]
CHR HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dhhejlifdlcgcmogbggeomfodgklfaem] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nlbejmccbhkncgokjcmghpfloaajcffj] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (gefilterd) ====================
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 AnimationService; C:\Program Files\WALTR\x86\AnimationService.exe [55744 2016-09-15] ()
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S3 Blackberry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [577536 2011-02-17] (Research In Motion Limited) [Bestand niet getekend]
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [69120 2013-10-22] () [Bestand niet getekend]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-04] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-04] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [41576 2016-10-24] (Dropbox, Inc.)
R2 ExpressVpnService; C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe [331264 2016-06-24] () [Bestand niet getekend]
R2 Freedome Service; C:\Program Files (x86)\F-Secure\Freedome\Freedome\1.1\FreedomeService.exe [448992 2016-10-25] (F-Secure Corporation)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Bestand niet getekend]
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2710648 2016-08-24] (AnchorFree Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [103168 2016-08-24] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-08-04] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-07-02] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel® Corporation) [Bestand niet getekend]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2014-07-02] (Intel Corporation)
R2 Micro Star SCM; c:\Program Files (x86)\SCM\MSIService.exe [160768 2013-09-26] (Micro-Star International Co., Ltd.) [Bestand niet getekend]
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe [162800 2014-02-21] (MSI)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [370368 2015-06-10] (Microsoft Corporation)
R3 MSSQLFDLauncher$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe [50880 2014-02-21] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender)
R2 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [3446224 2015-02-23] (Paramount Software UK Ltd)
R2 ReportServer$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSRS12.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe [2450112 2014-02-21] (Microsoft Corporation)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-06-10] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [Bestand niet getekend]
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [156016 2016-06-29] (Bitdefender)
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmicshutdown; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmictimesync; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1693104 2016-06-29] (Bitdefender)
R2 WALTR2Service; C:\Program Files\WALTR2\x86\WALTR2Service.exe [102312 2016-11-09] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
 
===================== Drivers (gefilterd) ======================
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
R3 ACSSCR; C:\Windows\system32\DRIVERS\a38usb.sys [72208 2015-07-10] (Advanced Card Systems Ltd.)
S3 AFTrafMgr1.1; C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_1_64.sys [54712 2016-08-23] (AnchorFree Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1605376 2016-11-01] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [878072 2016-11-01] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-29] (BitDefender LLC)
S4 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows ® Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows ® Win 7 DDK provider)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 fsfreedometap; C:\Windows\system32\DRIVERS\fsfreedometap.sys [34344 2016-08-29] (The OpenVPN Project)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [182936 2015-12-16] (BitDefender LLC)
R0 ignis; C:\Windows\system32\DRIVERS\ignis.sys [299816 2016-06-29] (Bitdefender)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-07-02] (Intel Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)
S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [169480 2015-02-23] (Windows ® Win 7 DDK provider)
S3 PSVolAcc; C:\Windows\System32\Drivers\PSVolAcc.sys [12760 2014-07-21] (Paramount Software UK Ltd)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [74240 2011-02-16] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd)
R1 RsFx0300; C:\Windows\System32\DRIVERS\RsFx0300.sys [247488 2014-02-21] (Microsoft Corporation)
S3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [554712 2014-07-02] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3410136 2015-11-03] (Realtek Semiconductor Corporation                           )
R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42088 2015-11-13] (Anchorfree Inc.)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [520032 2016-06-29] (BitDefender S.R.L.)
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [119712 2016-07-18] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [192864 2016-07-18] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [135768 2016-07-18] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S0 b06bdrv; System32\drivers\bxvbda.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
 
==================== NetSvcs (gefilterd) ===================
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
 
==================== Een Maand Aangemaakt bestanden en mappen ========
 
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
 
2016-11-10 12:09 - 2016-11-10 12:09 - 02410496 _____ (Farbar) C:\Users\USER\Downloads\FRST64 (1).exe
2016-11-09 18:22 - 2016-11-09 18:22 - 00316478 _____ C:\Users\USER\Downloads\systeemvereisten kluwer - info (1).pdf
2016-11-09 18:22 - 2016-11-09 18:22 - 00062858 _____ C:\Users\USER\Downloads\20160802 - recentste - sysreq_n160802 (1).xlsx
2016-11-09 18:16 - 2016-11-09 18:16 - 00332567 _____ C:\Users\USER\Downloads\2016.03.07%2520ATTEST_MEDISCHE_VASTSTELLING.pdf
2016-11-08 18:15 - 2016-11-08 18:15 - 00196000 _____ C:\Users\USER\Downloads\De uitgavenstaat van uw kredietkaart.pdf
2016-11-08 18:06 - 2016-11-08 18:06 - 00044460 _____ C:\Users\USER\Downloads\export_BE11733025590448_20161108_1806.pdf
2016-11-07 22:25 - 2016-11-07 22:25 - 00032909 _____ C:\Users\USER\Downloads\miss.peregrines.home.for.peculiar.children.(2016).dut.1cd.(6784966).zip
2016-11-07 22:25 - 2016-11-07 22:25 - 00000000 ____D C:\Users\USER\Downloads\miss.peregrines.home.for.peculiar.children.(2016).dut.1cd.(6784966)
2016-11-07 22:23 - 2016-11-07 22:24 - 00527064 _____ (Karabaga Internet Browser) C:\Users\USER\Downloads\Miss.Peregrines.Home.For.Peculiar.Children.2016.HC.HDRip.XviD.AC3-EVO.avi_downloader.exe
2016-11-07 21:59 - 2016-11-07 22:30 - 00000000 ____D C:\Users\USER\AppData\Roaming\vlc
2016-11-07 21:59 - 2016-11-07 21:59 - 00001096 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-11-07 21:59 - 2016-11-07 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-11-07 21:58 - 2016-11-07 21:58 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-11-07 21:56 - 2016-11-07 21:57 - 30533688 _____ C:\Users\USER\Downloads\vlc-2.2.4-win32.exe
2016-11-07 21:44 - 2016-11-07 22:22 - 00000000 ____D C:\Users\USER\Downloads\The.Walking.Dead.S07E03.HDTV.x264-FUM[ettv]
2016-11-07 21:44 - 2016-11-07 21:56 - 00000000 ____D C:\Users\USER\Downloads\The.Walking.Dead.S07E02.WEB-DL.x264-FUM[ettv]
2016-11-07 21:43 - 2016-11-07 21:44 - 00000000 ____D C:\Users\USER\Downloads\The.Walking.Dead.S07E01.HDTV.x264-KILLERS[ettv]
2016-11-07 21:17 - 2016-11-07 22:25 - 00000000 ____D C:\Users\USER\Downloads\Miss.Peregrines.Home.For.Peculiar.Children.2016.V2.HC.HDRip.XviD.AC3-EVO
2016-11-07 21:13 - 2016-11-07 21:13 - 00000000 ____D C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2016-11-05 22:06 - 2016-11-05 22:06 - 00000806 _____ C:\Users\Public\Desktop\WALTR2.lnk
2016-11-05 21:28 - 2016-11-05 21:31 - 00000000 ____D C:\Users\USER\Downloads\Doctor Strange 2016 NEW HD-CAM HQMic x264-TuttyFruity
2016-11-05 21:09 - 2016-11-05 21:09 - 00002069 _____ C:\Users\Public\Desktop\ExpressVPN.lnk
2016-11-05 21:09 - 2016-11-05 21:09 - 00000000 ____D C:\Windows\LastGood
2016-11-05 21:09 - 2016-11-05 21:09 - 00000000 ____D C:\Users\USER\AppData\Local\ExpressVPN
2016-11-05 21:09 - 2016-11-05 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExpressVPN
2016-11-05 21:09 - 2016-11-05 21:09 - 00000000 ____D C:\ProgramData\ExpressVPN
2016-11-05 21:09 - 2016-11-05 21:09 - 00000000 ____D C:\Program Files (x86)\ExpressVPN
2016-11-04 23:25 - 2016-11-04 23:25 - 00001775 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-04 23:25 - 2016-11-04 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-04 23:24 - 2016-11-04 23:25 - 00000000 ____D C:\Program Files\iTunes
2016-11-04 23:24 - 2016-11-04 23:24 - 00000000 ____D C:\Program Files\iPod
2016-11-04 23:22 - 2016-11-04 23:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2016-11-01 23:46 - 2016-11-01 23:46 - 00028772 _____ C:\ProgramData\agent.1478040376.bdinstall.bin
2016-11-01 21:48 - 2016-11-01 21:48 - 00050671 _____ C:\Users\USER\Downloads\GLTransactionsReport (5).pdf
2016-11-01 21:47 - 2016-11-01 21:47 - 00050665 _____ C:\Users\USER\Downloads\GLTransactionsReport (4).pdf
2016-11-01 21:47 - 2016-11-01 21:47 - 00020160 _____ C:\Users\USER\Downloads\GLTransactionsReport (3).pdf
2016-11-01 21:46 - 2016-11-01 21:46 - 00071607 _____ C:\Users\USER\Downloads\GLTransactionsReport (2).pdf
2016-10-30 23:50 - 2016-10-31 00:03 - 00000000 ____D C:\Users\USER\Downloads\XML - Managing Data Exchange_Print version - Wikibooks, open books for an open world.pdf { UPPOG2 } torrents_
2016-10-30 23:50 - 2016-10-30 23:50 - 00000000 ____D C:\Users\USER\Downloads\Jack Reacher Never Go Back 2016 HD-TS x264-CPG
2016-10-30 23:08 - 2016-10-30 23:08 - 00316478 _____ C:\Users\USER\Downloads\systeemvereisten kluwer - info.pdf
2016-10-30 23:08 - 2016-10-30 23:08 - 00062858 _____ C:\Users\USER\Downloads\20160802 - recentste - sysreq_n160802.xlsx
2016-10-30 22:24 - 2016-11-05 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WALTR2
2016-10-30 22:24 - 2016-11-05 22:06 - 00000000 ____D C:\Program Files\WALTR2
2016-10-30 00:10 - 2016-10-30 00:39 - 00000000 ____D C:\Users\USER\Downloads\Beginning XML 5th Edition
2016-10-29 23:57 - 2016-10-30 00:05 - 1467400192 ____R C:\Users\USER\Downloads\DortAr.StrandJ.2O16.D.CAMRip.14OOMB.avi
2016-10-29 23:45 - 2016-10-30 00:19 - 00000000 ____D C:\Users\USER\Downloads\The Accountant 2016 HD-CAM x264 AC3-ViVO
2016-10-29 15:15 - 2016-10-29 15:15 - 00001508 _____ C:\Users\USER\Downloads\foreigner201602.crt
2016-10-29 15:14 - 2016-10-29 15:14 - 00001508 _____ C:\Users\USER\Downloads\foreigner201601.crt
2016-10-29 12:52 - 2016-10-29 12:51 - 00110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2016-10-28 11:33 - 2016-10-28 11:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-10-27 13:20 - 2016-10-27 13:31 - 00000000 ____D C:\Users\USER\Downloads\attest_fiscal_2015_
2016-10-27 13:19 - 2016-10-27 13:19 - 00376660 _____ C:\Users\USER\Downloads\attest_fiscal_2015_.zip
2016-10-25 13:17 - 2016-10-25 13:17 - 00002364 _____ C:\Users\Public\Desktop\Freedome.lnk
2016-10-25 13:17 - 2016-10-25 13:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freedome
2016-10-24 14:06 - 2016-10-24 14:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2016-10-24 14:06 - 2016-10-24 14:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2016-10-24 14:06 - 2016-10-24 14:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2016-10-24 14:06 - 2016-10-24 14:06 - 00041576 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2016-10-23 23:10 - 2016-10-23 23:28 - 00000000 ____D C:\Users\USER\Downloads\The.Infiltrator.2016.720p.BRRip.x264.AAC-ETRG
2016-10-23 23:08 - 2016-10-23 23:20 - 00000000 ____D C:\Users\USER\Downloads\Nerve (2016) [YTS.AG]
2016-10-21 22:12 - 2016-10-29 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-17 21:59 - 2016-10-17 21:59 - 01576311 _____ C:\Users\USER\Downloads\BTW (1).zip
2016-10-17 11:37 - 2016-10-17 11:41 - 00000927 _____ C:\Users\USER\Downloads\Volmachten TSP-ActiveExtract.csv
2016-10-14 00:28 - 2016-10-14 00:28 - 03942232 _____ (Logitech, Inc.) C:\Windows\system32\LogiLDA.DLL
2016-10-14 00:28 - 2016-10-14 00:28 - 02467672 _____ (Logitech, Inc.) C:\Windows\system32\LdaCx2.dll
2016-10-14 00:28 - 2016-10-14 00:28 - 00837592 _____ (Microsoft Corporation) C:\Windows\system32\msvcr110.dll
2016-10-14 00:28 - 2016-10-14 00:28 - 00670168 _____ (Microsoft Corporation) C:\Windows\system32\msvcp110.dll
2016-10-14 00:28 - 2016-10-14 00:28 - 00362976 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib110.dll
2016-10-12 08:33 - 2016-10-01 01:22 - 07444312 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-12 08:33 - 2016-09-30 08:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-12 08:33 - 2016-09-30 07:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-12 08:33 - 2016-09-30 06:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-12 08:33 - 2016-09-30 06:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-12 08:33 - 2016-09-30 06:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-12 08:33 - 2016-09-30 06:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-12 08:33 - 2016-09-08 15:00 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-12 08:33 - 2016-09-08 15:00 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-12 08:33 - 2016-09-07 23:07 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-12 08:33 - 2016-08-31 18:22 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-12 08:33 - 2016-08-27 17:33 - 02881536 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-10-12 08:33 - 2016-08-27 17:11 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-10-12 08:33 - 2016-08-26 05:41 - 22360280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-12 08:33 - 2016-08-26 05:41 - 19789224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-12 08:33 - 2016-08-20 23:24 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-12 08:33 - 2016-08-20 23:12 - 02463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-12 08:33 - 2016-08-12 22:47 - 15431168 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-12 08:33 - 2016-08-12 21:52 - 13317120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-12 08:33 - 2016-08-12 02:58 - 02315496 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-10-12 08:33 - 2016-08-12 02:58 - 01946176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-10-12 08:33 - 2016-08-11 06:46 - 00420184 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-10-12 08:33 - 2016-08-03 16:42 - 01317888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-10-12 08:33 - 2016-08-03 16:36 - 01102848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2016-10-12 08:33 - 2016-07-30 18:12 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-10-12 08:33 - 2016-07-30 17:36 - 02537472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-10-12 08:33 - 2016-07-23 19:18 - 01220096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-10-12 08:33 - 2016-07-23 19:12 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-10-12 08:33 - 2016-01-24 12:57 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2016-10-12 08:33 - 2016-01-24 12:45 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2016-10-12 08:32 - 2016-09-30 07:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-12 08:32 - 2016-09-30 07:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-12 08:32 - 2016-09-30 07:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-12 08:32 - 2016-09-30 06:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-12 08:32 - 2016-09-30 06:41 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-12 08:32 - 2016-09-30 06:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-12 08:32 - 2016-09-30 06:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-12 08:32 - 2016-09-30 06:33 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-12 08:32 - 2016-09-30 06:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-12 08:32 - 2016-09-30 06:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-12 08:32 - 2016-09-30 06:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-12 08:32 - 2016-09-30 06:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-12 08:32 - 2016-09-30 06:11 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-12 08:32 - 2016-09-30 06:06 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-12 08:32 - 2016-09-30 06:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-12 08:32 - 2016-09-30 06:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-12 08:32 - 2016-09-30 06:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-12 08:32 - 2016-09-30 05:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-12 08:32 - 2016-09-30 05:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-12 08:32 - 2016-09-30 05:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-12 08:32 - 2016-09-30 05:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-12 08:32 - 2016-09-17 19:16 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-12 08:32 - 2016-09-17 18:53 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-12 08:32 - 2016-09-17 18:21 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-12 08:32 - 2016-09-17 18:03 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-12 08:32 - 2016-09-17 18:02 - 01446400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-12 08:32 - 2016-09-14 02:53 - 01663184 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-12 08:32 - 2016-09-14 02:53 - 01523208 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-10-12 08:32 - 2016-09-14 02:53 - 01490112 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-12 08:32 - 2016-09-14 02:53 - 01358952 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-10-12 08:32 - 2016-09-12 23:03 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-10-12 08:32 - 2016-09-12 22:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2016-10-12 08:32 - 2016-09-09 15:17 - 04170752 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-12 08:32 - 2016-09-08 21:41 - 00121176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2016-10-12 08:32 - 2016-09-07 22:59 - 01754112 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-10-12 08:32 - 2016-09-07 22:59 - 01377792 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-12 08:32 - 2016-09-07 22:57 - 01560064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-12 08:32 - 2016-09-07 22:56 - 01491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-10-12 08:32 - 2016-08-31 17:33 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-12 08:32 - 2016-08-25 21:50 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-10-12 08:32 - 2016-08-25 20:40 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-10-12 08:32 - 2016-08-13 01:05 - 09323008 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-12 08:32 - 2016-08-13 01:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys
2016-10-12 08:32 - 2016-08-13 01:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2016-10-12 08:32 - 2016-08-13 01:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2016-10-12 08:32 - 2016-08-12 23:35 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2016-10-12 08:32 - 2016-08-12 23:19 - 09323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-12 08:32 - 2016-08-12 22:17 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2016-10-12 08:32 - 2016-08-11 19:33 - 00096256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys
2016-10-12 08:32 - 2016-08-11 19:33 - 00083456 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys
2016-10-12 08:32 - 2016-08-11 19:33 - 00023040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys
2016-10-12 08:32 - 2016-08-11 18:17 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-10-12 08:32 - 2016-08-11 14:39 - 00445765 _____ C:\Windows\system32\ApnDatabase.xml
2016-10-12 08:32 - 2016-08-03 16:36 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-10-12 08:32 - 2016-08-03 16:33 - 00215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2016-10-12 08:32 - 2016-07-26 14:40 - 00162850 _____ C:\Windows\SysWOW64\C_932.NLS
2016-10-12 08:32 - 2016-07-26 14:40 - 00162850 _____ C:\Windows\system32\C_932.NLS
 
==================== Een Maand Gewijzigd bestanden en mappen ========
 
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
 
2016-11-10 12:11 - 2016-09-02 21:26 - 00000000 ____D C:\FRST
2016-11-10 12:06 - 2015-04-05 11:18 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-10 11:59 - 2015-03-06 19:50 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1548863103-2308270600-2068238051-1001
2016-11-10 11:57 - 2015-03-06 19:58 - 00004030 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BC896310-65AA-4E49-8CE9-99FBAE103639}
2016-11-10 11:55 - 2016-09-06 11:50 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-10 11:55 - 2016-03-16 19:55 - 00000000 ____D C:\Users\USER\AppData\Local\AF131CA3-542B-4BFC-AB07-8E70BD7DA898.aplzod
2016-11-10 11:54 - 2016-06-13 18:42 - 00000000 ____D C:\Program Files\Bitdefender Agent
2016-11-09 18:17 - 2015-06-14 10:59 - 00001066 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-08 23:41 - 2015-10-01 19:56 - 00000000 ____D C:\Users\USER\AppData\Roaming\uTorrent
2016-11-08 22:17 - 2015-06-14 10:59 - 00001062 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-08 17:46 - 2015-10-25 16:01 - 00000000 ____D C:\Users\USER\AppData\Roaming\Skype
2016-11-08 16:56 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-11-08 15:32 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-08 15:32 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2016-11-08 15:06 - 2015-04-05 11:18 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-07 21:55 - 2015-05-29 23:22 - 00000000 ____D C:\Program Files\VideoLAN
2016-11-07 21:54 - 2015-03-07 07:20 - 00000000 ____D C:\Users\USER\AppData\Local\CrashDumps
2016-11-07 19:50 - 2015-08-22 20:03 - 00000000 ____D C:\Users\USER\AppData\Local\CutePDF Writer
2016-11-07 00:39 - 2015-03-06 19:43 - 00000000 ____D C:\Users\USER\AppData\Local\Packages
2016-11-06 16:55 - 2015-11-01 19:30 - 00000000 ____D C:\Users\USER\Documents\Mijn scans
2016-11-05 21:38 - 2016-10-03 20:09 - 00000000 ____D C:\Users\USER\AppData\Local\Popcorn-Time-CE
2016-11-05 21:33 - 2015-06-23 16:56 - 00000000 ____D C:\Users\USER\AppData\Local\Popcorn-Time
2016-11-05 21:24 - 2016-06-03 21:34 - 00000000 ____D C:\Users\USER\Downloads\popcorn-time-0-3-9-beta
2016-11-05 21:09 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2016-11-05 21:08 - 2014-07-02 19:45 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-05 17:57 - 2014-04-30 18:19 - 00915970 _____ C:\Windows\system32\perfh013.dat
2016-11-05 17:57 - 2014-04-30 18:19 - 00205800 _____ C:\Windows\system32\perfc013.dat
2016-11-05 17:57 - 2014-03-18 11:03 - 02135482 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-05 00:09 - 2016-04-21 12:45 - 00000000 ___RD C:\Users\USER\Google Drive
2016-11-05 00:07 - 2016-03-16 19:55 - 00000000 ___RD C:\Users\USER\iCloudDrive
2016-11-05 00:06 - 2016-04-10 20:25 - 00000000 ____D C:\Users\USER\AppData\Local\TSVNCache
2016-11-05 00:00 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-05 00:00 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2016-11-04 23:59 - 2015-04-26 15:28 - 00077087 _____ C:\bdlog.txt
2016-11-04 23:24 - 2015-06-13 19:47 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-11-04 22:12 - 2015-06-14 10:59 - 00004038 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-04 22:12 - 2015-06-14 10:59 - 00003802 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-04 19:49 - 2015-03-09 21:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-11-04 19:47 - 2013-08-22 14:25 - 00000202 _____ C:\Windows\win.ini
2016-11-03 21:08 - 2016-01-08 22:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-11-03 17:41 - 2016-09-06 11:50 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-03 17:39 - 2016-03-16 19:54 - 00003456 _____ C:\Windows\System32\Tasks\Apple Diagnostics
2016-11-02 16:59 - 2015-03-07 07:18 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-02 16:59 - 2013-08-22 14:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2016-11-01 10:26 - 2016-06-13 18:47 - 01605376 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2016-11-01 10:26 - 2016-06-13 18:47 - 00878072 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2016-10-31 00:19 - 2015-06-15 20:22 - 00000000 ____D C:\Users\USER\Downloads\PopcornTime
2016-10-30 23:48 - 2016-10-03 20:08 - 00000000 ____D C:\Users\USER\AppData\Local\Popcorn Time Community
2016-10-30 22:24 - 2016-03-16 21:32 - 00000000 ____D C:\ProgramData\Softorino
2016-10-30 21:52 - 2015-04-05 11:18 - 00000000 ____D C:\Users\USER\AppData\Local\Google
2016-10-29 15:18 - 2015-08-05 21:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-29 12:52 - 2016-09-25 19:34 - 00000000 ____D C:\Program Files\Java
2016-10-29 12:52 - 2015-06-01 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-10-29 12:52 - 2015-06-01 17:28 - 00000000 ____D C:\ProgramData\Oracle
2016-10-29 12:52 - 2015-06-01 17:28 - 00000000 ____D C:\Program Files (x86)\Java
2016-10-29 12:51 - 2016-09-25 19:35 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-10-29 12:51 - 2015-06-01 17:29 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-10-28 13:37 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2016-10-28 11:34 - 2015-06-14 10:59 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-10-24 22:54 - 2016-09-17 08:28 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-24 22:54 - 2016-09-17 08:28 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-24 13:29 - 2015-05-31 23:11 - 00210063 _____ C:\Windows\hpoins19.dat
2016-10-21 08:08 - 2015-04-05 11:18 - 00002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-21 08:08 - 2015-04-05 11:18 - 00002233 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-13 13:19 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2016-10-12 14:04 - 2015-06-17 15:47 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-12 14:04 - 2015-06-17 15:47 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-10-12 14:04 - 2013-08-22 15:44 - 00504752 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-12 14:00 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2016-10-12 11:53 - 2015-03-06 21:19 - 00000000 ____D C:\Windows\system32\MRT
2016-10-12 11:31 - 2015-06-17 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-12 11:31 - 2015-03-06 21:19 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
 
==================== Bestanden in de root van sommige mappen =======
 
2015-08-05 20:59 - 2015-08-06 05:34 - 0000385 _____ () C:\Users\USER\AppData\Roaming\Rim.Desktop.Exception.log
2015-08-05 20:57 - 2015-08-06 05:10 - 0003048 _____ () C:\Users\USER\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2015-08-05 20:59 - 2015-08-06 05:34 - 0000385 _____ () C:\Users\USER\AppData\Roaming\Rim.DesktopHelper.Exception.log
2015-07-20 16:34 - 2015-07-20 16:34 - 0000037 ___SH () C:\Users\USER\AppData\Local\70149b02515b3bb20dd492.47983420
2015-03-06 19:43 - 2016-11-10 11:56 - 2259199 _____ () C:\Users\USER\AppData\Local\BTServer.log
2015-08-06 05:14 - 2015-08-06 05:14 - 0003584 _____ () C:\Users\USER\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-28 17:10 - 2015-06-28 17:10 - 0000017 _____ () C:\Users\USER\AppData\Local\resmon.resmoncfg
2016-06-13 18:48 - 2016-06-13 18:48 - 0427540 _____ () C:\ProgramData\1465839864.bdinstall.bin
2016-06-14 19:32 - 2016-06-14 19:32 - 0026794 _____ () C:\ProgramData\1465929168.bdinstall.bin
2016-09-21 10:11 - 2016-09-21 10:11 - 0026846 _____ () C:\ProgramData\agent.1474449100.bdinstall.bin
2016-11-01 23:46 - 2016-11-01 23:46 - 0028772 _____ () C:\ProgramData\agent.1478040376.bdinstall.bin
2015-06-15 18:04 - 2015-06-15 18:04 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-05-31 23:11 - 2016-10-24 13:29 - 0001903 _____ () C:\ProgramData\hpzinstall.log
 
Bestanden om te verplaatsen of verwijderen:
====================
C:\Users\USER\Evernote_5.8.4.6870.exe
C:\Users\USER\PSISetup.exe
C:\Users\USER\TeamViewer_Setup_nl.exe
 
 
Sommige bestanden in TEMP:
====================
C:\Users\USER\AppData\Local\Temp\COMAP.EXE
C:\Users\USER\AppData\Local\Temp\converter.exe
C:\Users\USER\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpx5qksa.dll
C:\Users\USER\AppData\Local\Temp\jre-8u101-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u111-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u51-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u66-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\USER\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\USER\AppData\Local\Temp\reflectPatch.exe
C:\Users\USER\AppData\Local\Temp\setup_4776.exe
C:\Users\USER\AppData\Local\Temp\SkypeSetup.exe
C:\Users\USER\AppData\Local\Temp\update.exe
C:\Users\USER\AppData\Local\Temp\vlc-2.2.4-win64.exe
C:\Users\USER\AppData\Local\Temp\VLCStreamerSetup_5.26.exe
C:\Users\USER\AppData\Local\Temp\VLCStreamerSetup_5.27.exe
C:\Users\Surfen\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp8khmtx.dll
 
 
==================== Bamital & volsnap ======================
 
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
 
C:\Windows\system32\winlogon.exe => Bestand is getekend
C:\Windows\system32\wininit.exe => Bestand is getekend
C:\Windows\explorer.exe => Bestand is getekend
C:\Windows\SysWOW64\explorer.exe => Bestand is getekend
C:\Windows\system32\svchost.exe => Bestand is getekend
C:\Windows\SysWOW64\svchost.exe => Bestand is getekend
C:\Windows\system32\services.exe => Bestand is getekend
C:\Windows\system32\User32.dll => Bestand is getekend
C:\Windows\SysWOW64\User32.dll => Bestand is getekend
C:\Windows\system32\userinit.exe => Bestand is getekend
C:\Windows\SysWOW64\userinit.exe => Bestand is getekend
C:\Windows\system32\rpcss.dll => Bestand is getekend
C:\Windows\system32\dnsapi.dll => Bestand is getekend
C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend
C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend
 
 
LastRegBack: 2016-11-05 16:52
 
==================== Eind van FRST.txt ============================
 
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 04-11-2016
Gestart door USER (10-11-2016 12:14:14)
Gestart vanaf C:\Users\USER\Contacts\Desktop
Windows 8.1 (Update) (X64) (2015-03-06 18:43:16)
Boot Modus: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1548863103-2308270600-2068238051-500 - Administrator - Disabled)
Gast (S-1-5-21-1548863103-2308270600-2068238051-501 - Limited - Enabled)
USER (S-1-5-21-1548863103-2308270600-2068238051-1001 - Administrator - Enabled) => C:\Users\USER
HomeGroupUser$ (S-1-5-21-1548863103-2308270600-2068238051-1004 - Limited - Enabled)
Surfen (S-1-5-21-1548863103-2308270600-2068238051-1002 - Administrator - Enabled) => C:\Users\Surfen
 
==================== Security Center ========================
 
(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)
 
AV: Bitdefender Antivirus (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antispyware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}
 
==================== Geïnstalleerde programma's ======================
 
(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)
 
„Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
µTorrent (HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.)
5600 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
5600_Help (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
5600Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
[email protected] KillDisk 10 (HKLM\...\{58F0BF80-D1C1-49BF-AF13-EFF421E1AD39}_is1) (Version: 10 - LSoft Technologies Inc)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
AIO_CDB_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Altova MapForce 2017 (x64) Enterprise Edition (HKLM\...\{F9CFDEF8-53CA-49D6-86AE-D25E23DE8992}) (Version: 2017.00.00 - Altova)
Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1405.0701 - Micro-Star International Co., Ltd.)
Belgium e-ID middleware 4.1.18 (build 1730) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71730}) (Version: 4.1.1730 - Belgian Government)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.26.1436 - Bitdefender)
Bitdefender Internet Security 2016 (HKLM\...\Bitdefender) (Version: 20.0.28.1478 - Bitdefender)
BlackBerry Desktop Software 6.1 (HKLM-x32\...\BlackBerry_Desktop) (Version: 6.1.0.35 - Research In Motion Ltd.)
BlackBerry Desktop Software 6.1 (x32 Version: 6.1.0.35 - Research In Motion Ltd.) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Boot Configure (HKLM-x32\...\{AB72B3BB-A389-4F62-86EE-C08326B4BE60}) (Version: 20.014.05233 - Micro-Star International Co., Ltd.)
Borland Database Engine v5.0.1.33 (HKLM-x32\...\Borland Database Engine v5.0.1.33_is1) (Version:  - )
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 4.0.1402.2601 - )
Canon MP540 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP540_series) (Version:  - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CryptoPrevent (HKLM-x32\...\{5C5B24E7-4694-4049-A222-CCE7D3FAC63F}_is1) (Version:  - Foolish IT LLC)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version:  3.0 - Acro Software Inc.)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5509.52 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Database Browser 32 Bit (HKLM-x32\...\Database Browser_is1) (Version: 5.3.1.9 - DB Software Laboratory)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 13.4.21 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.51.1 - Dropbox, Inc.) Hidden
ELAN Touchpad 11.13.11.4_X64_WHQL (HKLM\...\Elantech) (Version: 11.13.11.4 - ELAN Microelectronic Corp.)
EPUB File Reader (HKLM-x32\...\{818C5857-5C74-4CAC-9F43-E5597086852D}_is1) (Version:  - epubfilereader.com)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Evernote v. 6.1.2 (HKLM-x32\...\{A46ABD1E-2837-11E6-9E7C-005056951CAD}) (Version: 6.1.2.2292 - Evernote Corp.)
Exportizer 6.0.4 (HKLM-x32\...\Exportizer_is1) (Version: 6.0.4 - Vitaliy Levchenko)
ExpressVPN (HKLM-x32\...\{6d7c574e-877c-47e6-bcdd-d57b859ea93f}) (Version: 5.2.0.632 - ExpressVPN)
ExpressVPN (x32 Version: 5.2.0.632 - ExpressVPN) Hidden
ExpressVPN Compatibility Checks (x32 Version: 1.0.0.0 - ExpressVPN) Hidden
Extended Asian Language font pack for Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-2530-0000-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
File Viewer Plus (HKLM-x32\...\{C8B24B83-920A-446E-B027-38F72C9D8898}_is1) (Version: 2.0.1 - Sharpened Productions)
Fotoattēlu galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foto-galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freedome (HKLM-x32\...\F-Secure Freedome) (Version: 1.7.3413.0 - F-Secure Corporation)
Galeria de Fotografias (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GDR 2269 for SQL Server 2014 (KB3045324) (64-bit) (HKLM\...\KB3045324) (Version: 12.0.2269.0 - Microsoft Corporation)
GetDataBack for NTFS (HKLM-x32\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.33.000 - Runtime Software)
GetDataBack Simple (HKLM-x32\...\{D06B8000-52B4-4D0B-A003-DA83ED982B51}) (Version: 2.01.000 - Runtime Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Drive (HKLM-x32\...\{3D7AB4D4-2E45-4986-BAC5-5B3CEED21FAA}) (Version: 1.32.3592.6117 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Hotspot Shield 5.4.11 (HKLM-x32\...\HotspotShield) (Version: 5.4.11 - AnchorFree Inc.)
Hotspot Shield 5.4.11 Embedded (x32 Version: 5.4.11.9772 - Buildbot) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart 5520 series Basissoftware van het apparaat (HKLM\...\{D2FFE8A1-980E-4CF9-A48F-453D767BA661}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 5520 series Help (HKLM-x32\...\{193C95A3-E4D5-4482-A9C9-1510E29849E4}) (Version: 27.0.0 - Hewlett Packard)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
iBackupBot 5.3.0 (HKLM-x32\...\iBackupBot) (Version: 5.3.0 - VOWSoft, Ltd.)
iCloud (HKLM\...\{29AAC3D3-23FC-496D-8266-0E3833686758}) (Version: 6.0.2.10 - Apple Inc.)
inSSIDer 3 (HKLM-x32\...\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}) (Version: 3.0.7.48 - MetaGeek, LLC)
Intel® Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.2.4.1000 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
IsoBuster 3.7 (HKLM-x32\...\IsoBuster_is1) (Version: 3.7 - Smart Projects)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
KB9X Radio Switch Driver (HKLM\...\5AADE1068CF70DD983F763B20CF2CAAB72883915) (Version: 1.1.0.0 - ENE TECHNOLOGY INC.)
KBC-beveiligingscomponenten (HKLM-x32\...\{BC8A447D-A2DF-4C99-8C71-80B487635268}) (Version: 6.29.0006 - KBC Groep NV)
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 6.0 - Paramount Software (UK) Ltd.)
Macrium Reflect Free Edition (Version: 6.0.708 - Paramount Software (UK) Ltd.) Hidden
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version:  - )
MAGIX MX Suite (HKLM-x32\...\MAGIX_{43136332-880B-458A-966C-900C18752B66}) (Version: 1.13.0.121 - MAGIX AG)
MAGIX MX Suite (Version: 1.13.0.121 - MAGIX AG) Hidden
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{A106FA6F-E94C-44C9-8A0F-C34BD82C9FE6}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Report Viewer 2014 Runtime (HKLM-x32\...\{327E9C0D-1687-414F-923E-F5979E549548}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{83F2B8F4-5CF3-4BE9-9772-9543EAE4AC5F}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{D9C53793-2E6A-4C6D-BA0B-898A17876A5D}) (Version: 12.0.2269.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Policies  (HKLM-x32\...\{1C30FE7E-8A8C-4492-89D6-10CB20C3B0EB}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{37C44B5C-E839-4A9D-9E20-A93E1B2FD35A}) (Version: 12.0.2269.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL Compiler Service  (HKLM\...\{537203CB-708E-43A3-BA16-3D5C14A587BB}) (Version: 12.0.2269.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{C3F6F200-6D7B-4879-B9EE-700C0CE1FCDA}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{8C06D6DB-A391-4686-B050-99CC522A7843}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (HKLM-x32\...\{8B27067F-75D8-4C9D-834D-27952C63488E}) (Version: 1.0.0 - soft.distancija.lt)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 48.0.2 (x86 nl) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 nl)) (Version: 48.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MSI Social Media Collection (HKLM-x32\...\{7ADEC426-BE95-48EF-84D4-086BD0F4D331}) (Version: 1.14.2251 - Micro-Star International Co., Ltd.)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
OpenOffice 4.1.2 (HKLM-x32\...\{41E7B095-1618-49CF-972F-72B5D5235423}) (Version: 4.12.9782 - Apache Software Foundation)
Oracle VM VirtualBox 5.0.26 (HKLM\...\{257A247A-9BC8-4506-B4EC-F4A725976174}) (Version: 5.0.26 - Oracle Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PolarEdit9750 v 0.2.6 (HKLM-x32\...\{086AB3E1-D390-4B30-8EF3-A28AE0AD76B7}_is1) (Version:  - Polarstern)
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 5.5.1.2 - Popcorn Time) <==== AANDACHT
Popcorn Time (HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\Popcorn Time) (Version:  - Popcorn Official) <==== AANDACHT
Popcorn Time Community (HKLM-x32\...\{F9BC7890-4FE5-4391-8C59-CD0C556EF115}) (Version: 0.4.0 - YTS.ph) <==== AANDACHT
Port Forward Network Utilities (HKLM-x32\...\{88B1D36C-7B70-4C48-8D2F-AAB956ECF4C3}) (Version: 2.0.9 - Portforward, LLC)
QBSDK 8.0 - QBFC8.0 (x32 Version: 8.0.0.1 - Intuit Developer Network) Hidden
Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.780.780.102113 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.30169 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7090 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.30.0239 - REALTEK Semiconductor Corp.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SCM (HKLM\...\{0DD4DB96-E920-4D84-9137-9987FABAEB57}) (Version: 10.013.09262 - Application)
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
SHARP MX/DX Series PCL/PS Printer Driver (HKLM-x32\...\SHARP MX-2300 2700 3500 4500 Series PCL PS Printer Driver) (Version: 1.00.000 - SHARP)
SHARP MX/MX-M/DX Series PCL/PS Printer Driver (HKLM-x32\...\SHARP MX-2310U PCL PS Printer Driver) (Version: 1.00.000 - SHARP)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SimpleInvoicer 1.1.5.1 (HKLM-x32\...\SimpleInvoicer) (Version: 1.1.5.1 - Dycode Software)
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
SQL Server 2014 Client Tools (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Documentation Components (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Full text search (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Management Studio (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Reporting Services (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.0.2000.8 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Version Revealer (HKLM-x32\...\{53CC7735-6093-4165-86C2-02B2EB85A816}) (Version: 1.0.0 - Kluwer)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Stuurprogrammapakket voor Windows - Fedict SmartCard  (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict)
SUPER CHARGER (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.024 - MSI)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
TomTom MyDrive Connect 4.1.0.2658 (HKLM-x32\...\MyDriveConnect) (Version: 4.1.0.2658 - TomTom)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TortoiseSVN 1.9.3.27038 (64 bit) (HKLM\...\{2114A96B-51D7-4C45-B2E1-003562464D99}) (Version: 1.9.27038 - TortoiseSVN)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
UMPlayer 0.98 [P4] (HKLM-x32\...\UMPlayer) (Version: 0.98 - Ori Rejwan)
Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0413-0000-0000000FF1CE}_Office15.PROPLUSR_{343EEE91-078C-45DE-8A1E-37C660A616E2}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0413-0000-0000000FF1CE}_Office15.PROPLUSR_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version:  - Microsoft)
Valokuvavalikoima (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC Setup Helper (HKLM-x32\...\VLC Setup Helper_is1) (Version:  - Hobbyist Software)
VLC Streamer 5.27 (HKLM-x32\...\VLC Streamer_is1) (Version:  - Hobbyist Software)
WALTR version 1.1.35 (HKLM\...\{20AFC2A1-9E47-4A77-96E8-89AAED7B6AEB}_is1) (Version: 1.1.35 - Softorino, Inc.)
WALTR2 version 2.0.15 (HKLM\...\{D20DE4FE-1FCF-4EB1-BFCA-9DA69A80D739}_is1) (Version: 2.0.15 - Softorino, Inc.)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WhoCrashed 5.03 (HKLM\...\WhoCrashed_is1) (Version:  - Resplendence Software Projects Sp.)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
WinDirStat 1.1.2 (HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\WinDirStat) (Version:  - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}) (Version: 17.5.10562 - WinZip Computing, S.L. )
Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Основи Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотоальбом (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотографии (общедоступная версия) (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотоколекція (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
 
==================== Aangepaste CLSID (gefilterd): ==========================
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
CustomCLSID: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
 
==================== Geplande Taken (gefilterd) =============
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
Task: {0756B1A4-7A4F-4155-95CE-2E0A50A9763E} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe
Task: {1FC1EF61-7112-414E-81BF-6CD6BBDD7B8A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-04] (Dropbox, Inc.)
Task: {20A58DD7-D50C-445E-A39C-6A1287D2E2B6} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-10-21] (Bitdefender)
Task: {2799E106-3486-41B6-8C7F-6EA2E48B8BA2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {28F9DB22-7FB7-450B-BC56-AA94FF75B1F3} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {44959C9E-8C7C-4C9F-8B88-361581B7D434} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks [Argument = /run /TN "\Microsoft\Windows\Setup\gwx\refreshgwxconfig"]
Task: {556147A0-1EFB-4726-8D58-6B2D57694C7A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {589D5C57-2A2D-4BA5-A03C-6CF933ED3AA9} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-10-12] (Microsoft Corporation)
Task: {720BBC21-AE6C-475C-AAC6-80F7C8E53E31} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {72D89087-D3D8-4C46-8F91-18A3DF212D9E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {81897A90-40D8-4031-B897-D345529EC704} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {9EF3C8DA-34B2-4AB1-9B60-7D86F17DA565} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe
Task: {B1746854-552B-4151-BE68-8F1F3B2265A4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {C58DBB6A-F246-4983-BED0-47747CD75552} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-04] (Dropbox, Inc.)
Task: {D4D753AD-FEEE-4B83-ABE4-D26CD8761A73} - System32\Tasks\MSI_Reminder => C:\Program Files (x86)\MSI\MSI Remind Manager\MSI Reminder.exe
Task: {E6702D15-960B-421B-971A-5683DFCCC2B4} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2016-10-05] (Apple Inc.)
Task: {EC678A15-AB5F-4AD2-A8A0-5AF9637D4362} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {FB455AAC-DDA1-4A44-BF99-B2EA967D8F95} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
 
(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)
 
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Snelkoppelingen =============================
 
(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)
 
ShortcutWithArgument: C:\Users\USER\Contacts\Desktop\KBC-Online for Business.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxps://www.kbc.be/ondernemen
ShortcutWithArgument: C:\Users\USER\Contacts\Desktop\Gebruikte programma's\KBC-Online for Business.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxps://www.kbc.be/ondernemen
ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\ff13ca23fee04978\Privé - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 5"
ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Pc technieker - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Stagiair boekhouder fiscalist - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 3"
ShortcutWithArgument: C:\Users\Public\Desktop\KBC-Online for Business.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxps://www.kbc.be/ondernemen
 
==================== Geladen Modules (gefilterd) ==============
 
2016-06-13 18:47 - 2013-09-03 13:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bdmetrics.dll
2016-06-13 18:47 - 2016-05-09 10:29 - 01006336 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpbr.mdl
2016-06-13 18:47 - 2016-05-09 10:29 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpdsp.mdl
2016-06-13 18:47 - 2016-05-09 10:29 - 03035488 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpph.mdl
2016-06-13 18:47 - 2016-05-09 10:29 - 01541440 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttprbl.mdl
2015-08-22 20:01 - 2013-10-23 14:24 - 00087600 _____ () C:\Windows\System32\cpwmon64.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-07-02 19:44 - 2013-10-22 01:06 - 00069120 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2016-03-16 21:32 - 2016-09-15 16:51 - 00055744 _____ () C:\Program Files\WALTR\x86\AnimationService.exe
2015-12-13 15:10 - 2015-12-13 15:10 - 00094080 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2016-06-24 16:20 - 2016-06-24 16:20 - 00331264 _____ () C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
2016-06-24 16:23 - 2016-06-24 16:23 - 10629112 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
2016-10-30 22:24 - 2016-11-09 17:59 - 00102312 _____ () C:\Program Files\WALTR2\x86\WALTR2Service.exe
2016-08-24 00:04 - 2016-08-24 00:04 - 00166520 _____ () C:\Program Files (x86)\Hotspot Shield\bin\CrashRpt1403.dll
2014-07-02 19:49 - 2014-07-02 02:36 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2016-10-05 18:18 - 2016-10-05 18:18 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-10-05 18:18 - 2016-10-05 18:18 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-09-01 17:13 - 2016-09-01 17:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-06-01 13:39 - 2016-06-01 13:39 - 00439480 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2016-06-01 13:39 - 2016-06-01 13:39 - 00321208 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2016-09-17 06:27 - 2016-10-10 19:19 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-10-28 11:33 - 2016-10-10 19:19 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-10-28 11:33 - 2016-10-10 19:19 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-10-28 11:33 - 2016-10-10 19:19 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2016-09-17 06:27 - 2016-10-10 19:19 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2016-09-17 06:27 - 2016-10-10 19:19 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2016-09-17 06:27 - 2016-10-10 19:19 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2016-09-17 06:27 - 2016-10-10 19:20 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00021312 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-10-28 11:33 - 2016-10-10 19:19 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2016-10-28 11:33 - 2016-10-10 19:21 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00025424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-09-17 06:27 - 2016-10-10 19:20 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2016-09-17 06:27 - 2016-10-10 19:21 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-10-28 11:33 - 2016-10-10 19:17 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-10-28 11:33 - 2016-10-24 14:15 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-10-28 11:33 - 2016-10-24 14:15 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2016-09-17 06:27 - 2016-10-10 19:19 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-10-28 11:33 - 2016-10-24 14:15 - 01972528 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 00133424 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 00224056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd
2016-10-28 11:33 - 2016-10-10 19:24 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2016-10-28 11:33 - 2016-10-10 19:24 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2016-09-17 06:27 - 2016-10-10 19:21 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-09-17 06:27 - 2016-10-24 14:16 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2016-10-28 11:33 - 2016-10-24 14:16 - 00168760 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2016-09-03 09:04 - 2016-10-10 19:25 - 00697304 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-10-25 13:16 - 2016-10-25 13:16 - 00698848 _____ () C:\Program Files (x86)\F-Secure\Freedome\Freedome\1.1\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-10-25 13:16 - 2016-10-25 13:16 - 00019424 _____ () C:\Program Files (x86)\F-Secure\Freedome\Freedome\1.1\libEGL.dll
2016-10-25 13:16 - 2016-10-25 13:16 - 01610720 _____ () C:\Program Files (x86)\F-Secure\Freedome\Freedome\1.1\libGLESv2.dll
2016-11-05 00:06 - 2016-11-05 00:06 - 00098816 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32api.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00110080 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\pywintypes27.dll
2016-11-05 00:06 - 2016-11-05 00:06 - 00364544 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\pythoncom27.dll
2016-11-05 00:06 - 2016-11-05 00:06 - 00320512 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32com.shell.shell.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00914432 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\_hashlib.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 01176576 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\wx._core_.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00806400 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\wx._gdi_.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00816128 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\wx._windows_.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 01067008 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\wx._controls_.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00733184 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\wx._misc_.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00682496 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\pysqlite2._sqlite.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00088064 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\_ctypes.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00686080 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\unicodedata.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00119808 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32file.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00108544 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32security.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00007168 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\hashobjs_ext.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00017920 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\thumbnails_ext.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00088064 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\usb_ext.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00012800 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\common.time34.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00018432 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32event.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00167936 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32gui.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00046080 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\_socket.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 01303552 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\_ssl.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00128512 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\_elementtree.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00127488 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\pyexpat.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00038912 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32inet.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00036864 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\_psutil_windows.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00524248 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\windows._lib_cacheinvalidation.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00011264 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32crypt.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00123392 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\wx._wizard.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00077312 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\wx._html2.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00027648 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\_multiprocessing.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00020480 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\_yappi.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00035840 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32process.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00078848 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\wx._animate.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00024064 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32pipe.pyd
2016-11-05 00:06 - 2016-11-05 00:06 - 00010240 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\select.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00025600 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32pdh.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00017408 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32profile.pyd
2016-11-05 00:07 - 2016-11-05 00:07 - 00022528 ____R () C:\Users\USER\AppData\Local\Temp\_MEI62482\win32ts.pyd
2016-06-24 16:23 - 2016-06-24 16:23 - 00445944 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.FilterManager.dll
2016-10-30 22:24 - 2016-11-09 17:59 - 00028584 _____ () C:\Program Files\WALTR2\x86\SCSIHelper.dll
 
==================== Alternate Data Streams (gefilterd) =========
 
(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)
 
AlternateDataStreams: C:\Users\USER\PSISetup.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\acrobatproDC_00000000000000000000000409.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\Apache_OpenOffice_4.1.2_Win_x86_install_nl.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\Belgium-eID-QuickInstaller-4.1.18-signed.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\checklistemp_nl.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\CryptoPreventSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\FRST64 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\fvp_setup_2.0.1.163fi.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\HL-2250DN-inst-C1-useu.EXE:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\InstallBorlandDatabaseEnginev5.0.1.33 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\InstallBorlandDatabaseEnginev5.0.1.33.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\MapForceEnt2017_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\Miss.Peregrines.Home.For.Peculiar.Children.2016.HC.HDRip.XviD.AC3-EVO.avi_downloader.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\PDFsam_Enhanced_Installer.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\SQLManagementStudio_x86_ENU.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\TeamViewerQS_nl-vxe (1).exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\TeamViewerQS_nl-vxe.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\TeamViewer_Setup_nl-vxe.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\vlc-2.2.4-win32.exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\windirstat1_1_2_setup (1).exe:BDU [0]
AlternateDataStreams: C:\Users\USER\Downloads\windirstat1_1_2_setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Surfen\Desktop\setup-network-utilities.exe:BDU [0]
AlternateDataStreams: C:\Users\Surfen\Desktop\vlc-2.2.1-win64.exe:BDU [0]
 
==================== Veilige Modus (gefilterd) ===================
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)
 
 
==================== Bestandskoppeling (gefilterd) ===============
 
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)
 
 
==================== Internet Explorer vertrouwde/beperkte toegang ===============
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)
 
IE trusted site: HKU\.DEFAULT\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard-a.cbc.be -> hxxps://secure.businessdashboard-a.cbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard-a.kbc.be -> hxxps://secure.businessdashboard-a.kbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard-a.kbcbrussels.be -> hxxps://secure.businessdashboard-a.kbcbrussels.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard-f.cbc.be -> hxxps://secure.businessdashboard-f.cbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard-f.kbc.be -> hxxps://secure.businessdashboard-f.kbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard-f.kbcbrussels.be -> hxxps://secure.businessdashboard-f.kbcbrussels.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard.cbc.be -> hxxps://secure.businessdashboard.cbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard.kbc.be -> hxxps://secure.businessdashboard.kbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard.kbcbrussels.be -> hxxps://secure.businessdashboard.kbcbrussels.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard2-a.cbc.be -> hxxps://secure.businessdashboard2-a.cbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard2-a.kbc.be -> hxxps://secure.businessdashboard2-a.kbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard2-a.kbcbrussels.be -> hxxps://secure.businessdashboard2-a.kbcbrussels.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard2-f.cbc.be -> hxxps://secure.businessdashboard2-f.cbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard2-f.kbc.be -> hxxps://secure.businessdashboard2-f.kbc.be
IE trusted site: HKU\.DEFAULT\...\businessdashboard2-f.kbcbrussels.be -> hxxps://secure.businessdashboard2-f.kbcbrussels.be
IE trusted site: HKU\.DEFAULT\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\.DEFAULT\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\.DEFAULT\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\.DEFAULT\...\csob.cz -> hxxp://www.csob.cz
 
Er zijn 27 Meer websites.
 
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard-a.cbc.be -> hxxps://secure.businessdashboard-a.cbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard-a.kbc.be -> hxxps://secure.businessdashboard-a.kbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard-a.kbcbrussels.be -> hxxps://secure.businessdashboard-a.kbcbrussels.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard-f.cbc.be -> hxxps://secure.businessdashboard-f.cbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard-f.kbc.be -> hxxps://secure.businessdashboard-f.kbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard-f.kbcbrussels.be -> hxxps://secure.businessdashboard-f.kbcbrussels.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard.cbc.be -> hxxps://secure.businessdashboard.cbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard.kbc.be -> hxxps://secure.businessdashboard.kbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard.kbcbrussels.be -> hxxps://secure.businessdashboard.kbcbrussels.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard2-a.cbc.be -> hxxps://secure.businessdashboard2-a.cbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard2-a.kbc.be -> hxxps://secure.businessdashboard2-a.kbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard2-a.kbcbrussels.be -> hxxps://secure.businessdashboard2-a.kbcbrussels.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard2-f.cbc.be -> hxxps://secure.businessdashboard2-f.cbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard2-f.kbc.be -> hxxps://secure.businessdashboard2-f.kbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\businessdashboard2-f.kbcbrussels.be -> hxxps://secure.businessdashboard2-f.kbcbrussels.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\csob.cz -> hxxp://www.csob.cz
 
Er zijn 28 Meer websites.
 
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard-a.cbc.be -> hxxps://secure.businessdashboard-a.cbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard-a.kbc.be -> hxxps://secure.businessdashboard-a.kbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard-a.kbcbrussels.be -> hxxps://secure.businessdashboard-a.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard-f.cbc.be -> hxxps://secure.businessdashboard-f.cbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard-f.kbc.be -> hxxps://secure.businessdashboard-f.kbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard-f.kbcbrussels.be -> hxxps://secure.businessdashboard-f.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard.cbc.be -> hxxps://secure.businessdashboard.cbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard.kbc.be -> hxxps://secure.businessdashboard.kbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard.kbcbrussels.be -> hxxps://secure.businessdashboard.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard2-a.cbc.be -> hxxps://secure.businessdashboard2-a.cbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard2-a.kbc.be -> hxxps://secure.businessdashboard2-a.kbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard2-a.kbcbrussels.be -> hxxps://secure.businessdashboard2-a.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard2-f.cbc.be -> hxxps://secure.businessdashboard2-f.cbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard2-f.kbc.be -> hxxps://secure.businessdashboard2-f.kbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\businessdashboard2-f.kbcbrussels.be -> hxxps://secure.businessdashboard2-f.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\csob.cz -> hxxp://www.csob.cz
 
Er zijn 27 Meer websites.
 
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard-a.cbc.be -> hxxps://secure.businessdashboard-a.cbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard-a.kbc.be -> hxxps://secure.businessdashboard-a.kbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard-a.kbcbrussels.be -> hxxps://secure.businessdashboard-a.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard-f.cbc.be -> hxxps://secure.businessdashboard-f.cbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard-f.kbc.be -> hxxps://secure.businessdashboard-f.kbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard-f.kbcbrussels.be -> hxxps://secure.businessdashboard-f.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard.cbc.be -> hxxps://secure.businessdashboard.cbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard.kbc.be -> hxxps://secure.businessdashboard.kbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard.kbcbrussels.be -> hxxps://secure.businessdashboard.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard2-a.cbc.be -> hxxps://secure.businessdashboard2-a.cbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard2-a.kbc.be -> hxxps://secure.businessdashboard2-a.kbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard2-a.kbcbrussels.be -> hxxps://secure.businessdashboard2-a.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard2-f.cbc.be -> hxxps://secure.businessdashboard2-f.cbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard2-f.kbc.be -> hxxps://secure.businessdashboard2-f.kbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\businessdashboard2-f.kbcbrussels.be -> hxxps://secure.businessdashboard2-f.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933\...\csob.cz -> hxxp://www.csob.cz
 
Er zijn 27 Meer websites.
 
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\belgium.be -> hxxps://*.belgium.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard-a.cbc.be -> hxxps://secure.businessdashboard-a.cbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard-a.kbc.be -> hxxps://secure.businessdashboard-a.kbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard-a.kbcbrussels.be -> hxxps://secure.businessdashboard-a.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard-f.cbc.be -> hxxps://secure.businessdashboard-f.cbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard-f.kbc.be -> hxxps://secure.businessdashboard-f.kbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard-f.kbcbrussels.be -> hxxps://secure.businessdashboard-f.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard.cbc.be -> hxxps://secure.businessdashboard.cbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard.kbc.be -> hxxps://secure.businessdashboard.kbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard.kbcbrussels.be -> hxxps://secure.businessdashboard.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard2-a.cbc.be -> hxxps://secure.businessdashboard2-a.cbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard2-a.kbc.be -> hxxps://secure.businessdashboard2-a.kbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard2-a.kbcbrussels.be -> hxxps://secure.businessdashboard2-a.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard2-f.cbc.be -> hxxps://secure.businessdashboard2-f.cbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard2-f.kbc.be -> hxxps://secure.businessdashboard2-f.kbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\businessdashboard2-f.kbcbrussels.be -> hxxps://secure.businessdashboard2-f.kbcbrussels.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\cbc.be -> hxxp://cbc-pdf.cbc.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\cbc.eu -> hxxps://ipa-a.cbc.eu
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\cbccorporate.be -> hxxps://secure.cbccorporate.be
IE trusted site: HKU\S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786\...\csob.cz -> hxxp://www.csob.cz
 
Er zijn 27 Meer websites.
 
 
==================== Hosts inhoud: ===============================
 
(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)
 
2013-08-22 14:25 - 2016-11-10 11:54 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
 
==================== Andere gebieden ============================
 
(Momenteel is er geen automatische fix voor dit onderdeel.)
 
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\System32\oobe\info\Wallpaper\backgroundDefault.jpg
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.
 
==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==
 
MSCONFIG\Services: HssTrayService => 3
MSCONFIG\Services: SkypeUpdate => 2
HKU\S-1-5-21-1548863103-2308270600-2068238051-1001\...\StartupApproved\StartupFolder: => "MagicDisc.lnk"
 
==================== Firewall regels (gefilterd) ===============
 
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{3E1A4FE6-BBB2-43A6-B8FD-6FAE7253F698}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{8EE8F019-7089-4310-9B9F-B9EB9664B64A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{A1F6B198-6673-4300-A16E-BF585DF91015}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{65EE413F-59B4-4802-812D-BC040BE4BB0B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{4038554A-B10D-45E6-AB39-6BE076E46C70}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{DDF62EA7-762D-4CF3-88CF-F691DCAF4A18}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{944E1430-1FD3-46FB-8F02-917FF6F0AD17}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{9C3A54F5-28C7-428A-BAC1-A192A67AA3E1}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{F265F79D-EFFC-4209-AD12-29B8385BC431}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{B1C3E2A6-49BF-451E-942D-440FD7D117CD}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{2724A239-9485-47D4-980E-990D1B26AE60}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{64556C24-5D85-4380-98B2-0E2C2B514430}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{A292CD80-CAAD-4BBE-ADB0-76501C8C1398}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{828E4948-FFE2-44C4-B948-B34F7A55E2E9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{6B210931-60A0-41F6-B2A4-8FBEABBEC428}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{398FA671-9B69-41D8-B714-353850EEB2FB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{AE27DF8D-5076-4A97-A057-2C109B5CE2C1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{06699CA3-A9D0-4DF6-9BE0-6D53E91524B6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{F24029F7-84C9-4AB6-9869-B6FCE70DABAA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{0C9AB609-E61C-475D-9D39-2C2F835C19ED}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{27EF6C78-277C-46FB-A8D8-9A67F6272A79}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{D73A8041-A1A0-4199-9BA9-6569E35F9889}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7772EDF5-017D-4B5D-AA2E-23B0704996D7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{3D0C5EA3-7C56-4741-A5B3-95A1D91A8DE5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{E3CA3D51-61E3-4B74-8EE7-8298176DB8BB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{D66CDC69-56F6-4D2A-8189-EBFFBB3045FA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{19843850-EBED-446A-BAE6-E8F04FF03721}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{D32CA142-FBCE-4EA5-A75D-F566A8AD1EFC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{8EBAA194-0B63-45A4-8BB0-AC4F56F5A13E}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{2CDB48C1-E3F3-4D23-9DE0-DCBA1D8DD9B7}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{E8441050-D7DC-4B8A-A6EC-5AD1FDEFEDD4}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{4FF7A272-D813-493F-BBA2-2D5E16130176}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{9F92B9F4-CC11-40EE-A910-11788470576D}C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [UDP Query User{33778A01-11B8-49FE-9716-8AABDEF028C2}C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [{0CE74991-626E-4C4A-B368-8CE914BE86C1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{F86F7865-F241-45F9-9D59-EC61B7F1193C}] => (Allow) LPort=2869
FirewallRules: [{A772480F-7F95-49EE-9424-AFAD6C2BFBB2}] => (Allow) LPort=1900
FirewallRules: [{5BE84485-AAF3-4A42-A318-FD8DE1AC2C06}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CF6D3631-8434-4C01-AEAC-5B74F1DB3B36}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{62B6BA0E-F428-490F-B188-C1C4E68C33CB}] => (Allow) C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe
FirewallRules: [{FC04BA0E-6F8C-46ED-BDD6-16E38B77C863}] => (Allow) C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe
FirewallRules: [{C84A089D-FE49-433F-B8F0-2E4B0F4B3FFE}] => (Allow) LPort=4481
FirewallRules: [{4F484CF3-AEFE-4CB9-BADA-491BCA6AB55B}] => (Allow) LPort=4481
FirewallRules: [{8C7758B3-4246-40F1-A488-804921C3C9FE}] => (Allow) LPort=4482
FirewallRules: [{EDD2B09E-B18F-4FA2-A16D-C09B9B75FA9F}] => (Allow) LPort=4482
FirewallRules: [TCP Query User{5FCF44AD-B5E5-462F-8FE9-F78349558939}C:\users\USER\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\nw.exe
FirewallRules: [UDP Query User{9F4A8A59-A3D9-48DD-84D3-8B7210E9E285}C:\users\USER\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\nw.exe
FirewallRules: [{AAF9E945-F651-48D9-BBD3-2B7367B4CD20}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{44416B51-F640-4E97-8A8E-F35DCAC3A132}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F73C44D9-E6AE-45ED-867A-9EB6A521E3BB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2567138B-0636-49F9-BABA-58AC9C20A888}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{C575D5A8-465A-43E6-A2A1-6273D4B8F7D3}C:\users\surfen\appdata\roaming\utorrent\updates\3.4.3_40760.exe] => (Allow) C:\users\surfen\appdata\roaming\utorrent\updates\3.4.3_40760.exe
FirewallRules: [UDP Query User{199EFBC4-80D8-4C94-9AFF-AA274DE4C621}C:\users\surfen\appdata\roaming\utorrent\updates\3.4.3_40760.exe] => (Allow) C:\users\surfen\appdata\roaming\utorrent\updates\3.4.3_40760.exe
FirewallRules: [TCP Query User{3FBD124B-015E-45C6-B939-AED0966D76BF}C:\program files (x86)\popcorn time\chromecast\node.exe] => (Allow) C:\program files (x86)\popcorn time\chromecast\node.exe
FirewallRules: [UDP Query User{332F51EB-4B6F-49B5-93DA-7DE08FC3C4C6}C:\program files (x86)\popcorn time\chromecast\node.exe] => (Allow) C:\program files (x86)\popcorn time\chromecast\node.exe
FirewallRules: [TCP Query User{21DC9060-C242-4164-BFAC-21676CD1C3C2}C:\program files (x86)\popcorn time\popcorntimedesktop.exe] => (Allow) C:\program files (x86)\popcorn time\popcorntimedesktop.exe
FirewallRules: [UDP Query User{8A4740B3-7AFA-47AB-9E40-0CCCA4E429C2}C:\program files (x86)\popcorn time\popcorntimedesktop.exe] => (Allow) C:\program files (x86)\popcorn time\popcorntimedesktop.exe
FirewallRules: [{53DA04A8-0EB8-4AD0-92F3-CADB15412813}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{85893B4A-094A-44B7-86F1-8C616AAFE92E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{470A0954-1F9F-40BD-9C65-015A5CDB55D9}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{6F7BD00D-7213-4B8B-A1AD-F11B69A893B4}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{AB4122D4-89C7-4F26-9D95-B698A639E857}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe
FirewallRules: [{C4AD91E6-0FDF-45E8-A13B-FD2788107A90}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\mDNSResponder.exe
FirewallRules: [{49C1ADFE-D734-417A-9D9B-BBD88D341310}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{74194C16-326C-48EE-A014-FCB3FA3A91FD}C:\users\USER\appdata\local\temp\bduninstall\x32\pcsftool.exe] => (Allow) C:\users\USER\appdata\local\temp\bduninstall\x32\pcsftool.exe
FirewallRules: [UDP Query User{E1D70F8D-E555-44A3-A2E2-87302BC7E1B7}C:\users\USER\appdata\local\temp\bduninstall\x32\pcsftool.exe] => (Allow) C:\users\USER\appdata\local\temp\bduninstall\x32\pcsftool.exe
FirewallRules: [TCP Query User{BC907129-57BD-46F6-A0F2-60F76E23A995}C:\users\USER\appdata\local\temp\bduninstall\x64\pcsftool.exe] => (Allow) C:\users\USER\appdata\local\temp\bduninstall\x64\pcsftool.exe
FirewallRules: [UDP Query User{C54074A8-5A0E-48DC-8643-CFB548D3FD25}C:\users\USER\appdata\local\temp\bduninstall\x64\pcsftool.exe] => (Allow) C:\users\USER\appdata\local\temp\bduninstall\x64\pcsftool.exe
FirewallRules: [TCP Query User{43F28565-83EB-43BE-8010-066C19518C53}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{2EC093F9-7204-4293-96A3-C26E9363264E}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{3191E76D-8165-417A-8FA1-E822CA7AAD24}C:\users\USER\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\nw.exe
FirewallRules: [UDP Query User{2A74F904-F36E-4CD4-9C94-B7140F009632}C:\users\USER\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\USER\appdata\local\popcorn time\nw.exe
FirewallRules: [TCP Query User{CA186464-F8FE-43B7-A757-A0D4BB788050}C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe] => (Allow) C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe
FirewallRules: [UDP Query User{DEB6F45F-C22D-4D10-95A9-01C259AC29BB}C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe] => (Allow) C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe
FirewallRules: [{DC8F9803-0589-45EE-A1D3-8453661C1ADC}] => (Block) C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe
FirewallRules: [{E73B5740-92E8-4A74-A0AB-043AACE5F81B}] => (Block) C:\users\USER\downloads\popcorn-time-0-3-9-beta\win32\popcorn-time.exe
FirewallRules: [TCP Query User{E8787F41-2940-45CB-A00F-D3E1C7E6A77D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{0ADC28DD-B51B-4CDB-88EE-BAC453CEC293}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{8C0BB26F-5A6B-4BAD-868F-8BB7ABB72AD1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{D02D2BC3-16E1-48AA-8F2A-F6E3C22F8D6B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{6C9A1558-26C1-43FC-920C-4C90B6BFC53D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BE281B93-EBAA-4585-9F49-8C028855881B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{82F7F4D3-C273-46DA-97A8-E93EFA6441B3}] => (Allow) C:\Users\USER\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DD95041A-EAA0-4832-95C9-0B8252747C14}] => (Allow) C:\Users\USER\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{62107624-B32B-42BA-ACB3-F23EEB206B08}C:\users\USER\documents\burggraaf it\simpelfact409\simpelfact.exe] => (Allow) C:\users\USER\documents\burggraaf it\simpelfact409\simpelfact.exe
FirewallRules: [UDP Query User{CC2761F5-2A59-4BF5-B5CD-94C6EA8FCD7C}C:\users\USER\documents\burggraaf it\simpelfact409\simpelfact.exe] => (Allow) C:\users\USER\documents\burggraaf it\simpelfact409\simpelfact.exe
FirewallRules: [{F7C74387-44CF-47C2-ADD4-D7FE6679C2C2}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{4524FC4B-9E19-47C5-AE0E-902C46FAFB30}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{8E1128A9-B3A7-4ECA-AD2D-DE6952AABEBF}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
FirewallRules: [{DEA4150B-93A4-4A50-BB4C-64EDD5EF5031}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
FirewallRules: [{85B273ED-8675-4722-801C-684A4949CBE2}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
FirewallRules: [{89CFF0A9-C422-4256-9583-9847EBD6F846}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
FirewallRules: [TCP Query User{AFEC301C-F979-4E88-8220-DBE2B4D3CB62}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{53500D15-A559-444A-BCAF-44402373CF2C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{F37A37B2-2FED-4CF9-BA09-B5B820DF654D}] => (Allow) LPort=2799
FirewallRules: [{EC697DDB-1005-41FE-B19E-AA99BB90888B}] => (Allow) LPort=2799
FirewallRules: [{8705AB6A-8AF5-4788-BE64-FDB2B3E304A7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B5DCA0A3-B850-412B-85C7-220E872D9486}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8BD0890E-3540-4367-9B10-DA5AD433DF33}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{484F8D1E-B716-470F-96B5-8CA8E69E5BFB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{25CF8646-C69D-44BA-AF56-BEEE61C2D90C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{461BE4AD-3281-4338-87B5-FC14699993A9}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{84A78002-B202-4F95-97C4-4D38E009B1E2}] => (Allow) C:\Program Files\iTunes\iTunes.exe
 
==================== Herstelpunten =========================
 
19-10-2016 19:27:15 Gepland controlepunt
28-10-2016 13:34:35 Windows Update
04-11-2016 19:42:40 Windows Update
05-11-2016 21:07:02 ExpressVPN
 
==================== Defecte Apparaatbeheer Apparaten =============
 
Name: Realtek Bluetooth 4.0 + High Speed Chip
Description: Realtek Bluetooth 4.0 + High Speed Chip
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Realtek Semiconductor Corp.
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Eventlog fouten: =========================
 
Applicatiefouten:
==================
Error: (11/07/2016 09:54:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: vlc.exe, versie: 2.2.4.0, tijdstempel: 0x00000000
Naam van module met fout: ntdll.dll, versie: 6.3.9600.18438, tijdstempel: 0x57ae642e
Uitzonderingscode: 0xc0000005
Foutmarge: 0x0000000000032045
Id van proces met fout: 0x7930
Starttijd van toepassing met fout: 0x01d23938efdfb687
Pad naar toepassing met fout: C:\Program Files\VideoLAN\VLC\vlc.exe
Pad naar module met fout: C:\Windows\SYSTEM32\ntdll.dll
Rapport-id: 5ff061b6-a52c-11e6-82e2-448a5bf02e56
Volledige pakketnaam met fout: 
Relatieve toepassings-id van pakket met fout:
 
Error: (11/07/2016 07:14:40 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: De openprocedure voor de WmiApRpl-service in DLL-bestand C:\Windows\system32\wbem\wmiaprpl.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode.
 
Error: (11/05/2016 10:12:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 24
 
Error: (11/05/2016 10:12:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 23
 
Error: (11/05/2016 10:12:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 22
 
Error: (11/05/2016 10:12:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 21
 
Error: (11/05/2016 10:12:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 20
 
Error: (11/05/2016 10:12:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 19
 
Error: (11/05/2016 10:12:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 18
 
Error: (11/05/2016 10:12:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 17
 
 
Systeemfouten:
=============
Error: (11/10/2016 11:57:14 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/10/2016 11:57:14 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/10/2016 11:57:10 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/10/2016 11:57:10 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/10/2016 11:56:57 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/10/2016 11:56:56 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/10/2016 11:56:56 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/10/2016 11:56:55 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/10/2016 11:56:54 AM) (Source: SCardSvr) (EventID: 610) (User: )
Description: De smartcardlezer ACS ACR38U 0 heeft IOCTL 0x313520 geweigerd: Onjuiste functie.. Als deze fout aanhoudt, werkt uw smartcard of lezer mogelijk niet naar behoren.
 
Header van opdracht: XX XX XX XX
 
Error: (11/09/2016 09:11:33 PM) (Source: bowser) (EventID: 8003) (User: )
Description: De masterbrowser heeft een servermelding ontvangen van computer WORKGROUP
die meent de masterbrowser voor het domein te zijn op transport NetBT_Tcpip_{436A4649-415B-4D8B-AFC4-2F7B0A78F00A}. 
De masterbrowser wordt gestopt of er wordt een verkiezing afgedwongen.
 
 
CodeIntegrity:
===================================
  Date: 2016-10-11 11:00:56.790
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SysWOW64\WWAHost.exe) attempted to load \Device\HarddiskVolume4\Program Files\WindowsApps\CyberLinkCorpPDVD.CyberLinkPowerDVDBE_1.0.903.10740_x86__av5vf9vzy3bgp\AggregationContent.winmd that did not meet the Store signing level requirements.
 
  Date: 2016-06-13 18:52:01.603
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-06-13 18:52:01.416
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-06-13 18:52:01.181
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-06-13 18:52:00.994
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-06-13 18:52:00.791
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-06-13 18:52:00.603
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-06-13 18:52:00.431
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-06-13 18:52:00.230
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-06-13 18:48:34.230
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Geheugen info =========================== 
 
Processor: Intel® Core™ i5-4210M CPU @ 2.60GHz
Percentage geheugen in gebruik: 46%
Totaal fysiek RAM-geheugen: 8111.53 MB
Beschikbaar fysiek RAM-geheugen: 4347.48 MB
Totaal Virtueel geheugen: 9391.53 MB
Beschikbaar Virtual geheugen: 4611.18 MB
 
==================== Schijven ================================
 
Drive c: (OS_Install) (Fixed) (Total:434.73 GB) (Free:36.22 GB) NTFS
Drive d: (Data) (Fixed) (Total:245.78 GB) (Free:77.17 GB) NTFS
 
==================== MBR & Partitietabel ==================
 
========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 70CF4065)
 
Partition: GPT.
 
==================== Eind van Addition.txt ============================

  • 0

#6
dbreeze

dbreeze

    Trusted Helper

  • Malware Removal
  • 2,213 posts

There is not that much wrong with this system except for the illegal downloads of movies / videos.
 
FIRST >>>>

Please go to START (Windows Orb) >> Control Panel >> Uninstall a Program or Programs and Features and remove the following (if listed):

Hotspot Shield 5.4.11
Popcorn Time
Popcorn Time Community


To do so, left clicking on the name once and then click Uninstall/Change at the bar above the list window.  

Follow the prompts of the uninstaller BUT please read carefully any questions it asks before answering; some uninstallers will try and deceive you into keeping the software.


SECOND >>>>

Junkware Removal Tool
Please download JRT from here to your desktop.

Note: Temporarily disable/shut down your protection software now to avoid potential conflicts, how to do so can be read here.

Double click the JRT.exe file to run the application.

The application will open an Command Prompt window and run from there (this is normal for this program, so not to be alarmed).

When it is asked, press any key to allow the program to continue / run.

This will create a log on the desktop; please copy and paste the JRT.txt log text in your next post.

Note: After the log file is created, please enable your protection software / reboot your system and verify your protection software is enabled.


THIRD >>>>

AdwCleaner by Xplode

Download AdwCleaner from here or from here. Save the file to the desktop.

NOTE: If you are using IE 8 or above you may get a warning that stops the program from downloading. Just click on the warning and allow the download to complete.

Close all open windows and browsers.

Vista/7/8 users: Right click the AdwCleaner icon on the desktop, click Run as administrator and accept the UAC prompt to run AdwCleaner.
You will see the following console:
AdwCleaner_v5016_zpsf8ln0fea.png

Click the Scan button and wait for the scan to finish.

After the Scan has finished the window may or may not show what it found and above, in the progress bar, you will see: Waiting for action. Please uncheck elements you don't want to remove.

Click the Clean button.

Everything checked will be deleted.

When the program has finished cleaning a report appears.

Once done it will ask to reboot, allow this
adwcleaner_delete_restart.jpg

On reboot a log will be produced please copy / paste that in your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[C#].txt

Optional:
NOTE: If you see AVG Secure Search being targeted for deletion, Here's Why and Here. You can always Reinstall it.


LAST >>>>

Malwarebytes' Anti-Malware
Please download the latest version of Malwarebytes' Anti-Malware from Here.

Double Click on the mbam-setup.exe file to install the application.

Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.

If an update is found, it will download and install the latest version.

When the main screen opens, if the database is out of date, you can click on the Fix Now banner or the Update Now link
Main%20Screen_zpsnnwza0ky.png

Once the program has loaded and updated, select "Scan Now >>" to start the scan.
Main%20Screen_zpsnnwza0ky.png

The scan may take some time to finish, so please be patient.

If any malware is found, you will be presented with a screen like the one below.
mbam21-removeselected_zpsg83p7wis.jpg

If any malware is found, make sure that everything is checked, and click Remove Selected.
When the scan is complete, click View detailed log >> to view the results.
The report screen will open.
At the bottom click on Export and select as txt file, save the file to your desktop and click OK.  When the export is complete, select OPEN.
The log file will be opened in your default text file viewer (usually Notepad); select the whole text (Ctrl + A) and copy (Ctrl + c) it to paste here in a reply.


  • 0

#7
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

I uninstalled all popcorn times apps.

 

I left hotspotshield as i paid for it (daily passes VPN connection).

 

I don't get commercials if I use a pass.

 

Here is the log of JRT (next will folow):

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 8.1 x64 
Ran by USER (Administrator) on vr 11/11/2016 at 22:29:17,73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 4 
 
Successfully deleted: C:\ProgramData\1465839864.bdinstall.bin (File) 
Successfully deleted: C:\ProgramData\1465929168.bdinstall.bin (File) 
Successfully deleted: C:\Users\USER\AppData\Local\crashrpt (Folder) 
Successfully deleted: C:\Users\Public\Desktop\hotspot shield.lnk (Shortcut) 
 
 
 
Registry: 3 
 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D48171A6-7A9E-4F5E-B742-CEC9AFF4ECF5} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on vr 11/11/2016 at 22:32:28,72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

  • 0

#8
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

adw cleaner:

 

I did not delete the first things as after searching in google, they are files from microsoft, is this ok?

 

# AdwCleaner v6.030 - Logbestand aangemaakt 11/11/2016 op 22:53:48
# *Updated on 19/10/2016 by Malwarebytes
# Gebruik lokale database : 2016-11-11.1 [*Server]
# Besturingssysteem : Windows 8.1  (X64)
# Gebruikersnaam : USER - USER
# Gestart vanuit : C:\Users\USER\Contacts\Desktop\AdwCleaner.exe
# Verwijderen
# Ondersteuning : hxxps://www.malwarebytes.com/support
 
 
 
***** [ *Services ] *****
 
 
 
***** [ Mappen ] *****
 
 
 
***** [ Bestanden ] *****
 
[!] *File not deleted: C:\Windows\SysNative\wecutil.exe
[!] *File not deleted: C:\Windows\SysWOW64\wecutil.exe
[-] hersteldC:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_support.digidna.net_0.localstorage
[-] hersteldC:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_support.digidna.net_0.localstorage-journal
[-] hersteldC:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Local Storage\hxxp_huizen.trovit.be_0.localstorage
[-] hersteldC:\Users\USER\AppData\Local\Google\Chrome\User Data\Profile 5\Local Storage\hxxp_huizen.trovit.be_0.localstorage-journal
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Snelkoppelingen ] *****
 
 
 
***** [ Geplande taken ] *****
 
 
 
***** [ Register ] *****
 
[-] hersteldHKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[-] hersteldHKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[-] hersteldHKLM\SOFTWARE\Classes\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}
[-] hersteldHKLM\SOFTWARE\Classes\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] hersteldHKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
 
 
***** [ Internetbrowser scannen ... ] *****
 
 
 
*************************
 
:: "Tracing" sleutels verwijderd
:: Winsock instellingen gereset
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [2026 bytes] - [11/11/2016 22:53:48]
C:\AdwCleaner\AdwCleaner[S0].txt - [2215 bytes] - [11/11/2016 22:51:35]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2172 bytes] ##########

  • 0

#9
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scandatum: 11/11/2016
Scantijd: 23:07
Logboekbestand: mbam.txt
Beheerder: Ja
 
Versie: 2.2.1.1043
Malware-database: v2016.11.11.09
Rootkit-database: v2016.10.31.01
Licentie: Gratis
Malware-bescherming: Uitgeschakeld
Bescherming tegen kwaadaardige websites: Uitgeschakeld
Zelfbescherming: Uitgeschakeld
 
Besturingssysteem: Windows 8.1
Processor: x64
Bestandssysteem: NTFS
Gebruiker: USER
 
Scantype: Bedreigingsscan
Resultaat: Voltooid
Objecten gescand: 499921
Verstreken tijd: 52 min, 28 sec
 
Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Ingeschakeld
Heuristiek: Ingeschakeld
POP: Ingeschakeld
POA: Ingeschakeld
 
Processen: 0
(Geen kwaadaardige items gedetecteerd)
 
Modules: 0
(Geen kwaadaardige items gedetecteerd)
 
Registersleutels: 0
(Geen kwaadaardige items gedetecteerd)
 
Registerwaarden: 0
(Geen kwaadaardige items gedetecteerd)
 
Registerdata: 0
(Geen kwaadaardige items gedetecteerd)
 
Mappen: 0
(Geen kwaadaardige items gedetecteerd)
 
Bestanden: 1
PUP.Optional.InstallMonster, C:\Users\USER\Downloads\Adobe Acrobat Pro DC Crack 2015_2016 Keygen.rar, In quarantaine, [da2b6a55f7a395a117b7dba56d966799], 
 
Fysieke Sectoren: 0
(Geen kwaadaardige items gedetecteerd)
 
 
(end)

  • 0

#10
dbreeze

dbreeze

    Trusted Helper

  • Malware Removal
  • 2,213 posts

How is your system running now?
 
As to these two files ( C:\Windows\SysNative\wecutil.exe and C:\Windows\SysWOW64\wecutil.exe ) you can upload the files to VirusTotal.com to see if they are infected or not.

  • Please go to VirusTotal.com FREE on-line scan service
  • Click on the "Choose file" box in the middle of the page
  • Using the File Upload window that opens, navigate to one of the above listed files
  • Click on the Upload button and then the Scan It! button on the main VirusTotal web page.
  • If a pop-up appears saying the file has been scanned already, please select the ReScan button.
  • Once the Scan is completed, left click on the Address bar of your browser (this should select the entire address of the web page with the scan results), right click on the highlighted address and select Copy.
  • Paste the copied address in your next reply.

Thank you.


  • 0

Advertisements


#11
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

C:\Windows\SysNative\wecutil.exe:

 

https://www.virustot...sis/1478982441/

 

 

 

C:\Windows\SysWOW64\wecutil.exe :

 

https://www.virustot...sis/1478982515/


  • 0

#12
dbreeze

dbreeze

    Trusted Helper

  • Malware Removal
  • 2,213 posts

How is the system now?

 

Looks like the files were a False Positive; good call on your part.


  • 0

#13
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

System is fine.

 

So my system is 100% malware virus free?

 

good to know.


  • 0

#14
dbreeze

dbreeze

    Trusted Helper

  • Malware Removal
  • 2,213 posts

All right!! :D Your logs are clean and you're good to go now!! :thumbsup: We've got some final steps left to do to clean up our tools and get your system in good running condition and then you are on your way.  :) Just run through the steps from the Cleanup of Tools to the Program Update Checker. That's it. Thanks. :cool:


Clean up of Malware Removal Tools
Now that we are through using these tools, let's clean them off your system so that should you ever need to have malware removed again (we hope not) fresh, updated copies will be downloaded.
 

  • Download Delfix from here or here
    to your desktop and double click it to start the program
  • Ensure Remove disinfection tools is ticked
    Also tick:
  • Activate UAC
  • Create registry backup
  • Purge system restore
  • Reset system settings
  • DelFixSelectall_zps0f04cec4.png
  • Click Run
  • The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply.

You can delete any log files left on your desktop as these are no longer needed.


Keep Windows Updated
Microsoft issues updates to Windows to close vulnerabilities as they are discovered. Staying updated helps protect your system from current exploits.

  • Click Start and then type Settings.
  • Whe the Search list is populated, under Programs, click on Settings.
  • Click on the Update and Security and select Advanced Options under Windows Updates.
  • Check that Automatic (recommended)is selected.
  • You can close the Settings page after that.

Keep other Important Programs Updated
Along with keeping Windows updated, it is a good idea to keep important programs updated. Java and Adobe Reader both need to be kept updated to the latest versions; malware writers utilize exploits in the unpatched versions to their advantages.

Consider a program that will check for out-of-date programs on your system
Some programs don't have update checks built in or make you run the application to start the check for updates process. An easier way to stay on top of the current versions of your installed programs is to use a version checking program like Heimdal Free from Heimdal Security (you can get the software from here and read more about it on the same page).  Also, I believe that Bitdefender Internet Security 2016 has a Vulnerability Scan built in that does the same thing, so you can run that to check also (if Bitdefender doesn't do it automatically) and not have to install anything extra.


You are now done! :yeah:

Now some information on programs to help keep you safe:

First, an Antivirus program. You NEED one; free is just as good as paid-for as long as you keep them updated. ONLY use one at a time as having more than that will cause system problems. Here are some free ones to check out:
Microsoft Security Essentials
Avast! Free Antivirus

Next, a firewall is a must have now-a-days. The built in firewall in Windows 7 (and above versions) is fine (just make sure it is turned on (Start > Control Panel > Windows Firewall)).

=== options ====
Unchecky is a small service that runs in the background to help keep those "extra toolbars" and tag along search engines from automatically installing.  By automatically directing you to a custom install with all the options unchecked, only what you manually choose and confirm gets installed.

CryptoPrevent is a free program that prevents CryptoLocker / ransomware from infecting your PC by locking down the OS so the malware can not get a grip on your system.  You can read the details about this program here.

Also, consider keeping MalwareBytes Antimalware in your arsenal of safe keeping programs. Use the free version (not the paid or trial version) and you won't have a problem with your antivirus scanner program. Keep it updated and run a scan with it once a week.

Lastly, if you use Firefox as your main web browser, consider adding the NoScript and uBlock Origin add-ons to the browser to block scripting hijacks and remove unwanted ads from the pages you view.

You may also find some information and tips at this thread:
 How did I get infected in the first place?
and
COMPUTER SECURITY - a short quide to staying safer online
 

I'll leave this topic open for a few days so that if you have any questions you can come back here. Surf safe, my friend!!
 

 


  • 0

#15
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts
dELFIX also deleted Deleted : C:\Users\USER\Downloads\log router decoder protek.txt , strange?
 
 
# DelFix v1.013 - Logfile created 14/11/2016 at 15:52:26
# Updated 17/04/2016 by Xplode
# Username : USER - USERS
# Operating System : Windows 8.1  (64 bits)
 
~ Activating UAC ... OK
 
~ Removing disinfection tools ...
 
Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\log.txt
Deleted : C:\Users\USER\Contacts\Desktop\Addition.txt
Deleted : C:\Users\USER\Contacts\Desktop\AdwCleaner.exe
Deleted : C:\Users\USER\Contacts\Desktop\FRST.txt
Deleted : C:\Users\USER\Contacts\Desktop\FRST64.exe
Deleted : C:\Users\USER\Contacts\Desktop\JRT.exe
Deleted : C:\Users\USER\Downloads\esetsmartinstaller_lux_nl.exe
Deleted : C:\Users\USER\Downloads\FRST64 (1).exe
Deleted : C:\Users\USER\Downloads\FRST64.exe
Deleted : C:\Users\USER\Downloads\log router decoder protek.txt
 
~ Creating registry backup ... OK
 
~ Cleaning system restore ...
 
Deleted : RP #115 [Windows Update | 11/04/2016 18:42:40]
Deleted : RP #116 [ExpressVPN | 11/05/2016 20:07:02]
Deleted : RP #117 [Windows Update | 11/10/2016 16:34:19]
Deleted : RP #118 [Removed Popcorn Time Community | 11/11/2016 21:23:08]
Deleted : RP #119 [JRT Pre-Junkware Removal | 11/11/2016 21:29:18]
 
New restore point created !
 
~ Resetting system settings ... OK
 
########## - EOF - ##########

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP