search privacy??-opgelost

Spyware is software die in het geheim op je computer wordt geplaatst en die persoonlijke gegevens doorstuurt, reclame toont, enz. Stel hier vragen, leer hoe je ervan af kan komen en hoe het te voorkomen.

elios
Lid geworden op: 06 jan 2004, 15:52

09 apr 2017, 14:33

moet dat ergens mee gedownload hebben, maar krijg het niet verwijdert, kan er iemand helpen?
hieronder de docs van mijn scan
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 15-03-2017
Gestart door elie (07-04-2017 01:50:26)
Gestart vanaf C:\Users\elie\Downloads
Windows 10 Home Versie 1607 (X64) (2016-12-03 12:48:49)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-384420-168510939-2334031860-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-384420-168510939-2334031860-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-384420-168510939-2334031860-1000 - Limited - Disabled) => C:\Users\defaultuser0
elie (S-1-5-21-384420-168510939-2334031860-1001 - Administrator - Enabled) => C:\Users\elie
Gast (S-1-5-21-384420-168510939-2334031860-501 - Limited - Disabled)

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

µTorrent (HKU\S-1-5-21-384420-168510939-2334031860-1001\...\uTorrent) (Version: 3.4.9.43388 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
AVG (HKLM\...\AvgZen) (Version: 1.171.3.211 - AVG Technologies)
AVG (Version: 1.171.1 - AVG Technologies) Hidden
AVG Protection (HKLM-x32\...\AVG Antivirus) (Version: 17.3.3011 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Belgium e-ID middleware 4.1.20 (build 1779) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71779}) (Version: 4.1.1779 - Belgian Government)
Catalyst Control Center Next Localization BR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.1204.1136.20853 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6452 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.4118.0 - CyberLink Corp.) Hidden
CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.5115 - CyberLink Corp.)
CyberLink PowerRecover (Version: 5.7.0.5115 - CyberLink Corp.) Hidden
Facebook Gameroom 1.3.1.3 (HKLM-x32\...\{7E155A45-DE1A-46E0-A6B2-10FE1D8501FC}) (Version: 1.3.1.3 - Facebook)
FMW 1 (Version: 1.182.1 - AVG Technologies) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
hide.me VPN 1.2.12 (HKLM-x32\...\{0E00BDA5-7998-4889-BE4B-39A4BBD2EDFB}_is1) (Version: 1.2.12 - eVenture Limited)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1159 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
K-Lite Codec Pack 13.0.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.0.0 - KLCP)
Kodi (HKU\S-1-5-21-384420-168510939-2334031860-1001\...\Kodi) (Version: - XBMC-Foundation)
Microsoft OneDrive (HKU\S-1-5-21-384420-168510939-2334031860-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
OpenOffice 4.1.3 (HKLM-x32\...\{9A20BB10-551A-4D13-AB25-3A67EE3F600C}) (Version: 4.13.9783 - Apache Software Foundation)
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 5.6.0.2 - Popcorn Time) <==== AANDACHT
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.876.867.092115 - REALTEK Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7564 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30103 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0282 - REALTEK Semiconductor Corp.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Stuurprogrammapakket voor Windows - Fedict SmartCard (11/30/2016 4.1.9) (HKLM\...\A9FBB4D4E267FA9BF2CEBF564F02DB39E147B466) (Version: 11/30/2016 4.1.9 - Fedict)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WinZip 21.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2410D}) (Version: 21.0.12288 - WinZip Computing, S.L. )

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-384420-168510939-2334031860-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {06D8C5B9-90F9-40C6-B0D5-77BC4BBB4CE5} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2017-04-04] (AVG Technologies CZ, s.r.o.)
Task: {12CA39D2-0ACE-41E4-8A71-9D05C61F4FEE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {148E5426-8EA7-4D9B-AB5A-CD5248C271A5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {150B5745-372C-467B-A3FD-43A6875C59BD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {1785AC89-FDAD-4C01-8071-B76167AFCD52} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {4197748D-C5C9-46D2-8B98-8D8FFBA3E2B7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {42743541-36A4-4DC4-BCE5-882241CBA937} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {531B35B6-81F0-41D8-A25F-209D7625A93E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-03] (Google Inc.)
Task: {771A3C72-720E-4908-8774-32C0943A961C} - System32\Tasks\WinZipBackGroundToolsTask => C:\Program Files\WinZip\WzBGTools.exe [2016-12-13] (WinZip Computing, S.L.)
Task: {917AF628-7BE8-4FD4-9AF9-DF2D8EE93E91} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {A3800E41-CE24-4131-A951-98549EC56538} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-03] (Google Inc.)
Task: {B9F56A50-9BF0-4D76-926A-B77C63D97A0B} - System32\Tasks\WinZip Update Notifier => C:\Program Files\WinZip\WZUpdateNotifier.exe [2016-12-13] (WinZip)
Task: {BD566748-CA6B-483B-8564-70DC1ADCDAA8} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe [2016-01-08] (CyberLink Corp.)
Task: {F5D2DB30-8362-480F-BCBD-7FDFCAD1F7D7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
Task: {F66446DA-8F7A-49A5-875C-82B1131E2529} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-03-13] ()

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)


==================== Snelkoppelingen =============================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

==================== Geladen Modules (gefilterd) ==============

2016-08-11 15:25 - 2015-07-20 21:19 - 00121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2016-08-11 15:55 - 2014-04-14 20:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2016-08-11 15:21 - 2014-12-12 19:24 - 00044760 _____ () C:\Windows\runSW.exe
2017-01-15 22:51 - 2017-01-15 22:51 - 00074752 _____ () C:\Program Files (x86)\55c25449-015f-4fc1-82b0-e13cf53f9e051484513466\prot55c25449-015f-4fc1-82b0-e13cf53f9e05.tmpfs
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2017-03-14 23:24 - 2017-03-04 09:19 - 02681200 _____ () C:\Windows\System32\CoreUIComponents.dll
2017-03-14 23:24 - 2017-03-04 09:19 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2017-03-14 23:24 - 2017-03-04 09:19 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2016-12-04 13:31 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-14 23:24 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-14 23:24 - 2017-03-04 08:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll
2017-03-14 23:24 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-14 23:24 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-14 23:24 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-14 23:24 - 2017-03-04 08:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-14 23:25 - 2017-03-04 08:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-03-13 13:54 - 2017-03-13 13:55 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-03-13 13:54 - 2017-03-13 13:55 - 00182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-03-13 13:54 - 2017-03-13 13:55 - 41048064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-03-13 13:54 - 2017-03-13 13:55 - 02236896 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\roottools.dll
2016-08-11 15:25 - 2014-07-03 11:22 - 00277720 _____ () C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
2017-03-25 15:54 - 2017-03-25 15:54 - 00757248 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe
2015-07-22 02:18 - 2015-07-22 02:18 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-12-03 16:49 - 2016-12-03 16:48 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2017-03-24 14:48 - 2017-03-24 14:48 - 00171208 _____ () C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll
2017-03-24 14:48 - 2017-03-24 14:48 - 48936448 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll
2017-03-24 14:48 - 2017-03-24 14:48 - 00656040 _____ () C:\Program Files (x86)\AVG\Antivirus\ffl2.dll
2017-02-15 17:58 - 2017-02-15 17:58 - 01162752 _____ () C:\Users\elie\AppData\Local\Facebook\Games\CefSharp.Core.dll
2017-04-06 13:41 - 2017-02-15 17:58 - 67197440 _____ () C:\Users\elie\AppData\Local\Facebook\Games\libcef.dll
2016-08-11 15:54 - 2014-12-08 09:28 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2014-12-08 17:28 - 2014-12-08 17:28 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2017-02-15 17:58 - 2017-02-15 17:58 - 00752640 _____ () C:\Users\elie\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll
2017-04-06 13:42 - 2017-02-15 17:58 - 01886208 _____ () C:\Users\elie\AppData\Local\Facebook\Games\libglesv2.dll
2017-04-06 13:42 - 2017-02-15 17:58 - 00078848 _____ () C:\Users\elie\AppData\Local\Facebook\Games\libegl.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00112128 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WP8MSVCCommon.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00378880 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WP8MSVCBridge.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00079872 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinPhoneBridge_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00991744 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\System_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00107520 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\pthreadVC_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00700928 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\CrossPortability_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00209920 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\system_malloc_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 63167854 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00812544 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\ffmpeg_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00081422 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\unwind_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00152576 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\exif_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 01129984 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\c++_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 01622016 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WRTBridge_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00428544 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\SystemResources_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00167424 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinMediaFoundation_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00153088 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\z_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00125952 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\EGL_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 01158656 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\GLESv2_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 183516030 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\App.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 00397312 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\OpenAL_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 28719460 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WebCore_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 01085440 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\iconv_osmeta.dll
2017-03-25 15:54 - 2017-03-25 15:54 - 01715507 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\pgl_osmeta.dll
2017-04-05 22:32 - 2017-03-29 04:04 - 02187096 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll
2017-04-05 22:32 - 2017-03-29 04:04 - 00086360 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)


==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Er zijn 7933 Meer websites.

IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\008i.com -> 008i.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\010402.com -> 010402.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\...\123simsen.com -> www.123simsen.com

Er zijn 7933 Meer websites.

IE trusted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-384420-168510939-2334031860-1001\...\123simsen.com -> www.123simsen.com

Er zijn 7933 Meer websites.


==================== Hosts inhoud: ==========================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2016-07-16 13:47 - 2017-03-29 01:12 - 00454351 ____R C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com

Er zijn 15592 meer regels.


==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\AvGeneric_S-1-5-21-384420-168510939-2334031860-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-384420-168510939-2334031860-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img2.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==


==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8F92964E-0BD9-4497-A5B0-18F57A75EA9A}] => (Allow) C:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{2D3F8735-B2F2-4BA5-A888-04ECEB1E559F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{4B3949C2-127B-492D-8898-D2D30D4A6291}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{00BD4DB1-2C0F-4334-B3D2-D5A1837D0455}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{6E499E00-E898-49C8-8556-C93FF66BC4BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BB42C234-7D9E-487E-A260-7ED0ECEE4081}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{76D9B9EB-30EF-4F21-B807-F50B1B75297C}C:\program files (x86)\chillitorrent\chillitorrent.exe] => (Allow) C:\program files (x86)\chillitorrent\chillitorrent.exe
FirewallRules: [UDP Query User{C3DFB60C-14E5-4BF0-9BA4-3D5CE2E238D5}C:\program files (x86)\chillitorrent\chillitorrent.exe] => (Allow) C:\program files (x86)\chillitorrent\chillitorrent.exe
FirewallRules: [{48FDF745-240D-4C8D-86FC-F3EB4B60DC1C}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{10AC3FB8-5FA5-46DD-BE34-89545D872B0B}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{9C0BE01C-8231-43C4-8D3E-992EEB8F2B7D}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
FirewallRules: [{A7A68FC9-0A2D-4A29-9E7E-9183CBB4D284}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
FirewallRules: [{4D1A3A01-1DD7-469B-A753-447083324A2C}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
FirewallRules: [{073A3EC7-BFC8-4EA5-9990-137613AF841A}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
FirewallRules: [{8C9E6251-13A4-4515-BD4C-27FB58AF1900}] => (Allow) C:\Users\elie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F675E0EB-2739-4479-BF8F-F6AC294437B4}] => (Allow) C:\Users\elie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4E127085-08DA-422C-A161-160F5ED71A22}] => (Allow) C:\Users\elie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2EA1BEB4-355D-478D-8CF8-EE34EE9E24E2}] => (Allow) C:\Users\elie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C5D74EFE-65EA-4318-B3E7-E6DE07AC1290}] => (Allow) C:\Users\elie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{028C9E31-8129-47A9-965C-6EB5C9A088CB}] => (Allow) C:\Users\elie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{ED07C3CB-635E-4975-8532-E8126601EB25}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{E40AEF41-1CEF-42A0-B856-84468012E1A4}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{D39F765F-C359-435C-B143-F5609E76C708}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Herstelpunten =========================

AANDACHT: Systeemherstel is uitgeschakeld

==================== Defecte Apparaatbeheer Apparaten =============


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (04/07/2017 01:19:26 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma SimEdit.exe, versie 1.0.0.39 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 2988

Starttijd: 01d2af2bdbf65056

Eindtijd: 3

Toepassingspad: C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\SimEdit.exe

Rapport-id: 765c97bf-1b1f-11e7-ac69-f44d304cb0ee

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (04/06/2017 12:28:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'c:\program files\cyberlink\photodirector6\kernel\ces\CES_CacheAgent.exe.Manifest' niet maken.
Kan afhankelijke assembly PDR.X,type="win32",version="1.0.0.0" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (04/06/2017 12:28:18 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'c:\program files\cyberlink\photodirector6\kernel\ces\CES_AudioCacheAgent.exe.Manifest' niet maken.
Kan afhankelijke assembly PDR.X,type="win32",version="1.0.0.0" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (04/06/2017 12:27:58 PM) (Source: SideBySide) (EventID: 9) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\WinZip\adxloader.dll.Manifest' niet maken. Fout in manifest of beleidsbestand 'C:\Program Files\WinZip\adxloader.dll.Manifest' op regel 2.
Het hoofdelement van het manifestbestand moet een assemblage zijn.

Error: (04/06/2017 12:27:57 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Kan activeringscontext voor 'C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll' niet maken. Fout in manifest of beleidsbestand 'C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll' op regel 8.
De waarde * van kenmerk language in element assemblyIdentity is ongeldig.

Error: (04/06/2017 12:27:56 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'c:\program files\amd\cim\bin64\SetACL64.exe' niet maken.
Kan afhankelijke assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (04/06/2017 12:09:21 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'c:\program files\cyberlink\photodirector6\kernel\ces\CES_CacheAgent.exe.Manifest' niet maken.
Kan afhankelijke assembly PDR.X,type="win32",version="1.0.0.0" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (04/06/2017 12:09:21 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'c:\program files\cyberlink\photodirector6\kernel\ces\CES_AudioCacheAgent.exe.Manifest' niet maken.
Kan afhankelijke assembly PDR.X,type="win32",version="1.0.0.0" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (04/06/2017 12:09:11 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\WinZip\adxloader.dll.Manifest' niet maken. Fout in manifest of beleidsbestand 'C:\Program Files\WinZip\adxloader.dll.Manifest' op regel 2.
Het hoofdelement van het manifestbestand moet een assemblage zijn.

Error: (04/06/2017 12:09:11 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Kan activeringscontext voor 'C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll' niet maken. Fout in manifest of beleidsbestand 'C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll' op regel 8.
De waarde * van kenmerk language in element assemblyIdentity is ongeldig.


Systeemfouten:
=============
Error: (04/06/2017 11:31:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 11:31:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 11:31:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 11:31:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 11:31:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
en APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 08:56:39 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 08:39:04 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-ESC0JMV)
Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
en APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
aan de gebruiker DESKTOP-ESC0JMV\elie SID (S-1-5-21-384420-168510939-2334031860-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftSolitaireCollection_3.15.3072.0_x64__8wekyb3d8bbwe SID (S-1-15-2-1985198343-3186790915-4047221937-1969271670-3792558349-1325541827-400269725). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 08:39:04 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-ESC0JMV)
Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
en APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
aan de gebruiker DESKTOP-ESC0JMV\elie SID (S-1-5-21-384420-168510939-2334031860-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftSolitaireCollection_3.15.3072.0_x64__8wekyb3d8bbwe SID (S-1-15-2-1985198343-3186790915-4047221937-1969271670-3792558349-1325541827-400269725). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 08:25:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/06/2017 08:25:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.


CodeIntegrity:
===================================
Date: 2017-03-29 20:05:35.890
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-29 20:05:32.732
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-29 00:50:32.562
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-29 00:22:37.369
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-29 00:22:19.867
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-28 18:20:36.757
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-28 18:20:34.606
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-28 12:17:43.261
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-28 10:13:21.415
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2017-03-28 10:07:59.136
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.


==================== Geheugen info ===========================

Processor: Intel(R) Core(TM) i5-6402P CPU @ 2.80GHz
Percentage geheugen in gebruik: 35%
Totaal fysiek RAM-geheugen: 8146.64 MB
Beschikbaar fysiek RAM-geheugen: 5217.63 MB
Totaal Virtueel geheugen: 9426.64 MB
Beschikbaar Virtual geheugen: 5384.18 MB

==================== Schijven ================================

Drive c: (Boot) (Fixed) (Total:117.64 GB) (Free:54.59 GB) NTFS
Drive d: (Data) (Fixed) (Total:871.51 GB) (Free:867.12 GB) NTFS
Drive e: (Recover) (Fixed) (Total:60 GB) (Free:42.45 GB) NTFS

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0437637A)

Partition: GPT.

========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 69A17818)

Partition: GPT.

==================== Eind van Addition.txt Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 15-03-2017
Gestart door elie (Beheerder) op DESKTOP-ESC0JMV (07-04-2017 01:50:03)
Gestart vanaf C:\Users\elie\Downloads
Geladen Profielen: defaultuser0 & elie (Beschikbare Profielen: defaultuser0 & elie)
Platform: Windows 10 Home Versie 1607 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: Edge)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Windows\runSW.exe
() C:\Program Files (x86)\55c25449-015f-4fc1-82b0-e13cf53f9e051484513466\prot55c25449-015f-4fc1-82b0-e13cf53f9e05.tmpfs
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(eVenture Limited) C:\Program Files (x86)\hide.me VPN\hidemesvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(eVenture Limited) C:\Program Files (x86)\hide.me VPN\Hide.me.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgui.exe
(Facebook) C:\Users\elie\AppData\Local\Facebook\Games\FacebookGameroom.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(The CefSharp Authors) C:\Users\elie\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe
(Microsoft Inc.) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.15.3072.0_x64__8wekyb3d8bbwe\Solitaire.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Register (gefilterd) ====================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16152792 2015-07-17] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [230104 2015-07-10] (Realtek Semiconductor Corporation)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239104 2017-03-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [254776 2017-03-24] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110008 2016-01-20] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [499128 2016-01-20] (CyberLink Corp.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239104 2017-03-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-384420-168510939-2334031860-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
Startup: C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-03-31]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\elie\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
Startup: C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hide.me VPN.lnk [2017-04-06]
ShortcutTarget: hide.me VPN.lnk -> C:\Program Files (x86)\hide.me VPN\Hide.me.exe (eVenture Limited)
GroupPolicy: Restrictie <======= AANDACHT

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{fe23c381-270f-46ce-be84-2e65f273da19}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKU\S-1-5-21-384420-168510939-2334031860-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKU\S-1-5-21-384420-168510939-2334031860-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
URLSearchHook: [S-1-5-21-384420-168510939-2334031860-1000] AANDACHT => Standaard URLSearchHook ontbreekt
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-384420-168510939-2334031860-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-384420-168510939-2334031860-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll => Geen bestand
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-04-03]
FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.be/","hxxp://www.google.be/"
CHR NewTab: Default -> Not-active:"chrome-extension://niojcggonafbneajjmkpkcigabaobmge/stubby.html"
CHR Profile: C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default [2017-04-07]
CHR Extension: (Google Presentaties) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-03]
CHR Extension: (Google Documenten) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-03]
CHR Extension: (Google Drive) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-03]
CHR Extension: (Context Menu On) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhdihjhdodbfmkmjoccoepfimiglbikj [2017-03-05]
CHR Extension: (YouTube) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [201

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

09 apr 2017, 18:00

Hallo,

In welke browser heb je dit probleem?
Plaats het (FRST.txt) nogmaals, hij is nu niet compleet.

Voer ook AdwCleaner uit: http://www.seniorennet.be/forum/viewtopic.php?t=194247
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

elios
Lid geworden op: 06 jan 2004, 15:52

10 apr 2017, 02:09

dit gebeurt in Google chrome, en hieronder nog eens de twee FRT-rapporten
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 15-03-2017
Gestart door elie (Beheerder) op DESKTOP-ESC0JMV (07-04-2017 01:50:03)
Gestart vanaf C:\Users\elie\Downloads
Geladen Profielen: defaultuser0 & elie (Beschikbare Profielen: defaultuser0 & elie)
Platform: Windows 10 Home Versie 1607 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: Edge)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Windows\runSW.exe
() C:\Program Files (x86)\55c25449-015f-4fc1-82b0-e13cf53f9e051484513466\prot55c25449-015f-4fc1-82b0-e13cf53f9e05.tmpfs
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(eVenture Limited) C:\Program Files (x86)\hide.me VPN\hidemesvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(eVenture Limited) C:\Program Files (x86)\hide.me VPN\Hide.me.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgui.exe
(Facebook) C:\Users\elie\AppData\Local\Facebook\Games\FacebookGameroom.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(The CefSharp Authors) C:\Users\elie\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe
(Microsoft Inc.) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.15.3072.0_x64__8wekyb3d8bbwe\Solitaire.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Register (gefilterd) ====================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16152792 2015-07-17] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [230104 2015-07-10] (Realtek Semiconductor Corporation)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239104 2017-03-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [254776 2017-03-24] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110008 2016-01-20] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [499128 2016-01-20] (CyberLink Corp.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239104 2017-03-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-384420-168510939-2334031860-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
Startup: C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-03-31]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\elie\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
Startup: C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hide.me VPN.lnk [2017-04-06]
ShortcutTarget: hide.me VPN.lnk -> C:\Program Files (x86)\hide.me VPN\Hide.me.exe (eVenture Limited)
GroupPolicy: Restrictie <======= AANDACHT

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{fe23c381-270f-46ce-be84-2e65f273da19}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKU\S-1-5-21-384420-168510939-2334031860-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKU\S-1-5-21-384420-168510939-2334031860-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
URLSearchHook: [S-1-5-21-384420-168510939-2334031860-1000] AANDACHT => Standaard URLSearchHook ontbreekt
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-384420-168510939-2334031860-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-384420-168510939-2334031860-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll => Geen bestand
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-04-03]
FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.be/","hxxp://www.google.be/"
CHR NewTab: Default -> Not-active:"chrome-extension://niojcggonafbneajjmkpkcigabaobmge/stubby.html"
CHR Profile: C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default [2017-04-07]
CHR Extension: (Google Presentaties) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-03]
CHR Extension: (Google Documenten) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-03]
CHR Extension: (Google Drive) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-03]
CHR Extension: (Context Menu On) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhdihjhdodbfmkmjoccoepfimiglbikj [2017-03-05]
CHR Extension: (YouTube) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-03]
CHR Extension: (Search Privacy) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhbldnobnclngbndkincjnamppepmna [2017-04-05]
CHR Extension: (Adobe Acrobat) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-05]
CHR Extension: (Google Spreadsheets) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-03]
CHR Extension: (Offline Documenten) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-03]
CHR Extension: (FilmFanatic) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojcggonafbneajjmkpkcigabaobmge [2017-02-08]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-03]
CHR Extension: (Chrome Media Router) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-06]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [263720 2017-03-24] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7197976 2017-03-24] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428680 2017-03-23] (AVG Technologies CZ, s.r.o.)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [121560 2015-07-20] ()
S4 debugregsvc; C:\Windows\System32\debugregsvc.dll [29184 2016-07-15] (Microsoft Corporation)
S3 DeveloperToolsService; C:\Windows\System32\DeveloperToolsSvc.exe [104448 2016-07-15] (Microsoft Corporation)
R2 hmevpnsvc; C:\Program Files (x86)\hide.me VPN\hidemesvc.exe [138960 2017-04-05] (eVenture Limited)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Bestand niet getekend]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Bestand niet getekend]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-22] (Intel Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-12] ()
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S3 SshBroker; C:\Windows\System32\SshBroker.dll [360960 2016-12-21] (Microsoft Corporation)
S3 SshProxy; C:\Windows\System32\SshProxy.dll [275456 2016-12-21] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S4 WebManagement; C:\Windows\system32\WebManagement.exe [1000448 2016-09-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-04] (Microsoft Corporation)
S4 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.9.741.0\\McCSPServiceHost.exe" [X]
R2 ServiceProtector; C:\Program Files (x86)\55c25449-015f-4fc1-82b0-e13cf53f9e051484513466\prot55c25449-015f-4fc1-82b0-e13cf53f9e05.tmpfs [X]

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\c0309270.inf_amd64_47c09dd18e1ee4c5\atikmdag.sys [28729240 2016-12-08] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\c0309270.inf_amd64_47c09dd18e1ee4c5\atikmpag.sys [530328 2016-12-08] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-07-24] (Advanced Micro Devices)
R1 avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [166136 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [310056 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [192096 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\system32\drivers\avgbloga.sys [336408 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [50848 2017-04-04] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [39288 2017-04-04] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [128096 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [102136 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [76688 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [1006040 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [557776 2017-04-04] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\system32\drivers\avgStm.sys [165048 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [340688 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 ptun0901; C:\Windows\System32\drivers\ptun0901.sys [27136 2016-06-15] (The OpenVPN Project)
R3 RSUSBCCID; C:\Windows\system32\DRIVERS\RtsUCcid.sys [50176 2009-08-10] (Realtek Semiconductor Corp.)
R3 RSUSBCCID; C:\Windows\SysWOW64\DRIVERS\RtsUCcid.sys [50176 2009-08-10] (Realtek Semiconductor Corp.)
R3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [222720 2009-08-20] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
S3 RtkAvrcp; C:\Windows\System32\drivers\RtkAvrcp.sys [67840 2015-09-09] (Realtek Semiconductor Corporation)
S3 RtkAvrcpCtrlr; C:\Windows\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Realtek Semiconductor Corporation)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [611096 2015-09-15] (Realtek Semiconductor Corporation)
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [5195776 2016-07-16] (Realtek Semiconductor Corporation )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

NETSVC: debugregsvc -> C:\Windows\System32\debugregsvc.dll (Microsoft Corporation)

==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-04-07 01:50 - 2017-04-07 01:50 - 00020500 _____ C:\Users\elie\Downloads\FRST.txt
2017-04-07 01:49 - 2017-04-07 01:50 - 00000000 ____D C:\FRST
2017-04-07 01:49 - 2017-04-07 01:49 - 02424832 _____ (Farbar) C:\Users\elie\Downloads\FRST64.exe
2017-04-07 01:28 - 2017-04-07 01:28 - 00066278 _____ C:\Users\elie\Downloads\fiscaal attest ziekenkas.pdf
2017-04-07 01:27 - 2017-04-07 01:27 - 00066278 _____ C:\Users\elie\Downloads\Document (1).pdf
2017-04-07 01:26 - 2017-04-07 01:26 - 00042705 _____ C:\Users\elie\Downloads\Document.pdf
2017-04-07 01:00 - 2017-04-07 01:00 - 00008192 _____ C:\Users\defaultuser0\ntuser.man
2017-04-06 13:41 - 2017-04-06 13:41 - 00000000 ____D C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2017-04-06 00:08 - 2017-04-06 00:08 - 38771415 _____ (KLCP ) C:\Users\elie\Downloads\K-Lite_Codec_Pack_1300_Full.exe
2017-04-06 00:07 - 2017-04-06 00:07 - 12421673 _____ ( ) C:\Users\elie\Downloads\klcp_update_1304_20170405.exe
2017-04-05 13:49 - 2017-04-05 13:49 - 00000975 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2017-04-04 23:28 - 2017-04-04 23:28 - 00400928 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2017-04-04 13:57 - 2017-04-05 15:57 - 00000000 ____D C:\Users\elie\AppData\Roaming\Kodi
2017-04-04 13:56 - 2017-04-04 13:56 - 00000000 ____D C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2017-04-04 13:56 - 2017-04-04 13:56 - 00000000 ____D C:\Program Files (x86)\Kodi
2017-04-03 16:19 - 2017-04-03 16:19 - 01673243 _____ C:\Users\elie\Downloads\eID_NL (1).swf
2017-04-03 15:29 - 2017-04-03 15:29 - 26243360 _____ (Belgian Government) C:\Users\elie\Downloads\Belgium-eID-QuickInstaller-4.1.20-signed.exe
2017-04-03 15:29 - 2017-04-03 15:29 - 00001307 _____ C:\Users\Public\Desktop\eID Viewer.lnk
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\Windows\SysWOW64\beidpp
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\Program Files\log
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\Program Files\DIFX
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\Program Files (x86)\Belgium Identity Card
2017-04-03 15:26 - 2017-04-03 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 Card Reader Software
2017-04-03 15:26 - 2009-08-20 05:12 - 00222720 ____R (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\Drivers\RtsUStor.sys
2017-04-03 15:26 - 2009-08-20 05:12 - 00222720 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2017-04-03 15:26 - 2009-08-19 18:22 - 00352256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUStor.dll
2017-04-03 15:26 - 2009-08-10 20:46 - 00050176 ____R (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\Drivers\RtsUCcid.sys
2017-04-03 15:26 - 2009-08-10 20:46 - 00050176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUCcid.sys
2017-04-03 15:26 - 2009-08-04 00:46 - 00314880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUCcid.dll
2017-04-03 15:26 - 2009-03-05 00:46 - 00019968 ____R (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\Drivers\RtsUIr.sys
2017-04-03 15:26 - 2009-02-03 02:27 - 07347200 ____R (Realtek Semiconductor Corp.) C:\Windows\system32\RTSUSTORicon.dll
2017-04-03 12:49 - 2017-04-03 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-03-31 14:55 - 2017-03-31 14:55 - 00001234 _____ C:\Users\elie\Desktop\Facebook Gameroom.lnk
2017-03-30 00:43 - 2017-03-30 00:43 - 00000000 ____D C:\Users\Public\Facebook Games
2017-03-30 00:43 - 2017-03-30 00:43 - 00000000 ____D C:\Users\elie\AppData\LocalLow\Two Desperados Ltd
2017-03-29 23:34 - 2017-03-29 23:34 - 00000000 ____D C:\Users\elie\AppData\Local\Facebook
2017-03-29 01:24 - 2017-03-29 01:24 - 00002904 _____ C:\Windows\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2017-03-29 01:12 - 2017-03-29 01:09 - 00454351 ____R C:\Windows\system32\Drivers\etc\hosts.20170329-011205.backup
2017-03-29 01:09 - 2017-03-28 18:46 - 00000822 _____ C:\Windows\system32\Drivers\etc\hosts.20170329-010954.backup
2017-03-29 01:07 - 2017-04-07 01:15 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-03-29 01:07 - 2017-03-29 01:08 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2017-03-29 01:07 - 2017-03-29 01:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2017-03-28 12:19 - 2017-03-28 12:19 - 00057759 _____ C:\Users\elie\Downloads\Aansluiting voorwaarden - LEUX Elie.pdf
2017-03-28 12:18 - 2017-03-28 12:18 - 00147537 _____ C:\Users\elie\Downloads\Hospitalisatiecontract bij ander Maatschappij.pdf
2017-03-28 12:18 - 2017-03-28 12:18 - 00117471 _____ C:\Users\elie\Downloads\Wijzigingsformulier.pdf
2017-03-28 10:12 - 2017-03-28 10:12 - 00002683 _____ C:\Users\elie\Desktop\µTorrent.lnk
2017-03-28 10:12 - 2017-03-28 10:12 - 00000000 ____D C:\Users\elie\AppData\LocalLow\uTorrent
2017-03-28 10:11 - 2017-03-31 13:26 - 00000000 ____D C:\Users\elie\AppData\Roaming\uTorrent
2017-03-28 10:10 - 2017-03-16 06:38 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2017-03-28 10:10 - 2017-03-16 06:05 - 18362368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-03-28 10:09 - 2017-03-16 07:17 - 01617760 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-03-28 10:09 - 2017-03-16 07:17 - 00142176 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-03-28 10:09 - 2017-03-16 06:47 - 00038768 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2017-03-28 10:09 - 2017-03-16 06:46 - 01600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-03-28 10:09 - 2017-03-16 06:19 - 22565376 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-03-28 10:09 - 2017-03-16 06:03 - 23676416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-03-26 19:52 - 2017-04-05 13:49 - 00000000 ____D C:\Program Files (x86)\hide.me VPN
2017-03-26 19:52 - 2017-04-05 13:48 - 00000000 ____D C:\Users\elie\AppData\Roaming\Hide.me
2017-03-26 19:52 - 2017-03-26 19:52 - 00001090 _____ C:\Users\Public\Desktop\hide.me VPN.lnk
2017-03-26 19:52 - 2017-03-26 19:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hide.me VPN
2017-03-26 19:51 - 2017-03-26 19:52 - 05867648 _____ (eVenture Limited ) C:\Users\elie\Downloads\Hide.me-Setup-1.2.11.exe
2017-03-25 23:10 - 2017-03-25 23:12 - 00000000 ____D C:\AdwCleaner
2017-03-25 23:09 - 2017-03-25 23:09 - 04031440 _____ C:\Users\elie\Downloads\adwcleaner_6.044.exe
2017-03-24 14:48 - 2017-04-04 23:28 - 01006040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00557776 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00340688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00336408 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00310056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00192096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00166136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiska.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00165048 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00128096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00102136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00076688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00050848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00039288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00004008 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2017-03-24 14:48 - 2017-03-24 14:48 - 00994592 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1737.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00549912 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw174C.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00338576 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw174D.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00336920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1726.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00311592 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1724.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00192096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1725.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00166136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1713.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00163512 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw175E.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00127584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw174A.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00101624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1738.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00076688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw174B.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00050848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1727.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00039288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1739.tmp
2017-03-18 14:11 - 2017-03-18 14:11 - 28867150 _____ C:\Users\elie\Downloads\Others_Intel_8.9.2.1002_W7x64_A.zip
2017-03-14 23:26 - 2017-03-04 08:54 - 02277288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2017-03-14 23:26 - 2017-03-04 08:53 - 05722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-03-14 23:26 - 2017-03-04 08:51 - 01980768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-03-14 23:26 - 2017-03-04 08:47 - 20969928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-03-14 23:26 - 2017-03-04 08:47 - 06667528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:26 - 2017-03-04 08:47 - 04023000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-03-14 23:26 - 2017-03-04 08:47 - 01344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2017-03-14 23:26 - 2017-03-04 08:46 - 04312248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-03-14 23:26 - 2017-03-04 08:36 - 05685760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-03-14 23:26 - 2017-03-04 08:20 - 13873664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-03-14 23:26 - 2017-03-04 08:13 - 07626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-03-14 23:26 - 2017-03-04 08:10 - 03307008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2017-03-14 23:26 - 2017-03-04 08:07 - 02748928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-03-14 23:26 - 2017-03-04 08:07 - 02643456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-03-14 23:26 - 2017-03-04 08:06 - 06109184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2017-03-14 23:26 - 2017-03-04 08:06 - 05380608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2017-03-14 23:26 - 2017-03-04 08:06 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2017-03-14 23:26 - 2017-03-04 08:01 - 02646528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-03-14 23:26 - 2017-03-04 08:01 - 01993216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-03-14 23:26 - 2017-03-04 08:01 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-03-14 23:26 - 2017-03-04 08:00 - 04557824 _____ (Microsoft) C:\Windows\SysWOW64\dbgeng.dll
2017-03-14 23:26 - 2017-03-04 08:00 - 02483200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-03-14 23:25 - 2017-03-04 09:57 - 00484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-03-14 23:25 - 2017-03-04 09:57 - 00315744 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-03-14 23:25 - 2017-03-04 09:40 - 00965472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2017-03-14 23:25 - 2017-03-04 09:27 - 00603488 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-03-14 23:25 - 2017-03-04 09:26 - 00794416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2017-03-14 23:25 - 2017-03-04 09:24 - 02482280 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-03-14 23:25 - 2017-03-04 09:24 - 02186896 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2017-03-14 23:25 - 2017-03-04 09:24 - 00646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-03-14 23:25 - 2017-03-04 09:24 - 00108384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2017-03-14 23:25 - 2017-03-04 09:24 - 00090976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2017-03-14 23:25 - 2017-03-04 09:23 - 02512304 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-03-14 23:25 - 2017-03-04 09:22 - 07786336 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-03-14 23:25 - 2017-03-04 09:22 - 02213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-03-14 23:25 - 2017-03-04 09:19 - 02049480 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-03-14 23:25 - 2017-03-04 09:18 - 01181024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-03-14 23:25 - 2017-03-04 09:18 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-03-14 23:25 - 2017-03-04 09:17 - 00409952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-03-14 23:25 - 2017-03-04 09:15 - 01000280 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2017-03-14 23:25 - 2017-03-04 09:15 - 00063328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2017-03-14 23:25 - 2017-03-04 09:10 - 02828384 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-03-14 23:25 - 2017-03-04 09:10 - 02189664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-03-14 23:25 - 2017-03-04 09:10 - 00360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-03-14 23:25 - 2017-03-04 09:09 - 07220696 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 02750384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 02206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 01969912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 01860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 01293152 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 01157000 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-03-14 23:25 - 2017-03-04 09:09 - 00681312 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00658784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-03-14 23:25 - 2017-03-04 09:09 - 00635864 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00527808 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00497416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00396168 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2017-03-14 23:25 - 2017-03-04 09:08 - 00450400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-03-14 23:25 - 2017-03-04 09:08 - 00223584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-03-14 23:25 - 2017-03-04 09:08 - 00130912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2017-03-14 23:25 - 2017-03-04 09:07 - 00557400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-03-14 23:25 - 2017-03-04 09:07 - 00432992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-03-14 23:25 - 2017-03-04 09:06 - 01706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-03-14 23:25 - 2017-03-04 09:04 - 08169536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:25 - 2017-03-04 09:04 - 02048496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2017-03-14 23:25 - 2017-03-04 09:04 - 01362512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2017-03-14 23:25 - 2017-03-04 09:04 - 01063472 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 22223968 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 04260576 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01989072 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01848072 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01723560 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2017-03-14 23:25 - 2017-03-04 09:03 - 01702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01473048 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01454512 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01301112 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01071736 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01062480 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00811416 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00596040 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00523712 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00443232 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00382272 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2017-03-14 23:25 - 2017-03-04 09:02 - 00184416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2017-03-14 23:25 - 2017-03-04 09:01 - 00137936 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2017-03-14 23:25 - 2017-03-04 08:57 - 02536288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-03-14 23:25 - 2017-03-04 08:57 - 00387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-03-14 23:25 - 2017-03-04 08:56 - 00263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-14 23:25 - 2017-03-04 08:56 - 00248992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2017-03-14 23:25 - 2017-03-04 08:54 - 00524776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 02256080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 01431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 00975744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 00861024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 00781152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-03-14 23:25 - 2017-03-04 08:53 - 00493912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-03-14 23:25 - 2017-03-04 08:53 - 00313568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 00136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2017-03-14 23:25 - 2017-03-04 08:52 - 00549088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2017-03-14 23:25 - 2017-03-04 08:52 - 00272720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-03-14 23:25 - 2017-03-04 08:51 - 00576408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-03-14 23:25 - 2017-03-04 08:50 - 00846560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01853224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01360456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01202384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01123912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00981376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00976184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00640976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00530480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00374448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00352760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2017-03-14 23:25 - 2017-03-04 08:46 - 00321792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2017-03-14 23:25 - 2017-03-04 08:45 - 00173408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-03-14 23:25 - 2017-03-04 08:45 - 00112120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2017-03-14 23:25 - 2017-03-04 08:42 - 01415240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-03-14 23:25 - 2017-03-04 08:42 - 01260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-03-14 23:25 - 2017-03-04 08:42 - 00545944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2017-03-14 23:25 - 2017-03-04 08:42 - 00276832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2017-03-14 23:25 - 2017-03-04 08:40 - 00306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-03-14 23:25 - 2017-03-04 08:39 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-03-14 23:25 - 2017-03-04 08:36 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-03-14 23:25 - 2017-03-04 08:36 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-03-14 23:25 - 2017-03-04 08:36 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\DuCsps.dll
2017-03-14 23:25 - 2017-03-04 08:36 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2017-03-14 23:25 - 2017-03-04 08:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-03-14 23:25 - 2017-03-04 08:35 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-03-14 23:25 - 2017-03-04 08:34 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys
2017-03-14 23:25 - 2017-03-04 08:34 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-03-14 23:25 - 2017-03-04 08:34 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-03-14 23:25 - 2017-03-04 08:34 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-03-14 23:25 - 2017-03-04 08:34 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-03-14 23:25 - 2017-03-04 08:34 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2017-03-14 23:25 - 2017-03-04 08:33 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2017-03-14 23:25 - 2017-03-04 08:33 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:25 - 2017-03-04 08:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2017-03-14 23:25 - 2017-03-04 08:32 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2017-03-14 23:25 - 2017-03-04 08:32 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2017-03-14 23:25 - 2017-03-04 08:32 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\MCCSEngineShared.dll
2017-03-14 23:25 - 2017-03-04 08:32 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 01631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00535552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-03-14 23:25 - 2017-03-04 08:30 - 00418304 _____ C:\Windows\system32\Windows.Perception.Stub.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-03-14 23:25 - 2017-03-04 08:30 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-03-14 23:25 - 2017-03-04 08:30 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-03-14 23:25 - 2017-03-04 08:30 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2017-03-14 23:25 - 2017-03-04 08:30 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\cemapi.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveExt.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfp.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInputUap.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00019968 _____ C:\Windows\SysWOW64\GamePanelExternalHook.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 01507840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00462848 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-03-14 23:25 - 2017-03-04 08:27 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00549376 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00460288 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-03-14 23:25 - 2017-03-04 08:27 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accountaccessor.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\DavSyncProvider.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRHelper.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe
2017-03-14 23:25 - 2017-03-04 08:25 - 01388544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00579584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2017-03-14 23:25 - 2017-03-04 08:25 - 00251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscandui.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCCSEngineShared.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 01293312 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00671744 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfui.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2017-03-14 23:25 - 2017-03-04 08:23 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00820224 _____ (Microsoft Corporation) C:\Windows\system32\PrintRenderAPIHost.DLL
2017-03-14 23:25 - 2017-03-04 08:23 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00531456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2017-03-14 23:25 - 2017-03-04 08:23 - 00506368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2017-03-14 23:25 - 2017-03-04 08:23 - 00392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DavSyncProvider.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00330752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 01299968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00265728 _____ C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00237568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cemapi.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-03-14 23:25 - 2017-03-04 08:22 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 06285824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 01937920 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2017-03-14 23:25 - 2017-03-04 08:21 - 01243136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00631296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl
2017-03-14 23:25 - 2017-03-04 08:21 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanI

elios
Lid geworden op: 06 jan 2004, 15:52

10 apr 2017, 02:11

dit gebeurt in Google chrome, en hieronder nog eens de twee FRT-rapporten
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 15-03-2017
Gestart door elie (Beheerder) op DESKTOP-ESC0JMV (07-04-2017 01:50:03)
Gestart vanaf C:\Users\elie\Downloads
Geladen Profielen: defaultuser0 & elie (Beschikbare Profielen: defaultuser0 & elie)
Platform: Windows 10 Home Versie 1607 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: Edge)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Windows\runSW.exe
() C:\Program Files (x86)\55c25449-015f-4fc1-82b0-e13cf53f9e051484513466\prot55c25449-015f-4fc1-82b0-e13cf53f9e05.tmpfs
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(eVenture Limited) C:\Program Files (x86)\hide.me VPN\hidemesvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(eVenture Limited) C:\Program Files (x86)\hide.me VPN\Hide.me.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgui.exe
(Facebook) C:\Users\elie\AppData\Local\Facebook\Games\FacebookGameroom.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(The CefSharp Authors) C:\Users\elie\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe
(Microsoft Inc.) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.15.3072.0_x64__8wekyb3d8bbwe\Solitaire.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Register (gefilterd) ====================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16152792 2015-07-17] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [230104 2015-07-10] (Realtek Semiconductor Corporation)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239104 2017-03-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [254776 2017-03-24] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110008 2016-01-20] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [499128 2016-01-20] (CyberLink Corp.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239104 2017-03-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-384420-168510939-2334031860-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
Startup: C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-03-31]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\elie\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
Startup: C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hide.me VPN.lnk [2017-04-06]
ShortcutTarget: hide.me VPN.lnk -> C:\Program Files (x86)\hide.me VPN\Hide.me.exe (eVenture Limited)
GroupPolicy: Restrictie <======= AANDACHT

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{fe23c381-270f-46ce-be84-2e65f273da19}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKU\S-1-5-21-384420-168510939-2334031860-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-d8805066
HKU\S-1-5-21-384420-168510939-2334031860-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
URLSearchHook: [S-1-5-21-384420-168510939-2334031860-1000] AANDACHT => Standaard URLSearchHook ontbreekt
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-384420-168510939-2334031860-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-384420-168510939-2334031860-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll => Geen bestand
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-04-03]
FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.be/","hxxp://www.google.be/"
CHR NewTab: Default -> Not-active:"chrome-extension://niojcggonafbneajjmkpkcigabaobmge/stubby.html"
CHR Profile: C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default [2017-04-07]
CHR Extension: (Google Presentaties) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-03]
CHR Extension: (Google Documenten) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-03]
CHR Extension: (Google Drive) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-03]
CHR Extension: (Context Menu On) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhdihjhdodbfmkmjoccoepfimiglbikj [2017-03-05]
CHR Extension: (YouTube) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-03]
CHR Extension: (Search Privacy) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhbldnobnclngbndkincjnamppepmna [2017-04-05]
CHR Extension: (Adobe Acrobat) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-05]
CHR Extension: (Google Spreadsheets) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-03]
CHR Extension: (Offline Documenten) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-03]
CHR Extension: (FilmFanatic) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojcggonafbneajjmkpkcigabaobmge [2017-02-08]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-03]
CHR Extension: (Chrome Media Router) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-06]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [263720 2017-03-24] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7197976 2017-03-24] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428680 2017-03-23] (AVG Technologies CZ, s.r.o.)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [121560 2015-07-20] ()
S4 debugregsvc; C:\Windows\System32\debugregsvc.dll [29184 2016-07-15] (Microsoft Corporation)
S3 DeveloperToolsService; C:\Windows\System32\DeveloperToolsSvc.exe [104448 2016-07-15] (Microsoft Corporation)
R2 hmevpnsvc; C:\Program Files (x86)\hide.me VPN\hidemesvc.exe [138960 2017-04-05] (eVenture Limited)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Bestand niet getekend]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Bestand niet getekend]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-22] (Intel Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-12] ()
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S3 SshBroker; C:\Windows\System32\SshBroker.dll [360960 2016-12-21] (Microsoft Corporation)
S3 SshProxy; C:\Windows\System32\SshProxy.dll [275456 2016-12-21] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S4 WebManagement; C:\Windows\system32\WebManagement.exe [1000448 2016-09-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-04] (Microsoft Corporation)
S4 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.9.741.0\\McCSPServiceHost.exe" [X]
R2 ServiceProtector; C:\Program Files (x86)\55c25449-015f-4fc1-82b0-e13cf53f9e051484513466\prot55c25449-015f-4fc1-82b0-e13cf53f9e05.tmpfs [X]

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\c0309270.inf_amd64_47c09dd18e1ee4c5\atikmdag.sys [28729240 2016-12-08] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\c0309270.inf_amd64_47c09dd18e1ee4c5\atikmpag.sys [530328 2016-12-08] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-07-24] (Advanced Micro Devices)
R1 avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [166136 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [310056 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [192096 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\system32\drivers\avgbloga.sys [336408 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [50848 2017-04-04] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [39288 2017-04-04] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [128096 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [102136 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [76688 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [1006040 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [557776 2017-04-04] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\system32\drivers\avgStm.sys [165048 2017-04-04] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [340688 2017-04-04] (AVG Technologies CZ, s.r.o.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 ptun0901; C:\Windows\System32\drivers\ptun0901.sys [27136 2016-06-15] (The OpenVPN Project)
R3 RSUSBCCID; C:\Windows\system32\DRIVERS\RtsUCcid.sys [50176 2009-08-10] (Realtek Semiconductor Corp.)
R3 RSUSBCCID; C:\Windows\SysWOW64\DRIVERS\RtsUCcid.sys [50176 2009-08-10] (Realtek Semiconductor Corp.)
R3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [222720 2009-08-20] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
S3 RtkAvrcp; C:\Windows\System32\drivers\RtkAvrcp.sys [67840 2015-09-09] (Realtek Semiconductor Corporation)
S3 RtkAvrcpCtrlr; C:\Windows\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Realtek Semiconductor Corporation)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [611096 2015-09-15] (Realtek Semiconductor Corporation)
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [5195776 2016-07-16] (Realtek Semiconductor Corporation )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

NETSVC: debugregsvc -> C:\Windows\System32\debugregsvc.dll (Microsoft Corporation)

==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-04-07 01:50 - 2017-04-07 01:50 - 00020500 _____ C:\Users\elie\Downloads\FRST.txt
2017-04-07 01:49 - 2017-04-07 01:50 - 00000000 ____D C:\FRST
2017-04-07 01:49 - 2017-04-07 01:49 - 02424832 _____ (Farbar) C:\Users\elie\Downloads\FRST64.exe
2017-04-07 01:28 - 2017-04-07 01:28 - 00066278 _____ C:\Users\elie\Downloads\fiscaal attest ziekenkas.pdf
2017-04-07 01:27 - 2017-04-07 01:27 - 00066278 _____ C:\Users\elie\Downloads\Document (1).pdf
2017-04-07 01:26 - 2017-04-07 01:26 - 00042705 _____ C:\Users\elie\Downloads\Document.pdf
2017-04-07 01:00 - 2017-04-07 01:00 - 00008192 _____ C:\Users\defaultuser0\ntuser.man
2017-04-06 13:41 - 2017-04-06 13:41 - 00000000 ____D C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2017-04-06 00:08 - 2017-04-06 00:08 - 38771415 _____ (KLCP ) C:\Users\elie\Downloads\K-Lite_Codec_Pack_1300_Full.exe
2017-04-06 00:07 - 2017-04-06 00:07 - 12421673 _____ ( ) C:\Users\elie\Downloads\klcp_update_1304_20170405.exe
2017-04-05 13:49 - 2017-04-05 13:49 - 00000975 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2017-04-04 23:28 - 2017-04-04 23:28 - 00400928 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2017-04-04 13:57 - 2017-04-05 15:57 - 00000000 ____D C:\Users\elie\AppData\Roaming\Kodi
2017-04-04 13:56 - 2017-04-04 13:56 - 00000000 ____D C:\Users\elie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2017-04-04 13:56 - 2017-04-04 13:56 - 00000000 ____D C:\Program Files (x86)\Kodi
2017-04-03 16:19 - 2017-04-03 16:19 - 01673243 _____ C:\Users\elie\Downloads\eID_NL (1).swf
2017-04-03 15:29 - 2017-04-03 15:29 - 26243360 _____ (Belgian Government) C:\Users\elie\Downloads\Belgium-eID-QuickInstaller-4.1.20-signed.exe
2017-04-03 15:29 - 2017-04-03 15:29 - 00001307 _____ C:\Users\Public\Desktop\eID Viewer.lnk
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\Windows\SysWOW64\beidpp
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\Program Files\log
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\Program Files\DIFX
2017-04-03 15:29 - 2017-04-03 15:29 - 00000000 ____D C:\Program Files (x86)\Belgium Identity Card
2017-04-03 15:26 - 2017-04-03 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 Card Reader Software
2017-04-03 15:26 - 2009-08-20 05:12 - 00222720 ____R (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\Drivers\RtsUStor.sys
2017-04-03 15:26 - 2009-08-20 05:12 - 00222720 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2017-04-03 15:26 - 2009-08-19 18:22 - 00352256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUStor.dll
2017-04-03 15:26 - 2009-08-10 20:46 - 00050176 ____R (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\Drivers\RtsUCcid.sys
2017-04-03 15:26 - 2009-08-10 20:46 - 00050176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUCcid.sys
2017-04-03 15:26 - 2009-08-04 00:46 - 00314880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUCcid.dll
2017-04-03 15:26 - 2009-03-05 00:46 - 00019968 ____R (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\Drivers\RtsUIr.sys
2017-04-03 15:26 - 2009-02-03 02:27 - 07347200 ____R (Realtek Semiconductor Corp.) C:\Windows\system32\RTSUSTORicon.dll
2017-04-03 12:49 - 2017-04-03 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-03-31 14:55 - 2017-03-31 14:55 - 00001234 _____ C:\Users\elie\Desktop\Facebook Gameroom.lnk
2017-03-30 00:43 - 2017-03-30 00:43 - 00000000 ____D C:\Users\Public\Facebook Games
2017-03-30 00:43 - 2017-03-30 00:43 - 00000000 ____D C:\Users\elie\AppData\LocalLow\Two Desperados Ltd
2017-03-29 23:34 - 2017-03-29 23:34 - 00000000 ____D C:\Users\elie\AppData\Local\Facebook
2017-03-29 01:24 - 2017-03-29 01:24 - 00002904 _____ C:\Windows\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2017-03-29 01:12 - 2017-03-29 01:09 - 00454351 ____R C:\Windows\system32\Drivers\etc\hosts.20170329-011205.backup
2017-03-29 01:09 - 2017-03-28 18:46 - 00000822 _____ C:\Windows\system32\Drivers\etc\hosts.20170329-010954.backup
2017-03-29 01:07 - 2017-04-07 01:15 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-03-29 01:07 - 2017-03-29 01:08 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2017-03-29 01:07 - 2017-03-29 01:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2017-03-28 12:19 - 2017-03-28 12:19 - 00057759 _____ C:\Users\elie\Downloads\Aansluiting voorwaarden - LEUX Elie.pdf
2017-03-28 12:18 - 2017-03-28 12:18 - 00147537 _____ C:\Users\elie\Downloads\Hospitalisatiecontract bij ander Maatschappij.pdf
2017-03-28 12:18 - 2017-03-28 12:18 - 00117471 _____ C:\Users\elie\Downloads\Wijzigingsformulier.pdf
2017-03-28 10:12 - 2017-03-28 10:12 - 00002683 _____ C:\Users\elie\Desktop\µTorrent.lnk
2017-03-28 10:12 - 2017-03-28 10:12 - 00000000 ____D C:\Users\elie\AppData\LocalLow\uTorrent
2017-03-28 10:11 - 2017-03-31 13:26 - 00000000 ____D C:\Users\elie\AppData\Roaming\uTorrent
2017-03-28 10:10 - 2017-03-16 06:38 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2017-03-28 10:10 - 2017-03-16 06:05 - 18362368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-03-28 10:09 - 2017-03-16 07:17 - 01617760 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-03-28 10:09 - 2017-03-16 07:17 - 00142176 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-03-28 10:09 - 2017-03-16 06:47 - 00038768 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2017-03-28 10:09 - 2017-03-16 06:46 - 01600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-03-28 10:09 - 2017-03-16 06:19 - 22565376 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-03-28 10:09 - 2017-03-16 06:03 - 23676416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-03-26 19:52 - 2017-04-05 13:49 - 00000000 ____D C:\Program Files (x86)\hide.me VPN
2017-03-26 19:52 - 2017-04-05 13:48 - 00000000 ____D C:\Users\elie\AppData\Roaming\Hide.me
2017-03-26 19:52 - 2017-03-26 19:52 - 00001090 _____ C:\Users\Public\Desktop\hide.me VPN.lnk
2017-03-26 19:52 - 2017-03-26 19:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hide.me VPN
2017-03-26 19:51 - 2017-03-26 19:52 - 05867648 _____ (eVenture Limited ) C:\Users\elie\Downloads\Hide.me-Setup-1.2.11.exe
2017-03-25 23:10 - 2017-03-25 23:12 - 00000000 ____D C:\AdwCleaner
2017-03-25 23:09 - 2017-03-25 23:09 - 04031440 _____ C:\Users\elie\Downloads\adwcleaner_6.044.exe
2017-03-24 14:48 - 2017-04-04 23:28 - 01006040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00557776 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00340688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00336408 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00310056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00192096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00166136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiska.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00165048 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00128096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00102136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00076688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00050848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00039288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2017-03-24 14:48 - 2017-04-04 23:28 - 00004008 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2017-03-24 14:48 - 2017-03-24 14:48 - 00994592 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1737.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00549912 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw174C.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00338576 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw174D.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00336920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1726.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00311592 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1724.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00192096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1725.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00166136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1713.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00163512 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw175E.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00127584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw174A.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00101624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1738.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00076688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw174B.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00050848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1727.tmp
2017-03-24 14:48 - 2017-03-24 14:48 - 00039288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1739.tmp
2017-03-18 14:11 - 2017-03-18 14:11 - 28867150 _____ C:\Users\elie\Downloads\Others_Intel_8.9.2.1002_W7x64_A.zip
2017-03-14 23:26 - 2017-03-04 08:54 - 02277288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2017-03-14 23:26 - 2017-03-04 08:53 - 05722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-03-14 23:26 - 2017-03-04 08:51 - 01980768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-03-14 23:26 - 2017-03-04 08:47 - 20969928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-03-14 23:26 - 2017-03-04 08:47 - 06667528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:26 - 2017-03-04 08:47 - 04023000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-03-14 23:26 - 2017-03-04 08:47 - 01344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2017-03-14 23:26 - 2017-03-04 08:46 - 04312248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-03-14 23:26 - 2017-03-04 08:36 - 05685760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-03-14 23:26 - 2017-03-04 08:20 - 13873664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-03-14 23:26 - 2017-03-04 08:13 - 07626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-03-14 23:26 - 2017-03-04 08:10 - 03307008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2017-03-14 23:26 - 2017-03-04 08:07 - 02748928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-03-14 23:26 - 2017-03-04 08:07 - 02643456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-03-14 23:26 - 2017-03-04 08:06 - 06109184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2017-03-14 23:26 - 2017-03-04 08:06 - 05380608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2017-03-14 23:26 - 2017-03-04 08:06 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2017-03-14 23:26 - 2017-03-04 08:01 - 02646528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-03-14 23:26 - 2017-03-04 08:01 - 01993216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-03-14 23:26 - 2017-03-04 08:01 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-03-14 23:26 - 2017-03-04 08:00 - 04557824 _____ (Microsoft) C:\Windows\SysWOW64\dbgeng.dll
2017-03-14 23:26 - 2017-03-04 08:00 - 02483200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-03-14 23:25 - 2017-03-04 09:57 - 00484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-03-14 23:25 - 2017-03-04 09:57 - 00315744 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-03-14 23:25 - 2017-03-04 09:40 - 00965472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2017-03-14 23:25 - 2017-03-04 09:27 - 00603488 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-03-14 23:25 - 2017-03-04 09:26 - 00794416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2017-03-14 23:25 - 2017-03-04 09:24 - 02482280 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-03-14 23:25 - 2017-03-04 09:24 - 02186896 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2017-03-14 23:25 - 2017-03-04 09:24 - 00646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-03-14 23:25 - 2017-03-04 09:24 - 00108384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2017-03-14 23:25 - 2017-03-04 09:24 - 00090976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2017-03-14 23:25 - 2017-03-04 09:23 - 02512304 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-03-14 23:25 - 2017-03-04 09:22 - 07786336 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-03-14 23:25 - 2017-03-04 09:22 - 02213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-03-14 23:25 - 2017-03-04 09:19 - 02049480 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-03-14 23:25 - 2017-03-04 09:18 - 01181024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-03-14 23:25 - 2017-03-04 09:18 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-03-14 23:25 - 2017-03-04 09:17 - 00409952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-03-14 23:25 - 2017-03-04 09:15 - 01000280 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2017-03-14 23:25 - 2017-03-04 09:15 - 00063328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2017-03-14 23:25 - 2017-03-04 09:10 - 02828384 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-03-14 23:25 - 2017-03-04 09:10 - 02189664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-03-14 23:25 - 2017-03-04 09:10 - 00360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-03-14 23:25 - 2017-03-04 09:09 - 07220696 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 02750384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 02206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 01969912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 01860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 01293152 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 01157000 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-03-14 23:25 - 2017-03-04 09:09 - 00681312 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00658784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-03-14 23:25 - 2017-03-04 09:09 - 00635864 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00527808 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00497416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-03-14 23:25 - 2017-03-04 09:09 - 00396168 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2017-03-14 23:25 - 2017-03-04 09:08 - 00450400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-03-14 23:25 - 2017-03-04 09:08 - 00223584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-03-14 23:25 - 2017-03-04 09:08 - 00130912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2017-03-14 23:25 - 2017-03-04 09:07 - 00557400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-03-14 23:25 - 2017-03-04 09:07 - 00432992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-03-14 23:25 - 2017-03-04 09:06 - 01706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-03-14 23:25 - 2017-03-04 09:04 - 08169536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:25 - 2017-03-04 09:04 - 02048496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2017-03-14 23:25 - 2017-03-04 09:04 - 01362512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2017-03-14 23:25 - 2017-03-04 09:04 - 01063472 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 22223968 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 04260576 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01989072 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01848072 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01723560 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2017-03-14 23:25 - 2017-03-04 09:03 - 01702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01473048 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01454512 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01301112 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01071736 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 01062480 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00811416 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00596040 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00523712 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00443232 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2017-03-14 23:25 - 2017-03-04 09:03 - 00382272 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2017-03-14 23:25 - 2017-03-04 09:02 - 00184416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2017-03-14 23:25 - 2017-03-04 09:01 - 00137936 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2017-03-14 23:25 - 2017-03-04 08:57 - 02536288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-03-14 23:25 - 2017-03-04 08:57 - 00387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-03-14 23:25 - 2017-03-04 08:56 - 00263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-14 23:25 - 2017-03-04 08:56 - 00248992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2017-03-14 23:25 - 2017-03-04 08:54 - 00524776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 02256080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 01431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 00975744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 00861024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 00781152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-03-14 23:25 - 2017-03-04 08:53 - 00493912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-03-14 23:25 - 2017-03-04 08:53 - 00313568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2017-03-14 23:25 - 2017-03-04 08:53 - 00136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2017-03-14 23:25 - 2017-03-04 08:52 - 00549088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2017-03-14 23:25 - 2017-03-04 08:52 - 00272720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-03-14 23:25 - 2017-03-04 08:51 - 00576408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-03-14 23:25 - 2017-03-04 08:50 - 00846560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01853224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01360456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01202384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 01123912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00981376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00976184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00640976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00530480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00374448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2017-03-14 23:25 - 2017-03-04 08:47 - 00352760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2017-03-14 23:25 - 2017-03-04 08:46 - 00321792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2017-03-14 23:25 - 2017-03-04 08:45 - 00173408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-03-14 23:25 - 2017-03-04 08:45 - 00112120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2017-03-14 23:25 - 2017-03-04 08:42 - 01415240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-03-14 23:25 - 2017-03-04 08:42 - 01260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-03-14 23:25 - 2017-03-04 08:42 - 00545944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2017-03-14 23:25 - 2017-03-04 08:42 - 00276832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2017-03-14 23:25 - 2017-03-04 08:40 - 00306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-03-14 23:25 - 2017-03-04 08:39 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-03-14 23:25 - 2017-03-04 08:36 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-03-14 23:25 - 2017-03-04 08:36 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-03-14 23:25 - 2017-03-04 08:36 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\DuCsps.dll
2017-03-14 23:25 - 2017-03-04 08:36 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2017-03-14 23:25 - 2017-03-04 08:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-03-14 23:25 - 2017-03-04 08:35 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-03-14 23:25 - 2017-03-04 08:34 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys
2017-03-14 23:25 - 2017-03-04 08:34 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-03-14 23:25 - 2017-03-04 08:34 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-03-14 23:25 - 2017-03-04 08:34 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-03-14 23:25 - 2017-03-04 08:34 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-03-14 23:25 - 2017-03-04 08:34 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2017-03-14 23:25 - 2017-03-04 08:33 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2017-03-14 23:25 - 2017-03-04 08:33 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:25 - 2017-03-04 08:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2017-03-14 23:25 - 2017-03-04 08:32 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2017-03-14 23:25 - 2017-03-04 08:32 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2017-03-14 23:25 - 2017-03-04 08:32 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\MCCSEngineShared.dll
2017-03-14 23:25 - 2017-03-04 08:32 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2017-03-14 23:25 - 2017-03-04 08:31 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 01631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00535552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-03-14 23:25 - 2017-03-04 08:30 - 00418304 _____ C:\Windows\system32\Windows.Perception.Stub.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-03-14 23:25 - 2017-03-04 08:30 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-03-14 23:25 - 2017-03-04 08:30 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-03-14 23:25 - 2017-03-04 08:30 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2017-03-14 23:25 - 2017-03-04 08:30 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2017-03-14 23:25 - 2017-03-04 08:30 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\cemapi.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveExt.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfp.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInputUap.dll
2017-03-14 23:25 - 2017-03-04 08:29 - 00019968 _____ C:\Windows\SysWOW64\GamePanelExternalHook.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 01507840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00462848 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2017-03-14 23:25 - 2017-03-04 08:28 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-03-14 23:25 - 2017-03-04 08:27 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00549376 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00460288 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-03-14 23:25 - 2017-03-04 08:27 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accountaccessor.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2017-03-14 23:25 - 2017-03-04 08:27 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\DavSyncProvider.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRHelper.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2017-03-14 23:25 - 2017-03-04 08:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe
2017-03-14 23:25 - 2017-03-04 08:25 - 01388544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00579584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2017-03-14 23:25 - 2017-03-04 08:25 - 00251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscandui.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCCSEngineShared.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2017-03-14 23:25 - 2017-03-04 08:25 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 01293312 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00671744 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfui.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:25 - 2017-03-04 08:24 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2017-03-14 23:25 - 2017-03-04 08:23 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00820224 _____ (Microsoft Corporation) C:\Windows\system32\PrintRenderAPIHost.DLL
2017-03-14 23:25 - 2017-03-04 08:23 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00531456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2017-03-14 23:25 - 2017-03-04 08:23 - 00506368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2017-03-14 23:25 - 2017-03-04 08:23 - 00392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DavSyncProvider.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00330752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-03-14 23:25 - 2017-03-04 08:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 01299968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00265728 _____ C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00237568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cemapi.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-03-14 23:25 - 2017-03-04 08:22 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-03-14 23:25 - 2017-03-04 08:22 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 06285824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 01937920 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2017-03-14 23:25 - 2017-03-04 08:21 - 01243136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00631296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl
2017-03-14 23:25 - 2017-03-04 08:21 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-03-14 23:25 - 2017-03-04 08:21 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanI

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

10 apr 2017, 09:03

Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

elios
Lid geworden op: 06 jan 2004, 15:52

10 apr 2017, 11:42

# AdwCleaner v6.045 - Logbestand aangemaakt 10/04/2017 op 11:41:59
# Bijgewerkt op 28/03/2017 door Malwarebytes
# Database : 2017-04-06.1 [Lokaal]
# Besturingssysteem : Windows 10 Home (X64)
# Gebruikersnaam : elie - DESKTOP-ESC0JMV
# Gestart vanuit : C:\Users\elie\Downloads\adwcleaner_6.045.exe
# Mode: Scannen
# Ondersteuning : https://www.malwarebytes.com/support



***** [ Services ] *****

Geen kwaadaardige services gevonden.


***** [ Mappen ] *****

Geen kwaadaardige mappen gevonden.


***** [ Bestanden ] *****

Geen kwaadaardige bestanden gevonden.


***** [ DLL ] *****

Geen kwaadaardige DLLs gevonden.


***** [ WMI ] *****

Geen kwaadaardige sleutels gevonden.


***** [ Snelkoppelingen ] *****

Geen geïnfecteerde snelkoppeling gevonden.


***** [ Geplande Taken ] *****

Geen kwaadaardige taak gevonden.


***** [ Register ] *****

Geen kwaadaardige register waardes gevonden.


***** [ Internetbrowsers ] *****

Geen kwaadaardige op Firefox gebaseerde browser items gevonden.
Geen kwaadaardige op Chromium gebaseerde browser items gevonden.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [14586 bytes] - [25/03/2017 23:12:18]
C:\AdwCleaner\AdwCleaner[C2].txt - [1440 bytes] - [09/04/2017 19:54:53]
C:\AdwCleaner\AdwCleaner[S0].txt - [13083 bytes] - [25/03/2017 23:11:20]
C:\AdwCleaner\AdwCleaner[S1].txt - [1615 bytes] - [09/04/2017 19:53:55]
C:\AdwCleaner\AdwCleaner[S2].txt - [1595 bytes] - [09/04/2017 19:59:43]
C:\AdwCleaner\AdwCleaner[S3].txt - [1516 bytes] - [10/04/2017 11:41:59]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1589 bytes] ##########

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

10 apr 2017, 12:07

Hallo,

De tool FRST.exe staat in de dik gedrukte map: Gestart vanaf C:\Users\elie\Downloads <== Sleep de FRST.exe vanuit deze map naar je bureaublad.


Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.

Klik tegelijk op de toetsen Afbeelding en type daar Notepad klik dan OK.

Kopieer onderstaande dik gedrukte code en plak dat in "Kladblok"


start
CreateRestorePoint:
URLSearchHook: [S-1-5-21-384420-168510939-2334031860-1000] AANDACHT => Standaard URLSearchHook ontbreekt
CHR NewTab: Default -> Not-active:"chrome-extension://niojcggonafbneajjmkpkcigabaobmge/stubby.html"
GroupPolicy: Restrictie <======= AANDACHT
CHR Extension: (Search Privacy) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhbldnobnclngbndkincjnamppepmna [2017-04-05]
S4 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.9.741.0\\McCSPServiceHost.exe" [X]
R2 ServiceProtector; C:\Program Files (x86)\55c25449-015f-4fc1-82b0-e13cf53f9e051484513466\prot55c25449-015f-4fc1-82b0-e13cf53f9e05.tmpfs [X]
Hosts:
EmptyTemp:
end

Ga naar Bestand - Opslaan als.
Kies als locatie bureaublad.
Bij "Bestandsnaam" zet je:fixlist.txt.
Bij "Opslaan als type" selecteer je: Alle bestanden.

Als het goed is staat er nu een text bestand op je bureaublad?

Start de Farbar Recovery Scan Tool.
Als het programma is geopend klik Yes (Ja) bij de disclaimer. (indien nodig)
Druk op de Fix knop.
Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
Kopieer en plak de inhoud van de logbestanden in je het volgende bericht.(als de inhoud te groot is voor één bericht plaats het in meerdere berichten)
Laatst gewijzigd door abbs op 10 apr 2017, 12:33, 1 keer totaal gewijzigd.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Sony
Lid geworden op: 19 feb 2005, 13:45
Locatie: Boom

10 apr 2017, 12:16

@abbs,

AVG secure search ?
https://support.avg.com/SupportArticleV ... ur-browser

Systeemherstel is uitgeschakeld !!

Sony
Laatst gewijzigd door Sony op 10 apr 2017, 12:38, 1 keer totaal gewijzigd.

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

10 apr 2017, 12:34

Sony schreef:@abbs,

AVG secure search ?
https://support.avg.com/SupportArticleV ... ur-browser

Sony
Hallo Sony,

Waar zie je die staan?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Sony
Lid geworden op: 19 feb 2005, 13:45
Locatie: Boom

10 apr 2017, 12:48

@abbs

BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll => Geen bestand
Daar kan de search ook bij zitten.
CHR Extension: (Search Privacy) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhbldnobnclngbndkincjnamppepmna [2017-04-05]
,Verder zie aanvulling vorig bericht, Systeem herstel is uitgeschakeld.
S&D ook in gebruik ? Tea timer ?

Sony

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

10 apr 2017, 13:03

Sony schreef:@abbs

BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll => Geen bestand
Daar kan de search ook bij zitten.
CHR Extension: (Search Privacy) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhbldnobnclngbndkincjnamppepmna [2017-04-05]
,Verder zie aanvulling vorig bericht, Systeem herstel is uitgeschakeld.
S&D ook in gebruik ? Tea timer ?

Sony
Beste Sony,

Leuk die aanvullingen maar ik heb een stappenplan in mijn hoofd,
ten eerste de toolbar van AVG staat er niet in en AVG Web TuneUp is niet de toolbar, en geen bestand hoeft niet te kloppen dus kan je niet zomaar verwijderen. Teatimer hoeft niks aangedaan te worden dit is geen HJT logje. De verouderde kennis die jij heb daar kan ik niks aan doen en met je berichten zo erdoorheen verwar je de TS dus zou je dat niet meer willen doen.
Als we straks klaar zijn kan het systeemherstel aangezet worden dat schild nu de oude (besmetten) punten te verwijderen.
Daarom zeg ik ik heb een stappenplan in mijn hoofd.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

elios
Lid geworden op: 06 jan 2004, 15:52

10 apr 2017, 16:50

heb alles uitgevoerd zoals u geschreven heb, hier is het resultaat

Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 15-03-2017
Gestart door elie (10-04-2017 16:46:27) Run:1
Gestart vanaf C:\Users\elie\Desktop
Geladen Profielen: elie (Beschikbare Profielen: defaultuser0 & elie)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start
CreateRestorePoint:
URLSearchHook: [S-1-5-21-384420-168510939-2334031860-1000] AANDACHT => Standaard URLSearchHook ontbreekt
CHR NewTab: Default -> Not-active:"chrome-extension://niojcggonafbneajjmkpkcigabaobmge/stubby.html"
GroupPolicy: Restrictie <======= AANDACHT
CHR Extension: (Search Privacy) - C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhbldnobnclngbndkincjnamppepmna [2017-04-05]
S4 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.9.741.0\\McCSPServiceHost.exe" [X]
R2 ServiceProtector; C:\Program Files (x86)\55c25449-015f-4fc1-82b0-e13cf53f9e051484513466\prot55c25449-015f-4fc1-82b0-e13cf53f9e05.tmpfs [X]
Hosts:
EmptyTemp:
end
*****************

Fout: (0) Mislukt een herstelpunt maken.
Kon niet herstellen Standaard URLSearchHook.
Chrome NewTab => is succesvol verwijderd.
C:\Windows\system32\GroupPolicy\Machine => is succesvol verplaatst.
C:\Windows\system32\GroupPolicy\GPT.ini => is succesvol verplaatst.
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => is succesvol verplaatst.
C:\Users\elie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhbldnobnclngbndkincjnamppepmna => is succesvol verplaatst.
HKLM\System\CurrentControlSet\Services\mccspsvc => sleutel is succesvol verwijderd.
mccspsvc => dienst is succesvol verwijderd.
ServiceProtector => Kon service niet stoppen.
HKLM\System\CurrentControlSet\Services\ServiceProtector => sleutel is succesvol verwijderd.
ServiceProtector => dienst is succesvol verwijderd.
C:\Windows\System32\Drivers\etc\hosts => is succesvol verplaatst.
Hosts met succes hersteld.

=========== EmptyTemp: ==========

BITS transfer queue => 298429 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 49844856 B
Java, Flash, Steam htmlcache => 14651095 B
Windows/system/drivers => 159334 B
Edge => 2392 B
Chrome => 21308876 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 165 B
systemprofile32 => 0 B
LocalService => 4649778 B
NetworkService => -656 B
defaultuser0 => 62650666 B
elie => 56358963 B

RecycleBin => 0 B
EmptyTemp: => 200.2 MB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Eind van Fixlog 16:46:35 ====

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

10 apr 2017, 18:50

Hallo,

Hoe staat het nu met je probleem?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

elios
Lid geworden op: 06 jan 2004, 15:52

10 apr 2017, 22:06

probleem is opgelost, bedankt

elios

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

11 apr 2017, 09:39

Hallo,

Dat is mooi, standaard staat systeemherstel uit zet die aan Handleiding.

Doe nu de laatste stap:

Met het onderstaande tooltje ruim je o.a. alle gebruikte tools op:

Download Afbeelding Delfix - Alternatieve downloadlink by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.
Zet nu een vinkje voor het volgende item:
  • Remove disinfection tools
Klik nu op "Run" en wacht geduldig tot de tool gereed is.
Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft je echter niet te plaatsen.
Start je pc hierna opnieuw op, mochten er nog programma's of log bestanden aanwezig zijn mag je die handmatig verwijderen.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)