Hijackthis-opgelost

Spyware is software die in het geheim op je computer wordt geplaatst en die persoonlijke gegevens doorstuurt, reclame toont, enz. Stel hier vragen, leer hoe je ervan af kan komen en hoe het te voorkomen.

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

11 mei 2017, 12:10

Hallo daar,

Is er iemand die mijn hijackje eens kan nazien?
Mijn laptop doet weer raar.

Toetsenbord veranderd uit zichzelf van azerty naar querty. Weet wel: door simpele toetsen direct hersteld maar toch.
Dan krijg ik steeds vermelding dat malwere niet kan opgestart worden.
Heeft er ooit opgestaan, kon niet helemaal verwijderen en dit is het resultaat.
Gisteren update windows 10 gedaan en nu blijft mijn laptop regelmatig hangen
Hij doet er ook oneindig lang over om iets te openen.
Soit, is voorjaar zal dus grote schoonmaak nodig hebben.

Afbeelding



Iemand kandidaat om mij te helpen?

Thanks !!

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 11:48:40, on 11/05/2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0000)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
C:\Users\zenne\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
C:\Users\zenne\AppData\Local\Facebook\Games\FacebookGameroom.exe
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\zenne\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
C:\Users\zenne\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo15.msn.com/?pc=LCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Browsing Protection by F-Secure - {45BBE08D-81C5-4A67-AF20-B2A077C67747} - C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\zenne\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [PhotoMasterImportAgent] "C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe" importagent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [HP ENVY 5540 series (NET)] "C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH5B22N12Q0671:NW" -scfn "HP ENVY 5540 series (NET)" -AutoStart 1
O4 - Startup: Facebook Gameroom.lnk = C:\Users\zenne\AppData\Local\Facebook\Games\FacebookGameroom.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: F-Secure Hoster (fshoster) - F-Secure Corporation - C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
O23 - Service: FSMA - F-Secure Corporation - C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Common\FSMA32.EXE
O23 - Service: F-Secure Hoster (Restricted) (fsnethoster) - F-Secure Corporation - C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Reputation\fsorsp.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem10.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: System Interface Foundation Service (ImControllerService) - Lenovo Group Limited - C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ShareItSvc - SHAREit Technologies Co.Ltd - C:\Program Files (x86)\Lenovo\SHAREit\Shareit.Service.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: Intel Security True Key Helper Service (TrueKeyServiceHelper) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 11367 bytes
:) :lol: Afbeelding

verhaegen
Support SeniorenNet
Lid geworden op: 03 apr 2003, 20:48
Locatie: kapellen

11 mei 2017, 13:02

klik op onderstaande link , en lees wat daar allemaal staat
voer het uit en plaats die logjes alhier

http://www.seniorennet.be/forum/viewtopic.php?t=197112

en die cleaner monitoring mag je al wél uitschakelen !
ccleaner>opties>bewaking >vinkjes verwijderen

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

11 mei 2017, 13:32

De bovenste van 32 bit kan ik niet doen, is niet compatibel met mijn systeem?
Hier die andere dan al,

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-05-2017
Ran by zenne (11-05-2017 13:28:15)
Running from C:\Users\zenne\Downloads
Windows 10 Home Version 1703 (X64) (2017-05-09 18:09:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3735606429-848728412-1924248078-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3735606429-848728412-1924248078-503 - Limited - Disabled)
Guest (S-1-5-21-3735606429-848728412-1924248078-501 - Limited - Disabled)
zenne (S-1-5-21-3735606429-848728412-1924248078-1001 - Administrator - Enabled) => C:\Users\zenne

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Computer Bescherming by F-Secure (Enabled - Up to date) {0F70A6C4-76E4-6A3B-2695-519F428B1C20}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Computer Bescherming by F-Secure (Enabled - Up to date) {B4114720-50DE-65B5-1C25-6AED390C569D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Citrix Online Launcher (HKLM-x32\...\{48947098-A67C-46D4-90C5-9F2F6F0F96FE}) (Version: 1.0.449 - Citrix)
Computer Security 14.176.101.0 (release) (x32 Version: 14.176.101.0 - F-Secure Corporation) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.4.0 - Conexant)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Facebook Gameroom 1.3.1.3 (HKLM-x32\...\{7E155A45-DE1A-46E0-A6B2-10FE1D8501FC}) (Version: 1.3.1.3 - Facebook)
F-Secure CCF Reputation (x32 Version: 2.1.1342.0 - F-Secure) Hidden
F-Secure CCF Scanning 1.73.275.1078 (release) (x32 Version: 1.73.275.1078 - F-Secure Corporation) Hidden
F-Secure Network CCF 1.04.214 (x32 Version: 1.04.214 - F-Secure Corporation) Hidden
F-Secure SafeSearch 1.11.101.0 (release) (x32 Version: 1.11.101.0 - F-Secure Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.96 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
GoToMeeting 8.5.0.6956 (HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\GoToMeeting) (Version: 8.5.0.6956 - CitrixOnline)
HP Dropbox Plugin (HKLM-x32\...\{714EA650-B1EC-4731-A7BF-50BB65C7C1A4}) (Version: 36.0.31.53050 - Hewlett-Packard Co.)
HP ENVY 5540 series Basissoftware van het apparaat (HKLM\...\{997868D8-1710-4D31-BC45-FF2AE6A79A0F}) (Version: 36.0.72.54013 - Hewlett-Packard Co.)
HP ENVY 5540 series Help (HKLM-x32\...\{0CD9B2A9-DDD3-4ECB-B282-FC19EA790D5F}) (Version: 35.0.0 - Hewlett Packard)
HP Google Drive Plugin (HKLM-x32\...\{30FEB472-BC59-4966-8B0C-F8C2045D413E}) (Version: 36.0.31.53050 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{FEC61634-7B6D-4859-83FD-DDF2E76570F9}) (Version: 12.6.14.19 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.16.112.1 - Intel Security)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{DC5673D2-228D-45BC-B9BB-9610CE67DFC0}) (Version: 17.1.1524.1353 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation)
Lenovo EasyCamera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1325.4_WHQL - Sonix)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4706 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.1.0.4706 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo PowerDVD12 (x32 Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.019.00 - Lenovo)
Lenovo Solution Center (HKLM\...\{7BB9AAFD-3350-49C8-92D1-833AAFF9E74E}) (Version: 3.4.003.013 - Lenovo)
Lenovo System Interface Foundation (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.076.00 - Lenovo)
LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.3 - Lenovo)
LenovoUtility (x32 Version: 3.0.0.3 - Lenovo) Hidden
Malwarebytes versie 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Metric Collection SDK (x32 Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Online Safety 2.176.4626.2945 (x32 Version: 2.176.4626.2945 - F-Secure Corporation) Hidden
OpenOffice 4.1.2 (HKLM-x32\...\{41E7B095-1618-49CF-972F-72B5D5235423}) (Version: 4.12.9782 - Apache Software Foundation)
Productverbeteringsonderzoek voor HP ENVY 5540 series (HKLM\...\{6761EEBE-B6C7-409F-A298-4D69509303EE}) (Version: 36.0.72.54013 - Hewlett-Packard Co.)
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.005.12 - Lenovo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 3.3.0.1103 - Lenovo)
Telenet Security Pack (HKLM-x32\...\F-Secure ServiceEnabler 44163) (Version: 2.76.211.0 - F-Secure Corporation)
Telenet Security Pack (x32 Version: 2.76.211.0 - F-Secure Corporation) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
User Manuals (x32 Version: 4.0.0.1 - Lenovo) Hidden
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Windows 10-upgradeassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3735606429-848728412-1924248078-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6441\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01B5DE5C-515B-4183-8E01-1D56A71E6DB4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {10AB29F4-D01F-4B55-A87D-C424DA8DED1D} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2017-02-14] (Lenovo)
Task: {1E7829D3-4490-439F-A3B5-1E1FBD2221B0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {25DA2478-BF77-43AB-8629-F55A8941F314} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
Task: {26C46363-F951-49E6-A655-B8A4F4193E58} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-03-24] (HP Inc.)
Task: {28E6B4DB-562B-4CB3-9105-33A55901CD6D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {5BDB387C-C91D-4430-8005-FE93DD0A1A31} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {797E7B4E-69DA-4BFD-9D2F-2BD2190069B8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1ff41d9c-9177-4433-90cd-2595a3c818a5 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {7A5AE4D4-7079-4855-92A4-1954DEADFA73} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {7B160A9D-06D8-4655-9F13-793932967777} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-13] (Google Inc.)
Task: {7B23CFFA-3A2B-4274-96CA-E43DEACEA67A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => Sc.exe START ImControllerService
Task: {8247A2DB-E2BE-407B-A0B0-3BED104A9CFC} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0e34cb20-e1b4-4d91-a588-a92d00ca6332 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {84F889C6-D366-49F1-8848-A12A2833FF01} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {88CD43F6-2BC4-42E3-8DCA-A6D95E028384} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [2015-05-28] (CyberLink Corp.)
Task: {969D36A8-5609-4FE1-B8DE-F94154B6314C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9c438be9-7062-4400-bade-6c739bb48e31 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {9CFBB1C3-E805-4FB1-8F82-FB0AB8BE7942} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [2017-02-14] ()
Task: {A4569353-A288-4D8A-A700-0958E68CBC90} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH5B22N12Q => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
Task: {AAF44CD4-8265-47FC-82FA-35C752A4DB62} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {AB70BAD5-F686-48D1-BA43-3E5A826C5FE9} - System32\Tasks\HPCeeScheduleForzenne => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {B397F4D5-2F50-47EC-9F1D-EE46E0EE207E} - System32\Tasks\HPCustParticipation HP ENVY 5540 series => C:\Program Files\HP\HP ENVY 5540 series\Bin\HPCustPartic.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {B6EE32FC-833C-49B4-88F0-040A9939DFE6} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2016-07-16] (Lenovo)
Task: {BB28493B-97C2-444E-8F4F-1390679B1BF5} - System32\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001 => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupload.exe [2017-05-06] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {C72FA807-390E-4A35-AAE9-5596D5767D22} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2017-02-14] (Lenovo)
Task: {CB7C7E32-3DB3-4292-92E6-8BB399BE0F7D} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [2016-04-22] (CyberLink Corp.)
Task: {DAC69B71-568C-48CE-8E64-2D26567BB490} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-13] (Google Inc.)
Task: {E196E1A2-679A-443E-A140-E64DDC550BC9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {E22CDE4A-332C-4C20-AB87-AC69578E60E1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {E699C086-6DE2-4739-A2CA-51C0E6A1CECA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {EEE21529-746E-4C5E-AD94-4B0F4EC1AEEB} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {F8541FEA-AE93-4172-9658-8AABFB31F5B2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {F8B01737-5D34-484C-BCE7-63EBBE9A1DDB} - System32\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001 => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupdate.exe [2017-05-06] (Citrix Online, a division of Citrix Systems, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001.job => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001.job => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupload.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForzenne.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-01-13 14:56 - 2017-01-13 14:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 14:56 - 2017-01-13 14:56 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-12-22 21:06 - 2017-01-20 08:47 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-11-02 00:05 - 2016-11-02 00:05 - 00401896 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-03-18 22:59 - 2017-03-19 04:31 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-09 19:56 - 2010-10-26 12:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2015-09-07 02:35 - 2015-09-07 02:35 - 00791848 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe
2015-09-07 02:35 - 2015-09-07 02:35 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll
2017-05-08 10:38 - 2017-05-08 10:38 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-05-08 10:38 - 2017-05-08 10:38 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-05-08 10:38 - 2017-05-08 10:38 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-05-03 12:21 - 2017-05-02 03:03 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\libglesv2.dll
2017-05-03 12:21 - 2017-05-02 03:03 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\libegl.dll
2016-12-31 17:22 - 2016-10-26 17:05 - 00074720 _____ () C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\FSAVHRES.eng
2016-10-25 11:01 - 2016-10-25 11:01 - 00254944 _____ () C:\Program Files (x86)\Telenet Security Pack\daas2.dll
2016-12-31 17:23 - 2017-02-09 20:12 - 00213984 _____ () C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Spam Control\fsas.dll
2016-12-09 14:45 - 2016-04-22 10:55 - 00884504 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\Kernel\Boomerang\UNO.dll
2016-12-09 14:44 - 2016-04-22 10:49 - 00081920 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ctypes.pyd
2017-02-15 18:58 - 2017-02-15 18:58 - 01162752 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\CefSharp.Core.dll
2017-02-15 18:58 - 2017-02-15 18:58 - 67197440 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\libcef.dll
2015-09-07 02:40 - 2014-07-04 06:35 - 00627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2014-07-04 21:35 - 2014-07-04 21:35 - 00016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2017-02-15 18:58 - 2017-02-15 18:58 - 00752640 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll
2017-02-15 18:58 - 2017-02-15 18:58 - 01886208 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\libglesv2.dll
2017-02-15 18:58 - 2017-02-15 18:58 - 00078848 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 13:04 - 2016-11-05 13:21 - 00000828 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 195.130.130.3 - 195.130.131.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run32: => "snp2uvc"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A56D16CE-91AF-4A37-84B6-538C8A08AA03}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{95F8E9E1-ACC0-48E7-90D8-AEF8E49D84DE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{630AE36B-5F3D-4E4E-A324-BB896262EBA4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4C7EA425-EF32-4A13-BBBF-F7C837EC8A7C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{69209359-1746-493C-81AA-4587356965DC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{273E07FC-7CCF-4D27-9E60-F04AE7BFED12}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{F1F5DEFD-BBBF-47BD-8724-8D7B12EE7CC2}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{0C540AE0-8B1D-437D-A0CF-886A6F78B57F}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{FD9D6671-55E3-4531-BF9D-B5C857398985}] => (Allow) C:\Program Files\HP\HP ENVY 5540 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{32E04CA2-571B-4FB9-8077-EAF536B5566A}] => (Allow) LPort=5357
FirewallRules: [{E5711485-7686-468B-9467-5BAACE1A45A7}] => (Allow) C:\Program Files\HP\HP ENVY 5540 series\Bin\DeviceSetup.exe
FirewallRules: [{EEDB141F-A0F9-4810-A1B1-9B79F97DAFA2}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{B8054FDC-A8F6-405C-B8F1-DF87C757426E}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{B350C51E-8ACC-4C0D-8B0A-28233E4EA2E3}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/10/2017 04:42:09 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma chrome.exe, versie 58.0.3029.96 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 1e84

Starttijd: 01d2c99aaf96ec2d

Eindtijd: 4294967295

Toepassingspad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Rapport-id: 19786a4a-8f18-4b50-9981-2adebd2d823f

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (05/10/2017 04:29:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname LAPTOP-VK36L169.local already in use; will try LAPTOP-VK36L169-2.local instead

Error: (05/10/2017 04:29:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 16 LAPTOP-VK36L169.local. AAAA 2A02:1810:AC24:0200:ED2F:12FD:A907:8217

Error: (05/10/2017 04:29:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:ED2F:12FD:A907:8217:5353 16 LAPTOP-VK36L169.local. AAAA 2A02:1810:AC24:0200:7222:EC29:67BB:3223

Error: (05/10/2017 10:59:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: LAPTOP-VK36L169)
Description: Het pakket Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe+ContentProcess#{00061404-0001-0000-2a12-310300000000} is beëindigd omdat het onderbreken te lang duurde.

Error: (05/09/2017 08:29:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-VK36L169)
Description: Het activeren van de app Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App is mislukt door de fout -2147024865. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

Error: (05/09/2017 08:29:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-VK36L169)
Description: Het activeren van de app Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

Error: (05/09/2017 08:25:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma chrome.exe, versie 58.0.3029.96 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 1530

Starttijd: 01d2c8f09083ca7f

Eindtijd: 60000

Toepassingspad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Rapport-id: 806532ef-8673-451f-a6e6-6c9f7f1195c7

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (05/09/2017 08:25:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma chrome.exe, versie 58.0.3029.96 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 2778

Starttijd: 01d2c8f15eb6c517

Eindtijd: 60000

Toepassingspad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Rapport-id: f9c67562-7cce-4f2d-88b7-d041a4ca205d

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (05/09/2017 08:04:36 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Kan de status van clusterknooppunt niet ophalen. De geretourneerde foutcode: 0x8007085A


System errors:
=============
Error: (05/11/2017 01:09:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:43:54 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:43:54 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:43:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De CldFlt-service kan vanwege de volgende fout niet worden gestart:
De aanvraag wordt niet ondersteund.

Error: (05/11/2017 11:43:23 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: De service Delivery Optimization is niet juist afgesloten na de ontvangst van een besturingselement voor afsluiten.

Error: (05/11/2017 11:24:40 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:02:10 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: De server Microsoft.Bluetooth.Profiles.Gatt.Interface.GattServerRegistrar heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (05/11/2017 11:00:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:00:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:00:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De CldFlt-service kan vanwege de volgende fout niet worden gestart:
De aanvraag wordt niet ondersteund.


CodeIntegrity:
===================================
Date: 2017-05-09 19:57:15.747
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.

Date: 2017-05-09 19:57:15.742
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.

Date: 2017-05-09 19:57:15.737
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.

Date: 2017-05-09 19:57:15.732
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz
Percentage of memory in use: 61%
Total physical RAM: 4011.08 MB
Available physical RAM: 1548.27 MB
Total Virtual: 5419.08 MB
Available Virtual: 2364.67 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:96.69 GB) (Free:34.61 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 743C7BF8)

Partition: GPT.

==================== End of Addition.txt ============================ :)

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

11 mei 2017, 17:09

Hallo,


ATTENTION: System Restore is disabled: Systeemherstel staat standaard bij Windows 10 uit zet die aan Handleiding

Jij schrijft: Gisteren update windows 10 gedaan en nu blijft mijn laptop regelmatig hangen.
Wat bedoel je hier mee de upgrate van jou Windows 8.1 naar Windows 10?

Farbar Recovery Scan tool heeft twee logjes gemaakt plaats (FRST.txt) ook nog even.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

11 mei 2017, 18:23

Had melding gekregen dat ik windows update moest bijwerken
?
Had al de windows 10.

Is het dit txtbestandje? Is dat niet hetgeen ik al geplaatst heb?
Ken er niks van.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2017
Ran by zenne (administrator) on LAPTOP-VK36L169 (11-05-2017 13:27:33)
Running from C:\Users\zenne\Downloads
Loaded Profiles: zenne (Available Profiles: zenne)
Platform: Windows 10 Home Version 1703 (X64) Language: Engels (Verenigde Staten)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Reputation\fsorsp.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\fsgk32.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Common\FSMA32.EXE
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Common\FSHDLL64.EXE
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\fssm32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\Lenovo\LenovoUtility\utility.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe
(Facebook) C:\Users\zenne\AppData\Local\Facebook\Games\FacebookGameroom.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(The CefSharp Authors) C:\Users\zenne\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Trend Micro Inc.) C:\Users\zenne\Downloads\HijackThis.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Farbar) C:\Users\zenne\Downloads\FRST64 (2).exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3805928 2016-08-15] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2015-09-07] ()
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-04-22] (CyberLink Corp.)
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\Run: [HP ENVY 5540 series (NET)] => C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe [3651080 2015-03-09] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [804352 2017-03-18] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Startup: C:\Users\zenne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-03-13]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\zenne\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 195.130.130.3 195.130.131.3
Tcpip\..\Interfaces\{56344a14-3bd4-4f87-ab7a-8e3cf465b8e7}: [DhcpNameServer] 150.207.1.2
Tcpip\..\Interfaces\{64647e0e-49a0-4bb6-90c5-00bcbf1d9894}: [DhcpNameServer] 195.130.130.3 195.130.131.3

Internet Explorer:
==================
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26] (Intel Security)
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https64.dll [2017-05-11] (F-Secure Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26] (Intel Security)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll [2017-05-11] (F-Secure Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26] (Intel Security)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26] (Intel Security)

FireFox:
========
FF DefaultProfile: vacqeld8.default
FF ProfilePath: C:\Users\zenne\AppData\Roaming\TomTom\HOME\Profiles\2mxgpdtl.default [2017-04-15]
FF ProfilePath: C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default [2017-05-11]
FF Homepage: Mozilla\Firefox\Profiles\vacqeld8.default -> hxxps://play.google.com/store/apps/details?id=be.vmma.vtm.hetnieuws
hxxps://www.facebook.com/
hxxps://support.google.com/websearch/answer/463?utm_source=google.com&utm_medium=callout&utm_campaign=FFDHP
hxxps://www.google.be/?gfe_rd=cr&ei=a0McWMG5JMzU8gfG_I_QDA
FF Session Restore: Mozilla\Firefox\Profiles\vacqeld8.default -> is enabled.
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2016-09-23]
FF Extension: (FireTube) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\jid0-w1UVmoLd6VGudaIERuRJCPQx1dQ@jetpack.xpi [2016-09-01]
FF Extension: (Emoji Cheatsheet for GitHub, Basecamp etc.) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\jid1-Xo5SuA6qc1DFpw@jetpack.xpi [2016-09-01]
FF Extension: (YouTube Video Player Pop Out) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\{00f7ab9f-62f4-4145-b2f9-38d579d639f6}.xpi [2016-11-04]
FF Extension: (Photo Zoom for Facebook™) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\{7c6cdf7c-8ea8-4be7-ae5a-0b3effe14d66}.xpi [2016-10-23]
FF Extension: (Video DownloadHelper) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2016-10-23]
FF Extension: (Adblock Plus) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-25]
FF HKLM\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi [2017-05-11]
FF HKLM-x32\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-3735606429-848728412-1924248078-1001: @citrixonline.com/appdetectorplugin -> C:\Users\zenne\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2017-03-12] (Citrix Online)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.topics.be/mijn-nieuws/","hxxps://ca ... 4126+24123"
CHR NewTab: Default -> Not-active:"chrome-extension://mabloidgodmbnmnhoenmhlcjkfelomgp/stubby.html"
CHR Profile: C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default [2017-05-11]
CHR Extension: (Google Presentaties) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-13]
CHR Extension: (Google Documenten) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-13]
CHR Extension: (Google Drive) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-13]
CHR Extension: (Blokkeer Afzender) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\bklnjbfcmglhiaoppcckdodanccbelcg [2016-12-31]
CHR Extension: (YouTube) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-13]
CHR Extension: (Social Messenger, Social News) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbhigdfhmhhdieikofamakgecjalgdmd [2016-12-26]
CHR Extension: (Pinterest Enhanced) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\egpachgbfnbpkceigfpcpicekmiehame [2016-12-13]
CHR Extension: (Google Spreadsheets) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-13]
CHR Extension: (Oye) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gajdfpoljhjjpikancdlelalledeianb [2016-12-31]
CHR Extension: (Offline Documenten) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-13]
CHR Extension: (Inbox by Gmail) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkljgfmjocfalijkgoogmfffkhmkbgol [2016-12-13]
CHR Extension: (Search by F-Secure) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkmikccifolokanfakbeadbmgchomeli [2016-12-31]
CHR Extension: (OneNote Web Clipper) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2017-04-29]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2016-12-31]
CHR Extension: (Free Cell Solitaire) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnjgfflolfogjcejlkmkphkcohnmjdfd [2016-12-13]
CHR Extension: (EasyDocMerge) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp [2017-04-12]
CHR Extension: (Google Mail Checker) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-12-13]
CHR Extension: (Sideplayer™) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nicokganngdkmjiejngaacdlllkdpikn [2016-12-13]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Hover Zoom+) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pccckmaobkjjboncdfnnofkonhgpceea [2017-04-23]
CHR Extension: (Gmail) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-13]
CHR Extension: (Chrome Media Router) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-28]
CHR Profile: C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-05-10]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3735606429-848728412-1924248078-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gkmikccifolokanfakbeadbmgchomeli] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134888 2016-08-15] (ELAN Microelectronics Corp.)
R2 fshoster; C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe [181216 2016-10-25] (F-Secure Corporation)
R3 FSMA; C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Common\FSMA32.EXE [218080 2016-10-26] (F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe [181216 2016-10-25] (F-Secure Corporation)
R2 FSORSPClient; C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Reputation\fsorsp.exe [67640 2017-05-09] (F-Secure Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-22] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation)
R2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [57160 2017-04-25] (Lenovo Group Limited)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273216 2017-02-14] (Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-11-29] ()
S3 ShareItSvc; C:\Program Files (x86)\Lenovo\SHAREit\Shareit.Service.exe [31704 2016-03-31] (SHAREit Technologies Co.Ltd)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [996736 2017-04-18] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16160 2017-04-18] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86776 2017-04-18] (McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-11-29] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [32344 2016-08-15] (ELAN Microelectronic Corp.)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\minifilter\FSgk.sys [229080 2017-02-09] (F-Secure Corporation)
R1 F-Secure HIPS; C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\HIPS\drivers\fshs.sys [106704 2017-04-24] (F-Secure Corporation)
R0 fsbts; C:\WINDOWS\System32\Drivers\fsbts.sys [73928 2016-12-31] ()
R3 fsni; C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\fsni64.sys [120016 2017-05-11] (F-Secure Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [231168 2017-01-13] (Intel Corporation)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251848 2017-05-11] (Malwarebytes)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3517200 2016-10-20] (Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-12-07] (Realsil Semiconductor Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [1772008 2016-06-08] (Sonix Tech. Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-11 13:27 - 2017-05-11 13:27 - 02429440 _____ (Farbar) C:\Users\zenne\Downloads\FRST64 (2).exe
2017-05-11 13:27 - 2017-05-11 13:27 - 00023147 _____ C:\Users\zenne\Downloads\FRST.txt
2017-05-11 13:27 - 2017-05-11 13:27 - 00000000 ____D C:\FRST
2017-05-11 13:26 - 2017-05-11 13:26 - 02429440 _____ (Farbar) C:\Users\zenne\Downloads\FRST64.exe
2017-05-11 13:26 - 2017-05-11 13:26 - 02429440 _____ (Farbar) C:\Users\zenne\Downloads\FRST64 (1).exe
2017-05-11 13:26 - 2017-05-11 13:26 - 01769984 _____ (Farbar) C:\Users\zenne\Downloads\FRST (1).exe
2017-05-11 13:24 - 2017-05-11 13:25 - 01769984 _____ (Farbar) C:\Users\zenne\Downloads\FRST.exe
2017-05-11 11:49 - 2017-05-11 11:49 - 00000000 ____D C:\Users\zenne\Downloads\Hijack
2017-05-11 11:40 - 2017-05-11 11:40 - 00388608 _____ (Trend Micro Inc.) C:\Users\zenne\Downloads\HijackThis.exe
2017-05-11 11:00 - 2017-05-11 11:00 - 00000000 ___HD C:\OneDriveTemp
2017-05-10 05:50 - 2017-05-10 05:50 - 00000000 ____D C:\Windows.old
2017-05-10 05:49 - 2017-05-10 05:49 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-10 05:49 - 2017-05-10 05:49 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-05-10 05:49 - 2017-05-10 05:49 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-05-10 05:49 - 2017-05-10 05:49 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-05-10 05:49 - 2017-05-10 05:49 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-05-10 05:49 - 2017-05-10 05:49 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-10 05:49 - 2017-05-10 05:49 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-05-10 05:49 - 2017-05-10 05:49 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-05-10 05:49 - 2017-05-10 05:49 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-10 05:45 - 2017-05-11 11:47 - 00975292 _____ C:\WINDOWS\system32\perfh013.dat
2017-05-10 05:45 - 2017-05-11 11:47 - 00205360 _____ C:\WINDOWS\system32\perfc013.dat
2017-05-10 05:45 - 2017-05-10 05:45 - 00347800 _____ C:\WINDOWS\system32\perfi013.dat
2017-05-10 05:45 - 2017-05-10 05:45 - 00045450 _____ C:\WINDOWS\system32\perfd013.dat
2017-05-10 05:45 - 2017-05-10 05:45 - 00000000 ____D C:\WINDOWS\SysWOW64\nl
2017-05-10 05:45 - 2017-05-10 05:45 - 00000000 ____D C:\WINDOWS\system32\nl
2017-05-10 05:45 - 2017-05-09 20:00 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-05-10 05:45 - 2017-03-18 08:00 - 09481728 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0013.dll
2017-05-10 05:42 - 2017-05-09 19:54 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-05-10 05:41 - 2017-05-10 05:41 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-05-10 05:40 - 2017-05-10 05:40 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-05-10 05:40 - 2017-05-10 05:40 - 00000000 ____D C:\Program Files\MSBuild
2017-05-10 05:40 - 2017-05-10 05:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-05-10 05:40 - 2017-05-10 05:40 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-05-10 05:39 - 2017-02-10 21:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-05-10 05:39 - 2017-02-10 21:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-05-10 05:39 - 2017-02-10 21:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-05-10 05:39 - 2017-02-10 21:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-05-10 05:39 - 2017-02-10 21:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-05-10 05:39 - 2017-02-10 21:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-05-09 20:24 - 2017-05-09 20:24 - 00000000 ____D C:\Users\zenne\AppData\Local\DBG
2017-05-09 20:12 - 2017-05-09 20:12 - 00000000 ____D C:\ProgramData\USOShared
2017-05-09 20:12 - 2017-05-09 20:12 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-05-09 20:10 - 2017-05-09 20:10 - 00000020 ___SH C:\Users\zenne\ntuser.ini
2017-05-09 20:09 - 2017-05-09 20:09 - 00000000 _SHDL C:\Users\Default\My Documents
2017-05-09 20:07 - 2017-05-09 20:08 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-05-09 20:07 - 2017-05-09 20:08 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-05-09 20:06 - 2017-05-11 11:47 - 02257850 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-09 20:04 - 2017-05-11 11:43 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-09 20:04 - 2017-05-11 10:30 - 00004198 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{40B10BBB-E365-4230-8303-2EF853737BA2}
2017-05-09 20:04 - 2017-05-09 20:13 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-05-09 20:04 - 2017-05-09 20:10 - 00004496 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-09 20:04 - 2017-05-09 20:04 - 00003502 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-05-09 20:04 - 2017-05-09 20:04 - 00003284 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001
2017-05-09 20:04 - 2017-05-09 20:04 - 00003278 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-05-09 20:04 - 2017-05-09 20:04 - 00003188 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001
2017-05-09 20:04 - 2017-05-09 20:04 - 00002800 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForzenne
2017-05-09 20:04 - 2017-05-09 20:04 - 00002668 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP ENVY 5540 series
2017-05-09 20:04 - 2017-05-09 20:04 - 00002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-05-09 20:04 - 2017-05-09 20:04 - 00002212 _____ C:\WINDOWS\System32\Tasks\PDVDServ12 Task
2017-05-09 20:04 - 2017-05-09 20:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-05-09 20:04 - 2017-05-09 20:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2017-05-09 20:04 - 2017-05-09 20:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\CyberLink
2017-05-09 20:04 - 2017-05-09 20:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2017-05-09 20:01 - 2017-05-09 20:01 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-05-09 19:59 - 2017-05-09 20:02 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-05-09 19:58 - 2017-05-10 17:36 - 00000000 ____D C:\Users\zenne
2017-05-09 19:58 - 2017-05-09 19:58 - 00000000 _SHDL C:\Users\zenne\My Documents
2017-05-09 19:58 - 2017-05-09 19:58 - 00000000 _SHDL C:\Users\zenne\Documents\My Videos
2017-05-09 19:58 - 2017-05-09 19:58 - 00000000 _SHDL C:\Users\zenne\Documents\My Pictures
2017-05-09 19:58 - 2017-05-09 19:58 - 00000000 _SHDL C:\Users\zenne\Documents\My Music
2017-05-09 19:57 - 2017-05-09 19:57 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2017-05-09 19:57 - 2017-05-09 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2017-05-09 19:56 - 2017-05-09 19:56 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-05-09 19:56 - 2017-05-09 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-05-09 19:56 - 2017-05-09 19:56 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2017-05-09 19:56 - 2014-12-09 20:11 - 00423128 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\SASrv.exe
2017-05-09 19:56 - 2014-10-20 14:54 - 00207576 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2017-05-09 19:56 - 2014-04-25 10:22 - 00002440 _____ C:\WINDOWS\system32\Drivers\SamSfPa.dat
2017-05-09 19:55 - 2017-05-11 11:43 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-05-09 19:55 - 2017-05-09 20:02 - 00000000 ____D C:\Program Files\Elantech
2017-05-09 19:55 - 2017-05-09 19:59 - 00000000 ____D C:\Program Files\Intel
2017-05-09 19:55 - 2017-05-09 19:56 - 00000000 ____D C:\ProgramData\Conexant
2017-05-09 19:55 - 2017-05-09 19:56 - 00000000 ____D C:\Program Files\CONEXANT
2017-05-09 19:55 - 2017-05-09 19:55 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-05-09 19:55 - 2017-05-09 19:55 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ETDSMBus_01011.Wdf
2017-05-09 19:55 - 2017-05-09 19:55 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-05-09 19:55 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-05-09 19:55 - 2016-11-02 00:05 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2017-05-09 19:55 - 2016-11-02 00:05 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-05-09 19:54 - 2017-05-11 13:09 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-09 19:54 - 2017-05-11 11:43 - 00256320 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-09 19:02 - 2017-05-10 11:14 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-09 19:02 - 2017-05-09 19:21 - 00000000 ___HD C:\$WINDOWS.~BT
2017-05-09 18:40 - 2017-05-09 19:02 - 00000000 ____D C:\ESD
2017-05-09 18:39 - 2017-05-09 18:39 - 00000000 ___HD C:\$Windows.~WS
2017-05-09 18:36 - 2017-05-09 18:38 - 18357776 _____ (Microsoft Corporation) C:\Users\zenne\Downloads\MediaCreationTool.exe
2017-05-09 11:27 - 2017-05-09 11:27 - 22176793 _____ C:\Users\zenne\Downloads\NL_Inspiration.pdf
2017-05-02 17:47 - 2017-05-02 17:59 - 00000000 ____D C:\Users\zenne\Documents\ME
2017-04-28 11:02 - 2017-05-06 11:13 - 00001235 _____ C:\Users\Public\Desktop\True Key.lnk
2017-04-27 18:58 - 2017-04-27 18:58 - 00000000 ____D C:\Users\zenne\AppData\Roaming\Google
2017-04-25 16:54 - 2017-04-25 16:54 - 00257856 _____ (Lenovo Group Limited) C:\WINDOWS\system32\iMDriverHelper.dll
2017-04-18 17:46 - 2017-04-18 17:46 - 00000000 ____D C:\Users\zenne\Downloads\bijlagen
2017-04-18 17:40 - 2017-04-18 17:40 - 02177734 _____ C:\Users\zenne\Downloads\bijlagen.zip
2017-04-15 13:05 - 2017-04-15 13:05 - 00132369 _____ C:\Users\zenne\Downloads\sajnl20172190328 (1).pdf
2017-04-12 12:16 - 2017-03-28 07:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2017-04-12 12:16 - 2017-03-28 07:28 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-11 13:26 - 2015-12-09 19:03 - 00000000 ____D C:\Users\zenne\Documents\Knipsels
2017-05-11 13:10 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-11 11:56 - 2016-12-22 21:06 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-05-11 11:49 - 2016-12-09 14:36 - 00338573 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2017-05-11 11:47 - 2016-07-16 14:42 - 00000000 ____D C:\Users\zenne\AppData\Local\VirtualStore
2017-05-11 11:44 - 2015-12-13 11:50 - 00000000 ___RD C:\Users\zenne\OneDrive
2017-05-11 11:43 - 2017-03-18 13:40 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-05-11 11:43 - 2016-12-22 21:06 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-11 11:43 - 2015-12-07 15:44 - 00000000 __SHD C:\Users\zenne\IntelGraphicsProfiles
2017-05-11 10:53 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-11 10:48 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-11 10:18 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-10 11:17 - 2016-08-03 19:51 - 00000000 ____D C:\Windows10Upgrade
2017-05-10 11:16 - 2015-12-14 16:02 - 00000000 ____D C:\Users\zenne\Documents\CyberLink
2017-05-10 11:14 - 2016-12-31 17:34 - 00000000 ____D C:\Users\zenne\AppData\Local\CrashDumps
2017-05-10 11:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-10 10:45 - 2016-07-16 14:42 - 00000000 ____D C:\Users\zenne\AppData\Local\Packages
2017-05-10 10:31 - 2016-07-16 15:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-10 10:27 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-10 10:27 - 2016-07-16 15:15 - 156335152 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-10 10:23 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-05-10 05:54 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-05-10 05:50 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-05-10 05:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-10 05:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-10 05:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-10 05:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Com
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-05-10 05:45 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\servicing
2017-05-09 20:13 - 2016-07-16 14:45 - 00002390 _____ C:\Users\zenne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-05-09 20:12 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-05-09 20:11 - 2016-08-03 21:22 - 00000000 ____D C:\Users\zenne\AppData\Local\ConnectedDevicesPlatform
2017-05-09 20:10 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-09 20:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-09 20:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-09 20:10 - 2015-07-16 17:49 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-09 20:08 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-05-09 20:07 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-05-09 20:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-05-09 20:05 - 2016-12-13 12:49 - 00002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-09 20:04 - 2017-03-19 04:31 - 00000000 ____D C:\WINDOWS\HoloShell
2017-05-09 20:04 - 2017-03-18 23:03 - 00000000 __RSD C:\WINDOWS\Media
2017-05-09 20:04 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-05-09 20:04 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-09 20:04 - 2017-03-12 13:45 - 00000690 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001.job
2017-05-09 20:04 - 2017-03-12 13:45 - 00000594 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001.job
2017-05-09 20:04 - 2017-01-06 18:55 - 00000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleForzenne.job
2017-05-09 20:04 - 2016-07-16 14:21 - 00022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-05-09 20:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-05-09 20:02 - 2017-03-13 16:09 - 00000000 ____D C:\Users\zenne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2017-05-09 20:02 - 2017-01-06 18:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-05-09 20:02 - 2017-01-06 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2017-05-09 20:02 - 2017-01-05 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP190 series Manual
2017-05-09 20:02 - 2016-12-31 17

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

11 mei 2017, 18:32

Hallo,

Je doet het heel goed, alleen mis ik het laatste deel, dit komt omdat niet alles past in één antwoord. Zou je het laatste deel ook willen plaatsen.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

11 mei 2017, 20:59

Hallo Abbs,

Ik kan bijna niet meer op internet.
Loop altijd vast, duurt veel te lang om iets te openen.

Is het hetvolgende dat ik nog moet plaatsen?
Zie niets anders meer in txt.

Hoop dat ik volgende keer wel open krijg om hier te komen kijken en op te lossen.

Hoor je me niet dan zit ik vast :cry:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-05-2017
Ran by zenne (11-05-2017 13:28:15)
Running from C:\Users\zenne\Downloads
Windows 10 Home Version 1703 (X64) (2017-05-09 18:09:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3735606429-848728412-1924248078-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3735606429-848728412-1924248078-503 - Limited - Disabled)
Guest (S-1-5-21-3735606429-848728412-1924248078-501 - Limited - Disabled)
zenne (S-1-5-21-3735606429-848728412-1924248078-1001 - Administrator - Enabled) => C:\Users\zenne

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Computer Bescherming by F-Secure (Enabled - Up to date) {0F70A6C4-76E4-6A3B-2695-519F428B1C20}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Computer Bescherming by F-Secure (Enabled - Up to date) {B4114720-50DE-65B5-1C25-6AED390C569D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Citrix Online Launcher (HKLM-x32\...\{48947098-A67C-46D4-90C5-9F2F6F0F96FE}) (Version: 1.0.449 - Citrix)
Computer Security 14.176.101.0 (release) (x32 Version: 14.176.101.0 - F-Secure Corporation) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.4.0 - Conexant)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Facebook Gameroom 1.3.1.3 (HKLM-x32\...\{7E155A45-DE1A-46E0-A6B2-10FE1D8501FC}) (Version: 1.3.1.3 - Facebook)
F-Secure CCF Reputation (x32 Version: 2.1.1342.0 - F-Secure) Hidden
F-Secure CCF Scanning 1.73.275.1078 (release) (x32 Version: 1.73.275.1078 - F-Secure Corporation) Hidden
F-Secure Network CCF 1.04.214 (x32 Version: 1.04.214 - F-Secure Corporation) Hidden
F-Secure SafeSearch 1.11.101.0 (release) (x32 Version: 1.11.101.0 - F-Secure Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.96 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
GoToMeeting 8.5.0.6956 (HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\GoToMeeting) (Version: 8.5.0.6956 - CitrixOnline)
HP Dropbox Plugin (HKLM-x32\...\{714EA650-B1EC-4731-A7BF-50BB65C7C1A4}) (Version: 36.0.31.53050 - Hewlett-Packard Co.)
HP ENVY 5540 series Basissoftware van het apparaat (HKLM\...\{997868D8-1710-4D31-BC45-FF2AE6A79A0F}) (Version: 36.0.72.54013 - Hewlett-Packard Co.)
HP ENVY 5540 series Help (HKLM-x32\...\{0CD9B2A9-DDD3-4ECB-B282-FC19EA790D5F}) (Version: 35.0.0 - Hewlett Packard)
HP Google Drive Plugin (HKLM-x32\...\{30FEB472-BC59-4966-8B0C-F8C2045D413E}) (Version: 36.0.31.53050 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{FEC61634-7B6D-4859-83FD-DDF2E76570F9}) (Version: 12.6.14.19 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.16.112.1 - Intel Security)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{DC5673D2-228D-45BC-B9BB-9610CE67DFC0}) (Version: 17.1.1524.1353 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation)
Lenovo EasyCamera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1325.4_WHQL - Sonix)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4706 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.1.0.4706 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo PowerDVD12 (x32 Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.019.00 - Lenovo)
Lenovo Solution Center (HKLM\...\{7BB9AAFD-3350-49C8-92D1-833AAFF9E74E}) (Version: 3.4.003.013 - Lenovo)
Lenovo System Interface Foundation (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.076.00 - Lenovo)
LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.3 - Lenovo)
LenovoUtility (x32 Version: 3.0.0.3 - Lenovo) Hidden
Malwarebytes versie 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Metric Collection SDK (x32 Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Online Safety 2.176.4626.2945 (x32 Version: 2.176.4626.2945 - F-Secure Corporation) Hidden
OpenOffice 4.1.2 (HKLM-x32\...\{41E7B095-1618-49CF-972F-72B5D5235423}) (Version: 4.12.9782 - Apache Software Foundation)
Productverbeteringsonderzoek voor HP ENVY 5540 series (HKLM\...\{6761EEBE-B6C7-409F-A298-4D69509303EE}) (Version: 36.0.72.54013 - Hewlett-Packard Co.)
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.005.12 - Lenovo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 3.3.0.1103 - Lenovo)
Telenet Security Pack (HKLM-x32\...\F-Secure ServiceEnabler 44163) (Version: 2.76.211.0 - F-Secure Corporation)
Telenet Security Pack (x32 Version: 2.76.211.0 - F-Secure Corporation) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
User Manuals (x32 Version: 4.0.0.1 - Lenovo) Hidden
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Windows 10-upgradeassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3735606429-848728412-1924248078-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6441\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01B5DE5C-515B-4183-8E01-1D56A71E6DB4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {10AB29F4-D01F-4B55-A87D-C424DA8DED1D} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2017-02-14] (Lenovo)
Task: {1E7829D3-4490-439F-A3B5-1E1FBD2221B0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {25DA2478-BF77-43AB-8629-F55A8941F314} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
Task: {26C46363-F951-49E6-A655-B8A4F4193E58} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-03-24] (HP Inc.)
Task: {28E6B4DB-562B-4CB3-9105-33A55901CD6D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {5BDB387C-C91D-4430-8005-FE93DD0A1A31} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {797E7B4E-69DA-4BFD-9D2F-2BD2190069B8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1ff41d9c-9177-4433-90cd-2595a3c818a5 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {7A5AE4D4-7079-4855-92A4-1954DEADFA73} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {7B160A9D-06D8-4655-9F13-793932967777} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-13] (Google Inc.)
Task: {7B23CFFA-3A2B-4274-96CA-E43DEACEA67A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => Sc.exe START ImControllerService
Task: {8247A2DB-E2BE-407B-A0B0-3BED104A9CFC} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0e34cb20-e1b4-4d91-a588-a92d00ca6332 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {84F889C6-D366-49F1-8848-A12A2833FF01} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {88CD43F6-2BC4-42E3-8DCA-A6D95E028384} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [2015-05-28] (CyberLink Corp.)
Task: {969D36A8-5609-4FE1-B8DE-F94154B6314C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9c438be9-7062-4400-bade-6c739bb48e31 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {9CFBB1C3-E805-4FB1-8F82-FB0AB8BE7942} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [2017-02-14] ()
Task: {A4569353-A288-4D8A-A700-0958E68CBC90} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH5B22N12Q => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
Task: {AAF44CD4-8265-47FC-82FA-35C752A4DB62} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {AB70BAD5-F686-48D1-BA43-3E5A826C5FE9} - System32\Tasks\HPCeeScheduleForzenne => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {B397F4D5-2F50-47EC-9F1D-EE46E0EE207E} - System32\Tasks\HPCustParticipation HP ENVY 5540 series => C:\Program Files\HP\HP ENVY 5540 series\Bin\HPCustPartic.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {B6EE32FC-833C-49B4-88F0-040A9939DFE6} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2016-07-16] (Lenovo)
Task: {BB28493B-97C2-444E-8F4F-1390679B1BF5} - System32\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001 => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupload.exe [2017-05-06] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {C72FA807-390E-4A35-AAE9-5596D5767D22} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2017-02-14] (Lenovo)
Task: {CB7C7E32-3DB3-4292-92E6-8BB399BE0F7D} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [2016-04-22] (CyberLink Corp.)
Task: {DAC69B71-568C-48CE-8E64-2D26567BB490} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-13] (Google Inc.)
Task: {E196E1A2-679A-443E-A140-E64DDC550BC9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {E22CDE4A-332C-4C20-AB87-AC69578E60E1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {E699C086-6DE2-4739-A2CA-51C0E6A1CECA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {EEE21529-746E-4C5E-AD94-4B0F4EC1AEEB} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {F8541FEA-AE93-4172-9658-8AABFB31F5B2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {F8B01737-5D34-484C-BCE7-63EBBE9A1DDB} - System32\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001 => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupdate.exe [2017-05-06] (Citrix Online, a division of Citrix Systems, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001.job => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001.job => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupload.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForzenne.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-01-13 14:56 - 2017-01-13 14:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 14:56 - 2017-01-13 14:56 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-12-22 21:06 - 2017-01-20 08:47 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-11-02 00:05 - 2016-11-02 00:05 - 00401896 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-03-18 22:59 - 2017-03-19 04:31 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-09 19:56 - 2010-10-26 12:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2015-09-07 02:35 - 2015-09-07 02:35 - 00791848 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe
2015-09-07 02:35 - 2015-09-07 02:35 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll
2017-05-08 10:38 - 2017-05-08 10:38 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-05-08 10:38 - 2017-05-08 10:38 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-05-08 10:38 - 2017-05-08 10:38 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-05-03 12:21 - 2017-05-02 03:03 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\libglesv2.dll
2017-05-03 12:21 - 2017-05-02 03:03 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\libegl.dll
2016-12-31 17:22 - 2016-10-26 17:05 - 00074720 _____ () C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\FSAVHRES.eng
2016-10-25 11:01 - 2016-10-25 11:01 - 00254944 _____ () C:\Program Files (x86)\Telenet Security Pack\daas2.dll
2016-12-31 17:23 - 2017-02-09 20:12 - 00213984 _____ () C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Spam Control\fsas.dll
2016-12-09 14:45 - 2016-04-22 10:55 - 00884504 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\Kernel\Boomerang\UNO.dll
2016-12-09 14:44 - 2016-04-22 10:49 - 00081920 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ctypes.pyd
2017-02-15 18:58 - 2017-02-15 18:58 - 01162752 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\CefSharp.Core.dll
2017-02-15 18:58 - 2017-02-15 18:58 - 67197440 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\libcef.dll
2015-09-07 02:40 - 2014-07-04 06:35 - 00627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2014-07-04 21:35 - 2014-07-04 21:35 - 00016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2017-02-15 18:58 - 2017-02-15 18:58 - 00752640 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll
2017-02-15 18:58 - 2017-02-15 18:58 - 01886208 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\libglesv2.dll
2017-02-15 18:58 - 2017-02-15 18:58 - 00078848 _____ () C:\Users\zenne\AppData\Local\Facebook\Games\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 13:04 - 2016-11-05 13:21 - 00000828 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 195.130.130.3 - 195.130.131.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run32: => "snp2uvc"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A56D16CE-91AF-4A37-84B6-538C8A08AA03}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{95F8E9E1-ACC0-48E7-90D8-AEF8E49D84DE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{630AE36B-5F3D-4E4E-A324-BB896262EBA4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4C7EA425-EF32-4A13-BBBF-F7C837EC8A7C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{69209359-1746-493C-81AA-4587356965DC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{273E07FC-7CCF-4D27-9E60-F04AE7BFED12}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{F1F5DEFD-BBBF-47BD-8724-8D7B12EE7CC2}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{0C540AE0-8B1D-437D-A0CF-886A6F78B57F}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{FD9D6671-55E3-4531-BF9D-B5C857398985}] => (Allow) C:\Program Files\HP\HP ENVY 5540 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{32E04CA2-571B-4FB9-8077-EAF536B5566A}] => (Allow) LPort=5357
FirewallRules: [{E5711485-7686-468B-9467-5BAACE1A45A7}] => (Allow) C:\Program Files\HP\HP ENVY 5540 series\Bin\DeviceSetup.exe
FirewallRules: [{EEDB141F-A0F9-4810-A1B1-9B79F97DAFA2}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{B8054FDC-A8F6-405C-B8F1-DF87C757426E}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{B350C51E-8ACC-4C0D-8B0A-28233E4EA2E3}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/10/2017 04:42:09 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma chrome.exe, versie 58.0.3029.96 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 1e84

Starttijd: 01d2c99aaf96ec2d

Eindtijd: 4294967295

Toepassingspad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Rapport-id: 19786a4a-8f18-4b50-9981-2adebd2d823f

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (05/10/2017 04:29:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname LAPTOP-VK36L169.local already in use; will try LAPTOP-VK36L169-2.local instead

Error: (05/10/2017 04:29:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 16 LAPTOP-VK36L169.local. AAAA 2A02:1810:AC24:0200:ED2F:12FD:A907:8217

Error: (05/10/2017 04:29:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:ED2F:12FD:A907:8217:5353 16 LAPTOP-VK36L169.local. AAAA 2A02:1810:AC24:0200:7222:EC29:67BB:3223

Error: (05/10/2017 10:59:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: LAPTOP-VK36L169)
Description: Het pakket Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe+ContentProcess#{00061404-0001-0000-2a12-310300000000} is beëindigd omdat het onderbreken te lang duurde.

Error: (05/09/2017 08:29:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-VK36L169)
Description: Het activeren van de app Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App is mislukt door de fout -2147024865. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

Error: (05/09/2017 08:29:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-VK36L169)
Description: Het activeren van de app Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

Error: (05/09/2017 08:25:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma chrome.exe, versie 58.0.3029.96 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 1530

Starttijd: 01d2c8f09083ca7f

Eindtijd: 60000

Toepassingspad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Rapport-id: 806532ef-8673-451f-a6e6-6c9f7f1195c7

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (05/09/2017 08:25:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma chrome.exe, versie 58.0.3029.96 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 2778

Starttijd: 01d2c8f15eb6c517

Eindtijd: 60000

Toepassingspad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Rapport-id: f9c67562-7cce-4f2d-88b7-d041a4ca205d

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (05/09/2017 08:04:36 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Kan de status van clusterknooppunt niet ophalen. De geretourneerde foutcode: 0x8007085A


System errors:
=============
Error: (05/11/2017 01:09:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:43:54 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:43:54 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:43:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De CldFlt-service kan vanwege de volgende fout niet worden gestart:
De aanvraag wordt niet ondersteund.

Error: (05/11/2017 11:43:23 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: De service Delivery Optimization is niet juist afgesloten na de ontvangst van een besturingselement voor afsluiten.

Error: (05/11/2017 11:24:40 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:02:10 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: De server Microsoft.Bluetooth.Profiles.Gatt.Interface.GattServerRegistrar heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (05/11/2017 11:00:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:00:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen application-specific wordt de machtiging Activation niet verleend aan Local voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (Using LRPC) die wordt uitgevoerd in de toepassingscontainer Unavailable SID (Unavailable). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/11/2017 11:00:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De CldFlt-service kan vanwege de volgende fout niet worden gestart:
De aanvraag wordt niet ondersteund.


CodeIntegrity:
===================================
Date: 2017-05-09 19:57:15.747
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.

Date: 2017-05-09 19:57:15.742
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.

Date: 2017-05-09 19:57:15.737
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.

Date: 2017-05-09 19:57:15.732
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz
Percentage of memory in use: 61%
Total physical RAM: 4011.08 MB
Available physical RAM: 1548.27 MB
Total Virtual: 5419.08 MB
Available Virtual: 2364.67 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:96.69 GB) (Free:34.61 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 743C7BF8)

Partition: GPT.

==================== End of Addition.txt ============================

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

11 mei 2017, 21:23

Hallo,

Ik zie niet direct een infectie, maar ik wil graag het hele logje van FRST.txt dit zou je in twee delen moeten plaatsen omdat het voor één onderwerp te groot is.
Handleiding: http://www.seniorennet.be/forum/viewtopic.php?t=197564

Maar geef eerst antwoord op deze vragen:
Dan krijg ik steeds vermelding dat malwere niet kan opgestart worden.
Heeft er ooit opgestaan, kon niet helemaal verwijderen en dit is het resultaat.
Heb je het over Malwerbytes?
Gisteren update windows 10 gedaan en nu blijft mijn laptop regelmatig hangen
En zijn de problemen na de update begonnen?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

11 mei 2017, 21:58

Oef, ben hier terug.

Om eerst te antwoorden : ja het gaat over malwerebytes . ik had per ongeluk de betaalversie geklikt en wilde die deïnstalleren wat niet helemaal lukte met gevolg dat ik dus telkens bij opstart die vermelding krijg.

De problemen zijn sinds gisteren toegenomen, is dit toeval? Weet het niet.
Had ook ccleaner gedraait.

Nu kan ik bijna niets openen op internet. Alleen als ik 1 venster open en dan duurt het nog heel lang.

Hiervoor kon ik verschillende vensters openen en sinds gisteren ook dat mijn wifi telkens uitvalt.
Normaal start die telkens mee op en nu niet.
Heb het al veranderd .

Heb systeemherstel gedaan zoals gezegd.

Van FRST heb ik doorgestuurd hetgeen ik heb met txt en addicton heet laatste txt hoort volgens mij daar ook bij.

Dit zouden er dan toch 2 zijn?
Weet het verder niet en kan FRSTniet meer laten draaien, venster opent niet op internet.

Hoop dat je nu wat meer weet?

Sue

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

12 mei 2017, 09:10

Sue schreef: Om eerst te antwoorden : ja het gaat over malwerebytes . ik had per ongeluk de betaalversie geklikt en wilde die deïnstalleren wat niet helemaal lukte met gevolg dat ik dus telkens bij opstart die vermelding krijg.
Gebruik hier MB-Clean tool voor.
Heb systeemherstel gedaan zoals gezegd.
Heb je dit voor of na de update van Windows 10 gedaan?
Van FRST heb ik doorgestuurd hetgeen ik heb met txt en addicton heet laatste txt hoort volgens mij daar ook bij.
Je heb je juiste logjes geplaatst maar de inhoud van het txt logje is zo graat dat je dat in twee delen moet plaatsen anders past het niet per onderwerp.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

12 mei 2017, 11:03

OK begin het te snappen, pfff...

Om de malwarebytes te verwijderen heb ik gedowload. Maar de backup van mijn licentiesleutel ?Waar kan ik die vinden?
Dan zal ik eens heel hard moeten nadenken

Dat systeemherstel is slechte verwoording van mij. Moest daar aanpassing doen over aangeven hersteldatum. Dat heb ik gedaan en geen systeemherstel.

Dan moet ik nu dus de logjes in stukjes doorgeven? Dat is toch wat je bedoelt hé.
Ga dit dan in verschillende berichten plaatsen.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2017
Ran by zenne (administrator) on LAPTOP-VK36L169 (11-05-2017 13:27:33)
Running from C:\Users\zenne\Downloads
Loaded Profiles: zenne (Available Profiles: zenne)
Platform: Windows 10 Home Version 1703 (X64) Language: Engels (Verenigde Staten)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Reputation\fsorsp.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\fsgk32.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Common\FSMA32.EXE
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Common\FSHDLL64.EXE
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\fssm32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(F-Secure Corporation) C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\Lenovo\LenovoUtility\utility.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe
(Facebook) C:\Users\zenne\AppData\Local\Facebook\Games\FacebookGameroom.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(The CefSharp Authors) C:\Users\zenne\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Trend Micro Inc.) C:\Users\zenne\Downloads\HijackThis.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Farbar) C:\Users\zenne\Downloads\FRST64 (2).exe

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

12 mei 2017, 11:04

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3805928 2016-08-15] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2015-09-07] ()
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-04-22] (CyberLink Corp.)
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\Run: [HP ENVY 5540 series (NET)] => C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe [3651080 2015-03-09] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [804352 2017-03-18] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Startup: C:\Users\zenne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-03-13]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\zenne\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 195.130.130.3 195.130.131.3
Tcpip\..\Interfaces\{56344a14-3bd4-4f87-ab7a-8e3cf465b8e7}: [DhcpNameServer] 150.207.1.2
Tcpip\..\Interfaces\{64647e0e-49a0-4bb6-90c5-00bcbf1d9894}: [DhcpNameServer] 195.130.130.3 195.130.131.3

Internet Explorer:
==================
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-3735606429-848728412-1924248078-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26] (Intel Security)
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https64.dll [2017-05-11] (F-Secure Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26] (Intel Security)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll [2017-05-11] (F-Secure Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26] (Intel Security)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26] (Intel Security)

FireFox:
========
FF DefaultProfile: vacqeld8.default
FF ProfilePath: C:\Users\zenne\AppData\Roaming\TomTom\HOME\Profiles\2mxgpdtl.default [2017-04-15]
FF ProfilePath: C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default [2017-05-11]
FF Homepage: Mozilla\Firefox\Profiles\vacqeld8.default -> hxxps://play.google.com/store/apps/details?id=be.vmma.vtm.hetnieuws
hxxps://www.facebook.com/
hxxps://support.google.com/websearch/answer/463?utm_source=google.com&utm_medium=callout&utm_campaign=FFDHP
hxxps://www.google.be/?gfe_rd=cr&ei=a0McWMG5JMzU8gfG_I_QDA
FF Session Restore: Mozilla\Firefox\Profiles\vacqeld8.default -> is enabled.
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2016-09-23]
FF Extension: (FireTube) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\jid0-w1UVmoLd6VGudaIERuRJCPQx1dQ@jetpack.xpi [2016-09-01]
FF Extension: (Emoji Cheatsheet for GitHub, Basecamp etc.) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\jid1-Xo5SuA6qc1DFpw@jetpack.xpi [2016-09-01]
FF Extension: (YouTube Video Player Pop Out) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\{00f7ab9f-62f4-4145-b2f9-38d579d639f6}.xpi [2016-11-04]
FF Extension: (Photo Zoom for Facebook™) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\{7c6cdf7c-8ea8-4be7-ae5a-0b3effe14d66}.xpi [2016-10-23]
FF Extension: (Video DownloadHelper) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2016-10-23]
FF Extension: (Adblock Plus) - C:\Users\zenne\AppData\Roaming\Mozilla\Firefox\Profiles\vacqeld8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-25]
FF HKLM\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi [2017-05-11]
FF HKLM-x32\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-3735606429-848728412-1924248078-1001: @citrixonline.com/appdetectorplugin -> C:\Users\zenne\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2017-03-12] (Citrix Online)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.topics.be/mijn-nieuws/","hxxps://ca ... 4126+24123"
CHR NewTab: Default -> Not-active:"chrome-extension://mabloidgodmbnmnhoenmhlcjkfelomgp/stubby.html"
CHR Profile: C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default [2017-05-11]
CHR Extension: (Google Presentaties) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-13]
CHR Extension: (Google Documenten) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-13]
CHR Extension: (Google Drive) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-13]
CHR Extension: (Blokkeer Afzender) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\bklnjbfcmglhiaoppcckdodanccbelcg [2016-12-31]
CHR Extension: (YouTube) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-13]
CHR Extension: (Social Messenger, Social News) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbhigdfhmhhdieikofamakgecjalgdmd [2016-12-26]
CHR Extension: (Pinterest Enhanced) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\egpachgbfnbpkceigfpcpicekmiehame [2016-12-13]
CHR Extension: (Google Spreadsheets) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-13]
CHR Extension: (Oye) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gajdfpoljhjjpikancdlelalledeianb [2016-12-31]
CHR Extension: (Offline Documenten) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-13]
CHR Extension: (Inbox by Gmail) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkljgfmjocfalijkgoogmfffkhmkbgol [2016-12-13]
CHR Extension: (Search by F-Secure) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkmikccifolokanfakbeadbmgchomeli [2016-12-31]
CHR Extension: (OneNote Web Clipper) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2017-04-29]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2016-12-31]
CHR Extension: (Free Cell Solitaire) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnjgfflolfogjcejlkmkphkcohnmjdfd [2016-12-13]
CHR Extension: (EasyDocMerge) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp [2017-04-12]
CHR Extension: (Google Mail Checker) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-12-13]
CHR Extension: (Sideplayer™) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nicokganngdkmjiejngaacdlllkdpikn [2016-12-13]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Hover Zoom+) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pccckmaobkjjboncdfnnofkonhgpceea [2017-04-23]
CHR Extension: (Gmail) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-13]
CHR Extension: (Chrome Media Router) - C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-28]
CHR Profile: C:\Users\zenne\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-05-10]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3735606429-848728412-1924248078-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gkmikccifolokanfakbeadbmgchomeli] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - hxxps://clients2.google.com/service/update2/crx

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

12 mei 2017, 11:05

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134888 2016-08-15] (ELAN Microelectronics Corp.)
R2 fshoster; C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe [181216 2016-10-25] (F-Secure Corporation)
R3 FSMA; C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Common\FSMA32.EXE [218080 2016-10-26] (F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe [181216 2016-10-25] (F-Secure Corporation)
R2 FSORSPClient; C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Reputation\fsorsp.exe [67640 2017-05-09] (F-Secure Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-22] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation)
R2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [57160 2017-04-25] (Lenovo Group Limited)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273216 2017-02-14] (Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-11-29] ()
S3 ShareItSvc; C:\Program Files (x86)\Lenovo\SHAREit\Shareit.Service.exe [31704 2016-03-31] (SHAREit Technologies Co.Ltd)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [996736 2017-04-18] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16160 2017-04-18] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86776 2017-04-18] (McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-11-29] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [32344 2016-08-15] (ELAN Microelectronic Corp.)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\minifilter\FSgk.sys [229080 2017-02-09] (F-Secure Corporation)
R1 F-Secure HIPS; C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\HIPS\drivers\fshs.sys [106704 2017-04-24] (F-Secure Corporation)
R0 fsbts; C:\WINDOWS\System32\Drivers\fsbts.sys [73928 2016-12-31] ()
R3 fsni; C:\Program Files (x86)\Telenet Security Pack\apps\CCF_Scanning\bin\fsni64.sys [120016 2017-05-11] (F-Secure Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [231168 2017-01-13] (Intel Corporation)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251848 2017-05-11] (Malwarebytes)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3517200 2016-10-20] (Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-12-07] (Realsil Semiconductor Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [1772008 2016-06-08] (Sonix Tech. Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-11 13:27 - 2017-05-11 13:27 - 02429440 _____ (Farbar) C:\Users\zenne\Downloads\FRST64 (2).exe
2017-05-11 13:27 - 2017-05-11 13:27 - 00023147 _____ C:\Users\zenne\Downloads\FRST.txt
2017-05-11 13:27 - 2017-05-11 13:27 - 00000000 ____D C:\FRST
2017-05-11 13:26 - 2017-05-11 13:26 - 02429440 _____ (Farbar) C:\Users\zenne\Downloads\FRST64.exe
2017-05-11 13:26 - 2017-05-11 13:26 - 02429440 _____ (Farbar) C:\Users\zenne\Downloads\FRST64 (1).exe
2017-05-11 13:26 - 2017-05-11 13:26 - 01769984 _____ (Farbar) C:\Users\zenne\Downloads\FRST (1).exe
2017-05-11 13:24 - 2017-05-11 13:25 - 01769984 _____ (Farbar) C:\Users\zenne\Downloads\FRST.exe
2017-05-11 11:49 - 2017-05-11 11:49 - 00000000 ____D C:\Users\zenne\Downloads\Hijack
2017-05-11 11:40 - 2017-05-11 11:40 - 00388608 _____ (Trend Micro Inc.) C:\Users\zenne\Downloads\HijackThis.exe
2017-05-11 11:00 - 2017-05-11 11:00 - 00000000 ___HD C:\OneDriveTemp
2017-05-10 05:50 - 2017-05-10 05:50 - 00000000 ____D C:\Windows.old
2017-05-10 05:49 - 2017-05-10 05:49 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-10 05:49 - 2017-05-10 05:49 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-05-10 05:49 - 2017-05-10 05:49 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-05-10 05:49 - 2017-05-10 05:49 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-05-10 05:49 - 2017-05-10 05:49 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-05-10 05:49 - 2017-05-10 05:49 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-10 05:49 - 2017-05-10 05:49 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-05-10 05:49 - 2017-05-10 05:49 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-05-10 05:49 - 2017-05-10 05:49 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-05-10 05:49 - 2017-05-10 05:49 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-10 05:49 - 2017-05-10 05:49 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-10 05:49 - 2017-05-10 05:49 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-10 05:45 - 2017-05-11 11:47 - 00975292 _____ C:\WINDOWS\system32\perfh013.dat
2017-05-10 05:45 - 2017-05-11 11:47 - 00205360 _____ C:\WINDOWS\system32\perfc013.dat
2017-05-10 05:45 - 2017-05-10 05:45 - 00347800 _____ C:\WINDOWS\system32\perfi013.dat
2017-05-10 05:45 - 2017-05-10 05:45 - 00045450 _____ C:\WINDOWS\system32\perfd013.dat
2017-05-10 05:45 - 2017-05-10 05:45 - 00000000 ____D C:\WINDOWS\SysWOW64\nl
2017-05-10 05:45 - 2017-05-10 05:45 - 00000000 ____D C:\WINDOWS\system32\nl
2017-05-10 05:45 - 2017-05-09 20:00 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-05-10 05:45 - 2017-03-18 08:00 - 09481728 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0013.dll
2017-05-10 05:42 - 2017-05-09 19:54 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-05-10 05:41 - 2017-05-10 05:41 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-05-10 05:40 - 2017-05-10 05:40 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-05-10 05:40 - 2017-05-10 05:40 - 00000000 ____D C:\Program Files\MSBuild
2017-05-10 05:40 - 2017-05-10 05:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-05-10 05:40 - 2017-05-10 05:40 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-05-10 05:39 - 2017-02-10 21:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-05-10 05:39 - 2017-02-10 21:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-05-10 05:39 - 2017-02-10 21:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-05-10 05:39 - 2017-02-10 21:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-05-10 05:39 - 2017-02-10 21:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-05-10 05:39 - 2017-02-10 21:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-05-09 20:24 - 2017-05-09 20:24 - 00000000 ____D C:\Users\zenne\AppData\Local\DBG
2017-05-09 20:12 - 2017-05-09 20:12 - 00000000 ____D C:\ProgramData\USOShared
2017-05-09 20:12 - 2017-05-09 20:12 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-05-09 20:10 - 2017-05-09 20:10 - 00000020 ___SH C:\Users\zenne\ntuser.ini
2017-05-09 20:09 - 2017-05-09 20:09 - 00000000 _SHDL C:\Users\Default\My Documents
2017-05-09 20:07 - 2017-05-09 20:08 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-05-09 20:07 - 2017-05-09 20:08 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-05-09 20:06 - 2017-05-11 11:47 - 02257850 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-09 20:04 - 2017-05-11 11:43 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-09 20:04 - 2017-05-11 10:30 - 00004198 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{40B10BBB-E365-4230-8303-2EF853737BA2}
2017-05-09 20:04 - 2017-05-09 20:13 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-05-09 20:04 - 2017-05-09 20:10 - 00004496 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-09 20:04 - 2017-05-09 20:04 - 00003502 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-05-09 20:04 - 2017-05-09 20:04 - 00003284 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001
2017-05-09 20:04 - 2017-05-09 20:04 - 00003278 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-05-09 20:04 - 2017-05-09 20:04 - 00003188 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001
2017-05-09 20:04 - 2017-05-09 20:04 - 00002800 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForzenne
2017-05-09 20:04 - 2017-05-09 20:04 - 00002668 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP ENVY 5540 series
2017-05-09 20:04 - 2017-05-09 20:04 - 00002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-05-09 20:04 - 2017-05-09 20:04 - 00002212 _____ C:\WINDOWS\System32\Tasks\PDVDServ12 Task
2017-05-09 20:04 - 2017-05-09 20:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-05-09 20:04 - 2017-05-09 20:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2017-05-09 20:04 - 2017-05-09 20:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\CyberLink
2017-05-09 20:04 - 2017-05-09 20:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2017-05-09 20:01 - 2017-05-09 20:01 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-05-09 19:59 - 2017-05-09 20:02 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-05-09 19:58 - 2017-05-10 17:36 - 00000000 ____D C:\Users\zenne
2017-05-09 19:58 - 2017-05-09 19:58 - 00000000 _SHDL C:\Users\zenne\My Documents
2017-05-09 19:58 - 2017-05-09 19:58 - 00000000 _SHDL C:\Users\zenne\Documents\My Videos
2017-05-09 19:58 - 2017-05-09 19:58 - 00000000 _SHDL C:\Users\zenne\Documents\My Pictures
2017-05-09 19:58 - 2017-05-09 19:58 - 00000000 _SHDL C:\Users\zenne\Documents\My Music
2017-05-09 19:57 - 2017-05-09 19:57 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2017-05-09 19:57 - 2017-05-09 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2017-05-09 19:56 - 2017-05-09 19:56 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-05-09 19:56 - 2017-05-09 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-05-09 19:56 - 2017-05-09 19:56 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2017-05-09 19:56 - 2014-12-09 20:11 - 00423128 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\SASrv.exe
2017-05-09 19:56 - 2014-10-20 14:54 - 00207576 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2017-05-09 19:56 - 2014-04-25 10:22 - 00002440 _____ C:\WINDOWS\system32\Drivers\SamSfPa.dat
2017-05-09 19:55 - 2017-05-11 11:43 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-05-09 19:55 - 2017-05-09 20:02 - 00000000 ____D C:\Program Files\Elantech
2017-05-09 19:55 - 2017-05-09 19:59 - 00000000 ____D C:\Program Files\Intel
2017-05-09 19:55 - 2017-05-09 19:56 - 00000000 ____D C:\ProgramData\Conexant
2017-05-09 19:55 - 2017-05-09 19:56 - 00000000 ____D C:\Program Files\CONEXANT
2017-05-09 19:55 - 2017-05-09 19:55 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-05-09 19:55 - 2017-05-09 19:55 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ETDSMBus_01011.Wdf
2017-05-09 19:55 - 2017-05-09 19:55 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-05-09 19:55 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-05-09 19:55 - 2016-11-02 00:05 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2017-05-09 19:55 - 2016-11-02 00:05 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-05-09 19:54 - 2017-05-11 13:09 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-09 19:54 - 2017-05-11 11:43 - 00256320 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-09 19:02 - 2017-05-10 11:14 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-09 19:02 - 2017-05-09 19:21 - 00000000 ___HD C:\$WINDOWS.~BT
2017-05-09 18:40 - 2017-05-09 19:02 - 00000000 ____D C:\ESD
2017-05-09 18:39 - 2017-05-09 18:39 - 00000000 ___HD C:\$Windows.~WS
2017-05-09 18:36 - 2017-05-09 18:38 - 18357776 _____ (Microsoft Corporation) C:\Users\zenne\Downloads\MediaCreationTool.exe
2017-05-09 11:27 - 2017-05-09 11:27 - 22176793 _____ C:\Users\zenne\Downloads\NL_Inspiration.pdf
2017-05-02 17:47 - 2017-05-02 17:59 - 00000000 ____D C:\Users\zenne\Documents\ME
2017-04-28 11:02 - 2017-05-06 11:13 - 00001235 _____ C:\Users\Public\Desktop\True Key.lnk
2017-04-27 18:58 - 2017-04-27 18:58 - 00000000 ____D C:\Users\zenne\AppData\Roaming\Google
2017-04-25 16:54 - 2017-04-25 16:54 - 00257856 _____ (Lenovo Group Limited) C:\WINDOWS\system32\iMDriverHelper.dll
2017-04-18 17:46 - 2017-04-18 17:46 - 00000000 ____D C:\Users\zenne\Downloads\bijlagen
2017-04-18 17:40 - 2017-04-18 17:40 - 02177734 _____ C:\Users\zenne\Downloads\bijlagen.zip
2017-04-15 13:05 - 2017-04-15 13:05 - 00132369 _____ C:\Users\zenne\Downloads\sajnl20172190328 (1).pdf
2017-04-12 12:16 - 2017-03-28 07:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2017-04-12 12:16 - 2017-03-28 07:28 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

12 mei 2017, 11:06

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-11 13:26 - 2015-12-09 19:03 - 00000000 ____D C:\Users\zenne\Documents\Knipsels
2017-05-11 13:10 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-11 11:56 - 2016-12-22 21:06 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-05-11 11:49 - 2016-12-09 14:36 - 00338573 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2017-05-11 11:47 - 2016-07-16 14:42 - 00000000 ____D C:\Users\zenne\AppData\Local\VirtualStore
2017-05-11 11:44 - 2015-12-13 11:50 - 00000000 ___RD C:\Users\zenne\OneDrive
2017-05-11 11:43 - 2017-03-18 13:40 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-05-11 11:43 - 2016-12-22 21:06 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-11 11:43 - 2015-12-07 15:44 - 00000000 __SHD C:\Users\zenne\IntelGraphicsProfiles
2017-05-11 10:53 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-11 10:48 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-11 10:18 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-10 11:17 - 2016-08-03 19:51 - 00000000 ____D C:\Windows10Upgrade
2017-05-10 11:16 - 2015-12-14 16:02 - 00000000 ____D C:\Users\zenne\Documents\CyberLink
2017-05-10 11:14 - 2016-12-31 17:34 - 00000000 ____D C:\Users\zenne\AppData\Local\CrashDumps
2017-05-10 11:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-10 10:45 - 2016-07-16 14:42 - 00000000 ____D C:\Users\zenne\AppData\Local\Packages
2017-05-10 10:31 - 2016-07-16 15:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-10 10:27 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-10 10:27 - 2016-07-16 15:15 - 156335152 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-10 10:23 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-05-10 05:54 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-05-10 05:50 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-05-10 05:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-10 05:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-10 05:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-10 05:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Com
2017-05-10 05:45 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-05-10 05:45 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\servicing
2017-05-09 20:13 - 2016-07-16 14:45 - 00002390 _____ C:\Users\zenne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-05-09 20:12 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-05-09 20:11 - 2016-08-03 21:22 - 00000000 ____D C:\Users\zenne\AppData\Local\ConnectedDevicesPlatform
2017-05-09 20:10 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-09 20:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-09 20:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-09 20:10 - 2015-07-16 17:49 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-09 20:08 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-05-09 20:07 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-05-09 20:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-05-09 20:05 - 2016-12-13 12:49 - 00002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-09 20:04 - 2017-03-19 04:31 - 00000000 ____D C:\WINDOWS\HoloShell
2017-05-09 20:04 - 2017-03-18 23:03 - 00000000 __RSD C:\WINDOWS\Media
2017-05-09 20:04 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-05-09 20:04 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-09 20:04 - 2017-03-12 13:45 - 00000690 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001.job
2017-05-09 20:04 - 2017-03-12 13:45 - 00000594 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001.job
2017-05-09 20:04 - 2017-01-06 18:55 - 00000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleForzenne.job
2017-05-09 20:04 - 2016-07-16 14:21 - 00022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-05-09 20:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-05-09 20:02 - 2017-03-13 16:09 - 00000000 ____D C:\Users\zenne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2017-05-09 20:02 - 2017-01-06 18:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-05-09 20:02 - 2017-01-06 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2017-05-09 20:02 - 2017-01-05 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP190 series Manual
2017-05-09 20:02 - 2016-12-31 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telenet Security Pack
2017-05-09 20:02 - 2016-12-22 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-05-09 20:02 - 2016-12-22 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-09 20:02 - 2016-12-09 14:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-05-09 20:02 - 2016-08-31 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-05-09 20:02 - 2016-08-08 17:36 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2017-05-09 20:02 - 2016-07-17 00:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-05-09 20:02 - 2016-07-17 00:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2017-05-09 20:01 - 2016-07-16 23:31 - 00000000 ____D C:\Users\Default.migrated
2017-05-09 20:00 - 2017-03-19 04:29 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2017-05-09 20:00 - 2017-03-19 04:29 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2017-05-09 20:00 - 2017-03-19 04:29 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2017-05-09 20:00 - 2017-03-19 04:29 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2017-05-09 20:00 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-05-09 20:00 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2017-05-09 20:00 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-05-09 20:00 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-05-09 20:00 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-05-09 19:59 - 2017-03-19 04:30 - 00000000 ____D C:\WINDOWS\OCR
2017-05-09 19:59 - 2017-03-19 04:29 - 00000000 ____D C:\WINDOWS\system32\winrm
2017-05-09 19:59 - 2017-03-19 04:29 - 00000000 ____D C:\WINDOWS\system32\WCN
2017-05-09 19:59 - 2017-03-19 04:29 - 00000000 ____D C:\WINDOWS\system32\slmgr
2017-05-09 19:59 - 2017-03-19 04:29 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\dsc
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\IME
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\System
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-09 19:59 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-09 19:59 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-09 19:59 - 2016-08-06 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LenovoSHAREit
2017-05-09 19:59 - 2016-08-03 21:08 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-05-09 19:59 - 2015-09-07 03:17 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2017-05-09 19:57 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-05-09 19:02 - 2016-08-03 20:23 - 00000036 _____ C:\WINDOWS\progress.ini
2017-05-09 18:48 - 2016-08-03 19:51 - 00000000 ___HD C:\$GetCurrent
2017-05-09 18:37 - 2016-08-03 19:51 - 00000738 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-upgradeassistent.lnk
2017-05-09 18:37 - 2016-08-03 19:51 - 00000726 _____ C:\Users\zenne\Desktop\Windows 10-upgradeassistent.lnk
2017-05-07 10:44 - 2015-12-27 14:17 - 00000000 ____D C:\Users\zenne\Documents\facturen
2017-05-06 11:13 - 2016-11-01 16:47 - 00001249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2017-05-06 11:13 - 2016-11-01 15:15 - 00000000 ____D C:\Program Files\TrueKey
2017-05-04 13:18 - 2016-08-09 17:44 - 00000000 ____D C:\Users\zenne\Documents\Schilderen
2017-05-03 18:07 - 2016-01-03 15:14 - 00000000 ____D C:\Users\zenne\Documents\Geluidsopnamen
2017-04-29 03:05 - 2017-03-18 23:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-29 03:05 - 2017-03-18 23:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-26 15:10 - 2016-07-13 17:46 - 00000000 ____D C:\Users\zenne\Downloads\doe interieur
2017-04-20 23:04 - 2015-09-07 02:37 - 00000000 ____D C:\ProgramData\McAfee
2017-04-15 12:43 - 2016-12-21 14:21 - 00000000 ____D C:\Users\zenne\AppData\Local\ElevatedDiagnostics
2017-04-15 12:35 - 2016-07-16 14:58 - 00000000 ____D C:\Users\zenne\AppData\Local\Downloaded Installations
2017-04-15 10:23 - 2016-11-01 16:46 - 00000000 ____D C:\Program Files (x86)\McAfee
2017-04-15 10:22 - 2016-08-31 15:40 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-04-15 10:22 - 2016-08-31 15:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

==================== Files in the root of some directories =======

2016-12-31 16:48 - 2016-12-31 16:48 - 0000036 _____ () C:\Users\zenne\AppData\Local\housecall.guid.cache
2017-01-06 18:32 - 2017-01-06 18:32 - 0000057 _____ () C:\ProgramData\Ament.ini
2017-05-09 19:56 - 2017-05-09 19:56 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-05-09 19:54

==================== End of FRST.txt ============================


Dit is het eerste, heb nog van een tweede dat volgt

Sue
Lid geworden op: 22 jun 2005, 15:05
Locatie: Aarschot

12 mei 2017, 11:07

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-05-2017
Ran by zenne (11-05-2017 13:28:15)
Running from C:\Users\zenne\Downloads
Windows 10 Home Version 1703 (X64) (2017-05-09 18:09:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3735606429-848728412-1924248078-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3735606429-848728412-1924248078-503 - Limited - Disabled)
Guest (S-1-5-21-3735606429-848728412-1924248078-501 - Limited - Disabled)
zenne (S-1-5-21-3735606429-848728412-1924248078-1001 - Administrator - Enabled) => C:\Users\zenne

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Computer Bescherming by F-Secure (Enabled - Up to date) {0F70A6C4-76E4-6A3B-2695-519F428B1C20}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Computer Bescherming by F-Secure (Enabled - Up to date) {B4114720-50DE-65B5-1C25-6AED390C569D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Citrix Online Launcher (HKLM-x32\...\{48947098-A67C-46D4-90C5-9F2F6F0F96FE}) (Version: 1.0.449 - Citrix)
Computer Security 14.176.101.0 (release) (x32 Version: 14.176.101.0 - F-Secure Corporation) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.4.0 - Conexant)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Facebook Gameroom 1.3.1.3 (HKLM-x32\...\{7E155A45-DE1A-46E0-A6B2-10FE1D8501FC}) (Version: 1.3.1.3 - Facebook)
F-Secure CCF Reputation (x32 Version: 2.1.1342.0 - F-Secure) Hidden
F-Secure CCF Scanning 1.73.275.1078 (release) (x32 Version: 1.73.275.1078 - F-Secure Corporation) Hidden
F-Secure Network CCF 1.04.214 (x32 Version: 1.04.214 - F-Secure Corporation) Hidden
F-Secure SafeSearch 1.11.101.0 (release) (x32 Version: 1.11.101.0 - F-Secure Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.96 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
GoToMeeting 8.5.0.6956 (HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\GoToMeeting) (Version: 8.5.0.6956 - CitrixOnline)
HP Dropbox Plugin (HKLM-x32\...\{714EA650-B1EC-4731-A7BF-50BB65C7C1A4}) (Version: 36.0.31.53050 - Hewlett-Packard Co.)
HP ENVY 5540 series Basissoftware van het apparaat (HKLM\...\{997868D8-1710-4D31-BC45-FF2AE6A79A0F}) (Version: 36.0.72.54013 - Hewlett-Packard Co.)
HP ENVY 5540 series Help (HKLM-x32\...\{0CD9B2A9-DDD3-4ECB-B282-FC19EA790D5F}) (Version: 35.0.0 - Hewlett Packard)
HP Google Drive Plugin (HKLM-x32\...\{30FEB472-BC59-4966-8B0C-F8C2045D413E}) (Version: 36.0.31.53050 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{FEC61634-7B6D-4859-83FD-DDF2E76570F9}) (Version: 12.6.14.19 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.16.112.1 - Intel Security)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{DC5673D2-228D-45BC-B9BB-9610CE67DFC0}) (Version: 17.1.1524.1353 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation)
Lenovo EasyCamera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1325.4_WHQL - Sonix)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4706 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.1.0.4706 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo PowerDVD12 (x32 Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.019.00 - Lenovo)
Lenovo Solution Center (HKLM\...\{7BB9AAFD-3350-49C8-92D1-833AAFF9E74E}) (Version: 3.4.003.013 - Lenovo)
Lenovo System Interface Foundation (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.076.00 - Lenovo)
LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.3 - Lenovo)
LenovoUtility (x32 Version: 3.0.0.3 - Lenovo) Hidden
Malwarebytes versie 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Metric Collection SDK (x32 Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3735606429-848728412-1924248078-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Online Safety 2.176.4626.2945 (x32 Version: 2.176.4626.2945 - F-Secure Corporation) Hidden
OpenOffice 4.1.2 (HKLM-x32\...\{41E7B095-1618-49CF-972F-72B5D5235423}) (Version: 4.12.9782 - Apache Software Foundation)
Productverbeteringsonderzoek voor HP ENVY 5540 series (HKLM\...\{6761EEBE-B6C7-409F-A298-4D69509303EE}) (Version: 36.0.72.54013 - Hewlett-Packard Co.)
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.005.12 - Lenovo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 3.3.0.1103 - Lenovo)
Telenet Security Pack (HKLM-x32\...\F-Secure ServiceEnabler 44163) (Version: 2.76.211.0 - F-Secure Corporation)
Telenet Security Pack (x32 Version: 2.76.211.0 - F-Secure Corporation) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
User Manuals (x32 Version: 4.0.0.1 - Lenovo) Hidden
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Windows 10-upgradeassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3735606429-848728412-1924248078-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6441\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01B5DE5C-515B-4183-8E01-1D56A71E6DB4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {10AB29F4-D01F-4B55-A87D-C424DA8DED1D} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2017-02-14] (Lenovo)
Task: {1E7829D3-4490-439F-A3B5-1E1FBD2221B0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {25DA2478-BF77-43AB-8629-F55A8941F314} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
Task: {26C46363-F951-49E6-A655-B8A4F4193E58} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-03-24] (HP Inc.)
Task: {28E6B4DB-562B-4CB3-9105-33A55901CD6D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {5BDB387C-C91D-4430-8005-FE93DD0A1A31} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {797E7B4E-69DA-4BFD-9D2F-2BD2190069B8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1ff41d9c-9177-4433-90cd-2595a3c818a5 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {7A5AE4D4-7079-4855-92A4-1954DEADFA73} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {7B160A9D-06D8-4655-9F13-793932967777} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-13] (Google Inc.)
Task: {7B23CFFA-3A2B-4274-96CA-E43DEACEA67A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => Sc.exe START ImControllerService
Task: {8247A2DB-E2BE-407B-A0B0-3BED104A9CFC} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0e34cb20-e1b4-4d91-a588-a92d00ca6332 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {84F889C6-D366-49F1-8848-A12A2833FF01} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {88CD43F6-2BC4-42E3-8DCA-A6D95E028384} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [2015-05-28] (CyberLink Corp.)
Task: {969D36A8-5609-4FE1-B8DE-F94154B6314C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9c438be9-7062-4400-bade-6c739bb48e31 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-04-25] (Lenovo Group Limited)
Task: {9CFBB1C3-E805-4FB1-8F82-FB0AB8BE7942} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [2017-02-14] ()
Task: {A4569353-A288-4D8A-A700-0958E68CBC90} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH5B22N12Q => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
Task: {AAF44CD4-8265-47FC-82FA-35C752A4DB62} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {AB70BAD5-F686-48D1-BA43-3E5A826C5FE9} - System32\Tasks\HPCeeScheduleForzenne => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {B397F4D5-2F50-47EC-9F1D-EE46E0EE207E} - System32\Tasks\HPCustParticipation HP ENVY 5540 series => C:\Program Files\HP\HP ENVY 5540 series\Bin\HPCustPartic.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {B6EE32FC-833C-49B4-88F0-040A9939DFE6} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2016-07-16] (Lenovo)
Task: {BB28493B-97C2-444E-8F4F-1390679B1BF5} - System32\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001 => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupload.exe [2017-05-06] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {C72FA807-390E-4A35-AAE9-5596D5767D22} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2017-02-14] (Lenovo)
Task: {CB7C7E32-3DB3-4292-92E6-8BB399BE0F7D} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [2016-04-22] (CyberLink Corp.)
Task: {DAC69B71-568C-48CE-8E64-2D26567BB490} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-13] (Google Inc.)
Task: {E196E1A2-679A-443E-A140-E64DDC550BC9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {E22CDE4A-332C-4C20-AB87-AC69578E60E1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {E699C086-6DE2-4739-A2CA-51C0E6A1CECA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {EEE21529-746E-4C5E-AD94-4B0F4EC1AEEB} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {F8541FEA-AE93-4172-9658-8AABFB31F5B2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {F8B01737-5D34-484C-BCE7-63EBBE9A1DDB} - System32\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001 => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupdate.exe [2017-05-06] (Citrix Online, a division of Citrix Systems, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3735606429-848728412-1924248078-1001.job => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3735606429-848728412-1924248078-1001.job => C:\Users\zenne\AppData\Local\Citrix\GoToMeeting\6956\g2mupload.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForzenne.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe