Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 17.03.2019
Gestart door Léon  (03-04-2019 10:38:18)
Gestart vanaf D:\Farbar
Windows 10 Education Versie 1803 17134.648 (X64) (2018-10-31 22:48:35)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3717779166-59899124-1443802433-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3717779166-59899124-1443802433-503 - Limited - Disabled)
Gast (S-1-5-21-3717779166-59899124-1443802433-501 - Limited - Disabled)
Léon  (S-1-5-21-3717779166-59899124-1443802433-1001 - Administrator - Enabled) => C:\Users\Léon 
WDAGUtilityAccount (S-1-5-21-3717779166-59899124-1443802433-504 - Limited - Disabled)

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Trend Micro Maximum Security (Enabled - Up to date) {90387C74-1C56-9484-893C-8ADCB2906C3D}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Trend Micro Maximum Security (Enabled - Up to date) {2B599D90-3A6C-9B0A-B38C-B1AEC9172680}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)

µTorrent (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe Bridge CC 2019 (HKLM-x32\...\KBRG_9_0_2) (Version: 9.0.2 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.8.1.435 - Adobe Systems Incorporated)
Adobe Illustrator CC 2019 (HKLM-x32\...\ILST_23_0_2) (Version: 23.0.2 - Adobe Systems Incorporated)
Adobe InDesign 2019 (HKLM-x32\...\IDSN_14_0_2) (Version: 14.0.2 - Adobe Systems Incorporated)
Adobe Lightroom CC (HKLM-x32\...\LRCC_2_2) (Version: 2.2 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2019 (HKLM-x32\...\AME_13_0_2) (Version: 13.0.2 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_4) (Version: 20.0.4 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2019 (HKLM-x32\...\PPRO_13_0_3) (Version: 13.0.3 - Adobe Systems Incorporated)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.6 - Electronic Arts, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}) (Version: 12.2.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Assassins Creed - Odyssey version 1.0.6 (HKLM-x32\...\Assassins Creed - Odyssey_is1) (Version: 1.0.6 - CorePack)
Atom (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\atom) (Version: 1.33.1 - GitHub Inc.)
Atom (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\atom) (Version: 1.33.1 - GitHub Inc.)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Belgium e-ID middleware 4.4.4 (build 3838) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73838}) (Version: 4.4.3838 - Belgian Government)
Bitnami WAMP Stack (HKLM\...\Bitnami WAMP Stack 7.1.26-0) (Version: 7.1.26-0 - Bitnami)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.32.90.1001 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform)
Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version:  - Cheat Engine)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
Discord (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Discord (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.35 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version:  - )
FileZilla Client 3.41.2 (HKLM-x32\...\FileZilla Client) (Version: 3.41.2 - Tim Kosse)
GitHub Desktop (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\GitHubDesktop) (Version: 1.5.0 - GitHub, Inc.)
GitHub Desktop (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\GitHubDesktop) (Version: 1.5.0 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Gyazo 3.5.1.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Informatica Oefeningen versie 1.5 (HKLM-x32\...\{8015C127-6917-4F10-A5B2-B591A001D40A}_is1) (Version: 1.5 - Leon, Inc.)
Inno Setup versie 5.6.1 (HKLM-x32\...\Inno Setup 5_is1) (Version: 5.6.1 - jrsoftware.org)
IObit Uninstaller 8 (HKLM-x32\...\IObitUninstall) (Version: 8.1.0.13 - IObit)
iTunes (HKLM\...\{CE796E03-4418-4086-A8C3-7AEF2013CDC7}) (Version: 12.9.4.102 - Apple Inc.)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Jurassic World: Evolution (HKLM-x32\...\Jurassic World: Evolution_is1) (Version:  - )
Kerbal Space Program To Vee or not To Vee MULTi9 (HKLM-x32\...\Kerbal Space Program To Vee or not To Vee MULTi9_is1) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LSPD First Response (HKLM-x32\...\LSPD First Response) (Version: 0.4.1 - G17 Media)
Malwarebytes versie 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft Office 365 ProPlus - nl-nl (HKLM\...\O365ProPlusRetail - nl-nl) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\OneDriveSetup.exe) (Version: 19.043.0304.0005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\OneDriveSetup.exe) (Version: 19.043.0304.0005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.18.1080.1029 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{2D1ED4EA-B59D-4665-ACB3-9325872A300D}) (Version: 1.0.4.0 - Mojang)
MSI Afterburner 4.6.0 Beta 11 (HKLM-x32\...\Afterburner) (Version: 4.6.0 Beta 11 - MSI Co., LTD)
MSI Kombustor v4 0.6.3.3 (64-bit) (HKLM-x32\...\{F3D3CC6B-9AD7-4F43-8C69-40D5902FDC5C}}_is1) (Version:  - MSI / Geeks3D)
Navigraph FMS Data Manager 1.7.3.1201 (HKLM-x32\...\{7E4D5716-374A-4DB6-90CF-D2AEB67362CE}_is1) (Version: 1.7.3.1201 - Navigraph)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision controllerstuurprogramma 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision stuurprogramma 417.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 417.35 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation)
NVIDIA Grafisch stuurprogramma 417.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 417.35 - NVIDIA Corporation)
NVIDIA HD Audio-stuurprogramma 1.3.38.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.4 - NVIDIA Corporation)
NVIDIA PhysX Systeem Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 22.0.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
OpenIV (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\OpenIV) (Version: 3.1.1032 - .black/OpenIV Team)
OpenIV (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\OpenIV) (Version: 3.1.1032 - .black/OpenIV Team)
OpenTTD 1.8.0 (HKLM-x32\...\OpenTTD) (Version: 1.8.0 - OpenTTD)
Origin (HKLM-x32\...\Origin) (Version: 10.5.36.23506 - Electronic Arts, Inc.)
Popcorn-Time (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\Popcorn-Time) (Version: 0.3.10 - Popcorn Time)
Popcorn-Time (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\Popcorn-Time) (Version: 0.3.10 - Popcorn Time)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8328 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.1 Beta 4 (HKLM-x32\...\RTSS) (Version: 7.2.1 Beta 4 - Unwinder)
Roblox Player for Léon  (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\roblox-player) (Version:  - Roblox Corporation)
Roblox Player for Léon  (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\roblox-player) (Version:  - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Scratch 2 Offline Editor (HKLM-x32\...\{6E988774-5309-E02E-7EA8-F19CB65C2063}) (Version: 255 - Massachusetts Institute of Technology) Hidden
Scratch 2 Offline Editor (HKLM-x32\...\edu.media.mit.Scratch2Editor) (Version: 461 - Massachusetts Institute of Technology)
Scratch Desktop 1.2.1 (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\bad79d23-e888-5a7b-9e99-60ee89b6c8bf) (Version: 1.2.1 - Massachusetts Institute of Technology)
Scratch Desktop 1.2.1 (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\bad79d23-e888-5a7b-9e99-60ee89b6c8bf) (Version: 1.2.1 - Massachusetts Institute of Technology)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SPEdit - A lightweight sourcepawn editor (HKLM-x32\...\spedit) (Version: 0.40.0-beta - Julien Kluge)
Spotify (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\Spotify) (Version: 1.1.3.259.g8172f63a - Spotify AB)
Spotify (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\Spotify) (Version: 1.1.3.259.g8172f63a - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sublime Text Build 3176 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Surviving Mars Space Race (HKLM-x32\...\Surviving Mars Space Race_is1) (Version:  - )
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.3399 - TeamViewer)
Transport Fever (HKLM-x32\...\1720767912_is1) (Version: 15501 - GOG.com)
Trend Micro Maximum Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 15.0 - Trend Micro Inc.)
Trend Micro Troubleshooting Tool (HKLM\...\{4B83469E-CE4F-45D0-BC34-CCB7BF194477}) (Version: 6.0 - Trend Micro Inc.)
UltraISO Premium V9.71 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
Visual Studio Community 2017 (HKLM-x32\...\3237087e) (Version: 15.9.28307.145 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)
vs_filehandler_amd64 (HKLM-x32\...\{A254DA0E-26A1-43C3-95BE-7A24D5599473}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{1F42A73E-CF26-4D67-BA79-752CA56B639F}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{A41E138F-5A3F-443C-B72D-957AB994FB5A}) (Version: 15.9.28128 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{68B8AD33-CE97-4C3D-9583-669C39D21BA5}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{6DFE6F8D-B61D-4348-AB70-4ABF1210DFD5}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
Wampserver64 3.1.7 (HKLM\...\{wampserver64}_is1) (Version: 3.1.7 - Dominique Ottello aka Otomatic)
WeMod (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\WeMod) (Version: 5.4.0 - WeMod)
WeMod (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\WeMod) (Version: 5.4.0 - WeMod)
Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited)
WinHTTrack Website Copier 3.49-2 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.3.0-0 - Bitnami)
X-Plane 11 (HKLM-x32\...\X-Plane 11_is1) (Version:  - )
X-Plane-Map 2.5.0 (only current user) (HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\979eacdf-3bf3-58dc-af8e-859bf6068b37) (Version: 2.5.0 - Foucauld Degeorges)
X-Plane-Map 2.5.0 (only current user) (HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\979eacdf-3bf3-58dc-af8e-859bf6068b37) (Version: 2.5.0 - Foucauld Degeorges)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-E56D08C20FA8} -> [Creative Cloud Files] => C:\Users\Léon \Creative Cloud Files [2018-11-01 01:19]
CustomCLSID: HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-3717779166-59899124-1443802433-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3717779166-59899124-1443802433-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-E56D08C20FA8} -> [Creative Cloud Files] => C:\Users\Léon \Creative Cloud Files [2018-11-01 01:19]
CustomCLSID: HKU\S-1-5-21-3717779166-59899124-1443802433-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [    FSOverlayIcon] -> {C0829D19-E5A0-44F5-B56E-D15030C53BB9} => C:\Program Files\Trend Micro\Titanium\plugin\TmOverlayIcon.dll [2018-07-30] (Trend Micro, Inc. -> Trend Micro Inc.)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-10-14] (Notepad++ -> )
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [{48F45200-91E6-11CE-8A4F-0080C81A28D4}] -> {48F45200-91E6-11CE-8A4F-0080C81A28D4} => C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll [2018-07-30] (Trend Micro, Inc. -> Trend Micro Inc.)
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-12-11] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [{48F45200-91E6-11CE-8A4F-0080C81A28D4}] -> {48F45200-91E6-11CE-8A4F-0080C81A28D4} => C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll [2018-07-30] (Trend Micro, Inc. -> Trend Micro Inc.)

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {01F4404F-F36F-49F7-A4C6-498A9BDF830D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F71064F-7864-4E39-9744-0397F9F3185C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {103602FD-0695-4782-AE15-A5825BCB4897} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {15246384-ABDB-4B3C-A6F7-94F80F9D301A} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {1612846F-F3ED-4071-BAB0-FD947ECE80E8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {2DF76CC2-7CF3-4BBC-B1EB-71FDDF5755BE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {3A50F074-B7C9-4DE9-9671-A13576260E98} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe (Nota Inc. -> Nota Inc.)
Task: {3BA39155-57F3-40E4-A5C2-F110DCDA30E9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {3D4FE7FF-4E9F-42FC-8582-8CC37926DFB2} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {42738875-9E5A-4EC4-AF48-A7D59819BE62} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC)
Task: {4B72DBC0-502F-44F3-9CAD-A25B6D9A52B5} - System32\Tasks\Uninstaller_SkipUac_Léon_ => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe (IObit Information Technology -> IObit)
Task: {549B0A10-36FC-4158-B97F-7B330AF60336} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {594C8486-A127-48AF-BBFA-D4E68C479E73} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5F2D33BF-2731-4263-B7DA-243F56CD3AE8} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {67C266F2-C58A-4AA9-988D-171168C4B14D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6B11E6A3-2E91-4F53-AFE1-4274F1F838C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7114B139-15DA-4D27-91E9-F423B163E22B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {7BDA3DD8-4722-468B-8085-BDF06D82747F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {7D944D9A-A632-430F-83CC-4C4E2D90686E} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {80C2B68A-B786-4EFC-AFDD-172425D7FCAC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9658109C-F102-4319-AB16-5A73AB00AF81} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9ADF7CA8-6EB1-45FD-BAFB-3C455E245460} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {A48F62E5-41C1-44E1-AEBB-E7E6A7BDC4A2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A4935F7F-C957-4967-A622-4A4A0812864D} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe (Nota Inc. -> Nota Inc.)
Task: {A5852845-E20E-4C75-A884-201844FD333C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ACB391BB-27AE-44AB-8DB6-B4D871589071} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (Apple Inc. -> Apple Inc.)
Task: {C62AD0DD-EBAE-471D-9BEF-A88667EBC824} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C92535A0-31D9-4376-AAD5-1C5AA47675D5} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D21629EC-CAF3-4DF8-9882-4F83CA4270EB} - System32\Tasks\AirSupport Update => C:\Program Files\Trend Micro\AirSupport\Update.exe (Trend Micro, Inc. -> Trend Micro Inc.)
Task: {D333D02E-51AB-4D8C-B34C-F330446C66FE} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-QM66SIB-Léon  => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {E38E3F51-E792-45C8-954D-BB881168FDAA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {E9FB011D-1165-4C80-83F8-863847F2E644} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {EC982570-9F79-4D9F-A706-03E4D4B83BDF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {ED2B0B13-CEF0-4F8D-A065-B82BB93EBEBF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC)

(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)


==================== Snelkoppelingen & WMI ========================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)


ShortcutWithArgument: C:\Users\Léon \AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\76f9e4d33b60b312\Popcorn-Time.lnk -> C:\Users\Léon \AppData\Local\Popcorn-Time\Popcorn-Time.exe (The NWJS Community) -> --user-data-dir="C:\Users\Léon \AppData\Local\Popcorn-Time\User Data" --profile-directory=Default --app-id=hecfofbbdfadifpemejbbdcjmfmboohj

==================== Geladen Modules (gefilterd) ==============

2018-11-14 21:05 - 2014-03-13 11:08 - 000381952 _____ (Scarlet.Crush Productions) [Bestand niet getekend] C:\Program Files (x86)\ScpServer\bin\ScpService.exe
2019-02-07 19:09 - 2018-06-08 15:36 - 039626752 _____ () [Bestand niet getekend] C:\Bitnami\WAMPST~1.26-\mysql\bin\mysqld.exe
2015-03-17 02:34 - 2015-03-17 02:34 - 000013312 _____ (Adobe Systems Inc.) [Bestand niet getekend] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\nl_nl\Acrobat Elements\ContextMenuShim64.nld
2018-12-06 21:51 - 2018-12-06 21:51 - 000547840 _____ (The Chromium Authors) [Bestand niet getekend] D:\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2018-12-06 21:52 - 2018-12-06 21:52 - 098275328 _____ () [Bestand niet getekend] D:\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2018-12-06 21:52 - 2018-12-06 21:52 - 003922432 _____ () [Bestand niet getekend] D:\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2018-12-06 21:52 - 2018-12-06 21:52 - 000092672 _____ () [Bestand niet getekend] D:\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 001177600 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 005487104 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 005089792 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000184832 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 005841920 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 001611264 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\Origin\ssleay32.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000438272 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 003084800 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 002950144 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 002234880 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 005139968 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 004571648 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 005010944 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 001181184 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000124928 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000026112 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000020992 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000259584 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000014848 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000729088 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000073216 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000179712 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000014848 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000014848 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000101888 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-03-25 19:12 - 2019-03-13 10:22 - 000035328 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
2019-01-20 15:50 - 2019-01-20 15:50 - 000072704 _____ () [Bestand niet getekend] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2019-01-20 15:50 - 2019-01-20 15:50 - 000057344 _____ () [Bestand niet getekend] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2019-01-20 15:50 - 2019-01-20 15:50 - 000232448 _____ () [Bestand niet getekend] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2019-01-20 15:50 - 2019-01-20 15:50 - 000364544 _____ () [Bestand niet getekend] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2019-01-20 15:51 - 2019-01-20 15:51 - 000617472 _____ () [Bestand niet getekend] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000068096 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000709120 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000146432 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000045568 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 001252864 _____ (The ICU Project) [Bestand niet getekend] C:\Program Files (x86)\Origin\icuuc58.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 003515904 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Qml.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000211456 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000116224 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 054063616 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000310272 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 003390976 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Quick.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000002560 _____ (The ICU Project) [Bestand niet getekend] C:\Program Files (x86)\Origin\icudt58.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000207360 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000015360 _____ () [Bestand niet getekend] C:\Program Files (x86)\Origin\libEGL.DLL
2019-02-06 21:17 - 2019-03-19 19:15 - 003090944 _____ () [Bestand niet getekend] C:\Program Files (x86)\Origin\libGLESv2.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000030208 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000032768 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\imageformats\qico.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000256512 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000026112 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000305152 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000025600 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2019-02-06 21:17 - 2019-03-19 19:15 - 000278016 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Origin\mediaservice\dsengine.dll
2019-03-23 14:54 - 2018-07-06 18:22 - 000058368 _____ (The c-ares library, hxxps://c-ares.haxx.se/) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\cares.dll
2019-03-23 14:54 - 2018-09-14 00:56 - 000350208 _____ (The curl library, hxxps://curl.haxx.se/) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\libcurl.dll
2019-03-23 14:55 - 2018-07-06 18:22 - 000276480 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\SSLEAY32.dll
2019-03-23 14:54 - 2018-07-06 18:22 - 000856064 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\Qt5Network.dll
2019-03-23 14:54 - 2018-07-06 18:22 - 003677184 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\Qt5Gui.dll
2019-03-23 14:54 - 2018-07-06 18:22 - 004483072 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\Qt5Widgets.dll
2019-03-23 14:54 - 2018-07-06 18:22 - 004694016 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\Qt5Core.dll
2019-03-23 14:55 - 2018-07-06 18:22 - 000071168 _____ () [Bestand niet getekend] C:\Program Files (x86)\Windscribe\zlib1.dll
2019-03-23 14:54 - 2018-07-06 18:22 - 001212928 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\LIBEAY32.dll
2019-03-23 14:54 - 2018-07-06 18:22 - 001603072 _____ () [Bestand niet getekend] C:\Program Files (x86)\Windscribe\libGLESv2.dll
2019-03-23 14:55 - 2018-07-06 18:22 - 000986624 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\platforms\qwindows.dll
2019-03-23 14:55 - 2018-07-06 18:22 - 000025088 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\imageformats\qico.dll
2019-03-23 14:55 - 2018-07-06 18:22 - 000024576 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files (x86)\Windscribe\imageformats\qgif.dll
2019-02-01 02:24 - 2019-02-01 02:24 - 000010240 _____ () [Bestand niet getekend] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\nl_nl\acrotray.nld

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.)

AlternateDataStreams: C:\Users\Léon \Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Léon \AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [442]

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.)

IE trusted site: HKU\S-1-5-21-3717779166-59899124-1443802433-1001\...\sharepoint.com -> hxxps://technischescholenmechel-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\...\sharepoint.com -> hxxps://technischescholenmechel-files.sharepoint.com

==================== Hosts inhoud: ===============================

(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)

2019-03-30 18:24 - 2019-03-30 18:24 - 000000039 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716603\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716620\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3717779166-59899124-1443802433-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
HKU\S-1-5-21-3717779166-59899124-1443802433-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04032019102716639\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 195.130.131.1 - 195.130.130.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

Als een item is opgenomen in de fixlist, zal het worden verwijderd.


==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{1C3274B7-79C7-487A-B288-9D9CEBAEEC38}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{975D3CB3-6921-40B6-9FEA-E5395F1C74C3}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{854D407D-2B1D-4534-9C7E-C3C236E8533D}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe Geen bestand
FirewallRules: [{908896CC-996D-4AB6-AE6F-BDAF003D9C94}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe Geen bestand
FirewallRules: [{BB3E40E4-D055-4CBD-9501-7CBFDCAACBDE}] => (Allow) C:\Users\Léon \AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2E38EDDD-2377-4599-B581-FED0B6F6E134}] => (Allow) C:\Users\Léon \AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{AB353ED7-82F2-479F-9658-D4C82384FC90}C:\users\léon \appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\léon \appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{D8CE393E-0F6C-43FB-9256-FAB5174477AC}C:\users\léon \appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\léon \appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{842ED76A-7A13-465E-9D89-35AFD3176657}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{E314294D-313C-4CF0-8CD8-F5E58419E7DC}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A6ABD0EE-8EE2-4E9C-B6E6-684EE983B0FD}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [Bestand niet getekend]
FirewallRules: [{80E05860-8BFB-4630-84F6-5AE2F6F1C749}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [Bestand niet getekend]
FirewallRules: [TCP Query User{8BF56F58-9688-4AC3-8235-4310ADC04CF9}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{A3BBFA0D-4DA5-4710-B0A8-4AFC9470A10B}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{9C907F4E-95C8-45FF-B389-5DF83972D373}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{B145C153-6CB3-4B66-B233-714F6C9FD3CA}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{03D3CEA5-F649-4D80-B6CA-2EAD4F292210}] => (Allow) C:\Windows\SysWOW64\msiexec.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{01D6FA52-4202-4B33-ABDE-70372929A298}] => (Allow) C:\Windows\SysWOW64\Azyteijuo.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{AF3E8DFD-7999-44EC-95EB-180147022DAA}] => (Allow) C:\Users\Léon \AppData\Roaming\aGVEEiIaz.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{79A85502-A1F0-4F87-A69A-27A330EE7D3A}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{B3A3CCE9-E032-46F7-85FA-58B39DB033E5}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{781AAEAA-EA33-4EE1-8E3F-7627372085D5}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{B447CD35-0131-4145-990D-1036F67C3DF2}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{0BC0C884-45B8-45BE-BFF4-49EF40A2A503}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{8553471C-1BF0-45D2-951D-1373BA735208}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{040B12B5-EDA0-489A-9A66-F5DBB45A35E4}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{4536BD83-5C52-44FE-83AA-241C439037D5}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{A9A350F5-248E-4E43-B76B-BF0DB075C11F}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{33798F9E-57B5-4808-9909-92915BEFEA04}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{4DAE4AC9-F8E4-4525-AC13-95B84939799D}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{A425250F-61C3-4B8A-B34B-541C6A2DA454}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{DDFA8115-943D-49E9-AA1D-48AACBBD0660}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{09744041-99C9-42B3-9534-CD57D415C7FC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FADC38BC-69AB-4573-A26E-3D27858C68FB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F7475A56-C8D6-451E-892B-2BCB1C507C14}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2F0F614F-5093-4E39-872F-C5B9140D5972}C:\users\léon \desktop\simairport.v29.10.2018\simairport.exe] => (Allow) C:\users\léon \desktop\simairport.v29.10.2018\simairport.exe () [Bestand niet getekend]
FirewallRules: [UDP Query User{0C4EAC2C-8698-4233-A22F-D928A5532432}C:\users\léon \desktop\simairport.v29.10.2018\simairport.exe] => (Allow) C:\users\léon \desktop\simairport.v29.10.2018\simairport.exe () [Bestand niet getekend]
FirewallRules: [{D7C6278B-40EF-4AE0-95F7-8C364D966E14}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7C8B3E62-2056-4A51-9DFC-C0E89605374B}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{040B0515-B601-4FE5-B4ED-2EB34B948C55}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{99B89D2A-2F28-427C-B670-4A9867DFE05E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6FFD7D13-8C07-481F-B284-905D4F944BCB}] => (Allow) D:\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH) [Bestand niet getekend]
FirewallRules: [{ABDF9D19-C827-4BE5-8FF4-D68277779759}] => (Allow) D:\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH) [Bestand niet getekend]
FirewallRules: [{7F1E4ECF-0795-4C7A-B243-74BF93579482}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EE0F3665-545B-4635-9F01-C378771B532D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{23662CB7-9447-4663-92A8-EB0161D7DB02}C:\users\léon \appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\léon \appdata\local\popcorn-time\popcorn-time.exe (The NWJS Community) [Bestand niet getekend]
FirewallRules: [UDP Query User{5984443F-9366-40C5-A507-8A7742965382}C:\users\léon \appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\léon \appdata\local\popcorn-time\popcorn-time.exe (The NWJS Community) [Bestand niet getekend]
FirewallRules: [TCP Query User{DA1A2232-D63A-4D97-ACA3-2D1B66CB9805}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DFF0EFA5-8390-4975-80E6-B2EB289107FC}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{D6D1BE83-F428-4922-9517-49058C221165}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) [Bestand niet getekend]
FirewallRules: [UDP Query User{5DF70F47-5C11-4052-A0BD-C473CFBEAB30}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) [Bestand niet getekend]
FirewallRules: [{211C7B8F-3B5E-4F64-8301-4130E3245904}] => (Allow) D:\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{7236B5F8-B016-4E54-8D1C-846DDC76E4CB}] => (Allow) D:\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{0DD45004-848E-483F-92E2-65A8454DD9B0}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{1ED5B5E0-1D63-4B6F-9DC5-8926367502D3}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{5412FE1B-EB1F-4B08-8468-87B4D75A063C}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{DD2D61BD-AA1F-4C6D-B2A2-754E28B9259C}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{BC3A7E62-5716-442F-914E-68FA220A55BE}D:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{4A8F026A-C29C-4DA4-A829-4AC7C826C8DF}D:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{ACCE96FF-A99C-41A9-81DC-6F2789E67DB8}] => (Allow) D:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe () [Bestand niet getekend]
FirewallRules: [{58C8EAF2-04D7-41BD-BA93-5B57C60FEBE5}] => (Allow) D:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe () [Bestand niet getekend]
FirewallRules: [TCP Query User{40327691-D413-47E0-8E2F-3626D571DF12}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{C710D14E-CA5E-4628-AC8C-64F4E6816A27}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [TCP Query User{A3DF8DC9-F2C1-415C-AC6C-ABB8B8C2A72A}C:\users\léon \appdata\local\temp\rar$exa0.567\steamcmd.exe] => (Allow) C:\users\léon \appdata\local\temp\rar$exa0.567\steamcmd.exe Geen bestand
FirewallRules: [UDP Query User{B86AD5FC-13CE-4B1E-87E8-B974643C282D}C:\users\léon \appdata\local\temp\rar$exa0.567\steamcmd.exe] => (Allow) C:\users\léon \appdata\local\temp\rar$exa0.567\steamcmd.exe Geen bestand
FirewallRules: [TCP Query User{5EB9235C-0568-47E4-8B65-0B22465432E8}D:\csgoserver\srcds.exe] => (Allow) D:\csgoserver\srcds.exe (Valve -> )
FirewallRules: [UDP Query User{F8871F90-0559-430A-BC1B-C662EF827E04}D:\csgoserver\srcds.exe] => (Allow) D:\csgoserver\srcds.exe (Valve -> )
FirewallRules: [TCP Query User{6C5137F1-B8AB-447B-A0EE-E7C88D4CE40A}C:\users\léon \appdata\local\temp\rar$exa0.148\steamcmd.exe] => (Allow) C:\users\léon \appdata\local\temp\rar$exa0.148\steamcmd.exe Geen bestand
FirewallRules: [UDP Query User{918C0B97-D534-46C9-A9D9-EECFF1334EF3}C:\users\léon \appdata\local\temp\rar$exa0.148\steamcmd.exe] => (Allow) C:\users\léon \appdata\local\temp\rar$exa0.148\steamcmd.exe Geen bestand
FirewallRules: [TCP Query User{5A571CA0-00BE-47AB-8C68-011E403C83CF}D:\steamcmd\steamcmd.exe] => (Allow) D:\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{D589D793-E2EE-4B75-A1E7-038FE3EDD976}D:\steamcmd\steamcmd.exe] => (Allow) D:\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [{286C3328-CF04-40B0-BAB1-0081FD812421}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{946679A7-06CA-49E1-8E53-BA85F05B48F3}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{72E0866B-A4ED-42A7-9F6F-D2832BD94D51}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [Bestand niet getekend]
FirewallRules: [{7ACCE693-5D86-41D2-A5C0-4ABC7520662C}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [Bestand niet getekend]
FirewallRules: [{23AD5C45-A7FC-478C-B823-CDECAF4681F5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{E0762E24-4320-470F-B32E-4BACBAA883CC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{5F490229-44CD-43B6-8E8A-731084C23883}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{FACAAD6F-9652-41A2-83D0-0BED14FBC069}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{F23B18D8-930C-4065-BFA7-1EA90977A94F}C:\users\léon \appdata\roaming\utorrent\updates\3.5.5_44954.exe] => (Block) C:\users\léon \appdata\roaming\utorrent\updates\3.5.5_44954.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{D9826DFE-5262-45D0-BFF3-8989B49AFC67}C:\users\léon \appdata\roaming\utorrent\updates\3.5.5_44954.exe] => (Block) C:\users\léon \appdata\roaming\utorrent\updates\3.5.5_44954.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{BE639560-F831-4435-A76E-7C39A7B3EFB7}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Bestand niet getekend]
FirewallRules: [UDP Query User{F980E115-9262-4CCE-B251-C3091409D059}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Bestand niet getekend]
FirewallRules: [{15EA54DF-7C59-4FF9-AFAD-FC41E2B9A62A}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{AED6FFE2-306D-4767-8143-B2A3FEAB6506}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{ACBC3EB0-F355-40BE-9A88-80578FBE288E}D:\steam\steamapps\common\insurgency2\insurgency_x64.exe] => (Block) D:\steam\steamapps\common\insurgency2\insurgency_x64.exe (New World Interactive LLC -> New World Interactive LLC)
FirewallRules: [UDP Query User{A50F6894-4E28-4F4D-84ED-977E4C135FB1}D:\steam\steamapps\common\insurgency2\insurgency_x64.exe] => (Block) D:\steam\steamapps\common\insurgency2\insurgency_x64.exe (New World Interactive LLC -> New World Interactive LLC)
FirewallRules: [{83A6BA16-9536-4655-9D60-0A8BBD0D0444}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0E0B3569-8A56-499B-B8B2-3575D3D05527}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D93C332B-C3AF-4735-B631-07B4569FF151}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1D833788-99BD-4AF3-9235-6499EAE4013F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{93D78755-AAB6-4DBF-827D-81E35B6E218C}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [TCP Query User{3909FE6B-8D7B-4FAF-B051-ED4787E52422}D:\games\x-plane 11\x-plane.exe] => (Block) D:\games\x-plane 11\x-plane.exe Geen bestand
FirewallRules: [UDP Query User{4F29210D-3D24-473B-8B56-C255694989EA}D:\games\x-plane 11\x-plane.exe] => (Block) D:\games\x-plane 11\x-plane.exe Geen bestand
FirewallRules: [TCP Query User{738F374B-A728-4575-BCA8-8C328C86FE66}C:\users\léon \appdata\local\programs\x-plane-map-electron\x-plane-map.exe] => (Allow) C:\users\léon \appdata\local\programs\x-plane-map-electron\x-plane-map.exe (Developer ID Application: Foucauld Degeorges (4385UCXT6V) -> Foucauld Degeorges) [Bestand niet getekend]
FirewallRules: [UDP Query User{E9202D07-4E69-468C-91A0-B4B6349EAE14}C:\users\léon \appdata\local\programs\x-plane-map-electron\x-plane-map.exe] => (Allow) C:\users\léon \appdata\local\programs\x-plane-map-electron\x-plane-map.exe (Developer ID Application: Foucauld Degeorges (4385UCXT6V) -> Foucauld Degeorges) [Bestand niet getekend]
FirewallRules: [{7D7EBCB1-AC9B-40D5-9E6F-4F041DED9A99}] => (Allow) D:\Steam\steamapps\common\X-Plane 11\X-Plane.exe (Laminar Research) [Bestand niet getekend]
FirewallRules: [{CC429C7A-5192-4CE1-94BA-8F45547BD933}] => (Allow) D:\Steam\steamapps\common\X-Plane 11\X-Plane.exe (Laminar Research) [Bestand niet getekend]
FirewallRules: [{E000A7D4-DC05-4C72-A47F-F671129CC8E5}] => (Allow) D:\Steam\steamapps\common\X-Plane 11\Plane Maker.exe (Laminar Research, LLC -> Laminar Research)
FirewallRules: [{7DF70925-210D-47D3-B060-6E41B8220ED9}] => (Allow) D:\Steam\steamapps\common\X-Plane 11\Plane Maker.exe (Laminar Research, LLC -> Laminar Research)
FirewallRules: [{EBD86A96-34B8-4650-9F44-22AA3AC8989B}] => (Allow) D:\Steam\steamapps\common\X-Plane 11\Airfoil Maker.exe (Laminar Research, LLC -> Laminar Research)
FirewallRules: [{AD63060A-E818-4C55-A8AE-CAAF27F8207B}] => (Allow) D:\Steam\steamapps\common\X-Plane 11\Airfoil Maker.exe (Laminar Research, LLC -> Laminar Research)
FirewallRules: [{867D6727-10AF-4490-BA8A-FCD4F8E51CB8}] => (Allow) D:\Steam\steamapps\common\Just Cause 3\JustCause3.exe () [Bestand niet getekend]
FirewallRules: [{071FB478-3B3D-4524-9C1D-C67B1EA09E40}] => (Allow) D:\Steam\steamapps\common\Just Cause 3\JustCause3.exe () [Bestand niet getekend]
FirewallRules: [TCP Query User{638CBA6A-0D03-4473-BF2F-00564D8AEBCC}C:\steamcmd\steamcmd.exe] => (Allow) C:\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{965DF31B-CDF9-43DE-A9B2-5BF7A2774BA3}C:\steamcmd\steamcmd.exe] => (Allow) C:\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{C2919901-DFD3-4731-9471-E709729744A1}D:\games\apex\r5apex.exe] => (Allow) D:\games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{FC454D41-C63F-41A5-AFE7-23CC4091E877}D:\games\apex\r5apex.exe] => (Allow) D:\games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{FC307996-F9F6-4170-A382-A7944CAA5116}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{AE98C695-4BBD-4900-A5B7-554D13CD7875}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{2DB27860-A31A-40DC-BB1A-E14AC5A4508D}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{8D109A9C-B0EA-4C90-8222-F5CAF26BEFCC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{85695AC0-AC88-4A3F-B824-9401DAA4E323}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{A49D20D8-F1A9-463C-A232-7EA6D2CAC976}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{86B8461A-B46A-432B-8E56-2D150CD715F4}C:\bitnami\wampstack-7.1.26-0\apache2\bin\httpd.exe] => (Allow) C:\bitnami\wampstack-7.1.26-0\apache2\bin\httpd.exe (Apache Software Foundation) [Bestand niet getekend]
FirewallRules: [UDP Query User{01217CD2-9929-48A1-BD66-705895C628BD}C:\bitnami\wampstack-7.1.26-0\apache2\bin\httpd.exe] => (Allow) C:\bitnami\wampstack-7.1.26-0\apache2\bin\httpd.exe (Apache Software Foundation) [Bestand niet getekend]
FirewallRules: [{3923FE96-AF22-4472-8714-55D17CC2BE27}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ED62CD46-A8D2-4D29-AF56-3EEA9E41DFCE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B2BF0A37-81E3-4186-BB34-BB8711C8B132}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{3B411AB5-9228-44C7-B2A7-E7F01E2D31D6}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{6950A09B-519B-428F-8C81-720AA56A2DE4}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{B0A301C1-FAC7-45C9-A206-6D8E8B07FD40}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{540DA311-F56E-4E83-8A4E-05B612A0514C}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{386FCED9-ACE1-4DD1-AE72-7E9C28BDEAA2}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{DAFA4752-AC46-41F7-A2CC-0B13261E2D5B}] => (Allow) D:\Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7936CC6E-E59C-4896-BBA1-1C05CA0CE4E0}] => (Allow) D:\Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{B1C50E84-9BE1-475B-9E49-A41FA9D643C4}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [UDP Query User{B3EC817B-75E1-486B-859C-F02EA6640FBC}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{59FECD55-8071-4A03-AD8A-0A8753A23D70}] => (Allow) C:\Windows\SysWOW64\msiexec.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9C157BE8-25B9-4023-AC67-BF89F0B5A797}] => (Allow) C:\Users\Léon \YIlaREjKNtOo.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{F042A89A-ACDD-42E9-9498-8BC126B6413F}] => (Allow) C:\Users\Léon \uDIaC.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{EF3AB167-3EEA-4ACB-8063-9E2AEF3DA61A}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{F647B268-E56E-4D3A-B1BC-E7E2A7CCA6AA}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{9ED3C7B5-2D93-44EE-A36C-21C6D19E3131}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{6EF9B753-F01A-460B-A857-C5995C08039F}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [{FC206613-9EB3-4612-8CE1-A1B6DF5CD873}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{FCB62AD0-A29F-4711-98F1-59D6348B1EFB}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{5ABF3116-1FDE-4A1E-85F1-00941E530A26}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [{4B205AD0-3E60-4CC1-9431-2B92D7652A44}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{EE45C2AB-ACA0-4DE6-86C2-D09FD141939E}] => (Allow) C:\Windows\SysWOW64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{0C271B64-B2A1-4D2F-B017-D44F5FEB56BD}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [TCP Query User{AF0EF6CD-4893-4E80-8000-C25207089480}D:\games (torrent)\subnautica.below.zero.update.08.03.2019\subnautica.below.zero.update.08.03.2019\subnautica.below.zero\subnauticazero.exe] => (Allow) D:\games (torrent)\subnautica.below.zero.update.08.03.2019\subnautica.below.zero.update.08.03.2019\subnautica.below.zero\subnauticazero.exe () [Bestand niet getekend]
FirewallRules: [UDP Query User{37A3A272-0549-4235-9515-E89351D40A36}D:\games (torrent)\subnautica.below.zero.update.08.03.2019\subnautica.below.zero.update.08.03.2019\subnautica.below.zero\subnauticazero.exe] => (Allow) D:\games (torrent)\subnautica.below.zero.update.08.03.2019\subnautica.below.zero.update.08.03.2019\subnautica.below.zero\subnauticazero.exe () [Bestand niet getekend]
FirewallRules: [{8F4DD394-C1C8-45C1-A364-D43BF62D594D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{5D510DCE-041C-45CC-A215-856D3BEF1022}] => (Allow) D:\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{228E1ADA-02C5-40A2-BADD-42E19100DBC5}] => (Allow) D:\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{10D8F2F9-0886-4EDB-8052-331C29AF58F4}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AAB09125-4DB0-47F0-ACFD-F49CCE1EAD19}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{08F6AD1E-3D2E-4321-9FB5-B1CD1819451D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5B265AC1-5804-4E7A-A0FF-C3ECD67EFA89}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F105E883-DE39-44B6-94E2-8A7A682FCC71}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AD77559D-B19C-4F69-B50B-D0C96A688F6F}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)

==================== Herstelpunten =========================

03-04-2019 10:31:36 Installed iTunes

==================== Defecte Apparaatbeheer Apparaten =============


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (04/03/2019 10:29:02 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (04/03/2019 10:26:33 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-QM66SIB)
Description: brave hendrikbrave hendrik-2147467263

Error: (04/02/2019 09:56:59 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-QM66SIB)
Description: brave hendrikbrave hendrik-2147467263

Error: (04/02/2019 09:56:29 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-QM66SIB)
Description: brave hendrikbrave hendrik-2147467263

Error: (04/02/2019 09:20:13 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-QM66SIB)
Description: brave hendrikbrave hendrik-2147467263

Error: (04/02/2019 09:20:13 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-QM66SIB)
Description: brave hendrikbrave hendrik-2147467263

Error: (04/02/2019 09:19:41 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-QM66SIB)
Description: brave hendrikbrave hendrik-2147467263

Error: (04/02/2019 09:19:39 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-QM66SIB)
Description: brave hendrikbrave hendrik-2147467263


Systeemfouten:
=============
Error: (04/03/2019 10:35:27 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-QM66SIB)
Description: Kan geen DCOM-server starten: {417976B7-917D-4F1E-8F14-C18FCCB0B3A8}. Foutmelding 
"0"
 is opgetreden bij het uitvoeren van de opdracht 
C:\Windows\System32\coredpussvr.exe -Embedding

Error: (04/03/2019 10:28:45 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-QM66SIB)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 en APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 aan de gebruiker DESKTOP-QM66SIB\Léon  SID (S-1-5-21-3717779166-59899124-1443802433-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/03/2019 10:28:45 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-QM66SIB)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 en APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 aan de gebruiker DESKTOP-QM66SIB\Léon  SID (S-1-5-21-3717779166-59899124-1443802433-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/03/2019 10:28:44 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-QM66SIB)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 en APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 aan de gebruiker DESKTOP-QM66SIB\Léon  SID (S-1-5-21-3717779166-59899124-1443802433-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/03/2019 10:28:44 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-QM66SIB)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 en APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 aan de gebruiker DESKTOP-QM66SIB\Léon  SID (S-1-5-21-3717779166-59899124-1443802433-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/03/2019 10:26:46 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-QM66SIB)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 en APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 aan de gebruiker DESKTOP-QM66SIB\Léon  SID (S-1-5-21-3717779166-59899124-1443802433-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (04/03/2019 10:26:40 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-QM66SIB)
Description: Kan geen DCOM-server starten: {417976B7-917D-4F1E-8F14-C18FCCB0B3A8}. Foutmelding 
"0"
 is opgetreden bij het uitvoeren van de opdracht 
C:\Windows\System32\coredpussvr.exe -Embedding

Error: (04/03/2019 10:26:35 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-QM66SIB)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 en APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 aan de gebruiker DESKTOP-QM66SIB\Léon  SID (S-1-5-21-3717779166-59899124-1443802433-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.


Windows Defender:
===================================
Date: 2018-11-05 17:49:36.553
Description: 
Windows Defender Antivirus heeft malware of andere mogelijk ongewenste software gedetecteerd.
Zie voor meer informatie:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal!rfn&threatid=2147724737&enterprise=0
Naam: Trojan:Win32/Bluteal!rfn
Id: 2147724737
Ernst: Ernstig
Categorie: Trojaans paard
Pad: file:_C:\Users\Léon \Desktop\SimAirport.v29.10.2018\SimAirport.v29.10.2018\steam_api.dll; file:_C:\Users\Léon \Desktop\SimAirport.v29.10.2018\steam_api.dll
Detectieoorsprong: Lokale computer
Detectietype: Concreet
Detectiebron: Real-timebeveiliging
Gebruiker: NT AUTHORITY\SYSTEM
Procesnaam: C:\Windows\System32\SearchProtocolHost.exe
Handtekeningversie: AV: 1.279.1239.0, AS: 1.279.1239.0, NIS: 1.279.1239.0
Engineversie: AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-05 17:49:34.254
Description: 
Windows Defender Antivirus heeft malware of andere mogelijk ongewenste software gedetecteerd.
Zie voor meer informatie:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal!rfn&threatid=2147724737&enterprise=0
Naam: Trojan:Win32/Bluteal!rfn
Id: 2147724737
Ernst: Ernstig
Categorie: Trojaans paard
Pad: file:_C:\Users\Léon \Desktop\SimAirport.v29.10.2018\SimAirport.v29.10.2018\steam_api.dll; file:_C:\Users\Léon \Desktop\SimAirport.v29.10.2018\steam_api.dll
Detectieoorsprong: Lokale computer
Detectietype: Concreet
Detectiebron: Real-timebeveiliging
Gebruiker: NT AUTHORITY\SYSTEM
Procesnaam: C:\Windows\System32\SearchProtocolHost.exe
Handtekeningversie: AV: 1.279.1239.0, AS: 1.279.1239.0, NIS: 1.279.1239.0
Engineversie: AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-05 17:49:17.252
Description: 
Windows Defender Antivirus heeft malware of andere mogelijk ongewenste software gedetecteerd.
Zie voor meer informatie:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal!rfn&threatid=2147724737&enterprise=0
Naam: Trojan:Win32/Bluteal!rfn
Id: 2147724737
Ernst: Ernstig
Categorie: Trojaans paard
Pad: file:_C:\Users\Léon \Desktop\SimAirport.v29.10.2018\SimAirport.v29.10.2018\steam_api.dll
Detectieoorsprong: Lokale computer
Detectietype: Concreet
Detectiebron: Real-timebeveiliging
Gebruiker: NT AUTHORITY\SYSTEM
Procesnaam: C:\Windows\System32\SearchProtocolHost.exe
Handtekeningversie: AV: 1.279.1239.0, AS: 1.279.1239.0, NIS: 1.279.1239.0
Engineversie: AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-05 17:49:09.894
Description: 
Windows Defender Antivirus heeft malware of andere mogelijk ongewenste software gedetecteerd.
Zie voor meer informatie:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal!rfn&threatid=2147724737&enterprise=0
Naam: Trojan:Win32/Bluteal!rfn
Id: 2147724737
Ernst: Ernstig
Categorie: Trojaans paard
Pad: file:_C:\Users\Léon \Desktop\SimAirport.v29.10.2018\SimAirport.v29.10.2018\steam_api.dll
Detectieoorsprong: Lokale computer
Detectietype: Concreet
Detectiebron: Real-timebeveiliging
Gebruiker: DESKTOP-QM66SIB\Léon 
Procesnaam: C:\Program Files\WinRAR\WinRAR.exe
Handtekeningversie: AV: 1.279.1239.0, AS: 1.279.1239.0, NIS: 1.279.1239.0
Engineversie: AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-04 21:24:25.720
Description: 
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {CA1D31DC-2430-4684-A37D-4406708D9696}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2019-04-03 10:35:55.244
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-03 10:35:55.243
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-03 10:35:54.724
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-03 10:35:54.723
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-03 10:33:32.766
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-03 10:33:32.765
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-03 10:33:32.673
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-03 10:33:32.672
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Geheugen info =========================== 

Processor: Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz
Percentage geheugen in gebruik: 59%
Totaal fysiek RAM-geheugen: 16342.98 MB
Beschikbaar fysiek RAM-geheugen: 6658.88 MB
Totaal Virtueel geheugen: 27094.98 MB
Beschikbaar Virtueel geheugen: 13830.23 MB

==================== Schijven ================================

Drive c: (Windows) (Fixed) (Total:465.17 GB) (Free:80.4 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)]
Drive d: (D0-P1) (Fixed) (Total:3725.9 GB) (Free:2907.5 GB) NTFS

\\?\Volume{3292ba1b-0000-0000-0000-100000000000}\ (System) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{3292ba1b-0000-0000-0000-705174000000}\ (Recovery image) (Fixed) (Total:0.49 GB) (Free:0.1 GB) NTFS

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 3292BA1B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=500 MB) - (Type=27)

==================== Einde van Addition.txt ============================