Mededeling

Collapse
No announcement yet.

Virus in webbrowsers

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • Virus in webbrowsers

    Hi,

    Op mijn pc staat sindskort een heel vervelend virus.
    Chrome start om de minuut automatisch op met 2 tot 3 tabbladen met reclame, maar ook in iex krijg ik continue pop-ups en openen er tabbladen met reclame. Hopelijk kunnen jullie mij helpen dit te verhelpen.
    (oa. het opnieuw installeren van de browsers heeft niet geholpen)

    Hieronder de gevraagde logbestanden:
    Malwarebytes
    www.malwarebytes.com

    -Logboekdetails-
    Scandatum: 28-11-17
    Scantijd: 12:11
    Logbestand: e132620e-d42c-11e7-a7d3-3085a91af0e8.json
    Beheerder: Ja

    -Software-informatie-
    Versie: 3.3.1.2183
    Versie componenten: 1.0.236
    Update pakketversie: 1.0.3363
    Licentie: Proef

    -Systeeminformatie-
    Besturingssysteem: Windows 10 (Build 15063.726)
    Processor: x64
    Bestandssysteem: NTFS
    Gebruiker: Fritsie-PC\Fritsie

    -Scansamenvatting-
    Scantype: Bedreigingsscan
    Resultaat: Voltooid
    Objecten gescand: 442703
    Dreigingen herkend: 274
    Dreigingen in quarantaine: 0
    (Geen kwaadaardige items gedetecteerd)
    Verstreken tijd: 27 min, 51 sec

    -Scanopties-
    Geheugen: Ingeschakeld
    Opstarten: Ingeschakeld
    Bestandssysteem: Ingeschakeld
    Archieven: Ingeschakeld
    Rootkits: Uitgeschakeld
    Heuristiek: Ingeschakeld
    POP: Detectie
    POA: Detectie

    -Scandetails-
    Proces: 7
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\d1e5bb0492f5f3f628eb991d02cacda6.exe, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\L0R0FZ4JADX\423CCWDSWY1.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\22KX4GZ5XSH\LS224QPVSOK.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\5IQ4CWCLXA0\OY1A5WFXIEO.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\GX1FJHGCM2C\23JS24BGZIL.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\odzb8atsxyzx.exe, Geen actie door gebruiker, [1743], [422717],1.0.3363

    Module: 9
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\d1e5bb0492f5f3f628eb991d02cacda6.exe, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\L0R0FZ4JADX\423CCWDSWY1.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\22KX4GZ5XSH\LS224QPVSOK.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\5IQ4CWCLXA0\OY1A5WFXIEO.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\GX1FJHGCM2C\23JS24BGZIL.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Trojan.Adservice, C:\USERS\FRITSIE\APPDATA\LOCAL\ADSERVICE\ADSERVICE.DLL, Geen actie door gebruiker, [8553], [403904],1.0.3363
    Adware.SearchAwesome.TskLnk, C:\WINDOWS\6174B634A2D3C0521841CD839FBE35C7.DLL, Geen actie door gebruiker, [2375], [461346],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\odzb8atsxyzx.exe, Geen actie door gebruiker, [1743], [422717],1.0.3363

    Registersleutel: 79
    Adware.Social2Search.EncJob, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\1cf3c8891be2c514e3b79c38ed4e53b5, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\1cf3c8891be2c514e3b79c38ed4e53b5, Geen actie door gebruiker, [8542], [-1],0.0.0
    Adware.Social2Search.EncJob, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{64C7E94F-D691-4892-852D-935667AFE7B2}, Geen actie door gebruiker, [8542], [-1],0.0.0
    Adware.Social2Search.EncJob, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{64C7E94F-D691-4892-852D-935667AFE7B2}, Geen actie door gebruiker, [8542], [-1],0.0.0
    PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\CONSOLE\TASKENG.EXE, Geen actie door gebruiker, [5412], [425125],1.0.3363
    Adware.Tuto4PC, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\EWMON, Geen actie door gebruiker, [397], [412878],1.0.3363
    Hijack.AutoConfigURL.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, Geen actie door gebruiker, [322], [-1],0.0.0
    PUP.Optional.CloudScout, HKLM\SOFTWARE\5da059a482fd494db3f252126fbc3d5b, Geen actie door gebruiker, [10072], [246387],1.0.3363
    Adware.SearchAwesome, HKLM\SOFTWARE\SrcAAAesom Browser Enhancer, Geen actie door gebruiker, [4683], [424837],1.0.3363
    PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\CONSOLE\%SYSTEMROOT%_SYSTEM32_SVCHOST.EXE, Geen actie door gebruiker, [5412], [425124],1.0.3363
    PUP.Optional.InstallCore, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\csastats, Geen actie door gebruiker, [2], [260986],1.0.3363
    PUP.Optional.SpeeDownloader, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\SpeeDownloader, Geen actie door gebruiker, [8168], [387288],1.0.3363
    PUP.Optional.SwytShop, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\SwytShop, Geen actie door gebruiker, [2886], [386984],1.0.3363
    PUP.Optional.Wajam, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\WajIEnhance, Geen actie door gebruiker, [81], [244670],1.0.3363
    PUP.Optional.Tuto4PC, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\wewewe, Geen actie door gebruiker, [68], [339689],1.0.3363
    Adware.Tuto4PC, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\BIGTIME, Geen actie door gebruiker, [397], [412877],1.0.3363
    Adware.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\11598763487076930564, Geen actie door gebruiker, [1743], [424293],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\Online Application, Geen actie door gebruiker, [560], [360190],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Geen actie door gebruiker, [560], [398592],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\Online.io Application, Geen actie door gebruiker, [560], [317312],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Geen actie door gebruiker, [560], [339688],1.0.3363
    PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, Geen actie door gebruiker, [14951], [252393],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{1A25BF50-EA42-4ADF-8763-26D2B8499B8D}, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{42AC2B4C-235C-4F55-AC4D-7E90E96A8522}, Geen actie door gebruiker, [560], [391427],1.0.3363
    PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{5749CA6C-CF38-4AD8-9F71-3469BA09D1FD}, Geen actie door gebruiker, [996], [459339],1.0.3363
    Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\dafkService, Geen actie door gebruiker, [19], [459290],1.0.3363
    Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6572BFBE-8A9D-4BC7-AF27-8DDC960E0600}, Geen actie door gebruiker, [19], [451761],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6B095839-7149-4A6F-AB0A-ECA91E9B2DF2}, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{90B7AA92-C5C4-4CAA-A24A-22B9433D33CE}, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{988EB660-61DA-41C0-A8A2-23DF3701230E}, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E4465817-54BC-490A-84D9-A7763E912BF4}, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E85FFFBC-0378-484A-BC4E-7141A726820E}, Geen actie door gebruiker, [996], [459339],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F7E37D11-7CD7-4B82-A042-3144D12CFF03}, Geen actie door gebruiker, [560], [317311],1.0.3363
    Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\MICROSOFT\WINDOWS\MULTIMEDIA\Manager, Geen actie door gebruiker, [19], [451759],1.0.3363
    Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\APreSam, Geen actie door gebruiker, [397], [451260],1.0.3363
    Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MPrForShutT, Geen actie door gebruiker, [397], [451257],1.0.3363
    Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\NSaveA, Geen actie door gebruiker, [397], [451259],1.0.3363
    Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\PrAmNP, Geen actie door gebruiker, [397], [451258],1.0.3363
    PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, Geen actie door gebruiker, [14951], [252393],1.0.3363
    Adware.REOptimizer, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\119, Geen actie door gebruiker, [7055], [417947],1.0.3363
    Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\PrIncub, Geen actie door gebruiker, [397], [451256],1.0.3363
    Adware.DNSUnlocker.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\OdzB8atsXYZx Updater, Geen actie door gebruiker, [2263], [372679],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G1, Geen actie door gebruiker, [560], [317313],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G2, Geen actie door gebruiker, [560], [317313],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G3, Geen actie door gebruiker, [560], [317313],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G4, Geen actie door gebruiker, [560], [317313],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G5, Geen actie door gebruiker, [560], [317313],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G6, Geen actie door gebruiker, [560], [317313],1.0.3363
    PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B 6E079E5A2220E, Geen actie door gebruiker, [22], [260247],1.0.3363
    PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\space(title, t_delayed), Geen actie door gebruiker, [996], [459338],1.0.3363
    PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\space(title, t_monitor), Geen actie door gebruiker, [996], [459338],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Updater_Online_Application, Geen actie door gebruiker, [560], [391428],1.0.3363
    Adware.VidSquare.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{A97606DF-0FE1-4390-B0DD-ADA8B303AE61}_is1, Geen actie door gebruiker, [2737], [372833],1.0.3363
    PUP.Optional.CloudScout, HKLM\SOFTWARE\WOW6432NODE\5da059a482fd494db3f252126fbc3d5b, Geen actie door gebruiker, [10072], [246387],1.0.3363
    Adware.SearchAwesome, HKLM\SOFTWARE\WOW6432NODE\SrcAAAesom Browser Enhancer, Geen actie door gebruiker, [4683], [424837],1.0.3363
    PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220 E, Geen actie door gebruiker, [22], [260247],1.0.3363
    Adware.SearchAwesome.TskLnk, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\6174b634a2d3c0521841cd839fbe35c7, Geen actie door gebruiker, [2375], [461346],1.0.3363
    PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, Geen actie door gebruiker, [81], [170024],1.0.3363
    Adware.NeoBar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Geen actie door gebruiker, [527], [420739],1.0.3363
    Adware.NeoBar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Geen actie door gebruiker, [527], [420739],1.0.3363
    Adware.NeoBar, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Geen actie door gebruiker, [527], [420739],1.0.3363
    Adware.NeoBar, HKLM\SOFTWARE\CLASSES\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Geen actie door gebruiker, [527], [420739],1.0.3363
    PUP.Optional.Reimage, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{10ECCE17-29B5-4880-A8F5-EAD298611484}, Geen actie door gebruiker, [1072], [327205],1.0.3363
    Adware.Wajam.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\4e2ee89385bdafc6d7df010b2dab3d8f, Geen actie door gebruiker, [1742], [336669],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Geen actie door gebruiker, [1072], [332494],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Geen actie door gebruiker, [1072], [332494],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Geen actie door gebruiker, [1072], [332494],1.0.3363
    PUP.Optional.Wajam, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, Geen actie door gebruiker, [81], [170024],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, Geen actie door gebruiker, [1072], [327206],1.0.3363
    PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, Geen actie door gebruiker, [81], [170024],1.0.3363

    Registerwaarde: 38
    PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\CONSOLE\TASKENG.EXE|WINDOWPOSITION, Geen actie door gebruiker, [5412], [425125],1.0.3363
    Adware.Tuto4PC, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\EWMON|PARTNER, Geen actie door gebruiker, [397], [412878],1.0.3363
    Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AUTOCONFIGURL, Geen actie door gebruiker, [322], [391027],1.0.3363
    Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AUTOCONFIGURL, Geen actie door gebruiker, [322], [-1],0.0.0
    Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Geen actie door gebruiker, [322], [-1],0.0.0
    Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Geen actie door gebruiker, [322], [-1],0.0.0
    Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Geen actie door gebruiker, [322], [-1],0.0.0
    Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Geen actie door gebruiker, [322], [-1],0.0.0
    Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, Geen actie door gebruiker, [322], [-1],0.0.0
    Hijack.AutoConfigURL.PrxySvrRST, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Geen actie door gebruiker, [322], [-1],0.0.0
    Adware.Tuto4PC.Generic, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|3149179, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|7097526, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|5877406, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|2417143, Geen actie door gebruiker, [1335], [447062],1.0.3363
    PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\CONSOLE\%SYSTEMROOT%_SYSTEM32_SVCHOST.EXE|WINDOWPOSITION, Geen actie door gebruiker, [5412], [425124],1.0.3363
    Adware.Tuto4PC, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\BIGTIME|PARTNER, Geen actie door gebruiker, [397], [412877],1.0.3363
    PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DISABLEAUTOUPDATECHECKSCHECKBOXVALUE, Geen actie door gebruiker, [14951], [252393],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{1A25BF50-EA42-4ADF-8763-26D2B8499B8D}|PATH, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{42AC2B4C-235C-4F55-AC4D-7E90E96A8522}|PATH, Geen actie door gebruiker, [560], [391427],1.0.3363
    PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{5749CA6C-CF38-4AD8-9F71-3469BA09D1FD}|PATH, Geen actie door gebruiker, [996], [459339],1.0.3363
    Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6572BFBE-8A9D-4BC7-AF27-8DDC960E0600}|PATH, Geen actie door gebruiker, [19], [451761],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6B095839-7149-4A6F-AB0A-ECA91E9B2DF2}|PATH, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{90B7AA92-C5C4-4CAA-A24A-22B9433D33CE}|PATH, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{988EB660-61DA-41C0-A8A2-23DF3701230E}|PATH, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E4465817-54BC-490A-84D9-A7763E912BF4}|PATH, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E85FFFBC-0378-484A-BC4E-7141A726820E}|PATH, Geen actie door gebruiker, [996], [459339],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F7E37D11-7CD7-4B82-A042-3144D12CFF03}|PATH, Geen actie door gebruiker, [560], [317311],1.0.3363
    PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\CONSOLE\%SYSTEMROOT%_SYSTEM32_WINDOWSPOWERSHELL_V1.0_POWERSHELL.EXE|WINDOWPOSITION, Geen actie door gebruiker, [5412], [425126],1.0.3363
    PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DISABLEAUTOUPDATECHECKSCHECKBOXVALUE, Geen actie door gebruiker, [14951], [252393],1.0.3363
    Adware.REOptimizer, HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\119|DISPLAYNAME, Geen actie door gebruiker, [7055], [417947],1.0.3363
    Adware.DNSUnlocker.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\OdzB8atsXYZx Updater|IMAGEPATH, Geen actie door gebruiker, [2263], [372679],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}|CONTACT, Geen actie door gebruiker, [560], [333852],1.0.3363
    PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}|URLINFOABOUT, Geen actie door gebruiker, [560], [321304],1.0.3363
    Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\dafkService|IMAGEPATH, Geen actie door gebruiker, [19], [459303],1.0.3363
    Adware.VidSquare.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{A97606DF-0FE1-4390-B0DD-ADA8B303AE61}_is1|DISPLAYNAME, Geen actie door gebruiker, [2737], [372833],1.0.3363
    Hijack.AutoConfigURL.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IPHLPSVC\PARAMETERS\PROXYMGR\{4B968FF9-7FCE-4246-88C1-B0C52BA907A7}|AUTOCONFIGURL, Geen actie door gebruiker, [322], [391030],1.0.3363
    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\INTERFACES\{f5e4723f-0642-4a76-9e4f-f263fe3c71d9}|NAMESERVER, Geen actie door gebruiker, [5693], [260226],1.0.3363
    Hijack.AutoConfigURL.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES|, Geen actie door gebruiker, [322], [391029],1.0.3363

    Registerdata: 14
    PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Geen actie door gebruiker, [13741], [292819],1.0.3363
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{463b80e5-a8d6-4c22-a295-a2cb8ee492f8}|NameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{463b80e5-a8d6-4c22-a295-a2cb8ee492f8}|DhcpNameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{49264a38-2afc-47c1-8de6-fe7432115697}|NameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{ac2c2038-a995-4389-b3f7-f52f3cae386b}|NameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{ac2c2038-a995-4389-b3f7-f52f3cae386b}|DhcpNameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{af4c56f0-12bc-4e88-8643-14ca7c012bf6}|NameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{da929fdb-09bf-4081-9ff4-a2b5cca13169}|NameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{ee4da0d8-f2aa-45fb-9d3f-19d75ea8e1ed}|NameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{f5e4723f-0642-4a76-9e4f-f263fe3c71d9}|NameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    Adware.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{f5e4723f-0642-4a76-9e4f-f263fe3c71d9}|DhcpNameServer, Geen actie door gebruiker, [1743], [-1],0.0.0
    PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Geen actie door gebruiker, [13741], [292819],1.0.3363

    Gegevensstroom: 0
    (Geen kwaadaardige items gedetecteerd)

    Map: 25
    Rogue.Multiple, C:\PROGRAMDATA\374311380, Geen actie door gebruiker, [9146], [170100],1.0.3363
    Rogue.Multiple, C:\PROGRAMDATA\600440862, Geen actie door gebruiker, [9146], [170100],1.0.3363
    PUP.Optional.PremierOpinion, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\PREMIEROPINION, Geen actie door gebruiker, [12009], [178971],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Geen actie door gebruiker, [560], [391425],1.0.3363
    Adware.OnlineIO, C:\ProgramData\Microleaves\Online Application\updates, Geen actie door gebruiker, [8635], [399763],1.0.3363
    Adware.OnlineIO, C:\ProgramData\Microleaves\Online Application, Geen actie door gebruiker, [8635], [399763],1.0.3363
    Adware.OnlineIO, C:\PROGRAMDATA\MICROLEAVES, Geen actie door gebruiker, [8635], [399763],1.0.3363
    Adware.OnlineIO, C:\Users\Fritsie\AppData\Roaming\Microleaves\Online Application 2.7.0\install\CFCBAA1, Geen actie door gebruiker, [8635], [399763],1.0.3363
    Adware.OnlineIO, C:\Users\Fritsie\AppData\Roaming\Microleaves\Online Application 2.7.0\install, Geen actie door gebruiker, [8635], [399763],1.0.3363
    Adware.OnlineIO, C:\Users\Fritsie\AppData\Roaming\Microleaves\Online Application 2.7.0, Geen actie door gebruiker, [8635], [399763],1.0.3363
    Adware.OnlineIO, C:\USERS\FRITSIE\APPDATA\ROAMING\MICROLEAVES, Geen actie door gebruiker, [8635], [399763],1.0.3363
    PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\767f5022-3203-1, Geen actie door gebruiker, [8409], [407181],1.0.3363
    PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\767f5022-6e97-0, Geen actie door gebruiker, [8409], [407181],1.0.3363
    PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\c8668ae6-1db7-0, Geen actie door gebruiker, [8409], [407181],1.0.3363
    PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\c8668ae6-7065-1, Geen actie door gebruiker, [8409], [407181],1.0.3363
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.OnlineIO, C:\PROGRAM FILES (X86)\MICROLEAVES, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.Social2Search.EncJob, C:\PROGRAM FILES\1cf3c8891be2c514e3b79c38ed4e53b5, Geen actie door gebruiker, [8542], [415982],1.0.3363
    PUP.Optional.Browsers, C:\USERS\FRITSIE\APPDATA\ROAMING\SPI, Geen actie door gebruiker, [2815], [372176],1.0.3363
    Adware.Tuto4PC.Generic, C:\Users\Fritsie\AppData\Local\Temp\is-354TC.tmp\_isetup, Geen actie door gebruiker, [1335], [409261],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\is-354TC.tmp, Geen actie door gebruiker, [1335], [409261],1.0.3363
    Trojan.Adservice, C:\USERS\FRITSIE\APPDATA\LOCAL\ADSERVICE, Geen actie door gebruiker, [8553], [403904],1.0.3363
    Trojan.Agent, C:\PROGRAMDATA\dafkService, Geen actie door gebruiker, [19], [459290],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\PROGRAM FILES (X86)\ODZB8ATSXYZX, Geen actie door gebruiker, [1743], [422717],1.0.3363

    Bestand: 102
    PUP.Optional.PremierOpinion, C:\Users\Fritsie\AppData\Local\Temp\PremierOpinion\POInstaller.exe, Geen actie door gebruiker, [12009], [178971],1.0.3363
    PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\767f5022-3203-1\BIT2A95.tmp, Geen actie door gebruiker, [15076], [257931],1.0.3363
    PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\767f5022-6e97-0\BIT2BAF.tmp, Geen actie door gebruiker, [15076], [257931],1.0.3363
    PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\c8668ae6-1db7-0\BITE685.tmp, Geen actie door gebruiker, [15076], [257931],1.0.3363
    PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\c8668ae6-7065-1\BITE684.tmp, Geen actie door gebruiker, [15076], [257931],1.0.3363
    Adware.LoadBlanks.ShrtCln, C:\USERS\FRITSIE\APPDATA\ROAMING\BROWSERS\asusvibelauncher.bat.exe, Geen actie door gebruiker, [8403], [402793],1.0.3363
    Adware.LoadBlanks.ShrtCln, C:\Users\Fritsie\AppData\Roaming\Browsers\firefox.bat.exe, Geen actie door gebruiker, [8403], [402793],1.0.3363
    PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\online.exe, Geen actie door gebruiker, [560], [391425],1.0.3363
    PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\SystemFoldermsiexec.exe, Geen actie door gebruiker, [560], [391425],1.0.3363
    Adware.OnlineIO, C:\ProgramData\Microleaves\Online Application\updates\basic_updates.aiu, Geen actie door gebruiker, [8635], [399763],1.0.3363
    Adware.OnlineIO, C:\Users\Fritsie\AppData\Roaming\Microleaves\Online Application 2.7.0\install\CFCBAA1\Basic Installer with memory detection.msi, Geen actie door gebruiker, [8635], [399763],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G1, Geen actie door gebruiker, [560], [317314],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G2, Geen actie door gebruiker, [560], [317314],1.0.3363
    PUP.Optional.Reimage, C:\WINDOWS\TEMP\REIMAGE.LOG, Geen actie door gebruiker, [1072], [334717],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G3, Geen actie door gebruiker, [560], [317314],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G4, Geen actie door gebruiker, [560], [317314],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G5, Geen actie door gebruiker, [560], [317314],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G6, Geen actie door gebruiker, [560], [317314],1.0.3363
    Adware.Genius, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\genius2.js, Geen actie door gebruiker, [8255], [387358],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\UPDATER_ONLINE_APPLICATION.JOB, Geen actie door gebruiker, [560], [391430],1.0.3363
    Adware.OnlineIO, C:\PROGRAM FILES (X86)\MICROLEAVES\Online Application\Online Application Updater.exe, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online.io EULA.url, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online.io Privacy.url, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Uninstall Online Application.lnk, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.ini, Geen actie door gebruiker, [8635], [399420],1.0.3363
    Adware.Social2Search.EncJob, C:\PROGRAM FILES\1cf3c8891be2c514e3b79c38ed4e53b5\WBE_uninstall.dat, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\4151847484d8b881dbda3e04c42437fc.exe, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\63680911539833a2eeb12aa79320d4dc, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\66992ccf371d5aa8f354ba5260f8e1ea.exe, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\d1e5bb0492f5f3f628eb991d02cacda6.exe, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\f1219267223ba961a3a8fd996c0a36f5.ico, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\mozcrt19.dll, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\nspr4.dll, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\nss3.dll, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\plc4.dll, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\plds4.dll, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\service.dat, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\service_64.dat, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5\softokn3.dll, Geen actie door gebruiker, [8542], [415982],1.0.3363
    Adware.Social2Search.EncJob, C:\WINDOWS\SYSTEM32\TASKS\1cf3c8891be2c514e3b79c38ed4e53b5, Geen actie door gebruiker, [8542], [-1],0.0.0
    PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G1.job, Geen actie door gebruiker, [560], [382506],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G2.job, Geen actie door gebruiker, [560], [382506],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G3.job, Geen actie door gebruiker, [560], [382506],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G4.job, Geen actie door gebruiker, [560], [382506],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G5.job, Geen actie door gebruiker, [560], [382506],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G6.job, Geen actie door gebruiker, [560], [382506],1.0.3363
    PUP.Optional.Browsers, C:\USERS\FRITSIE\APPDATA\ROAMING\SPI\FF.ICO, Geen actie door gebruiker, [2815], [372176],1.0.3363
    PUP.Optional.Browsers, C:\Users\Fritsie\AppData\Roaming\SPI\amig.ico, Geen actie door gebruiker, [2815], [372176],1.0.3363
    PUP.Optional.Browsers, C:\Users\Fritsie\AppData\Roaming\SPI\ch.ico, Geen actie door gebruiker, [2815], [372176],1.0.3363
    PUP.Optional.Browsers, C:\Users\Fritsie\AppData\Roaming\SPI\ie.ico, Geen actie door gebruiker, [2815], [372176],1.0.3363
    PUP.Optional.Browsers, C:\Users\Fritsie\AppData\Roaming\SPI\kom.ico, Geen actie door gebruiker, [2815], [372176],1.0.3363
    PUP.Optional.Browsers, C:\Users\Fritsie\AppData\Roaming\SPI\op.ico, Geen actie door gebruiker, [2815], [372176],1.0.3363
    PUP.Optional.Browsers, C:\Users\Fritsie\AppData\Roaming\SPI\op12.ico, Geen actie door gebruiker, [2815], [372176],1.0.3363
    PUP.Optional.Browsers, C:\Users\Fritsie\AppData\Roaming\SPI\ya.ico, Geen actie door gebruiker, [2815], [372176],1.0.3363
    PUP.Optional.Reimage, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\REIMAGE.LOG, Geen actie door gebruiker, [1072], [334717],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\L0R0FZ4JADX\423CCWDSWY1.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\22KX4GZ5XSH\LS224QPVSOK.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\5IQ4CWCLXA0\OY1A5WFXIEO.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\ROAMING\GX1FJHGCM2C\23JS24BGZIL.EXE, Geen actie door gebruiker, [1335], [447062],1.0.3363
    Adware.Tuto4PC.Generic, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\is-354TC.tmp\letswork.exe.config, Geen actie door gebruiker, [1335], [409261],1.0.3363
    Adware.Tuto4PC.Generic, C:\Users\Fritsie\AppData\Local\Temp\is-354TC.tmp\_isetup\_setup64.tmp, Geen actie door gebruiker, [1335], [409261],1.0.3363
    Adware.Tuto4PC.Generic, C:\Users\Fritsie\AppData\Local\Temp\is-354TC.tmp\DeltaNewsArbiyaCrossM.exe, Geen actie door gebruiker, [1335], [409261],1.0.3363
    Adware.Tuto4PC.Generic, C:\Users\Fritsie\AppData\Local\Temp\is-354TC.tmp\itdownload.dll, Geen actie door gebruiker, [1335], [409261],1.0.3363
    Adware.Tuto4PC.Generic, C:\Users\Fritsie\AppData\Local\Temp\is-354TC.tmp\psvince.dll, Geen actie door gebruiker, [1335], [409261],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\UPDATER_ONLINE_APPLICATION, Geen actie door gebruiker, [560], [391429],1.0.3363
    Adware.Linkury.Generic, C:\USERS\FRITSIE\APPDATA\LOCAL\PO.DB, Geen actie door gebruiker, [1929], [412180],1.0.3363
    PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Geen actie door gebruiker, [560], [391431],1.0.3363
    Trojan.Agent, C:\WINDOWS\SYSTEM32\TASKS\MICROSOFT\WINDOWS\MULTIMEDIA\MANAGER, Geen actie door gebruiker, [19], [451760],1.0.3363
    Trojan.Adservice, C:\USERS\FRITSIE\APPDATA\LOCAL\ADSERVICE\ADSERVICE.DLL, Geen actie door gebruiker, [8553], [403904],1.0.3363
    Trojan.Agent, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\KLAFES.EXE, Geen actie door gebruiker, [19], [462249],1.0.3363
    PUP.Optional.SystemHealer, C:\WINDOWS\SYSTEM32\TASKS\space(title, t_delayed), Geen actie door gebruiker, [996], [459334],1.0.3363
    PUP.Optional.SystemHealer, C:\WINDOWS\SYSTEM32\TASKS\space(title, t_monitor), Geen actie door gebruiker, [996], [459334],1.0.3363
    Trojan.Agent, C:\PROGRAMDATA\dafkService\dafkService.exe, Geen actie door gebruiker, [19], [459290],1.0.3363
    MachineLearning/Anomalous.100%, C:\WINDOWS\4151847484D8B881DBDA3E04C42437FC.EXE, Geen actie door gebruiker, [0], [392687],1.0.3363
    PUP.Optional.FFHijacker, C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\74098828.CFG, Geen actie door gebruiker, [1160], [330649],1.0.3363
    PUP.Optional.FFHijacker, C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\DEFAULTS\PREF\74098828.JS, Geen actie door gebruiker, [1160], [330648],1.0.3363
    Adware.Linkury.TskLnk, C:\USERS\FRITSIE\APPDATA\LOCAL\INSTALLATIONCONFIGURATION.XML, Geen actie door gebruiker, [3937], [444923],1.0.3363
    PUP.Optional.Reimage, C:\WINDOWS\REIMAGE.INI, Geen actie door gebruiker, [1072], [412667],1.0.3363
    Adware.SearchAwesome.TskLnk, C:\WINDOWS\6174B634A2D3C0521841CD839FBE35C7.DLL, Geen actie door gebruiker, [2375], [461346],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\PROGRAM FILES (X86)\ODZB8ATSXYZX\ODZB8ATSXYZX.CER, Geen actie door gebruiker, [1743], [422717],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\config.ini, Geen actie door gebruiker, [1743], [422717],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\Info.rtf, Geen actie door gebruiker, [1743], [422717],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\License.rtf, Geen actie door gebruiker, [1743], [422717],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\odzb8atsxyzx.exe, Geen actie door gebruiker, [1743], [422717],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\settings.ini, Geen actie door gebruiker, [1743], [422717],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\unins000.dat, Geen actie door gebruiker, [1743], [422717],1.0.3363
    Adware.DNSUnlocker.ACMB2, C:\Program Files (x86)\OdzB8atsXYZx\unins000.exe, Geen actie door gebruiker, [1743], [422717],1.0.3363
    Adware.SwytShop, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\GENIUS.LOG, Geen actie door gebruiker, [7152], [418643],1.0.3363
    Adware.Wajam.Generic, C:\WINDOWS\SYSTEM32\DRIVERS\4E2EE89385BDAFC6D7DF010B2DAB3D8F.SYS, Geen actie door gebruiker, [1742], [336669],1.0.3363
    Adware.Tuto4PC, C:\PROGRAM FILES (X86)\SDOWNLOADER\SPEEDOWNLOADER.EXE, Geen actie door gebruiker, [397], [384257],1.0.3363
    PUP.Optional.Reimage, C:\$RECYCLE.BIN\S-1-5-21-2894100099-29603364-4124575878-1001\$RTOAFPW.EXE, Geen actie door gebruiker, [1072], [331559],1.0.3363
    PUP.Optional.Reimage, C:\$RECYCLE.BIN\S-1-5-21-2894100099-29603364-4124575878-1001\$RRDW2LE.EXE, Geen actie door gebruiker, [1072], [331559],1.0.3363
    PUP.Optional.Plumbytes, C:\$RECYCLE.BIN\S-1-5-21-2894100099-29603364-4124575878-1001\$RWQMB67.EXE, Geen actie door gebruiker, [8205], [123575],1.0.3363
    PUP.Optional.Reimage, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\~NSU.TMP\AU_.EXE, Geen actie door gebruiker, [1072], [331559],1.0.3363
    PUP.Optional.Reimage, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\~NSU.TMP\BU_.EXE, Geen actie door gebruiker, [1072], [388085],1.0.3363
    PUP.Optional.OneSystemCare, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\ONESYSTEMCARE.EXE, Geen actie door gebruiker, [472], [424149],1.0.3363
    Adware.IStartSurf, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\XVIDCODECINSTALLER.EXE, Geen actie door gebruiker, [699], [461787],1.0.3363
    Adware.Wajam, C:\WINDOWS\TEMP\WJM33C9.TMP\UPDATE.EXE, Geen actie door gebruiker, [492], [461309],1.0.3363
    PUP.Optional.GoldClick, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\MJKUZUOO5.EXE, Geen actie door gebruiker, [7492], [92735],1.0.3363
    Adware.Tuto4PC, C:\USERS\FRITSIE\APPDATA\LOCAL\TEMP\SPEEDOWNLOADER.EXE, Geen actie door gebruiker, [397], [462098],1.0.3363
    Adware.Agent, C:\USERS\FRITSIE\APPDATA\LOCAL\XOPLMI.DLL, Geen actie door gebruiker, [228], [459297],1.0.3363

    Fysieke sector: 0
    (Geen kwaadaardige items gedetecteerd)


    (end)




    FARBAR
    Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 27-11-2017
    Gestart door Fritsie (Beheerder) op FRITSIE-PC (28-11-2017 16:43:59)
    Gestart vanaf C:\Users\Fritsie\Downloads
    Geladen Profielen: Fritsie & (Beschikbare Profielen: Fritsie)
    Platform: Windows 10 Home Versie 1703 15063.726 (X64) Taal: Nederlands (Nederland)
    Internet Explorer Versie 11 (Standaardbrowser: Chrome)
    Boot Modus: Normal
    Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/

  • #2
    ==================== Processen (gefilterd) =================

    (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
    () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
    (Juniper Networks, Inc.) C:\Program Files (x86)\Common Files\Juniper Networks\JUNS\dsAccessService.exe
    () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
    () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
    () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
    () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
    () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
    () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareService.exe
    (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
    (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    (Juniper Networks, Inc.) C:\Program Files (x86)\Common Files\Juniper Networks\JUNS\dsAccessService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
    (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
    (Intel Corporation) C:\Windows\System32\igfxEM.exe
    (Intel Corporation) C:\Windows\System32\igfxHK.exe
    () C:\Program Files (x86)\Fiery\Fiery Software Manager\Fiery Software Manager.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
    () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
    (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
    ( ) C:\Users\Fritsie\AppData\Roaming\l0r0fz4jadx\423ccwdswy1.exe
    ( ) C:\Users\Fritsie\AppData\Roaming\22kx4gz5xsh\ls224qpvsok.exe
    ( ) C:\Users\Fritsie\AppData\Roaming\5iq4cwclxa0\oy1a5wfxieo.exe
    () C:\Users\Fritsie\AppData\Local\Temp\is-NQG7M.tmp\ls224qpvsok.tmp
    () C:\Users\Fritsie\AppData\Local\Temp\is-KP9V3.tmp\423ccwdswy1.tmp
    ( ) C:\Users\Fritsie\AppData\Roaming\gx1fjhgcm2c\23js24bgzil.exe
    () C:\Users\Fritsie\AppData\Local\Temp\is-12K2B.tmp\oy1a5wfxieo.tmp
    () C:\Users\Fritsie\AppData\Local\Temp\is-DHNDQ.tmp\23js24bgzil.tmp
    (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
    (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
    (Microsoft Corporation) C:\Windows\System32\mqsvc.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    () C:\Users\Fritsie\AppData\Local\Temp\RarSFX37\FSM\Fiery Software Manager.exe
    (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe

    ==================== Register (gefilterd) ===========================

    (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

    HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
    HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
    HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareTray.exe [4688344 2017-09-01] ()
    HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.)
    HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-11-13] (Dropbox, Inc.)
    HKLM-x32\...\Run: [Reader Application Helper] => C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2014-10-24] (Sony Corporation)
    HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4174464 2017-05-23] (Safer-Networking Ltd.)
    HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (CANON INC.)
    HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [Spotify Web Helper] => C:\Users\Fritsie\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2016-02-10] (Spotify Ltd)
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [3149179] => C:\Users\Fritsie\AppData\Roaming\l0r0fz4jadx\423ccwdswy1.exe [1031506 2017-11-23] ( )
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [7097526] => C:\Users\Fritsie\AppData\Roaming\22kx4gz5xsh\ls224qpvsok.exe [1031506 2017-11-23] ( )
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [5877406] => C:\Users\Fritsie\AppData\Roaming\5iq4cwclxa0\oy1a5wfxieo.exe [1031506 2017-11-23] ( )
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [2417143] => C:\Users\Fritsie\AppData\Roaming\gx1fjhgcm2c\23js24bgzil.exe [1031506 2017-11-23] ( )
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [Spotify Web Helper] => C:\Users\Fritsie\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2016-02-10] (Spotify Ltd)
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [3149179] => C:\Users\Fritsie\AppData\Roaming\l0r0fz4jadx\423ccwdswy1.exe [1031506 2017-11-23] ( )
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [7097526] => C:\Users\Fritsie\AppData\Roaming\22kx4gz5xsh\ls224qpvsok.exe [1031506 2017-11-23] ( )
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [5877406] => C:\Users\Fritsie\AppData\Roaming\5iq4cwclxa0\oy1a5wfxieo.exe [1031506 2017-11-23] ( )
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [2417143] => C:\Users\Fritsie\AppData\Roaming\gx1fjhgcm2c\23js24bgzil.exe [1031506 2017-11-23] ( )
    GroupPolicy: Restrictie - Chrome <==== AANDACHT
    CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT

    ==================== Internet (gefilterd) ====================

    (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

    Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
    Tcpip\Parameters: [DhcpNameServer] 62.58.153.220 62.58.48.30 192.168.1.1
    Tcpip\..\Interfaces\{463b80e5-a8d6-4c22-a295-a2cb8ee492f8}: [DhcpNameServer] 194.151.228.3 194.151.228.51
    Tcpip\..\Interfaces\{ac2c2038-a995-4389-b3f7-f52f3cae386b}: [DhcpNameServer] 90.145.32.32 90.145.32.33
    Tcpip\..\Interfaces\{da929fdb-09bf-4081-9ff4-a2b5cca13169}: [NameServer] 145.18.39.16,145.18.40.50
    Tcpip\..\Interfaces\{f5e4723f-0642-4a76-9e4f-f263fe3c71d9}: [NameServer] 82.163.142.8,95.211.158.136
    Tcpip\..\Interfaces\{f5e4723f-0642-4a76-9e4f-f263fe3c71d9}: [DhcpNameServer] 62.58.153.220 62.58.48.30 192.168.1.1

    Internet Explorer:
    ==================
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
    HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
    SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
    SearchScopes: HKU\S-1-5-21-2894100099-29603364-4124575878-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-2894100099-29603364-4124575878-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2017-11-20] (Microsoft Corporation)
    BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-11-08] (Microsoft Corporation)
    BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-10-21] (Microsoft Corporation)
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2015-07-17] (Oracle Corporation)
    BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-11-08] (Microsoft Corporation)
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-07-17] (Oracle Corporation)
    DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cab
    DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab
    Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
    Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
    Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
    Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
    Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
    Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
    Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
    Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
    Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)

    FireFox:
    ========
    FF DefaultProfile: 21g7adz3.default
    FF ProfilePath: C:\Users\Fritsie\AppData\Roaming\Mozilla\Firefox\Profiles\21g7adz3.default [2017-11-28]
    FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK => niet gevonden
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
    FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-10-21] (Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [Geen bestand]
    FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-12-18] ()
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-02] (Intel Corporation)
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-02] (Intel Corporation)
    FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2015-07-17] (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-07-17] (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-10-21] (Microsoft Corporation)
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-10-21] (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
    FF Plugin-x32: @sony.com/ReaderDesktop -> C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll [2014-10-24] (Sony Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
    FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN)
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
    FF Plugin HKU\S-1-5-21-2894100099-29603364-4124575878-1001: @citrixonline.com/appdetectorplugin -> C:\Users\Fritsie\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-02-25] (Citrix Online)
    FF Plugin HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093: @citrixonline.com/appdetectorplugin -> C:\Users\Fritsie\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-02-25] (Citrix Online)
    FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\74098828.js [2017-11-24] <==== AANDACHT (Gericht op * .cfg bestand)
    FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\74098828.cfg [2017-11-24] <==== AANDACHT

    Chrome:
    =======
    CHR Profile: C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default [2017-11-28]
    CHR Extension: (Documenten) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-28]
    CHR Extension: (Google Drive) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-28]
    CHR Extension: (Offline Documenten) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-28]
    CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-28]
    CHR Extension: (Chrome Media Router) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-28]
    CHR HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Fritsie\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-01-12]
    CHR HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Fritsie\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-01-12]

    ==================== Services (gefilterd) ====================

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

    R2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareService.exe [585784 2017-09-01] ()
    S4 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
    R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8063656 2017-11-02] (Microsoft Corporation)
    S2 dafkService; C:\ProgramData\dafkService\dafkService.exe [1574400 2017-11-23] () [Bestand niet getekend]
    S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-14] (Dropbox, Inc.)
    S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-14] (Dropbox, Inc.)
    R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51016 2017-11-13] (Dropbox, Inc.)
    S4 EFI ES1000; C:\Program Files (x86)\Common Files\EFI\EFI ES-1000 Service\ES1000Service.exe [11776 2009-10-19] (Electronics for Imaging, Inc.) [Bestand niet getekend]
    S4 EFI License Manager; C:\Program Files (x86)\EFI\EFILM\lmgrd.exe [1499440 2015-07-17] (Flexera Software LLC)
    S4 Fiery Data Collector; C:\Program Files (x86)\Fiery\Applications3\Command WorkStation 5\FDC\FDC.exe [704512 2015-02-16] (Electronics for Imaging, Inc) [Bestand niet getekend]
    S4 Fiery Mailbox Synchronization; C:\Program Files (x86)\Fiery\Applications3\FieryRemoteScanApp\FRSMailboxSyncService.exe [11264 2015-02-23] (Electronics For Imaging) [Bestand niet getekend]
    S4 hasplms; C:\Windows\system32\hasplms.exe [4609928 2013-08-01] (SafeNet Inc.)
    R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
    S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-16] ()
    S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
    R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
    U2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
    R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
    S4 ofaApp; C:\Program Files (x86)\EFI\OFASQ\ofaApp.exe [2529984 2015-07-17] ()
    S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1776864 2017-05-23] (Safer-Networking Ltd.)
    S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2131760 2017-05-23] (Safer-Networking Ltd.)
    R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233936 2017-05-23] (Safer-Networking Ltd.)
    S4 Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2014-04-25] (Sony Corporation) [Bestand niet getekend]
    S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
    S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)
    S2 OdzB8atsXYZx Updater; C:\Program Files (x86)\OdzB8atsXYZx Updater\OdzB8atsXYZx Updater.exe [X]

    ===================== Drivers (gefilterd) ======================

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

    R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
    R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUS Corporation)
    R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
    R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-01] ()
    S2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331328 2013-08-01] (SafeNet Inc.)
    S4 jnprTdi_743_36355; C:\Windows\system32\Drivers\jnprTdi_743_36355.sys [108336 2013-05-23] (Juniper Networks, Inc.)
    R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193464 2017-11-28] (Malwarebytes)
    R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-11-28] (Malwarebytes)
    R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2017-11-28] (Malwarebytes)
    R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-11-28] (Malwarebytes)
    R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-11-28] (Malwarebytes)
    R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
    R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
    S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
    R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [442848 2017-02-08] (BitDefender S.R.L.)
    S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
    S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
    S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
    U3 idsvc; geen ImagePath

    ==================== NetSvcs (gefilterd) ===================

    (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


    ==================== Een Maand Aangemaakt bestanden en mappen ========

    (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

    2017-11-28 16:41 - 2017-11-28 16:48 - 000025992 _____ C:\Users\Fritsie\Downloads\FRST.txt
    2017-11-28 16:41 - 2017-11-28 16:41 - 002391552 _____ (Farbar) C:\Users\Fritsie\Downloads\FRST64.exe
    2017-11-28 13:13 - 2017-11-28 16:41 - 000000000 ____D C:\FRST
    2017-11-28 12:11 - 2017-11-28 16:30 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
    2017-11-28 12:11 - 2017-11-28 16:30 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
    2017-11-28 12:11 - 2017-11-28 16:30 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
    2017-11-28 12:11 - 2017-11-28 12:11 - 000193464 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
    2017-11-28 12:10 - 2017-11-28 12:10 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
    2017-11-28 12:10 - 2017-11-28 12:10 - 000001874 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
    2017-11-28 12:10 - 2017-11-28 12:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
    2017-11-28 12:10 - 2017-11-28 12:10 - 000000000 ____D C:\Program Files\Malwarebytes
    2017-11-28 12:10 - 2017-11-01 08:54 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
    2017-11-28 12:00 - 2017-11-28 12:00 - 000003017 _____ C:\Users\Fritsie\Desktop\HiJackThis.lnk
    2017-11-28 12:00 - 2017-11-28 12:00 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
    2017-11-28 12:00 - 2017-11-28 12:00 - 000000000 ____D C:\Program Files (x86)\Trend Micro
    2017-11-28 10:53 - 2017-11-28 10:53 - 000002366 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
    2017-11-28 10:53 - 2017-11-28 10:53 - 000002354 _____ C:\Users\Public\Desktop\Google Chrome.lnk
    2017-11-28 10:46 - 2017-11-28 10:46 - 001129816 _____ (Google Inc.) C:\Users\Fritsie\Downloads\Niet bevestigd 583807.crdownload
    2017-11-24 10:55 - 2017-11-28 09:47 - 000000140 _____ C:\WINDOWS\Reimage.ini
    2017-11-24 08:04 - 2017-11-28 13:19 - 000000000 ____D C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5
    2017-11-23 16:07 - 2017-11-23 16:15 - 000137236 _____ C:\WINDOWS\system32\lsdel.dat
    2017-11-23 14:51 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files\YTJD0NQ005
    2017-11-23 14:51 - 2017-11-23 14:51 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\gx1fjhgcm2c
    2017-11-23 14:35 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files\DZ164IWU12
    2017-11-23 14:35 - 2017-11-23 14:35 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\5iq4cwclxa0
    2017-11-23 14:34 - 2017-11-23 14:34 - 000000262 __RSH C:\Users\Fritsie\ntuser.pol
    2017-11-23 14:30 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files\NTS1NVWUQ7
    2017-11-23 14:30 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files\05ZD7J3VXV
    2017-11-23 14:30 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files (x86)\SDownloader
    2017-11-23 14:30 - 2017-11-23 14:59 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Easeware
    2017-11-23 14:30 - 2017-11-23 14:30 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\l0r0fz4jadx
    2017-11-23 14:30 - 2017-11-23 14:30 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\22kx4gz5xsh
    2017-11-23 14:30 - 2017-11-23 14:30 - 000000000 ____D C:\ProgramData\dafkService
    2017-11-23 14:29 - 2017-11-24 07:42 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Browsers
    2017-11-23 14:29 - 2017-11-23 14:29 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\SPI
    2017-11-23 14:26 - 2017-11-23 14:26 - 000000000 ____D C:\ProgramData\Microleaves
    2017-11-23 14:25 - 2017-11-23 14:25 - 000930816 _____ C:\Users\Fritsie\AppData\Local\po.db
    2017-11-23 14:25 - 2017-11-23 14:25 - 000140800 _____ C:\Users\Fritsie\AppData\Local\installer.dat
    2017-11-23 14:25 - 2017-11-23 14:25 - 000011568 _____ C:\Users\Fritsie\AppData\Local\InstallationConfiguration.xml
    2017-11-23 14:25 - 2017-11-23 14:25 - 000000262 __RSH C:\ProgramData\ntuser.pol
    2017-11-23 14:25 - 2017-11-23 14:25 - 000000000 ____D C:\ProgramData\c8668ae6-7065-1
    2017-11-23 14:25 - 2017-11-23 14:25 - 000000000 ____D C:\ProgramData\c8668ae6-1db7-0
    2017-11-23 14:24 - 2017-11-28 12:58 - 000000000 ____D C:\Program Files (x86)\OdzB8atsXYZx
    2017-11-23 14:24 - 2017-11-23 14:30 - 000003436 _____ C:\WINDOWS\System32\Tasks\space(title, t_monitor)
    2017-11-23 14:24 - 2017-11-23 14:30 - 000003426 _____ C:\WINDOWS\System32\Tasks\space(title, t_delayed)
    2017-11-23 14:24 - 2017-11-23 14:24 - 000021596 _____ C:\WINDOWS\System32\Tasks\OdzB8atsXYZx
    2017-11-23 14:24 - 2017-11-23 14:24 - 000000000 ____D C:\ProgramData\767f5022-6e97-0
    2017-11-23 14:24 - 2017-11-23 14:24 - 000000000 ____D C:\ProgramData\767f5022-3203-1
    2017-11-23 14:23 - 2017-11-23 14:32 - 000000404 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
    2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G6.job
    2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G5.job
    2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G4.job
    2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
    2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
    2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
    2017-11-23 14:23 - 2017-11-23 14:23 - 000003298 _____ C:\WINDOWS\System32\Tasks\Updater_Online_Application
    2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G6
    2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G5
    2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G4
    2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G3
    2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G2
    2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G1
    2017-11-23 14:23 - 2017-11-23 14:23 - 000000000 ____D C:\Program Files (x86)\Microleaves
    2017-11-23 14:22 - 2017-11-28 12:58 - 000000000 ____D C:\Users\Fritsie\AppData\Local\AdService
    2017-11-23 14:22 - 2017-11-23 14:22 - 000014848 _____ C:\Users\Fritsie\AppData\Local\xoplmi.dll
    2017-11-23 14:22 - 2017-11-23 14:22 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Microleaves
    2017-11-23 14:22 - 2017-11-23 14:22 - 000000000 ____D C:\Users\Fritsie\AppData\Local\AdvinstAnalytics
    2017-11-23 14:20 - 2017-11-24 09:31 - 000000000 ____D C:\WINDOWS\SysWOW64\SSL
    2017-11-23 14:20 - 2017-11-24 08:04 - 000003290 _____ C:\WINDOWS\System32\Tasks\1cf3c8891be2c514e3b79c38ed4e53b5
    2017-11-23 14:15 - 2017-11-23 14:16 - 000000000 ____D C:\Users\Fritsie\Downloads\FOOTBALL.MANAGER.TOUCH.2017-STEAMPUNKS
    2017-11-23 14:14 - 2017-11-23 14:15 - 000000000 ____D C:\Users\Fritsie\AppData\LocalLow\BitTorrent
    2017-11-21 14:59 - 2017-11-21 14:59 - 000457728 _____ C:\WINDOWS\4151847484d8b881dbda3e04c42437fc.exe
    2017-11-21 14:59 - 2017-11-21 14:59 - 000051624 _____ C:\WINDOWS\uninstaller.dat
    2017-11-21 10:53 - 2017-11-21 10:53 - 000332412 _____ C:\Users\Fritsie\Downloads\Aanvraag voorshot NS Frits Frederiks.pdf
    2017-11-21 10:53 - 2017-11-21 10:53 - 000332412 _____ C:\Users\Fritsie\Downloads\20171121_00001.pdf
    2017-11-21 10:42 - 2017-11-21 10:42 - 000122032 _____ C:\Users\Fritsie\Downloads\Regeling voorschot NS jaarabonnement.pdf
    2017-11-20 10:33 - 2017-11-20 10:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
    2017-11-16 15:47 - 2017-11-02 05:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPKICmdlet.dll
    2017-11-16 15:47 - 2017-11-02 05:22 - 001884160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
    2017-11-16 15:46 - 2017-11-02 06:04 - 001292360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
    2017-11-16 15:46 - 2017-11-02 06:03 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
    2017-11-16 15:46 - 2017-11-02 05:49 - 001838848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
    2017-11-16 15:46 - 2017-11-02 05:45 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
    2017-11-16 15:46 - 2017-11-02 05:45 - 000613136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
    2017-11-16 15:46 - 2017-11-02 05:45 - 000362144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
    2017-11-16 15:46 - 2017-11-02 05:45 - 000354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
    2017-11-16 15:46 - 2017-11-02 05:45 - 000283544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
    2017-11-16 15:46 - 2017-11-02 05:45 - 000172952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
    2017-11-16 15:46 - 2017-11-02 05:45 - 000133896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
    2017-11-16 15:46 - 2017-11-02 05:44 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
    2017-11-16 15:46 - 2017-11-02 05:44 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
    2017-11-16 15:46 - 2017-11-02 05:43 - 020372896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
    2017-11-16 15:46 - 2017-11-02 05:31 - 020512256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
    2017-11-16 15:46 - 2017-11-02 05:30 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
    2017-11-16 15:46 - 2017-11-02 05:30 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
    2017-11-16 15:46 - 2017-11-02 05:30 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
    2017-11-16 15:46 - 2017-11-02 05:29 - 019338240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
    2017-11-16 15:46 - 2017-11-02 05:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
    2017-11-16 15:46 - 2017-11-02 05:27 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
    2017-11-16 15:46 - 2017-11-02 05:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
    2017-11-16 15:46 - 2017-11-02 05:26 - 005963776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
    2017-11-16 15:46 - 2017-11-02 05:26 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
    2017-11-16 15:46 - 2017-11-02 05:26 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
    2017-11-16 15:46 - 2017-11-02 05:26 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
    2017-11-16 15:46 - 2017-11-02 05:25 - 012227072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
    2017-11-16 15:46 - 2017-11-02 05:25 - 011888128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
    2017-11-16 15:46 - 2017-11-02 05:25 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
    2017-11-16 15:46 - 2017-11-02 05:25 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
    2017-11-16 15:46 - 2017-11-02 05:25 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
    2017-11-16 15:46 - 2017-11-02 05:24 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
    2017-11-16 15:46 - 2017-11-02 05:24 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
    2017-11-16 15:46 - 2017-11-02 05:24 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
    2017-11-16 15:46 - 2017-11-02 05:24 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
    2017-11-16 15:46 - 2017-11-02 05:24 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
    2017-11-16 15:46 - 2017-11-02 05:23 - 000680960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
    2017-11-16 15:46 - 2017-11-02 05:23 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
    2017-11-16 15:46 - 2017-11-02 05:23 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
    2017-11-16 15:46 - 2017-11-02 05:23 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
    2017-11-16 15:46 - 2017-11-02 05:22 - 006254080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
    2017-11-16 15:46 - 2017-11-02 05:22 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
    2017-11-16 15:46 - 2017-11-02 05:22 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
    2017-11-16 15:46 - 2017-11-02 05:22 - 001494528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
    2017-11-16 15:46 - 2017-11-02 05:21 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
    2017-11-16 15:46 - 2017-11-02 05:21 - 003653120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
    2017-11-16 15:46 - 2017-11-02 05:21 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
    2017-11-16 15:46 - 2017-11-02 05:21 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
    2017-11-16 15:46 - 2017-10-25 08:40 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
    2017-11-16 15:46 - 2017-10-15 16:09 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
    2017-11-16 15:46 - 2017-10-15 16:03 - 006765728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2017-11-16 15:46 - 2017-10-15 16:01 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
    2017-11-16 15:46 - 2017-10-15 15:51 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
    2017-11-16 15:46 - 2017-10-15 15:49 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
    2017-11-16 15:46 - 2017-10-15 15:45 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
    2017-11-16 15:46 - 2017-10-15 15:45 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
    2017-11-16 15:46 - 2017-10-15 15:44 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
    2017-11-16 15:46 - 2017-10-15 15:44 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
    2017-11-16 15:46 - 2017-10-15 15:42 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
    2017-11-16 15:46 - 2017-10-15 15:42 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
    2017-11-16 15:46 - 2017-10-15 15:41 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
    2017-11-16 15:46 - 2017-10-15 15:41 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
    2017-11-16 15:46 - 2017-10-15 15:38 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
    2017-11-16 15:42 - 2017-11-02 06:20 - 000469568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
    2017-11-16 15:42 - 2017-11-02 06:13 - 000095640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
    2017-11-16 15:42 - 2017-11-02 06:05 - 000871408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
    2017-11-16 15:42 - 2017-11-02 05:35 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
    2017-11-16 15:42 - 2017-11-02 05:35 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
    2017-11-16 15:42 - 2017-11-02 05:33 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
    2017-11-16 15:42 - 2017-11-02 05:33 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPKICmdlet.dll
    2017-11-16 15:42 - 2017-11-02 05:30 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
    2017-11-16 15:42 - 2017-11-02 05:30 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
    2017-11-16 15:42 - 2017-11-02 05:26 - 001937408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
    2017-11-16 15:42 - 2017-11-02 05:25 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
    2017-11-16 15:42 - 2017-11-02 05:25 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
    2017-11-16 15:42 - 2017-10-15 15:55 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
    2017-11-16 15:42 - 2017-10-15 15:08 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
    2017-11-16 15:41 - 2017-11-02 06:13 - 001345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
    2017-11-16 15:41 - 2017-11-02 06:13 - 000546712 _____ C:\WINDOWS\system32\Drivers\storport.sys
    2017-11-16 15:41 - 2017-11-02 06:12 - 000714648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
    2017-11-16 15:41 - 2017-11-02 06:12 - 000026472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
    2017-11-16 15:41 - 2017-11-02 06:11 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
    2017-11-16 15:41 - 2017-11-02 06:10 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
    2017-11-16 15:41 - 2017-11-02 05:37 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
    2017-11-16 15:41 - 2017-11-02 05:37 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
    2017-11-16 15:41 - 2017-11-02 05:36 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
    2017-11-16 15:41 - 2017-11-02 05:35 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
    2017-11-16 15:41 - 2017-11-02 05:34 - 000438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
    2017-11-16 15:41 - 2017-11-02 05:34 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
    2017-11-16 15:41 - 2017-11-02 05:34 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
    2017-11-16 15:41 - 2017-11-02 05:34 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
    2017-11-16 15:41 - 2017-11-02 05:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
    2017-11-16 15:41 - 2017-11-02 05:34 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
    2017-11-16 15:41 - 2017-11-02 05:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
    2017-11-16 15:41 - 2017-11-02 05:34 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
    2017-11-16 15:41 - 2017-11-02 05:33 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
    2017-11-16 15:41 - 2017-11-02 05:32 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
    2017-11-16 15:41 - 2017-11-02 05:32 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
    2017-11-16 15:41 - 2017-11-02 05:32 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
    2017-11-16 15:41 - 2017-11-02 05:31 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
    2017-11-16 15:41 - 2017-11-02 05:31 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
    2017-11-16 15:41 - 2017-11-02 05:30 - 000635392 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
    2017-11-16 15:41 - 2017-11-02 05:30 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
    2017-11-16 15:41 - 2017-11-02 05:29 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
    2017-11-16 15:41 - 2017-11-02 05:29 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
    2017-11-16 15:41 - 2017-11-02 05:28 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
    2017-11-16 15:41 - 2017-11-02 05:27 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
    2017-11-16 15:41 - 2017-11-02 05:27 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
    2017-11-16 15:41 - 2017-11-02 05:26 - 008197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
    2017-11-16 15:41 - 2017-11-02 05:26 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
    2017-11-16 15:41 - 2017-11-02 05:26 - 003060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
    2017-11-16 15:41 - 2017-11-02 05:26 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
    2017-11-16 15:41 - 2017-11-02 05:26 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
    2017-11-16 15:41 - 2017-11-02 05:25 - 004727808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
    2017-11-16 15:41 - 2017-11-02 05:25 - 002052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
    2017-11-16 15:41 - 2017-11-02 05:25 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
    2017-11-16 15:41 - 2017-11-02 05:25 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
    2017-11-16 15:41 - 2017-11-02 05:23 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
    2017-11-16 15:41 - 2017-11-02 05:23 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
    2017-11-16 15:41 - 2017-11-02 05:23 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
    2017-11-16 15:41 - 2017-10-15 15:49 - 000094616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
    2017-11-16 15:41 - 2017-10-15 15:15 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll

    Comment


    • #3
      2017-11-16 15:41 - 2017-10-15 15:09 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
      2017-11-16 15:41 - 2017-10-15 15:09 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
      2017-11-16 15:41 - 2017-10-15 15:07 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
      2017-11-16 15:41 - 2017-10-15 15:05 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
      2017-11-16 15:41 - 2017-10-15 15:04 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
      2017-11-16 15:41 - 2017-10-15 15:00 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
      2017-11-16 15:40 - 2017-11-02 06:21 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
      2017-11-16 15:40 - 2017-11-02 06:21 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
      2017-11-16 15:40 - 2017-11-02 06:21 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
      2017-11-16 15:40 - 2017-11-02 06:21 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
      2017-11-16 15:40 - 2017-11-02 06:20 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
      2017-11-16 15:40 - 2017-11-02 06:20 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
      2017-11-16 15:40 - 2017-11-02 06:16 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
      2017-11-16 15:40 - 2017-11-02 06:16 - 002398696 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
      2017-11-16 15:40 - 2017-11-02 06:16 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
      2017-11-16 15:40 - 2017-11-02 06:15 - 001239448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
      2017-11-16 15:40 - 2017-11-02 06:14 - 000667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
      2017-11-16 15:40 - 2017-11-02 06:13 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
      2017-11-16 15:40 - 2017-11-02 06:13 - 002443672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
      2017-11-16 15:40 - 2017-11-02 06:12 - 000727336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
      2017-11-16 15:40 - 2017-11-02 06:12 - 000643192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
      2017-11-16 15:40 - 2017-11-02 06:12 - 000412752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
      2017-11-16 15:40 - 2017-11-02 06:12 - 000319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
      2017-11-16 15:40 - 2017-11-02 06:12 - 000144248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
      2017-11-16 15:40 - 2017-11-02 06:12 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
      2017-11-16 15:40 - 2017-11-02 06:05 - 000187800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
      2017-11-16 15:40 - 2017-11-02 05:44 - 023680000 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
      2017-11-16 15:40 - 2017-11-02 05:37 - 001278976 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
      2017-11-16 15:40 - 2017-11-02 05:37 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
      2017-11-16 15:40 - 2017-11-02 05:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
      2017-11-16 15:40 - 2017-11-02 05:36 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
      2017-11-16 15:40 - 2017-11-02 05:35 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
      2017-11-16 15:40 - 2017-11-02 05:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
      2017-11-16 15:40 - 2017-11-02 05:34 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
      2017-11-16 15:40 - 2017-11-02 05:33 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
      2017-11-16 15:40 - 2017-11-02 05:31 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
      2017-11-16 15:40 - 2017-11-02 05:30 - 013381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
      2017-11-16 15:40 - 2017-11-02 05:30 - 007339008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
      2017-11-16 15:40 - 2017-11-02 05:30 - 000719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
      2017-11-16 15:40 - 2017-11-02 05:30 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
      2017-11-16 15:40 - 2017-11-02 05:30 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
      2017-11-16 15:40 - 2017-11-02 05:29 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
      2017-11-16 15:40 - 2017-11-02 05:29 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
      2017-11-16 15:40 - 2017-11-02 05:29 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
      2017-11-16 15:40 - 2017-11-02 05:28 - 023684096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
      2017-11-16 15:40 - 2017-11-02 05:28 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
      2017-11-16 15:40 - 2017-11-02 05:27 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
      2017-11-16 15:40 - 2017-11-02 05:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
      2017-11-16 15:40 - 2017-11-02 05:25 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
      2017-11-16 15:40 - 2017-11-02 05:25 - 001713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
      2017-11-16 15:40 - 2017-11-02 05:24 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
      2017-11-16 15:40 - 2017-11-02 05:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
      2017-11-16 15:40 - 2017-10-15 15:57 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
      2017-11-16 15:40 - 2017-10-15 15:57 - 000409496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
      2017-11-16 15:40 - 2017-10-15 15:53 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
      2017-11-16 15:40 - 2017-10-15 15:53 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
      2017-11-16 15:40 - 2017-10-15 15:14 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
      2017-11-16 15:40 - 2017-10-15 15:13 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
      2017-11-16 15:40 - 2017-10-15 15:10 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
      2017-11-16 15:40 - 2017-10-15 15:08 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
      2017-11-16 15:40 - 2017-10-15 15:05 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
      2017-11-16 15:40 - 2017-10-15 15:02 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
      2017-11-16 15:39 - 2017-11-02 06:21 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
      2017-11-16 15:39 - 2017-11-02 06:21 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
      2017-11-16 15:39 - 2017-11-02 06:20 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
      2017-11-16 15:39 - 2017-11-02 06:20 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
      2017-11-16 15:39 - 2017-11-02 06:20 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
      2017-11-16 15:39 - 2017-11-02 06:20 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
      2017-11-16 15:39 - 2017-11-02 06:20 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
      2017-11-16 15:39 - 2017-11-02 06:20 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
      2017-11-16 15:39 - 2017-11-02 06:20 - 000543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
      2017-11-16 15:39 - 2017-11-02 06:20 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
      2017-11-16 15:39 - 2017-11-02 06:15 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
      2017-11-16 15:39 - 2017-11-02 06:14 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
      2017-11-16 15:39 - 2017-11-02 06:13 - 000212888 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
      2017-11-16 15:39 - 2017-11-02 06:12 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
      2017-11-16 15:39 - 2017-11-02 06:12 - 000430848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
      2017-11-16 15:39 - 2017-11-02 05:33 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
      2017-11-16 15:39 - 2017-11-02 05:28 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
      2017-11-16 15:39 - 2017-11-02 05:28 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
      2017-11-16 15:39 - 2017-11-02 05:26 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
      2017-11-16 15:39 - 2017-11-02 05:25 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
      2017-11-16 15:39 - 2017-10-15 15:59 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
      2017-11-16 15:39 - 2017-10-15 15:56 - 000872464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
      2017-11-16 15:31 - 2017-11-16 15:31 - 000835303 _____ C:\Users\Fritsie\Downloads\Voorstel Coolblue.pdf
      2017-11-16 13:09 - 2017-11-16 13:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
      2017-11-13 11:26 - 2017-11-13 11:26 - 000051016 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
      2017-11-13 11:26 - 2017-11-13 11:26 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
      2017-11-13 11:26 - 2017-11-13 11:26 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
      2017-11-13 11:26 - 2017-11-13 11:26 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
      2017-11-01 09:58 - 2017-11-01 09:58 - 000070548 _____ C:\Users\Fritsie\Downloads\Inkomstenformulier.pdf
      2017-10-31 10:34 - 2017-10-31 10:34 - 000143382 _____ C:\Users\Fritsie\Downloads\Lijst met competenties.pdf

      ==================== Een Maand Gewijzigd bestanden en mappen ========

      (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

      2017-11-28 16:38 - 2015-07-22 10:13 - 000000343 _____ C:\Users\Fritsie\AppData\Roaming\com.efi.FierySoftwareManager
      2017-11-28 16:38 - 2013-07-09 09:09 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Fiery Software Manager
      2017-11-28 16:32 - 2017-07-29 12:50 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
      2017-11-28 16:31 - 2015-10-17 07:48 - 000000000 __SHD C:\Users\Fritsie\IntelGraphicsProfiles
      2017-11-28 16:28 - 2017-08-01 22:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2017-11-28 13:02 - 2017-08-01 22:15 - 000000000 ____D C:\Users\Fritsie
      2017-11-28 12:57 - 2017-03-18 12:40 - 000786432 _____ C:\WINDOWS\system32\config\BBI
      2017-11-28 12:10 - 2013-04-08 09:45 - 000000000 ____D C:\ProgramData\Malwarebytes
      2017-11-28 10:53 - 2013-03-24 11:22 - 000000000 ____D C:\Users\Fritsie\AppData\Local\Google
      2017-11-28 10:53 - 2012-02-24 03:28 - 000000000 ____D C:\Program Files (x86)\Google
      2017-11-28 10:52 - 2017-08-01 22:48 - 000003574 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
      2017-11-28 10:52 - 2017-08-01 22:48 - 000003450 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
      2017-11-28 09:56 - 2014-06-04 22:45 - 000000000 ____D C:\Users\Fritsie\AppData\Local\Packages
      2017-11-24 11:22 - 2013-06-26 17:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
      2017-11-24 11:21 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
      2017-11-24 11:11 - 2015-09-14 19:03 - 000000000 ____D C:\Users\Fritsie\AppData\Local\Adobe
      2017-11-24 07:42 - 2013-03-23 16:20 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Adobe
      2017-11-23 16:15 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Solar Synthenogment Converter
      2017-11-23 15:23 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
      2017-11-23 15:02 - 2017-10-11 14:35 - 000000000 ____D C:\GOG Games
      2017-11-23 15:01 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
      2017-11-23 15:01 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
      2017-11-23 14:54 - 2013-04-09 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
      2017-11-23 14:40 - 2017-08-01 22:13 - 002509248 _____ C:\WINDOWS\system32\PerfStringBackup.INI
      2017-11-23 14:40 - 2017-03-20 04:54 - 001119826 _____ C:\WINDOWS\system32\perfh013.dat
      2017-11-23 14:40 - 2017-03-20 04:54 - 000260950 _____ C:\WINDOWS\system32\perfc013.dat
      2017-11-23 14:30 - 2016-01-17 19:57 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\BitTorrent
      2017-11-23 14:25 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
      2017-11-23 13:56 - 2015-09-10 06:35 - 000000000 __RHD C:\Users\Public\AccountPictures
      2017-11-23 13:54 - 2017-08-01 22:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
      2017-11-23 13:49 - 2017-08-01 22:02 - 000390472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\appraiser
      2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
      2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Provisioning
      2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
      2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
      2017-11-21 13:27 - 2017-03-19 12:07 - 000000000 ____D C:\Users\Fritsie\AppData\Local\Albelli Fotoboeken
      2017-11-21 12:16 - 2013-08-24 15:20 - 000000000 ____D C:\WINDOWS\system32\MRT
      2017-11-21 12:03 - 2016-01-25 09:12 - 000000000 ____D C:\Users\Fritsie\AppData\Local\ElevatedDiagnostics
      2017-11-21 12:01 - 2017-10-11 19:21 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
      2017-11-21 12:00 - 2013-03-24 00:59 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
      2017-11-21 11:42 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
      2017-11-21 10:33 - 2014-06-20 20:54 - 000545440 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
      2017-11-21 10:08 - 2013-05-21 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
      2017-11-20 10:34 - 2017-03-18 22:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
      2017-11-20 10:33 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
      2017-11-20 10:32 - 2013-03-25 10:20 - 000000000 ____D C:\Program Files\Microsoft Office
      2017-11-16 13:23 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\NDF
      2017-11-16 13:11 - 2015-10-14 09:07 - 000000000 ____D C:\Program Files (x86)\Dropbox
      2017-11-07 11:56 - 2017-08-01 22:48 - 000003368 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2894100099-29603364-4124575878-1001
      2017-11-07 11:56 - 2015-10-17 07:57 - 000002391 _____ C:\Users\Fritsie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2017-11-07 11:56 - 2015-10-17 07:57 - 000000000 ___RD C:\Users\Fritsie\OneDrive
      2017-11-05 02:40 - 2017-03-18 22:06 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
      2017-11-05 02:40 - 2017-03-18 22:06 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

      ==================== Bestanden in de root van sommige mappen =======

      2015-07-22 10:13 - 2017-11-28 16:38 - 000000343 _____ () C:\Users\Fritsie\AppData\Roaming\com.efi.FierySoftwareManager
      2017-11-23 14:25 - 2017-11-23 14:25 - 000011568 _____ () C:\Users\Fritsie\AppData\Local\InstallationConfiguration.xml
      2017-11-23 14:25 - 2017-11-23 14:25 - 000140800 _____ () C:\Users\Fritsie\AppData\Local\installer.dat
      2017-11-23 14:25 - 2017-11-23 14:25 - 000930816 _____ () C:\Users\Fritsie\AppData\Local\po.db
      2014-12-19 13:14 - 2016-08-13 13:23 - 000000600 _____ () C:\Users\Fritsie\AppData\Local\PUTTY.RND
      2016-03-15 09:49 - 2016-03-16 13:28 - 000007604 _____ () C:\Users\Fritsie\AppData\Local\Resmon.ResmonCfg
      2017-11-23 14:22 - 2017-11-23 14:22 - 000014848 _____ () C:\Users\Fritsie\AppData\Local\xoplmi.dll

      Sommige bestanden in TEMP:
      ====================
      2017-11-23 14:30 - 2017-11-23 14:30 - 004035408 _____ (Easeware ) C:\Users\Fritsie\AppData\Local\Temp\8908.tmp.exe
      2017-11-23 14:18 - 2017-11-23 14:18 - 000024612 _____ (Valssaamontie 53) C:\Users\Fritsie\AppData\Local\Temp\capi.exe
      2017-11-23 14:26 - 2017-11-23 14:26 - 000016384 _____ (noOrg) C:\Users\Fritsie\AppData\Local\Temp\cubesta.exe
      2017-11-23 14:18 - 2017-11-23 14:18 - 003139311 _____ () C:\Users\Fritsie\AppData\Local\Temp\golm.exe
      2017-11-23 14:29 - 2017-11-23 14:29 - 001574400 _____ () C:\Users\Fritsie\AppData\Local\Temp\klafes.exe
      2017-11-23 14:30 - 2017-11-23 14:30 - 007469104 _____ (Gold Click Ltd ) C:\Users\Fritsie\AppData\Local\Temp\mjkuzuoo5.exe
      2017-11-23 14:29 - 2017-11-23 14:29 - 000328704 _____ () C:\Users\Fritsie\AppData\Local\Temp\offerpg3.exe
      2017-11-23 14:29 - 2017-11-23 14:30 - 004188040 _____ ( ) C:\Users\Fritsie\AppData\Local\Temp\OneSystemCare.exe
      2017-11-23 14:18 - 2017-11-23 14:26 - 001792069 _____ () C:\Users\Fritsie\AppData\Local\Temp\pi.exe
      2017-11-23 14:29 - 2017-11-23 14:29 - 000674415 _____ ( ) C:\Users\Fritsie\AppData\Local\Temp\speedownloader.exe
      2017-10-26 09:07 - 2017-10-26 09:07 - 000488960 _____ () C:\Users\Fritsie\AppData\Local\Temp\sqlite3.exe
      2017-10-16 13:38 - 2016-01-14 14:20 - 000362656 _____ (CANON INC.) C:\Users\Fritsie\AppData\Local\Temp\uninstall.exe
      2017-11-23 14:18 - 2017-11-23 14:18 - 000936960 _____ () C:\Users\Fritsie\AppData\Local\Temp\XvidCodecInstaller.exe

      =============

      Comment


      • #4
        Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 27-11-2017
        Gestart door Fritsie (Beheerder) op FRITSIE-PC (28-11-2017 16:43:59)
        Gestart vanaf C:\Users\Fritsie\Downloads
        Geladen Profielen: Fritsie & (Beschikbare Profielen: Fritsie)
        Platform: Windows 10 Home Versie 1703 15063.726 (X64) Taal: Nederlands (Nederland)
        Internet Explorer Versie 11 (Standaardbrowser: Chrome)
        Boot Modus: Normal
        Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/

        ==================== Processen (gefilterd) =================

        (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

        (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
        (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
        (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
        () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
        (Juniper Networks, Inc.) C:\Program Files (x86)\Common Files\Juniper Networks\JUNS\dsAccessService.exe
        () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
        () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
        () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
        () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
        () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
        (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
        (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
        (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
        () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareService.exe
        (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
        (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
        (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
        (Juniper Networks, Inc.) C:\Program Files (x86)\Common Files\Juniper Networks\JUNS\dsAccessService.exe
        (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
        (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
        (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
        (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
        (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
        (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
        (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
        (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
        (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
        (Intel Corporation) C:\Windows\System32\igfxEM.exe
        (Intel Corporation) C:\Windows\System32\igfxHK.exe
        () C:\Program Files (x86)\Fiery\Fiery Software Manager\Fiery Software Manager.exe
        (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
        (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
        () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
        (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
        ( ) C:\Users\Fritsie\AppData\Roaming\l0r0fz4jadx\423ccwdswy1.exe
        ( ) C:\Users\Fritsie\AppData\Roaming\22kx4gz5xsh\ls224qpvsok.exe
        ( ) C:\Users\Fritsie\AppData\Roaming\5iq4cwclxa0\oy1a5wfxieo.exe
        () C:\Users\Fritsie\AppData\Local\Temp\is-NQG7M.tmp\ls224qpvsok.tmp
        () C:\Users\Fritsie\AppData\Local\Temp\is-KP9V3.tmp\423ccwdswy1.tmp
        ( ) C:\Users\Fritsie\AppData\Roaming\gx1fjhgcm2c\23js24bgzil.exe
        () C:\Users\Fritsie\AppData\Local\Temp\is-12K2B.tmp\oy1a5wfxieo.tmp
        () C:\Users\Fritsie\AppData\Local\Temp\is-DHNDQ.tmp\23js24bgzil.tmp
        (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
        (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
        (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
        (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
        (Microsoft Corporation) C:\Windows\System32\mqsvc.exe
        (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
        (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
        (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
        (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
        (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
        (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
        (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
        () C:\Users\Fritsie\AppData\Local\Temp\RarSFX37\FSM\Fiery Software Manager.exe
        (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
        (Microsoft Corporation) C:\Windows\System32\dllhost.exe
        (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
        (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
        (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
        (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
        (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
        (Microsoft Corporation) C:\Windows\System32\dllhost.exe
        (Microsoft Corporation) C:\Windows\System32\dllhost.exe

        ==================== Register (gefilterd) ===========================

        (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

        HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
        HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
        HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareTray.exe [4688344 2017-09-01] ()
        HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.)
        HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-11-13] (Dropbox, Inc.)
        HKLM-x32\...\Run: [Reader Application Helper] => C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2014-10-24] (Sony Corporation)
        HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4174464 2017-05-23] (Safer-Networking Ltd.)
        HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (CANON INC.)
        HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [Spotify Web Helper] => C:\Users\Fritsie\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2016-02-10] (Spotify Ltd)
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [3149179] => C:\Users\Fritsie\AppData\Roaming\l0r0fz4jadx\423ccwdswy1.exe [1031506 2017-11-23] ( )
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [7097526] => C:\Users\Fritsie\AppData\Roaming\22kx4gz5xsh\ls224qpvsok.exe [1031506 2017-11-23] ( )
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [5877406] => C:\Users\Fritsie\AppData\Roaming\5iq4cwclxa0\oy1a5wfxieo.exe [1031506 2017-11-23] ( )
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Run: [2417143] => C:\Users\Fritsie\AppData\Roaming\gx1fjhgcm2c\23js24bgzil.exe [1031506 2017-11-23] ( )
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [Spotify Web Helper] => C:\Users\Fritsie\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2016-02-10] (Spotify Ltd)
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [3149179] => C:\Users\Fritsie\AppData\Roaming\l0r0fz4jadx\423ccwdswy1.exe [1031506 2017-11-23] ( )
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [7097526] => C:\Users\Fritsie\AppData\Roaming\22kx4gz5xsh\ls224qpvsok.exe [1031506 2017-11-23] ( )
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [5877406] => C:\Users\Fritsie\AppData\Roaming\5iq4cwclxa0\oy1a5wfxieo.exe [1031506 2017-11-23] ( )
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Run: [2417143] => C:\Users\Fritsie\AppData\Roaming\gx1fjhgcm2c\23js24bgzil.exe [1031506 2017-11-23] ( )
        GroupPolicy: Restrictie - Chrome <==== AANDACHT
        CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT

        ==================== Internet (gefilterd) ====================

        (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

        Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
        Tcpip\Parameters: [DhcpNameServer] 62.58.153.220 62.58.48.30 192.168.1.1
        Tcpip\..\Interfaces\{463b80e5-a8d6-4c22-a295-a2cb8ee492f8}: [DhcpNameServer] 194.151.228.3 194.151.228.51
        Tcpip\..\Interfaces\{ac2c2038-a995-4389-b3f7-f52f3cae386b}: [DhcpNameServer] 90.145.32.32 90.145.32.33
        Tcpip\..\Interfaces\{da929fdb-09bf-4081-9ff4-a2b5cca13169}: [NameServer] 145.18.39.16,145.18.40.50
        Tcpip\..\Interfaces\{f5e4723f-0642-4a76-9e4f-f263fe3c71d9}: [NameServer] 82.163.142.8,95.211.158.136
        Tcpip\..\Interfaces\{f5e4723f-0642-4a76-9e4f-f263fe3c71d9}: [DhcpNameServer] 62.58.153.220 62.58.48.30 192.168.1.1

        Internet Explorer:
        ==================
        HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
        HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
        HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
        HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
        HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
        HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
        HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
        SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
        SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
        SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
        SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
        SearchScopes: HKU\S-1-5-21-2894100099-29603364-4124575878-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
        SearchScopes: HKU\S-1-5-21-2894100099-29603364-4124575878-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
        SearchScopes: HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
        SearchScopes: HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
        BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2017-11-20] (Microsoft Corporation)
        BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-11-08] (Microsoft Corporation)
        BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-10-21] (Microsoft Corporation)
        BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2015-07-17] (Oracle Corporation)
        BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-11-08] (Microsoft Corporation)
        BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-07-17] (Oracle Corporation)
        DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cab
        DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab
        Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
        Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
        Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
        Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
        Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
        Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
        Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
        Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
        Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)

        FireFox:
        ========
        FF DefaultProfile: 21g7adz3.default
        FF ProfilePath: C:\Users\Fritsie\AppData\Roaming\Mozilla\Firefox\Profiles\21g7adz3.default [2017-11-28]
        FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK => niet gevonden
        FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
        FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-10-21] (Microsoft Corporation)
        FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [Geen bestand]
        FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-12-18] ()
        FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-02] (Intel Corporation)
        FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-02] (Intel Corporation)
        FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2015-07-17] (Oracle Corporation)
        FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-07-17] (Oracle Corporation)
        FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-10-21] (Microsoft Corporation)
        FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
        FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-10-21] (Microsoft Corporation)
        FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
        FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
        FF Plugin-x32: @sony.com/ReaderDesktop -> C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll [2014-10-24] (Sony Corporation)
        FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
        FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
        FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN)
        FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
        FF Plugin HKU\S-1-5-21-2894100099-29603364-4124575878-1001: @citrixonline.com/appdetectorplugin -> C:\Users\Fritsie\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-02-25] (Citrix Online)
        FF Plugin HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093: @citrixonline.com/appdetectorplugin -> C:\Users\Fritsie\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-02-25] (Citrix Online)
        FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\74098828.js [2017-11-24] <==== AANDACHT (Gericht op * .cfg bestand)
        FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\74098828.cfg [2017-11-24] <==== AANDACHT

        Chrome:
        =======
        CHR Profile: C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default [2017-11-28]
        CHR Extension: (Documenten) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-28]
        CHR Extension: (Google Drive) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-28]
        CHR Extension: (Offline Documenten) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-28]
        CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-28]
        CHR Extension: (Chrome Media Router) - C:\Users\Fritsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-28]
        CHR HKU\S-1-5-21-2894100099-29603364-4124575878-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Fritsie\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-01-12]
        CHR HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Fritsie\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-01-12]

        ==================== Services (gefilterd) ====================

        (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

        R2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareService.exe [585784 2017-09-01] ()
        S4 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
        R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8063656 2017-11-02] (Microsoft Corporation)
        S2 dafkService; C:\ProgramData\dafkService\dafkService.exe [1574400 2017-11-23] () [Bestand niet getekend]
        S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-14] (Dropbox, Inc.)
        S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-14] (Dropbox, Inc.)
        R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51016 2017-11-13] (Dropbox, Inc.)
        S4 EFI ES1000; C:\Program Files (x86)\Common Files\EFI\EFI ES-1000 Service\ES1000Service.exe [11776 2009-10-19] (Electronics for Imaging, Inc.) [Bestand niet getekend]
        S4 EFI License Manager; C:\Program Files (x86)\EFI\EFILM\lmgrd.exe [1499440 2015-07-17] (Flexera Software LLC)
        S4 Fiery Data Collector; C:\Program Files (x86)\Fiery\Applications3\Command WorkStation 5\FDC\FDC.exe [704512 2015-02-16] (Electronics for Imaging, Inc) [Bestand niet getekend]
        S4 Fiery Mailbox Synchronization; C:\Program Files (x86)\Fiery\Applications3\FieryRemoteScanApp\FRSMailboxSyncService.exe [11264 2015-02-23] (Electronics For Imaging) [Bestand niet getekend]
        S4 hasplms; C:\Windows\system32\hasplms.exe [4609928 2013-08-01] (SafeNet Inc.)
        R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
        S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-16] ()
        S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
        R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
        U2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
        R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
        S4 ofaApp; C:\Program Files (x86)\EFI\OFASQ\ofaApp.exe [2529984 2015-07-17] ()
        S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1776864 2017-05-23] (Safer-Networking Ltd.)
        S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2131760 2017-05-23] (Safer-Networking Ltd.)
        R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233936 2017-05-23] (Safer-Networking Ltd.)
        S4 Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2014-04-25] (Sony Corporation) [Bestand niet getekend]
        S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
        S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)
        S2 OdzB8atsXYZx Updater; C:\Program Files (x86)\OdzB8atsXYZx Updater\OdzB8atsXYZx Updater.exe [X]

        ===================== Drivers (gefilterd) ======================

        (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

        R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
        R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUS Corporation)
        R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
        R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-01] ()
        S2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331328 2013-08-01] (SafeNet Inc.)
        S4 jnprTdi_743_36355; C:\Windows\system32\Drivers\jnprTdi_743_36355.sys [108336 2013-05-23] (Juniper Networks, Inc.)
        R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193464 2017-11-28] (Malwarebytes)
        R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-11-28] (Malwarebytes)
        R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2017-11-28] (Malwarebytes)
        R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-11-28] (Malwarebytes)
        R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-11-28] (Malwarebytes)
        R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
        R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
        S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
        R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [442848 2017-02-08] (BitDefender S.R.L.)
        S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
        S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
        S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
        U3 idsvc; geen ImagePath

        ==================== NetSvcs (gefilterd) ===================

        (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


        ==================== Een Maand Aangemaakt bestanden en mappen ========

        (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

        2017-11-28 16:41 - 2017-11-28 16:48 - 000025992 _____ C:\Users\Fritsie\Downloads\FRST.txt
        2017-11-28 16:41 - 2017-11-28 16:41 - 002391552 _____ (Farbar) C:\Users\Fritsie\Downloads\FRST64.exe
        2017-11-28 13:13 - 2017-11-28 16:41 - 000000000 ____D C:\FRST
        2017-11-28 12:11 - 2017-11-28 16:30 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
        2017-11-28 12:11 - 2017-11-28 16:30 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
        2017-11-28 12:11 - 2017-11-28 16:30 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
        2017-11-28 12:11 - 2017-11-28 12:11 - 000193464 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
        2017-11-28 12:10 - 2017-11-28 12:10 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
        2017-11-28 12:10 - 2017-11-28 12:10 - 000001874 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
        2017-11-28 12:10 - 2017-11-28 12:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
        2017-11-28 12:10 - 2017-11-28 12:10 - 000000000 ____D C:\Program Files\Malwarebytes
        2017-11-28 12:10 - 2017-11-01 08:54 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
        2017-11-28 12:00 - 2017-11-28 12:00 - 000003017 _____ C:\Users\Fritsie\Desktop\HiJackThis.lnk
        2017-11-28 12:00 - 2017-11-28 12:00 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
        2017-11-28 12:00 - 2017-11-28 12:00 - 000000000 ____D C:\Program Files (x86)\Trend Micro
        2017-11-28 10:53 - 2017-11-28 10:53 - 000002366 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
        2017-11-28 10:53 - 2017-11-28 10:53 - 000002354 _____ C:\Users\Public\Desktop\Google Chrome.lnk
        2017-11-28 10:46 - 2017-11-28 10:46 - 001129816 _____ (Google Inc.) C:\Users\Fritsie\Downloads\Niet bevestigd 583807.crdownload
        2017-11-24 10:55 - 2017-11-28 09:47 - 000000140 _____ C:\WINDOWS\Reimage.ini
        2017-11-24 08:04 - 2017-11-28 13:19 - 000000000 ____D C:\Program Files\1cf3c8891be2c514e3b79c38ed4e53b5
        2017-11-23 16:07 - 2017-11-23 16:15 - 000137236 _____ C:\WINDOWS\system32\lsdel.dat
        2017-11-23 14:51 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files\YTJD0NQ005
        2017-11-23 14:51 - 2017-11-23 14:51 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\gx1fjhgcm2c
        2017-11-23 14:35 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files\DZ164IWU12
        2017-11-23 14:35 - 2017-11-23 14:35 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\5iq4cwclxa0
        2017-11-23 14:34 - 2017-11-23 14:34 - 000000262 __RSH C:\Users\Fritsie\ntuser.pol
        2017-11-23 14:30 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files\NTS1NVWUQ7
        2017-11-23 14:30 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files\05ZD7J3VXV
        2017-11-23 14:30 - 2017-11-24 07:42 - 000000000 ____D C:\Program Files (x86)\SDownloader
        2017-11-23 14:30 - 2017-11-23 14:59 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Easeware
        2017-11-23 14:30 - 2017-11-23 14:30 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\l0r0fz4jadx
        2017-11-23 14:30 - 2017-11-23 14:30 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\22kx4gz5xsh
        2017-11-23 14:30 - 2017-11-23 14:30 - 000000000 ____D C:\ProgramData\dafkService
        2017-11-23 14:29 - 2017-11-24 07:42 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Browsers
        2017-11-23 14:29 - 2017-11-23 14:29 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\SPI
        2017-11-23 14:26 - 2017-11-23 14:26 - 000000000 ____D C:\ProgramData\Microleaves
        2017-11-23 14:25 - 2017-11-23 14:25 - 000930816 _____ C:\Users\Fritsie\AppData\Local\po.db
        2017-11-23 14:25 - 2017-11-23 14:25 - 000140800 _____ C:\Users\Fritsie\AppData\Local\installer.dat
        2017-11-23 14:25 - 2017-11-23 14:25 - 000011568 _____ C:\Users\Fritsie\AppData\Local\InstallationConfiguration.xml
        2017-11-23 14:25 - 2017-11-23 14:25 - 000000262 __RSH C:\ProgramData\ntuser.pol
        2017-11-23 14:25 - 2017-11-23 14:25 - 000000000 ____D C:\ProgramData\c8668ae6-7065-1
        2017-11-23 14:25 - 2017-11-23 14:25 - 000000000 ____D C:\ProgramData\c8668ae6-1db7-0
        2017-11-23 14:24 - 2017-11-28 12:58 - 000000000 ____D C:\Program Files (x86)\OdzB8atsXYZx
        2017-11-23 14:24 - 2017-11-23 14:30 - 000003436 _____ C:\WINDOWS\System32\Tasks\space(title, t_monitor)
        2017-11-23 14:24 - 2017-11-23 14:30 - 000003426 _____ C:\WINDOWS\System32\Tasks\space(title, t_delayed)
        2017-11-23 14:24 - 2017-11-23 14:24 - 000021596 _____ C:\WINDOWS\System32\Tasks\OdzB8atsXYZx
        2017-11-23 14:24 - 2017-11-23 14:24 - 000000000 ____D C:\ProgramData\767f5022-6e97-0
        2017-11-23 14:24 - 2017-11-23 14:24 - 000000000 ____D C:\ProgramData\767f5022-3203-1
        2017-11-23 14:23 - 2017-11-23 14:32 - 000000404 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
        2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G6.job
        2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G5.job
        2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G4.job
        2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
        2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
        2017-11-23 14:23 - 2017-11-23 14:32 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
        2017-11-23 14:23 - 2017-11-23 14:23 - 000003298 _____ C:\WINDOWS\System32\Tasks\Updater_Online_Application
        2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G6
        2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G5
        2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G4
        2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G3
        2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G2
        2017-11-23 14:23 - 2017-11-23 14:23 - 000003262 _____ C:\WINDOWS\System32\Tasks\Online Application V2G1
        2017-11-23 14:23 - 2017-11-23 14:23 - 000000000 ____D C:\Program Files (x86)\Microleaves
        2017-11-23 14:22 - 2017-11-28 12:58 - 000000000 ____D C:\Users\Fritsie\AppData\Local\AdService
        2017-11-23 14:22 - 2017-11-23 14:22 - 000014848 _____ C:\Users\Fritsie\AppData\Local\xoplmi.dll
        2017-11-23 14:22 - 2017-11-23 14:22 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Microleaves
        2017-11-23 14:22 - 2017-11-23 14:22 - 000000000 ____D C:\Users\Fritsie\AppData\Local\AdvinstAnalytics
        2017-11-23 14:20 - 2017-11-24 09:31 - 000000000 ____D C:\WINDOWS\SysWOW64\SSL
        2017-11-23 14:20 - 2017-11-24 08:04 - 000003290 _____ C:\WINDOWS\System32\Tasks\1cf3c8891be2c514e3b79c38ed4e53b5
        2017-11-23 14:15 - 2017-11-23 14:16 - 000000000 ____D C:\Users\Fritsie\Downloads\FOOTBALL.MANAGER.TOUCH.2017-STEAMPUNKS
        2017-11-23 14:14 - 2017-11-23 14:15 - 000000000 ____D C:\Users\Fritsie\AppData\LocalLow\BitTorrent
        2017-11-21 14:59 - 2017-11-21 14:59 - 000457728 _____ C:\WINDOWS\4151847484d8b881dbda3e04c42437fc.exe
        2017-11-21 14:59 - 2017-11-21 14:59 - 000051624 _____ C:\WINDOWS\uninstaller.dat
        2017-11-21 10:53 - 2017-11-21 10:53 - 000332412 _____ C:\Users\Fritsie\Downloads\Aanvraag voorshot NS Frits Frederiks.pdf
        2017-11-21 10:53 - 2017-11-21 10:53 - 000332412 _____ C:\Users\Fritsie\Downloads\20171121_00001.pdf
        2017-11-21 10:42 - 2017-11-21 10:42 - 000122032 _____ C:\Users\Fritsie\Downloads\Regeling voorschot NS jaarabonnement.pdf
        2017-11-20 10:33 - 2017-11-20 10:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
        2017-11-16 15:47 - 2017-11-02 05:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPKICmdlet.dll
        2017-11-16 15:47 - 2017-11-02 05:22 - 001884160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
        2017-11-16 15:46 - 2017-11-02 06:04 - 001292360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
        2017-11-16 15:46 - 2017-11-02 06:03 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
        2017-11-16 15:46 - 2017-11-02 05:49 - 001838848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
        2017-11-16 15:46 - 2017-11-02 05:45 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
        2017-11-16 15:46 - 2017-11-02 05:45 - 000613136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
        2017-11-16 15:46 - 2017-11-02 05:45 - 000362144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
        2017-11-16 15:46 - 2017-11-02 05:45 - 000354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
        2017-11-16 15:46 - 2017-11-02 05:45 - 000283544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
        2017-11-16 15:46 - 2017-11-02 05:45 - 000172952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
        2017-11-16 15:46 - 2017-11-02 05:45 - 000133896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
        2017-11-16 15:46 - 2017-11-02 05:44 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
        2017-11-16 15:46 - 2017-11-02 05:44 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
        2017-11-16 15:46 - 2017-11-02 05:43 - 020372896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
        2017-11-16 15:46 - 2017-11-02 05:31 - 020512256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
        2017-11-16 15:46 - 2017-11-02 05:30 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
        2017-11-16 15:46 - 2017-11-02 05:30 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
        2017-11-16 15:46 - 2017-11-02 05:30 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
        2017-11-16 15:46 - 2017-11-02 05:29 - 019338240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
        2017-11-16 15:46 - 2017-11-02 05:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
        2017-11-16 15:46 - 2017-11-02 05:27 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
        2017-11-16 15:46 - 2017-11-02 05:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
        2017-11-16 15:46 - 2017-11-02 05:26 - 005963776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
        2017-11-16 15:46 - 2017-11-02 05:26 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
        2017-11-16 15:46 - 2017-11-02 05:26 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
        2017-11-16 15:46 - 2017-11-02 05:26 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
        2017-11-16 15:46 - 2017-11-02 05:25 - 012227072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
        2017-11-16 15:46 - 2017-11-02 05:25 - 011888128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
        2017-11-16 15:46 - 2017-11-02 05:25 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
        2017-11-16 15:46 - 2017-11-02 05:25 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
        2017-11-16 15:46 - 2017-11-02 05:25 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
        2017-11-16 15:46 - 2017-11-02 05:24 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
        2017-11-16 15:46 - 2017-11-02 05:24 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
        2017-11-16 15:46 - 2017-11-02 05:24 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
        2017-11-16 15:46 - 2017-11-02 05:24 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
        2017-11-16 15:46 - 2017-11-02 05:24 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
        2017-11-16 15:46 - 2017-11-02 05:23 - 000680960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
        2017-11-16 15:46 - 2017-11-02 05:23 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
        2017-11-16 15:46 - 2017-11-02 05:23 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
        2017-11-16 15:46 - 2017-11-02 05:23 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
        2017-11-16 15:46 - 2017-11-02 05:22 - 006254080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
        2017-11-16 15:46 - 2017-11-02 05:22 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
        2017-11-16 15:46 - 2017-11-02 05:22 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
        2017-11-16 15:46 - 2017-11-02 05:22 - 001494528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
        2017-11-16 15:46 - 2017-11-02 05:21 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
        2017-11-16 15:46 - 2017-11-02 05:21 - 003653120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
        2017-11-16 15:46 - 2017-11-02 05:21 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
        2017-11-16 15:46 - 2017-11-02 05:21 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
        2017-11-16 15:46 - 2017-10-25 08:40 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
        2017-11-16 15:46 - 2017-10-15 16:09 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
        2017-11-16 15:46 - 2017-10-15 16:03 - 006765728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
        2017-11-16 15:46 - 2017-10-15 16:01 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
        2017-11-16 15:46 - 2017-10-15 15:51 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
        2017-11-16 15:46 - 2017-10-15 15:49 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
        2017-11-16 15:46 - 2017-10-15 15:45 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
        2017-11-16 15:46 - 2017-10-15 15:45 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
        2017-11-16 15:46 - 2017-10-15 15:44 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
        2017-11-16 15:46 - 2017-10-15 15:44 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
        2017-11-16 15:46 - 2017-10-15 15:42 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
        2017-11-16 15:46 - 2017-10-15 15:42 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
        2017-11-16 15:46 - 2017-10-15 15:41 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
        2017-11-16 15:46 - 2017-10-15 15:41 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
        2017-11-16 15:46 - 2017-10-15 15:38 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
        2017-11-16 15:42 - 2017-11-02 06:20 - 000469568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
        2017-11-16 15:42 - 2017-11-02 06:13 - 000095640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
        2017-11-16 15:42 - 2017-11-02 06:05 - 000871408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
        2017-11-16 15:42 - 2017-11-02 05:35 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
        2017-11-16 15:42 - 2017-11-02 05:35 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
        2017-11-16 15:42 - 2017-11-02 05:33 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
        2017-11-16 15:42 - 2017-11-02 05:33 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPKICmdlet.dll
        2017-11-16 15:42 - 2017-11-02 05:30 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
        2017-11-16 15:42 - 2017-11-02 05:30 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
        2017-11-16 15:42 - 2017-11-02 05:26 - 001937408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
        2017-11-16 15:42 - 2017-11-02 05:25 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
        2017-11-16 15:42 - 2017-11-02 05:25 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
        2017-11-16 15:42 - 2017-10-15 15:55 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
        2017-11-16 15:42 - 2017-10-15 15:08 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
        2017-11-16 15:41 - 2017-11-02 06:13 - 001345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
        2017-11-16 15:41 - 2017-11-02 06:13 - 000546712 _____ C:\WINDOWS\system32\Drivers\storport.sys
        2017-11-16 15:41 - 2017-11-02 06:12 - 000714648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
        2017-11-16 15:41 - 2017-11-02 06:12 - 000026472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
        2017-11-16 15:41 - 2017-11-02 06:11 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
        2017-11-16 15:41 - 2017-11-02 06:10 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
        2017-11-16 15:41 - 2017-11-02 05:37 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
        2017-11-16 15:41 - 2017-11-02 05:37 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
        2017-11-16 15:41 - 2017-11-02 05:36 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
        2017-11-16 15:41 - 2017-11-02 05:35 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
        2017-11-16 15:41 - 2017-11-02 05:34 - 000438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
        2017-11-16 15:41 - 2017-11-02 05:34 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
        2017-11-16 15:41 - 2017-11-02 05:34 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
        2017-11-16 15:41 - 2017-11-02 05:34 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
        2017-11-16 15:41 - 2017-11-02 05:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
        2017-11-16 15:41 - 2017-11-02 05:34 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
        2017-11-16 15:41 - 2017-11-02 05:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
        2017-11-16 15:41 - 2017-11-02 05:34 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
        2017-11-16 15:41 - 2017-11-02 05:33 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
        2017-11-16 15:41 - 2017-11-02 05:32 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
        2017-11-16 15:41 - 2017-11-02 05:32 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
        2017-11-16 15:41 - 2017-11-02 05:32 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
        2017-11-16 15:41 - 2017-11-02 05:31 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
        2017-11-16 15:41 - 2017-11-02 05:31 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
        2017-11-16 15:41 - 2017-11-02 05:30 - 000635392 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
        2017-11-16 15:41 - 2017-11-02 05:30 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
        2017-11-16 15:41 - 2017-11-02 05:29 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
        2017-11-16 15:41 - 2017-11-02 05:29 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
        2017-11-16 15:41 - 2017-11-02 05:28 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
        2017-11-16 15:41 - 2017-11-02 05:27 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
        2017-11-16 15:41 - 2017-11-02 05:27 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
        2017-11-16 15:41 - 2017-11-02 05:26 - 008197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
        2017-11-16 15:41 - 2017-11-02 05:26 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
        2017-11-16 15:41 - 2017-11-02 05:26 - 003060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
        2017-11-16 15:41 - 2017-11-02 05:26 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
        2017-11-16 15:41 - 2017-11-02 05:26 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
        2017-11-16 15:41 - 2017-11-02 05:25 - 004727808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
        2017-11-16 15:41 - 2017-11-02 05:25 - 002052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
        2017-11-16 15:41 - 2017-11-02 05:25 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
        2017-11-16 15:41 - 2017-11-02 05:25 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
        2017-11-16 15:41 - 2017-11-02 05:23 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
        2017-11-16 15:41 - 2017-11-02 05:23 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
        2017-11-16 15:41 - 2017-11-02 05:23 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
        2017-11-16 15:41 - 2017-10-15 15:49 - 000094616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
        2017-11-16 15:41 - 2017-10-15 15:15 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
        2017-11-16 15:41 - 2017-10-15 15:09 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll

        Comment


        • #5
          2017-11-16 15:41 - 2017-10-15 15:09 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
          2017-11-16 15:41 - 2017-10-15 15:07 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
          2017-11-16 15:41 - 2017-10-15 15:05 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
          2017-11-16 15:41 - 2017-10-15 15:04 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
          2017-11-16 15:41 - 2017-10-15 15:00 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
          2017-11-16 15:40 - 2017-11-02 06:21 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
          2017-11-16 15:40 - 2017-11-02 06:21 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
          2017-11-16 15:40 - 2017-11-02 06:21 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
          2017-11-16 15:40 - 2017-11-02 06:21 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
          2017-11-16 15:40 - 2017-11-02 06:20 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
          2017-11-16 15:40 - 2017-11-02 06:20 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
          2017-11-16 15:40 - 2017-11-02 06:16 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
          2017-11-16 15:40 - 2017-11-02 06:16 - 002398696 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
          2017-11-16 15:40 - 2017-11-02 06:16 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
          2017-11-16 15:40 - 2017-11-02 06:15 - 001239448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
          2017-11-16 15:40 - 2017-11-02 06:14 - 000667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
          2017-11-16 15:40 - 2017-11-02 06:13 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
          2017-11-16 15:40 - 2017-11-02 06:13 - 002443672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
          2017-11-16 15:40 - 2017-11-02 06:12 - 000727336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
          2017-11-16 15:40 - 2017-11-02 06:12 - 000643192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
          2017-11-16 15:40 - 2017-11-02 06:12 - 000412752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
          2017-11-16 15:40 - 2017-11-02 06:12 - 000319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
          2017-11-16 15:40 - 2017-11-02 06:12 - 000144248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
          2017-11-16 15:40 - 2017-11-02 06:12 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
          2017-11-16 15:40 - 2017-11-02 06:05 - 000187800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
          2017-11-16 15:40 - 2017-11-02 05:44 - 023680000 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
          2017-11-16 15:40 - 2017-11-02 05:37 - 001278976 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
          2017-11-16 15:40 - 2017-11-02 05:37 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
          2017-11-16 15:40 - 2017-11-02 05:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
          2017-11-16 15:40 - 2017-11-02 05:36 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
          2017-11-16 15:40 - 2017-11-02 05:35 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
          2017-11-16 15:40 - 2017-11-02 05:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
          2017-11-16 15:40 - 2017-11-02 05:34 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
          2017-11-16 15:40 - 2017-11-02 05:33 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
          2017-11-16 15:40 - 2017-11-02 05:31 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
          2017-11-16 15:40 - 2017-11-02 05:30 - 013381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
          2017-11-16 15:40 - 2017-11-02 05:30 - 007339008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
          2017-11-16 15:40 - 2017-11-02 05:30 - 000719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
          2017-11-16 15:40 - 2017-11-02 05:30 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
          2017-11-16 15:40 - 2017-11-02 05:30 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
          2017-11-16 15:40 - 2017-11-02 05:29 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
          2017-11-16 15:40 - 2017-11-02 05:29 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
          2017-11-16 15:40 - 2017-11-02 05:29 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
          2017-11-16 15:40 - 2017-11-02 05:28 - 023684096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
          2017-11-16 15:40 - 2017-11-02 05:28 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
          2017-11-16 15:40 - 2017-11-02 05:27 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
          2017-11-16 15:40 - 2017-11-02 05:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
          2017-11-16 15:40 - 2017-11-02 05:25 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
          2017-11-16 15:40 - 2017-11-02 05:25 - 001713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
          2017-11-16 15:40 - 2017-11-02 05:24 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
          2017-11-16 15:40 - 2017-11-02 05:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
          2017-11-16 15:40 - 2017-10-15 15:57 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
          2017-11-16 15:40 - 2017-10-15 15:57 - 000409496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
          2017-11-16 15:40 - 2017-10-15 15:53 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
          2017-11-16 15:40 - 2017-10-15 15:53 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
          2017-11-16 15:40 - 2017-10-15 15:14 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
          2017-11-16 15:40 - 2017-10-15 15:13 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
          2017-11-16 15:40 - 2017-10-15 15:10 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
          2017-11-16 15:40 - 2017-10-15 15:08 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
          2017-11-16 15:40 - 2017-10-15 15:05 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
          2017-11-16 15:40 - 2017-10-15 15:02 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
          2017-11-16 15:39 - 2017-11-02 06:21 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
          2017-11-16 15:39 - 2017-11-02 06:21 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
          2017-11-16 15:39 - 2017-11-02 06:20 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
          2017-11-16 15:39 - 2017-11-02 06:20 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
          2017-11-16 15:39 - 2017-11-02 06:20 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
          2017-11-16 15:39 - 2017-11-02 06:20 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
          2017-11-16 15:39 - 2017-11-02 06:20 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
          2017-11-16 15:39 - 2017-11-02 06:20 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
          2017-11-16 15:39 - 2017-11-02 06:20 - 000543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
          2017-11-16 15:39 - 2017-11-02 06:20 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
          2017-11-16 15:39 - 2017-11-02 06:15 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
          2017-11-16 15:39 - 2017-11-02 06:14 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
          2017-11-16 15:39 - 2017-11-02 06:13 - 000212888 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
          2017-11-16 15:39 - 2017-11-02 06:12 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
          2017-11-16 15:39 - 2017-11-02 06:12 - 000430848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
          2017-11-16 15:39 - 2017-11-02 05:33 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
          2017-11-16 15:39 - 2017-11-02 05:28 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
          2017-11-16 15:39 - 2017-11-02 05:28 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
          2017-11-16 15:39 - 2017-11-02 05:26 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
          2017-11-16 15:39 - 2017-11-02 05:25 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
          2017-11-16 15:39 - 2017-10-15 15:59 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
          2017-11-16 15:39 - 2017-10-15 15:56 - 000872464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
          2017-11-16 15:31 - 2017-11-16 15:31 - 000835303 _____ C:\Users\Fritsie\Downloads\Voorstel Coolblue.pdf
          2017-11-16 13:09 - 2017-11-16 13:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
          2017-11-13 11:26 - 2017-11-13 11:26 - 000051016 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
          2017-11-13 11:26 - 2017-11-13 11:26 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
          2017-11-13 11:26 - 2017-11-13 11:26 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
          2017-11-13 11:26 - 2017-11-13 11:26 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
          2017-11-01 09:58 - 2017-11-01 09:58 - 000070548 _____ C:\Users\Fritsie\Downloads\Inkomstenformulier.pdf
          2017-10-31 10:34 - 2017-10-31 10:34 - 000143382 _____ C:\Users\Fritsie\Downloads\Lijst met competenties.pdf

          ==================== Een Maand Gewijzigd bestanden en mappen ========

          (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

          2017-11-28 16:38 - 2015-07-22 10:13 - 000000343 _____ C:\Users\Fritsie\AppData\Roaming\com.efi.FierySoftwareManager
          2017-11-28 16:38 - 2013-07-09 09:09 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Fiery Software Manager
          2017-11-28 16:32 - 2017-07-29 12:50 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
          2017-11-28 16:31 - 2015-10-17 07:48 - 000000000 __SHD C:\Users\Fritsie\IntelGraphicsProfiles
          2017-11-28 16:28 - 2017-08-01 22:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
          2017-11-28 13:02 - 2017-08-01 22:15 - 000000000 ____D C:\Users\Fritsie
          2017-11-28 12:57 - 2017-03-18 12:40 - 000786432 _____ C:\WINDOWS\system32\config\BBI
          2017-11-28 12:10 - 2013-04-08 09:45 - 000000000 ____D C:\ProgramData\Malwarebytes
          2017-11-28 10:53 - 2013-03-24 11:22 - 000000000 ____D C:\Users\Fritsie\AppData\Local\Google
          2017-11-28 10:53 - 2012-02-24 03:28 - 000000000 ____D C:\Program Files (x86)\Google
          2017-11-28 10:52 - 2017-08-01 22:48 - 000003574 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
          2017-11-28 10:52 - 2017-08-01 22:48 - 000003450 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
          2017-11-28 09:56 - 2014-06-04 22:45 - 000000000 ____D C:\Users\Fritsie\AppData\Local\Packages
          2017-11-24 11:22 - 2013-06-26 17:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
          2017-11-24 11:21 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
          2017-11-24 11:11 - 2015-09-14 19:03 - 000000000 ____D C:\Users\Fritsie\AppData\Local\Adobe
          2017-11-24 07:42 - 2013-03-23 16:20 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\Adobe
          2017-11-23 16:15 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Solar Synthenogment Converter
          2017-11-23 15:23 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
          2017-11-23 15:02 - 2017-10-11 14:35 - 000000000 ____D C:\GOG Games
          2017-11-23 15:01 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
          2017-11-23 15:01 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
          2017-11-23 14:54 - 2013-04-09 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
          2017-11-23 14:40 - 2017-08-01 22:13 - 002509248 _____ C:\WINDOWS\system32\PerfStringBackup.INI
          2017-11-23 14:40 - 2017-03-20 04:54 - 001119826 _____ C:\WINDOWS\system32\perfh013.dat
          2017-11-23 14:40 - 2017-03-20 04:54 - 000260950 _____ C:\WINDOWS\system32\perfc013.dat
          2017-11-23 14:30 - 2016-01-17 19:57 - 000000000 ____D C:\Users\Fritsie\AppData\Roaming\BitTorrent
          2017-11-23 14:25 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
          2017-11-23 13:56 - 2015-09-10 06:35 - 000000000 __RHD C:\Users\Public\AccountPictures
          2017-11-23 13:54 - 2017-08-01 22:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
          2017-11-23 13:49 - 2017-08-01 22:02 - 000390472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
          2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\appraiser
          2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
          2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Provisioning
          2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
          2017-11-21 14:33 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
          2017-11-21 13:27 - 2017-03-19 12:07 - 000000000 ____D C:\Users\Fritsie\AppData\Local\Albelli Fotoboeken
          2017-11-21 12:16 - 2013-08-24 15:20 - 000000000 ____D C:\WINDOWS\system32\MRT
          2017-11-21 12:03 - 2016-01-25 09:12 - 000000000 ____D C:\Users\Fritsie\AppData\Local\ElevatedDiagnostics
          2017-11-21 12:01 - 2017-10-11 19:21 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
          2017-11-21 12:00 - 2013-03-24 00:59 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
          2017-11-21 11:42 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
          2017-11-21 10:33 - 2014-06-20 20:54 - 000545440 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
          2017-11-21 10:08 - 2013-05-21 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
          2017-11-20 10:34 - 2017-03-18 22:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
          2017-11-20 10:33 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
          2017-11-20 10:32 - 2013-03-25 10:20 - 000000000 ____D C:\Program Files\Microsoft Office
          2017-11-16 13:23 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\NDF
          2017-11-16 13:11 - 2015-10-14 09:07 - 000000000 ____D C:\Program Files (x86)\Dropbox
          2017-11-07 11:56 - 2017-08-01 22:48 - 000003368 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2894100099-29603364-4124575878-1001
          2017-11-07 11:56 - 2015-10-17 07:57 - 000002391 _____ C:\Users\Fritsie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
          2017-11-07 11:56 - 2015-10-17 07:57 - 000000000 ___RD C:\Users\Fritsie\OneDrive
          2017-11-05 02:40 - 2017-03-18 22:06 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
          2017-11-05 02:40 - 2017-03-18 22:06 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

          ==================== Bestanden in de root van sommige mappen =======

          2015-07-22 10:13 - 2017-11-28 16:38 - 000000343 _____ () C:\Users\Fritsie\AppData\Roaming\com.efi.FierySoftwareManager
          2017-11-23 14:25 - 2017-11-23 14:25 - 000011568 _____ () C:\Users\Fritsie\AppData\Local\InstallationConfiguration.xml
          2017-11-23 14:25 - 2017-11-23 14:25 - 000140800 _____ () C:\Users\Fritsie\AppData\Local\installer.dat
          2017-11-23 14:25 - 2017-11-23 14:25 - 000930816 _____ () C:\Users\Fritsie\AppData\Local\po.db
          2014-12-19 13:14 - 2016-08-13 13:23 - 000000600 _____ () C:\Users\Fritsie\AppData\Local\PUTTY.RND
          2016-03-15 09:49 - 2016-03-16 13:28 - 000007604 _____ () C:\Users\Fritsie\AppData\Local\Resmon.ResmonCfg
          2017-11-23 14:22 - 2017-11-23 14:22 - 000014848 _____ () C:\Users\Fritsie\AppData\Local\xoplmi.dll

          Sommige bestanden in TEMP:
          ====================
          2017-11-23 14:30 - 2017-11-23 14:30 - 004035408 _____ (Easeware ) C:\Users\Fritsie\AppData\Local\Temp\8908.tmp.exe
          2017-11-23 14:18 - 2017-11-23 14:18 - 000024612 _____ (Valssaamontie 53) C:\Users\Fritsie\AppData\Local\Temp\capi.exe
          2017-11-23 14:26 - 2017-11-23 14:26 - 000016384 _____ (noOrg) C:\Users\Fritsie\AppData\Local\Temp\cubesta.exe
          2017-11-23 14:18 - 2017-11-23 14:18 - 003139311 _____ () C:\Users\Fritsie\AppData\Local\Temp\golm.exe
          2017-11-23 14:29 - 2017-11-23 14:29 - 001574400 _____ () C:\Users\Fritsie\AppData\Local\Temp\klafes.exe
          2017-11-23 14:30 - 2017-11-23 14:30 - 007469104 _____ (Gold Click Ltd ) C:\Users\Fritsie\AppData\Local\Temp\mjkuzuoo5.exe
          2017-11-23 14:29 - 2017-11-23 14:29 - 000328704 _____ () C:\Users\Fritsie\AppData\Local\Temp\offerpg3.exe
          2017-11-23 14:29 - 2017-11-23 14:30 - 004188040 _____ ( ) C:\Users\Fritsie\AppData\Local\Temp\OneSystemCare.exe
          2017-11-23 14:18 - 2017-11-23 14:26 - 001792069 _____ () C:\Users\Fritsie\AppData\Local\Temp\pi.exe
          2017-11-23 14:29 - 2017-11-23 14:29 - 000674415 _____ ( ) C:\Users\Fritsie\AppData\Local\Temp\speedownloader.exe
          2017-10-26 09:07 - 2017-10-26 09:07 - 000488960 _____ () C:\Users\Fritsie\AppData\Local\Temp\sqlite3.exe
          2017-10-16 13:38 - 2016-01-14 14:20 - 000362656 _____ (CANON INC.) C:\Users\Fritsie\AppData\Local\Temp\uninstall.exe
          2017-11-23 14:18 - 2017-11-23 14:18 - 000936960 _____ () C:\Users\Fritsie\AppData\Local\Temp\XvidCodecInstaller.exe

          ==================== Bamital & volsnap ======================

          (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

          C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
          C:\WINDOWS\system32\wininit.exe => Bestand is getekend
          C:\WINDOWS\explorer.exe => Bestand is getekend
          C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
          C:\WINDOWS\system32\svchost.exe => Bestand is getekend
          C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
          C:\WINDOWS\system32\services.exe => Bestand is getekend
          C:\WINDOWS\system32\User32.dll => Bestand is getekend
          C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
          C:\WINDOWS\system32\userinit.exe => Bestand is getekend
          C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
          C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
          C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
          C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
          C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend

          LastRegBack: 2017-11-21 11:59

          ==================== Eind van FRST.txt ============================

          Comment


          • #6
            Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 27-11-2017
            Gestart door Fritsie (28-11-2017 16:49:53)
            Gestart vanaf C:\Users\Fritsie\Downloads
            Windows 10 Home Versie 1703 15063.726 (X64) (2017-08-01 22:00:49)
            Boot Modus: Normal
            ==========================================================


            ==================== Accounts: =============================

            Administrator (S-1-5-21-2894100099-29603364-4124575878-500 - Administrator - Disabled)
            DefaultAccount (S-1-5-21-2894100099-29603364-4124575878-503 - Limited - Disabled)
            Fritsie (S-1-5-21-2894100099-29603364-4124575878-1001 - Administrator - Enabled) => C:\Users\Fritsie
            Gast (S-1-5-21-2894100099-29603364-4124575878-501 - Limited - Disabled)

            ==================== Security Center ========================

            (Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

            AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
            AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
            AS: Spybot - Search and Destroy (Disabled - Out of date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
            AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
            AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

            ==================== Geïnstalleerde programma's ======================

            (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

            adaware antivirus (HKLM\...\{4A26AA2F-9AE5-41D2-8B90-75314AB3C8A1}_AdAwareUpdater) (Version: 12.2.876.11542 - adaware)
            AdAwareInstaller (HKLM\...\{F84B3667-401C-4E12-9366-24815A10D02A}) (Version: 12.2.876.11542 - adaware) Hidden
            AdAwareUpdater (HKLM\...\{4A26AA2F-9AE5-41D2-8B90-75314AB3C8A1}) (Version: 12.2.876.11542 - adaware) Hidden
            Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
            Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
            Albelli Fotoboeken (HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\{B7961CCE-CF36-4858-BC1A-D06D3D25ECE5}_is1) (Version: 13.1.0.2581 - albelli NL)
            Albelli Fotoboeken (HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\{B7961CCE-CF36-4858-BC1A-D06D3D25ECE5}_is1) (Version: 13.1.0.2581 - albelli NL)
            AntimalwareEngine (HKLM\...\{06D33B93-9458-4E28-BDEA-F5ECB2C3C30E}) (Version: 3.0.144.0 - adaware) Hidden
            Apple Application Support (HKLM-x32\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.)
            Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)
            Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
            ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
            ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0014 - ASUS)
            ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.2 - ASUS)
            ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.1 - ASUS)
            ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.7 - ASUS)
            ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.0 - ASUS)
            ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS)
            ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0041 - ASUS)
            ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
            ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.25 - ASUS)
            ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.11 - ASUS)
            ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.)
            AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.9.157 - ASUSTEK)
            ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
            BitLord 1.1 (HKLM-x32\...\BitLord) (Version: 1.1 - www.bitlord.com)
            BitTorrent (HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
            BitTorrent (HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
            Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
            Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.0.19 - Canon Inc.)
            Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.3.1.4 - Canon Inc.)
            Canon MG3000 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3000_series) (Version: 1.01 - Canon Inc.)
            Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.1 - Canon Inc.)
            Citrix Online Launcher (HKLM-x32\...\{1EFF9E6C-76E1-43F9-81FB-BC8C037B0902}) (Version: 1.0.258 - Citrix)
            Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
            Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
            Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
            D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
            DragonBoost (HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\119) (Version: - ) <==== AANDACHT
            DragonBoost (HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\119) (Version: - ) <==== AANDACHT
            Dropbox (HKLM-x32\...\Dropbox) (Version: 39.4.49 - Dropbox, Inc.)
            Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
            EFI Flexera License Manager (remove only) (HKLM-x32\...\EFILM) (Version: 11.12.1.2 - EFI)
            Fiery User Software-5.7.0.12 (HKLM-x32\...\{E71A53BF-3B84-4BE3-9EB3-DD0DF41C0AC2}) (Version: 5.7.0.12 - Electronics For Imaging)
            FileZilla Client 3.9.0.6 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.6 - Tim Kosse)
            Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            Gebruikersregistratie voor Canon MG3000 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG3000 series) (Version: - *Canon Inc.)
            GeForce Experience NvStream Client Components (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC) (Version: 1.6.28 - NVIDIA Corporation) Hidden
            Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
            Google Drive (HKLM-x32\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.)
            Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
            Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.5 - Google Inc.) Hidden
            GrabIt 1.7.2 Beta 6 (build 1008) (HKLM-x32\...\GrabIt_is1) (Version: - Ilan Shemes)
            HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
            InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.3.3 - ASUS)
            Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35132 - Intel Corporation)
            Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
            Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
            Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
            Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
            iTunes (HKLM\...\{0D924CB2-2EA4-4044-BAF7-770202D6BD0D}) (Version: 11.1.4.62 - Apple Inc.)
            Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.510 - Oracle)
            Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
            Juniper Networks, Inc. Setup Client (HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Juniper_Setup_Client) (Version: 7.4.8.42127 - Juniper Networks, Inc.)
            Juniper Networks, Inc. Setup Client (HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Juniper_Setup_Client) (Version: 7.4.8.42127 - Juniper Networks, Inc.)
            Juniper Networks, Inc. Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
            Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
            Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            Junos Pulse (HKLM\...\{1B405647-9E47-4BC9-879F-A87BEDF03366}) (Version: 4.0.36355 - Juniper Networks) Hidden
            Junos Pulse 4.0 (HKLM-x32\...\Junos Pulse 4.0) (Version: 4.0.36355 - Juniper Networks, Inc.)
            Junos Pulse Host Checker Plugin Add-On (HKLM-x32\...\{17D99899-3FCA-4759-9DC9-8A87AD2EDDDA}) (Version: 4.0.36355 - Juniper Networks) Hidden
            License Activation (remove only) (HKLM-x32\...\OFASQ) (Version: 1.3.0.4 - EFI)
            Malwarebytes versie 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
            Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
            Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
            Microsoft Office 365 Business - nl-nl (HKLM\...\O365BusinessRetail - nl-nl) (Version: 16.0.8625.2127 - Microsoft Corporation)
            Microsoft OneDrive (HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
            Microsoft OneDrive (HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
            Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
            Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
            Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
            Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
            Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
            Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
            Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
            Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
            Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
            Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
            Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
            Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
            Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
            Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
            Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
            Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
            Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
            Mozilla Firefox 47.0 (x86 nl) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 nl)) (Version: 47.0 - Mozilla)
            NVIDIA GeForce Experience 1.8.2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2.1 - NVIDIA Corporation)
            NVIDIA Grafisch stuurprogramma 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)
            NVIDIA PhysX systeemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
            NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
            Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2127 - Microsoft Corporation) Hidden
            Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2127 - Microsoft Corporation) Hidden
            Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden
            Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: 2.7.0 - Microleaves) Hidden <==== AANDACHT
            Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
            Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            Reader for PC (HKLM-x32\...\{D279DFB7-97A3-439D-8BE9-95D8AFA68562}) (Version: 2.4.01.10241 - Sony Corporation)
            Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
            Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6570 - Realtek Semiconductor Corp.)
            Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.27015 - Realtek Semiconductor Corp.)
            SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.11 - ASUS)
            Secure Download Manager (HKLM-x32\...\{D8A1AE00-9245-400A-B125-138735C0C5A8}) (Version: 3.1.60 - Kivuto Solutions Inc.)
            Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
            SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 1.7.321 - NVIDIA Corporation) Hidden
            Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
            Speccy (HKLM\...\Speccy) (Version: 1.24 - Piriform)
            Spotify (HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\Spotify) (Version: 1.0.13.108.gcd94e7db - Spotify AB)
            Spotify (HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\Spotify) (Version: 1.0.13.108.gcd94e7db - Spotify AB)
            Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.6.46 - Safer-Networking Ltd.)
            Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
            Tableau 9.3 (9300.16.0315.0125) (HKLM\...\{597A89F3-F912-4988-94F3-4A83D126D644}) (Version: 9.3.516 - Tableau Software)
            TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
            Telegram Desktop versie 0.9.18 (HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.9.18 - Telegram Messenger LLP)
            Telegram Desktop versie 0.9.18 (HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.9.18 - Telegram Messenger LLP)
            VidsqaurE (HKLM-x32\...\{A97606DF-0FE1-4390-B0DD-ADA8B303AE61}_is1) (Version: 1.4 - ) <==== AANDACHT
            VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
            Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
            Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
            Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
            Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
            Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
            Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
            Windows-stuurprogrammapakket - ASUS (ATP) Mouse (10/13/2012 1.0.0.146) (HKLM\...\19BB77B03643718D26B01876FD391DC93B189805) (Version: 10/13/2012 1.0.0.146 - ASUS)
            WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.0 - ASUS)
            WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
            Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
            Συλλογή φωτογραφιών του Windows Live (HKLM-x32\...\{C00C2A91-6CB3-483F-80B3-2958E29468F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            Основные компоненты Windows Live (HKLM-x32\...\{E83DC314-C926-4214-AD58-147691D6FE9F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            Почта Windows Live (HKLM-x32\...\{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}) (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
            Фотоальбом Windows Live (HKLM-x32\...\{77F69CA1-E53D-4D77-8BA3-FA07606CC851}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            גלריית התמונות של Windows Live (HKLM-x32\...\{CE929F09-3853-4180-BD90-30764BFF7136}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
            معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

            ==================== Aangepaste CLSID (gefilterd): ==========================

            (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

            CustomCLSID: HKU\S-1-5-21-2894100099-29603364-4124575878-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
            ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
            ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
            ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
            ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> Geen bestand
            ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google)
            ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2017-05-23] (Safer-Networking Ltd.)
            ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2017-05-23] (Safer-Networking Ltd.)
            ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal)
            ContextMenuHandlers2: [AdAwareContextMenu] -> {5B64240D-5B36-4B9F-A75F-4925B6A53D5B} => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareShellExtension.dll [2017-09-01] ()
            ContextMenuHandlers3: [AdAwareContextMenu] -> {5B64240D-5B36-4B9F-A75F-4925B6A53D5B} => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareShellExtension.dll [2017-09-01] ()
            ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
            ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google)
            ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
            ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand
            ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Intel Corporation)
            ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation)
            ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
            ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2017-05-23] (Safer-Networking Ltd.)
            ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2017-05-23] (Safer-Networking Ltd.)
            ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal)

            ==================== Geplande Taken (gefilterd) =============

            (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

            Task: {0125AEF7-612B-4089-A70C-645DA3D9E86D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-17] ()
            Task: {016053A3-0A20-4B76-B842-AE1E4C891919} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-14] (Dropbox, Inc.)
            Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
            Task: {06E22150-BA36-47F0-8804-A9733B7F4BB0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT
            Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
            Task: {0B3022E3-1822-42D2-853B-060D9B16FE85} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
            Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
            Task: {0F942915-EE48-4F48-83F0-7363C34B8A2A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-11-20] (Microsoft Corporation)
            Task: {136CF445-7505-4407-A57D-F4F6AF8BDCFD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-02] (Microsoft Corporation)
            Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {14E04C6D-100C-4E18-BFFC-9AA0E7F3DE36} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
            Task: {1687B9C5-2910-4BED-9828-CA11EEA95273} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2012-02-17] (ASUSTek Computer Inc.)
            Task: {1A25BF50-EA42-4ADF-8763-26D2B8499B8D} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== AANDACHT
            Task: {1B803A62-C199-4554-B90F-8BBAADA63069} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT
            Task: {1FF704F8-6722-486D-94C8-7946D831ACA8} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
            Task: {209026BC-A2F3-45D4-9D0D-1FFCF24FCDF4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT
            Task: {21561796-E1E1-4CCC-8398-1BCA148F373C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT
            Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {2D953A5C-7098-4A78-8025-1A57DBA3DB14} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT
            Task: {39257D75-2B02-45A4-86B5-411E3C3CA16E} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
            Task: {3AC26622-A54B-4C98-9035-8FF0FF0ABBFA} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2017-05-23] (Safer-Networking Ltd.)
            Task: {3AE11094-1699-4D06-B6A9-C09037E7C19F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2017-05-23] (Safer-Networking Ltd.)
            Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {3CA62A0F-A319-4B92-8C69-F3ADE4838681} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-11-21] (Microsoft Corporation)
            Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
            Task: {42AC2B4C-235C-4F55-AC4D-7E90E96A8522} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== AANDACHT
            Task: {48308262-3CA1-4D9A-8B20-99345948580E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
            Task: {4E45FB54-BDDB-46CB-B732-8EE593A40BE6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT
            Task: {54097ECF-8623-4DF7-BB07-6821728705D4} - \Solar Synthenogment Converter -> Geen bestand <==== AANDACHT
            Task: {5749CA6C-CF38-4AD8-9F71-3469BA09D1FD} - System32\Tasks\space(title, t_monitor) => C:\Program Files (x86)\OneSystemCare\CleanupConsole.exe
            Task: {5A1B05F4-7A99-4BE0-875C-F2493783695A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
            Task: {64C7E94F-D691-4892-852D-935667AFE7B2} - System32\Tasks\1cf3c8891be2c514e3b79c38ed4e53b5 => sc start 1cf3c8891be2c514e3b79c38ed4e53b5 <==== AANDACHT
            Task: {6572BFBE-8A9D-4BC7-AF27-8DDC960E0600} - System32\Tasks\Microsoft\Windows\Multimedia\Manager => C:\Users\Fritsie\AppData\Roaming\Adobe\Manager.exe
            Task: {6B095839-7149-4A6F-AB0A-ECA91E9B2DF2} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== AANDACHT
            Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {829AD818-C800-4E1D-A921-A0F63B380F52} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT
            Task: {8394ADA5-95F7-4B7D-97D0-91267C4305A9} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
            Task: {84182FBD-F76B-4CF9-8367-6CAEDEDE82CA} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-02] (Microsoft Corporation)
            Task: {8BDDB50A-894A-44C8-8F18-AC996B599520} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
            Task: {90B7AA92-C5C4-4CAA-A24A-22B9433D33CE} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== AANDACHT
            Task: {988EB660-61DA-41C0-A8A2-23DF3701230E} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== AANDACHT
            Task: {9C29447E-9698-48F1-8CEB-B0A6CFB43714} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
            Task: {A0FF4755-AEC4-4FDE-9762-A61F3EE9C226} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-01-04] (ASUS)
            Task: {A1677AFC-0CF1-4664-8880-5255337CDC5E} - System32\Tasks\LINQ_wxWidgets => C:\ProgramData\efiLINQ\efiLINQ.exe [2014-09-03] (Electronics For Imaging, Inc.) <==== AANDACHT
            Task: {A86EBEC3-892E-4518-AA3C-C6A2F5032F8C} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2017-03-09] (AsusTek)
            Task: {A881A278-D1B3-4CE0-89E4-7415B90188C8} - System32\Tasks\Fiery Software Manager => C:\Program Files (x86)\Fiery\Fiery Software Manager\Fiery Software Manager.exe [2015-03-03] ()
            Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {B9192E33-0B4D-4DBE-B866-00B77D5EDE8F} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
            Task: {B9475069-857E-46B9-96B5-CF92C8F1E369} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-17] ()
            Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
            Task: {CAABE20E-F7E9-4E87-86E6-C114DBFE6DE4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT
            Task: {CBFBADD5-93A2-4394-83E9-86DAC4A0CFE0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT
            Task: {D49F7E14-68F6-4F70-B10B-96BBFE9A0C75} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT
            Task: {DC5E1E86-B137-46D9-A875-8B1D653DC01B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT
            Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
            Task: {E090F9FD-B101-4D21-9905-ACFEFBA87FB3} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2017-05-23] (Safer-Networking Ltd.)
            Task: {E1BF7407-7E3E-4123-A6B1-5F5207D7BB60} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
            Task: {E4301F72-7E66-4E5E-B3BA-62ECF1BD5D29} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-02-29] (ASUSTek Computer Inc.)
            Task: {E4465817-54BC-490A-84D9-A7763E912BF4} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== AANDACHT
            Task: {E447B09E-306A-4D2F-B91A-D5D2EA1FDA5E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-14] (Dropbox, Inc.)
            Task: {E85FFFBC-0378-484A-BC4E-7141A726820E} - System32\Tasks\space(title, t_delayed) => C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe
            Task: {E8C85E6E-63CE-4E51-A0E3-4F8B20544BF4} - System32\Tasks\OdzB8atsXYZx => odzb8atsxyzx.exe
            Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
            Task: {F7023B85-3BB3-4B4D-9C30-B4D905EFD9CF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT
            Task: {F7E37D11-7CD7-4B82-A042-3144D12CFF03} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== AANDACHT
            Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
            Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
            Task: {FF6C5414-FD5F-447C-A653-2291AC7B03BF} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-06-20] (ASUSTeK Computer Inc.)
            Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe

            Comment


            • #7
              (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

              Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
              Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
              Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
              Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
              Task: C:\WINDOWS\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== AANDACHT
              Task: C:\WINDOWS\Tasks\Online Application V2G2.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== AANDACHT
              Task: C:\WINDOWS\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== AANDACHT
              Task: C:\WINDOWS\Tasks\Online Application V2G4.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== AANDACHT
              Task: C:\WINDOWS\Tasks\Online Application V2G5.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== AANDACHT
              Task: C:\WINDOWS\Tasks\Online Application V2G6.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== AANDACHT
              Task: C:\WINDOWS\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== AANDACHT

              ==================== Snelkoppelingen & WMI ========================

              (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)


              ==================== Geladen Modules (gefilterd) ==============

              2017-08-01 22:11 - 2016-08-01 13:54 - 000133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
              2017-11-02 11:51 - 2017-11-02 11:51 - 000199864 _____ () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
              2017-09-01 17:27 - 2017-09-01 17:27 - 000585784 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareService.exe
              2017-09-01 17:33 - 2017-09-01 17:33 - 000030680 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_system-vc140-mt-1_61.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000067544 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_date_time-vc140-mt-1_61.dll
              2017-09-01 17:33 - 2017-09-01 17:33 - 000121816 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_thread-vc140-mt-1_61.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000144856 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_filesystem-vc140-mt-1_61.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000733144 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_log-vc140-mt-1_61.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000524760 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_locale-vc140-mt-1_61.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000039384 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_chrono-vc140-mt-1_61.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 011625432 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\rpc_server.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001000920 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_regex-vc140-mt-1_61.dll
              2017-09-01 17:33 - 2017-09-01 17:33 - 003712984 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\RCF.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001170904 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareActivation.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 002801624 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareApplicationUpdater.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000863192 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareGamingMode.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000120280 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareReset.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000142296 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareTime.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001045464 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareDefinitionsUpdater.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000926168 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareDefinitionsUpdaterScheduler.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001491416 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareIgnoreList.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000310232 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareQuarantine.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001677272 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareAntiMalwareEngine.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001229784 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareScannerHistory.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001582552 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareScanner.dll
              2017-09-01 17:33 - 2017-09-01 17:33 - 000039384 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_timer-vc140-mt-1_61.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001052120 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareScannerScheduler.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001194968 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareRealTimeProtection.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 002905048 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareIncompatibles.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001545688 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareAntiSpam.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001476568 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareAntiPhishing.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 003485144 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareParentalControl.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 003621336 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareWebProtection.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001619416 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareEmailProtection.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000073176 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_iostreams-vc140-mt-1_61.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001732056 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareNetworkProtection.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001220056 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwarePromo.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000475096 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareFeedback.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 003186136 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareThreatWorkAlliance.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000667096 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwarePinCode.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001221080 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareNotice.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001619416 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareAvcEngine.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 001519064 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareRealTimeProtectionHistory.dll
              2017-09-01 17:32 - 2017-09-01 17:32 - 000788952 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareStatistics.dll
              2017-11-28 12:10 - 2017-11-01 08:54 - 002358736 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
              2017-11-28 12:10 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
              2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
              2010-07-15 00:11 - 2010-07-15 00:11 - 000031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
              2015-07-22 10:31 - 2015-03-03 02:32 - 006091112 _____ () C:\Program Files (x86)\Fiery\Fiery Software Manager\Fiery Software Manager.exe
              2017-03-18 21:59 - 2017-03-20 04:56 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
              2017-11-12 16:59 - 2017-11-12 16:59 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
              2017-11-12 16:59 - 2017-11-12 16:59 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
              2017-11-12 16:59 - 2017-11-12 16:59 - 025461760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkyWrap.dll
              2017-11-07 12:00 - 2017-11-07 12:02 - 002552832 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\skypert.dll
              2017-11-28 16:32 - 2017-11-28 16:32 - 000905728 _____ () C:\Users\Fritsie\AppData\Local\Temp\is-NQG7M.tmp\ls224qpvsok.tmp
              2017-11-28 16:32 - 2017-11-28 16:32 - 000905728 _____ () C:\Users\Fritsie\AppData\Local\Temp\is-KP9V3.tmp\423ccwdswy1.tmp
              2017-11-28 16:32 - 2017-11-28 16:32 - 000905728 _____ () C:\Users\Fritsie\AppData\Local\Temp\is-12K2B.tmp\oy1a5wfxieo.tmp
              2017-11-28 16:32 - 2017-11-28 16:32 - 000905728 _____ () C:\Users\Fritsie\AppData\Local\Temp\is-DHNDQ.tmp\23js24bgzil.tmp
              2017-11-28 10:53 - 2017-11-10 10:57 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libglesv2.dll
              2017-11-28 10:53 - 2017-11-10 10:57 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libegl.dll
              2017-11-28 16:35 - 2015-03-03 02:29 - 004730656 _____ () C:\Users\Fritsie\AppData\Local\Temp\RarSFX37\FSM\Fiery Software Manager.exe
              2017-10-03 16:12 - 2016-09-13 13:00 - 000109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
              2017-10-03 16:12 - 2016-09-13 13:00 - 000416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
              2017-11-28 16:32 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Fritsie\AppData\Local\Temp\is-H50V9.tmp\itdownload.dll
              2017-11-28 16:32 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Fritsie\AppData\Local\Temp\is-BO4SM.tmp\itdownload.dll
              2017-11-28 16:32 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Fritsie\AppData\Local\Temp\is-17539.tmp\itdownload.dll
              2017-11-28 16:32 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Fritsie\AppData\Local\Temp\is-H50V8.tmp\itdownload.dll
              2017-10-03 16:12 - 2016-09-13 13:00 - 000167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
              2013-03-23 23:14 - 2011-12-16 18:39 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
              2017-11-28 16:37 - 2015-03-03 02:27 - 000413184 _____ () C:\Users\Fritsie\AppData\Local\Temp\RarSFX37\FSM\updater_lib\Win\GradInterface.dll

              ==================== Alternate Data Streams (gefilterd) =========

              (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)

              AlternateDataStreams: C:\Week 11 - 2015.csv:com.dropbox.attributes [168]
              AlternateDataStreams: C:\Week 6 - 2015.csv:com.dropbox.attributes [168]
              AlternateDataStreams: C:\Week 7 - 2015.csv:com.dropbox.attributes [168]
              AlternateDataStreams: C:\Week 8 - 2015.csv:com.dropbox.attributes [168]
              AlternateDataStreams: C:\ProgramData\Temp:5216CD26 [256]

              ==================== Veilige Modus (gefilterd) ===================

              (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

              HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\adawareantivirusservice => ""="Service"
              HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
              HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\adawareantivirusservice => ""="Service"
              HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

              ==================== Bestandskoppeling (gefilterd) ===============

              (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


              ==================== Internet Explorer vertrouwde/beperkte toegang ===============

              (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)


              ==================== Hosts inhoud: ==========================

              (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

              2009-07-14 03:34 - 2017-11-23 14:30 - 000001251 _____ C:\WINDOWS\system32\Drivers\etc\hosts

              127.0.0.1 cpm.paneladmin.pro
              127.0.0.1 publisher.hmdiadmingate.xyz
              127.0.0.1 hmdicrewtracksystem.xyz
              127.0.0.1 linkmate.space
              127.0.0.1 space1.adminpressure.space
              127.0.0.1 trackpressure.website
              127.0.0.1 doctorlink.space
              127.0.0.1 plugpackdownload.net
              127.0.0.1 texttotalk.org
              127.0.0.1 gambling577.xyz
              127.0.0.1 htagdownload.space
              127.0.0.1 mybcnmonetize.com
              127.0.0.1 360devtraking.website
              127.0.0.1 dscdn.pw
              127.0.0.1 beautifllink.xyz

              ==================== Andere gebieden ============================

              (Momenteel is er geen automatische fix voor dit onderdeel.)

              HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163011562\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
              HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163015015\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
              HKU\S-1-5-21-2894100099-29603364-4124575878-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
              HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
              DNS Servers: 82.163.142.8 - 95.211.158.136
              HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
              HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
              Windows Firewall is ingeschakeld.

              ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

              MSCONFIG\Services: AdobeARMservice => 2
              MSCONFIG\Services: Bonjour Service => 2
              MSCONFIG\Services: dbupdate => 2
              MSCONFIG\Services: dbupdatem => 3
              MSCONFIG\Services: DbxSvc => 2
              MSCONFIG\Services: FlexNet Licensing Service => 3
              MSCONFIG\Services: FlexNet Licensing Service 64 => 3
              MSCONFIG\Services: gupdate => 2
              MSCONFIG\Services: gupdatem => 3
              MSCONFIG\Services: hasplms => 3
              MSCONFIG\Services: ofaApp => 2
              MSCONFIG\Services: SDScannerService => 2
              MSCONFIG\Services: SDUpdateService => 2
              MSCONFIG\Services: SDWSCService => 2
              MSCONFIG\Services: SkypeUpdate => 2
              MSCONFIG\Services: Sony SCSI Helper Service => 3
              MSCONFIG\Services: Steam Client Service => 3
              MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
              MSCONFIG\startupfolder: C:^Users^Fritsie^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
              MSCONFIG\startupreg: ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
              MSCONFIG\startupreg: AdAwareTray => "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.6.306.7947\AdAwareTray.exe"
              MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
              MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
              MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Fritsie\AppData\Local\Akamai\netsession_win.exe"
              MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
              MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
              MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
              MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
              MSCONFIG\startupreg: ATKMEDIA => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
              MSCONFIG\startupreg: ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
              MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
              MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
              MSCONFIG\startupreg: ETDCtrl => %ProgramFiles%\Elantech\ETDCtrl.exe
              MSCONFIG\startupreg: FRSSysTrayIcon => "C:\Program Files (x86)\Fiery\Applications3\FieryRemoteScanApp\FRSSysTrayIcon.exe"
              MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
              MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
              MSCONFIG\startupreg: JunosPulse => C:\Program Files (x86)\Common Files\Juniper Networks\JamUI\Pulse.exe -tray
              MSCONFIG\startupreg: KPN Assistent => C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN_Assistent.exe /auto
              MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
              MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
              MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
              MSCONFIG\startupreg: Spotify => "C:\Users\Fritsie\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
              MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Fritsie\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
              MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
              MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
              HKLM\...\StartupApproved\Run: => "SecurityHealth"
              HKLM\...\StartupApproved\Run: => "NvBackend"
              HKLM\...\StartupApproved\Run: => "WindowsDefender"
              HKLM\...\StartupApproved\Run: => "AdAwareTray"
              HKLM\...\StartupApproved\Run32: => "Wireless Console 3"
              HKLM\...\StartupApproved\Run32: => "Dropbox"
              HKLM\...\StartupApproved\Run32: => "Reader Application Helper"
              HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX2"
              HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
              HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\StartupApproved\Run: => "OneDrive"
              HKU\S-1-5-21-2894100099-29603364-4124575878-1001\...\StartupApproved\Run: => "Spotify Web Helper"
              HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\StartupApproved\Run: => "OneDrive"
              HKU\S-1-5-21-2894100099-29603364-4124575878-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11282017163016093\...\StartupApproved\Run: => "Spotify Web Helper"

              ==================== Firewall regels (gefilterd) ===============

              (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

              FirewallRules: [{ABB12EE9-0C95-4CA2-AA4B-65D9301A9B33}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
              FirewallRules: [{1EE4A92A-DA3A-4D05-8A18-178F3EF77946}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
              FirewallRules: [{73EFBB81-2F1D-424D-AA0A-ED4D7CCADB84}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
              FirewallRules: [{18F87C76-A8DA-436C-BB16-CDEA5435E0E1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
              FirewallRules: [{B3A04BDA-82D7-49C9-9528-F17674F50E44}] => (Allow) C:\Users\Fritsie\AppData\Roaming\BitTorrent\BitTorrent.exe
              FirewallRules: [{6071EDCD-8C25-4DC2-BEA5-266912700FAA}] => (Allow) C:\Users\Fritsie\AppData\Roaming\BitTorrent\BitTorrent.exe
              FirewallRules: [{35392CE9-0D25-48B4-8562-C67FEA916253}] => (Allow) C:\Users\Fritsie\AppData\Roaming\BitTorrent\BitTorrent.exe
              FirewallRules: [{4D41E2CA-6B24-444B-A63E-7E09AA12D9F3}] => (Allow) C:\Users\Fritsie\AppData\Roaming\BitTorrent\BitTorrent.exe
              FirewallRules: [{5493EAB8-A2ED-4C80-AAD6-8188E603A84E}] => (Allow) C:\Users\Fritsie\AppData\Roaming\BitTorrent\BitTorrent.exe
              FirewallRules: [{F8175EDC-D917-4D86-BAC5-63DC41CFA6CC}] => (Allow) C:\Users\Fritsie\AppData\Roaming\BitTorrent\BitTorrent.exe
              FirewallRules: [{56048913-2EE4-4FB6-9B10-B11FD9535645}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
              FirewallRules: [{A56F99CF-933B-4F79-9B77-D54139039647}] => (Allow) LPort=2869
              FirewallRules: [{7200A232-CB9A-4548-89E0-CF072E6C2E3E}] => (Allow) LPort=1900
              FirewallRules: [{B47DCE39-BD05-4FD0-BC5F-8FCE7C3FBB7F}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
              FirewallRules: [{BE0EC94A-88B6-4356-B121-F67FE5BE0F40}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
              FirewallRules: [{19E284DE-FE65-45E9-8827-69D5454439A1}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
              FirewallRules: [{EDA33C67-02FC-4CBB-B8DE-B369AC2BA16B}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
              FirewallRules: [{6E5E84C3-E622-497D-B2E5-238DE5A96EC2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
              FirewallRules: [{1DAC1B3A-8A49-4AFC-837E-23545F1467E7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
              FirewallRules: [{A06D6AA7-8696-4BB3-BFD3-396D1E8E95CE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
              FirewallRules: [{C6C1A17F-0863-405A-817F-CE8658DA82C0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
              FirewallRules: [{C3EAC0F0-5CD5-4111-9095-54CAD8FA15C0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
              FirewallRules: [{CDFCA1D4-76DC-4B86-BDF1-24BBBCD5DE1C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
              FirewallRules: [{CDAD3326-2C9A-437E-9A5A-F61782CCA403}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
              FirewallRules: [{F001430A-FC11-4150-81BC-ABA0C4F212D3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
              FirewallRules: [{F5F11B37-DF57-4B3D-9AC1-768DD96C8EA9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
              FirewallRules: [TCP Query User{A4D87BB7-CD9A-4B09-95C3-401DA39E4DDE}C:\users\fritsie\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\fritsie\appdata\local\akamai\netsession_win.exe
              FirewallRules: [UDP Query User{25DEA6CF-DD7A-4C35-A2B9-EED49777CF04}C:\users\fritsie\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\fritsie\appdata\local\akamai\netsession_win.exe
              FirewallRules: [{0F74A9DB-B671-43DF-9761-FC0D5CA0FB2D}] => (Allow) C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN_Assistent.exe
              FirewallRules: [{70F39638-ED2F-4B65-87EB-A3A134095E41}] => (Allow) C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN_Assistent.exe
              FirewallRules: [{FD2CFDEE-73C4-4CDC-8E23-BA88FB70B465}] => (Allow) C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\KPN_IA.exe
              FirewallRules: [{BB07C676-1446-44C3-BFEE-83C0CA8B8F92}] => (Allow) C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Installatie Assistent\KPN_IA.exe
              FirewallRules: [{D4F10710-DA74-47BD-9A6A-4863868BB8F3}] => (Allow) C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\KPN_WNA.exe
              FirewallRules: [{B49DDA18-71F2-4FFE-8166-CB628055832E}] => (Allow) C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN Draadloos Netwerk Assistent\KPN_WNA.exe
              FirewallRules: [{891BFE20-D35F-400D-B90B-EF8AF20B8CA3}] => (Allow) C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN_Assistent.exe
              FirewallRules: [{1F30AC9F-70FE-4EF8-A576-7501EBA15299}] => (Allow) C:\Program Files (x86)\KPN\KPN Assistent\KPN Assistent\KPN_Assistent.exe
              FirewallRules: [TCP Query User{14F8FDF2-734E-4BF8-8FC7-B5857DC98C08}C:\users\fritsie\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\fritsie\appdata\local\akamai\netsession_win.exe
              FirewallRules: [UDP Query User{E6148C3E-D800-452C-A1DB-414970BBD205}C:\users\fritsie\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\fritsie\appdata\local\akamai\netsession_win.exe
              FirewallRules: [TCP Query User{D98470FD-E490-4583-AC8E-82BA8FE47BFF}C:\users\fritsie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fritsie\appdata\roaming\spotify\spotify.exe
              FirewallRules: [UDP Query User{CA2A72F4-91E1-4FD0-ACBB-B5B501B4345B}C:\users\fritsie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fritsie\appdata\roaming\spotify\spotify.exe
              FirewallRules: [TCP Query User{0DEE5AE1-6F97-4D8A-A459-717DD4FF22E8}C:\users\fritsie\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\fritsie\appdata\roaming\dropbox\bin\dropbox.exe
              FirewallRules: [UDP Query User{6B57693D-168A-4C1F-8A7D-41593896172F}C:\users\fritsie\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\fritsie\appdata\roaming\dropbox\bin\dropbox.exe
              FirewallRules: [{EEE9F631-768E-4FE1-AC24-FCC38651E014}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
              FirewallRules: [{50A592E0-B3BA-4916-8E91-A22346DA9B7C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
              FirewallRules: [{BE6B0B27-2967-4C45-B9B3-1F0E046C2A49}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
              FirewallRules: [{FE4C2F1A-6575-4454-8A2B-03E71AA58EC0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
              FirewallRules: [{8FA8442F-979B-4A66-993B-4706844D48F0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
              FirewallRules: [{6B599533-A14B-42DC-ABFD-6B69C79B4A65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
              FirewallRules: [{826DBA7D-1CF2-4B7F-A397-27127E6E86E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
              FirewallRules: [{15C31AE1-50A6-481B-97CC-92A41236EE59}] => (Allow) C:\Program Files (x86)\SPSSInc\SPSS16EV\spss.exe
              FirewallRules: [{B313EA9B-17B6-4B7D-85F9-FDABA0E6B8E0}] => (Allow) C:\Program Files (x86)\SPSSInc\SPSS16EV\spss.exe
              FirewallRules: [{BEAAB799-1D9E-4273-A3ED-27966DB52F9F}] => (Allow) C:\Program Files (x86)\SPSSInc\SPSS16EV\spss.com
              FirewallRules: [{8B1F5919-F749-4B61-9D1F-C2698D66C24F}] => (Allow) C:\Program Files (x86)\SPSSInc\SPSS16EV\spss.com
              FirewallRules: [TCP Query User{6D792397-E31D-46A7-85B9-8EAC9FC4C769}C:\program files (x86)\bitlord\bitlord.exe] => (Allow) C:\program files (x86)\bitlord\bitlord.exe
              FirewallRules: [UDP Query User{60957801-0388-4440-A9F0-3522BBC277E8}C:\program files (x86)\bitlord\bitlord.exe] => (Allow) C:\program files (x86)\bitlord\bitlord.exe
              FirewallRules: [TCP Query User{BD672FE4-0E4C-427B-846B-7E5F67397D31}C:\program files (x86)\bitlord\bitlord.exe] => (Block) C:\program files (x86)\bitlord\bitlord.exe
              FirewallRules: [UDP Query User{DA47DFC7-2B0E-4FAA-ACF6-FE593BBF3403}C:\program files (x86)\bitlord\bitlord.exe] => (Block) C:\program files (x86)\bitlord\bitlord.exe
              FirewallRules: [TCP Query User{5722690D-079F-4061-BA81-676F4803A415}C:\users\fritsie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fritsie\appdata\roaming\spotify\spotify.exe
              FirewallRules: [UDP Query User{CDE7852C-B355-4D15-B9C6-4C57CE0A1EAF}C:\users\fritsie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fritsie\appdata\roaming\spotify\spotify.exe
              FirewallRules: [{7CBA0F94-62BF-47BA-B99E-1710B865AF48}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
              FirewallRules: [{6AF9606F-402B-40CD-B27E-6DC86CB4A2E9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
              FirewallRules: [{B514D3E7-EED9-45DA-A359-DA328B2E37F1}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\23\WinWrapIDE.exe
              FirewallRules: [{5DCBDA1A-3AE9-4BE4-9E1C-1D0C5D60D6F4}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\23\stats.exe
              FirewallRules: [{4155A801-0766-4824-BF23-5C17D4C0680B}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\23\stats.com
              FirewallRules: [{B9C98595-CC2D-4F4A-AC71-50B474A01030}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\23\WinWrapIDE.exe
              FirewallRules: [{2F6588E8-F984-486B-B812-0D22DEAD06C1}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\23\stats.exe
              FirewallRules: [{C637B584-D34F-4047-99CA-6F5D9A02DC5F}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\23\stats.com
              FirewallRules: [TCP Query User{A420E193-67E2-4064-8100-42A35EF41F82}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
              FirewallRules: [UDP Query User{39540BFA-C26C-4FE0-B779-590984C7FB81}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
              FirewallRules: [{ECD4208F-5A3F-4BAD-A0DE-D9DD488D6428}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
              FirewallRules: [{C0F7BC50-4D0A-4D36-8D99-7E73BEE589AC}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
              FirewallRules: [{1A42DAE7-73FF-449A-B040-B5F004FB2AAE}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
              FirewallRules: [{A9426C46-E434-41B7-AA81-6EDD2C0AEBDB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
              FirewallRules: [TCP Query User{C62036EC-EC33-42FA-8033-032A5C7E94FF}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
              FirewallRules: [UDP Query User{1A591D6A-32E2-411C-9332-388C876F4F6E}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
              FirewallRules: [{0951BDCF-9742-48DD-8083-3F6925DE102D}] => (Allow) C:\Windows\system32\hasplms.exe
              FirewallRules: [{77A087B7-2220-4173-A894-534652A5ED1C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
              FirewallRules: [{DF5E53D1-8227-40B1-B65D-CB0B925B131D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
              FirewallRules: [{E27398F2-140C-4DA4-91D2-C67A1031B3DF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
              FirewallRules: [{491CF47E-9064-4D18-945A-F4A1C5C7FE5A}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
              FirewallRules: [{55EF2B50-269B-48B1-9932-6B2270BEAA7C}] => (Allow) C:\WINDOWS\system32\rundll32.exe
              FirewallRules: [{DA73447A-BB2F-4776-95FB-BF5A30D43587}] => (Allow) C:\Windows\System32\rundll32.exe
              FirewallRules: [{7E5FA757-D929-48CA-91CC-BCB8F8396670}] => (Allow) C:\Windows\System32\rundll32.exe
              FirewallRules: [{C49A01FD-051E-49FD-9824-6CA9005D0440}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
              FirewallRules: [{0131F1F1-C35B-43E6-8F09-D3AD8A1AA912}] => (Allow) C:\Users\Fritsie\AppData\Local\Temp\RarSFX37\FSM\Fiery Software Manager.exe
              StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
              StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
              StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
              StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

              ==================== Herstelpunten =========================

              21-11-2017 11:29:21 Windows Update
              21-11-2017 11:31:05 Windows Update
              28-11-2017 11:58:08 Installed HiJackThis

              ==================== Defecte Apparaatbeheer Apparaten =============


              ==================== Eventlog fouten: =========================

              Applicatiefouten:
              ==================
              Error: (11/28/2017 04:29:05 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
              Description: Event-ID 1

              Error: (11/28/2017 04:29:05 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
              Description: Event-ID 1

              Error: (11/28/2017 04:24:42 PM) (Source: Application Error) (EventID: 1000) (User: )
              Description: Naam van toepassing met fout: mbamservice.exe, versie: 3.1.0.595, tijdstempel: 0x59f745cb
              Naam van module met fout: ntdll.dll, versie: 10.0.15063.608, tijdstempel: 0x8274fd8b
              Uitzonderingscode: 0xc0000005
              Foutmarge: 0x000000000003bbdf
              Id van proces met fout: 0x1010
              Starttijd van toepassing met fout: 0x01d368405ff64a60
              Pad naar toepassing met fout: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
              Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll
              Rapport-id: e9eefcb0-4af1-4192-a62c-b04d9c8a5c09
              Volledige pakketnaam met fout:
              Relatieve toepassings-id van pakket met fout:

              Error: (11/28/2017 04:08:58 PM) (Source: Application Error) (EventID: 1000) (User: )
              Description: Naam van toepassing met fout: MicrosoftEdgeCP.exe, versie: 11.0.15063.674, tijdstempel: 0x59cdf479
              Naam van module met fout: chakra.dll, versie: 11.0.15063.726, tijdstempel: 0x7ad41cf0
              Uitzonderingscode: 0xcfffffff
              Foutmarge: 0x000000000012d6df
              Id van proces met fout: 0x2274
              Starttijd van toepassing met fout: 0x01d368413a66c1c5
              Pad naar toepassing met fout: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
              Pad naar module met fout: C:\WINDOWS\SYSTEM32\chakra.dll
              Rapport-id: 83d7934d-4afe-45dd-8b58-79595389c2fa
              Volledige pakketnaam met fout: Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe
              Relatieve toepassings-id van pakket met fout: ContentProcess

              Error: (11/28/2017 04:04:52 PM) (Source: Application Error) (EventID: 1000) (User: )
              Description: Naam van toepassing met fout: MicrosoftEdgeCP.exe, versie: 11.0.15063.674, tijdstempel: 0x59cdf479
              Naam van module met fout: chakra.dll, versie: 11.0.15063.726, tijdstempel: 0x7ad41cf0
              Uitzonderingscode: 0xcfffffff
              Foutmarge: 0x000000000017bf9e
              Id van proces met fout: 0x24ac
              Starttijd van toepassing met fout: 0x01d3684138ce32a9
              Pad naar toepassing met fout: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
              Pad naar module met fout: C:\WINDOWS\SYSTEM32\chakra.dll
              Rapport-id: f677e7d4-cd06-4aa9-90f7-2178c003d7c8
              Volledige pakketnaam met fout: Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe
              Relatieve toepassings-id van pakket met fout: ContentProcess

              Error: (11/28/2017 12:59:40 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
              Description: Event-ID 1

              Error: (11/28/2017 12:59:40 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
              Description: Event-ID 1

              Error: (11/28/2017 12:31:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Fritsie-PC)
              Description: Het activeren van de app Microsoft.Windows.Photos_8wekyb3d8bbwe!App is mislukt door de fout -2144927142. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

              Error: (11/28/2017 11:59:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
              Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.

              Details:
              AddWin32ServiceFiles: Unable to back up image of service AdsService since QueryServiceConfig API failed

              System Error:
              Het systeem kan het opgegeven bestand niet vinden.
              .

              Error: (11/28/2017 10:41:07 AM) (Source: Application Error) (EventID: 1000) (User: )
              Description: Naam van toepassing met fout: NvBackend.exe, versie: 11.10.13.1, tijdstempel: 0x52f202d0
              Naam van module met fout: nvspcap.dll_unloaded, versie: 11.10.13.1, tijdstempel: 0x52f20257
              Uitzonderingscode: 0xc00001a5
              Foutmarge: 0x000c9860
              Id van proces met fout: 0xb90
              Starttijd van toepassing met fout: 0x01d3682cc97b44eb
              Pad naar toepassing met fout: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
              Pad naar module met fout: nvspcap.dll
              Rapport-id: 925eb8b2-5a25-41f8-aa72-129f07727d79
              Volledige pakketnaam met fout:
              Relatieve toepassings-id van pakket met fout:


              Systeemfouten:
              =============
              Error: (11/28/2017 04:34:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
              Description: De aksdf-service kan vanwege de volgende fout niet worden gestart:
              Kan de digitale handtekening voor dit bestand niet controleren. Door een recente wijziging in software of hardware is mogelijk een bestand geïnstalleerd dat onjuist is ondertekend of beschadigd is, of dat mogelijk schadelijke software van een onbekende bron is.

              Error: (11/28/2017 04:34:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
              Description: De hardlock-service kan vanwege de volgende fout niet worden gestart:
              Kan de digitale handtekening voor dit bestand niet controleren. Door een recente wijziging in software of hardware is mogelijk een bestand geïnstalleerd dat onjuist is ondertekend of beschadigd is, of dat mogelijk schadelijke software van een onbekende bron is.

              Error: (11/28/2017 04:33:53 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
              Description: De Delivery Optimization-service is bij het starten vastgelopen.

              Error: (11/28/2017 04:33:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
              Description: De Computer Browser-service is afhankelijk van de Server-service, die vanwege de volgende fout niet kan worden gestart:
              Afhankelijkheidsservice of -groep kan niet worden gestart.

              Error: (11/28/2017 04:33:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
              Description: De Server-service is afhankelijk van de Server SMB 2.xxx Driver-service, die vanwege de volgende fout niet kan worden gestart:
              Afhankelijkheidsservice of -groep kan niet worden gestart.

              Error: (11/28/2017 04:33:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
              Description: De Server SMB 2.xxx Driver-service is afhankelijk van de srvnet-service, die vanwege de volgende fout niet kan worden gestart:
              Na het starten is de service blijven hangen.

              Error: (11/28/2017 04:33:53 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
              Description: De srvnet-service is bij het starten vastgelopen.

              Error: (11/28/2017 04:31:46 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
              Description: De Server SMB 1.xxx Driver-service is afhankelijk van de Server SMB 2.xxx Driver-service, die vanwege de volgende fout niet kan worden gestart:
              Afhankelijkheidsservice of -groep kan niet worden gestart.

              Error: (11/28/2017 04:31:43 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
              Description: De Computer Browser-service is afhankelijk van de Server-service, die vanwege de volgende fout niet kan worden gestart:
              Afhankelijkheidsservice of -groep kan niet worden gestart.

              Error: (11/28/2017 04:31:43 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
              Description: De Server-service is afhankelijk van de Server SMB 2.xxx Driver-service, die vanwege de volgende fout niet kan worden gestart:
              Afhankelijkheidsservice of -groep kan niet worden gestart.


              CodeIntegrity:
              ===================================
              Date: 2017-11-28 16:34:42.934
              Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aksdf.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

              Date: 2017-11-28 16:34:42.576
              Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

              Date: 2017-11-28 16:22:59.364
              Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

              Date: 2017-11-28 16:22:59.199
              Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

              Date: 2017-11-28 16:18:37.826
              Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

              Date: 2017-11-28 16:18:35.000
              Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

              Date: 2017-11-28 16:18:34.771
              Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

              Date: 2017-11-28 16:14:33.243
              Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

              Date: 2017-11-28 16:09:44.861
              Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

              Date: 2017-11-28 16:09:11.332
              Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.


              ==================== Geheugen info ===========================

              Processor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
              Percentage geheugen in gebruik: 24%
              Totaal fysiek RAM-geheugen: 12173.82 MB
              Beschikbaar fysiek RAM-geheugen: 9137.7 MB
              Totaal Virtueel geheugen: 18144.82 MB
              Beschikbaar Virtual geheugen: 15255.2 MB

              ==================== Schijven ================================

              Drive c: (OS) (Fixed) (Total:439.55 GB) (Free:219.62 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)]

              ==================== MBR & Partitietabel ==================

              ========================================================
              Disk: 0 (Size: 465.8 GB) (Disk ID: 473CAA27)

              Partition: GPT.

              ==================== Eind van Addition.txt ============================

              Comment


              • #8
                Bijlagen

                FRST.txt
                Addition.txt

                wellicht handiger zo.

                Comment


                • #9
                  Start de Farbar Recovery Scan Tool nogmaals.
                  • Download fixlist.txt uit de bijlage naar het bureaublad, waar ook FRST.exe aanwezig is.
                  • Dubbelklik op FRST.exe om de tool te starten.
                  • Als het programma is geopend klik Yes (Ja) bij de disclaimer.
                  • Druk op de Fix knop
                  • Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
                  • Voeg dit logbestand als bijlage toe aan het volgende bericht..
                  Bijgevoegde Bestanden

                  Windows 10 opstarten in Veilige Modus

                  Comment


                  • #10
                    Schakel eerst de Antivirussoftware uit voordat je zoek.exe download of uitvoert.
                    Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk de werking van Zoek.exe nadelig beïnvloeden.
                    (hier en hier) kan je lezen hoe je dat doet.

                    en download Zoek.exe naar het bureaublad.
                    klik hier voor meer informatie over hoe zoek.exe te gebruiken)
                    • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kan je dat negeren, het is namelijk een onterechte waarschuwing.
                    • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
                    • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
                    • Kopieer nu onderstaande code en plak die in het grote invulvenster:
                    • Note: Dit script is speciaal bedoeld voor deze Computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
                      Code:
                      emptyfolderscheck;delete
                      torpigcheck; 
                      firefoxlook; 
                      Chromelook;
                      services-list;  
                      autoclean; 
                      iedefaults;
                    • Klik nu op de knop "Run script".
                    • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
                    • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
                    • Post het geopende logje in het volgende bericht als bijlage.

                    Windows 10 opstarten in Veilige Modus

                    Comment


                    • #11
                      Fixlog

                      Dank voor de snelle reactie.
                      Wat betreft de farbar, hieronder het extra logje:
                      Fixlog.txt

                      De zoek.exe krijg ik wel opgestart, maar blijft hangen op --- Firefox Extensions
                      Kan dat komen, omdat ik geen firefox geinstalleerd heb op mijn pc? Ik heb geprobeerd, om de regel te verwijderen in het script en dan opnieuw te runnen, maar dit had geen effect.

                      Comment


                      • #12
                        Probeer deze code eens.

                        Code:
                        emptyfolderscheck;delete
                        torpigcheck;  
                        Chromelook; 
                        iedefaults;

                        Windows 10 opstarten in Veilige Modus

                        Comment


                        • #13
                          Ook dan loopt het script vast. Kriig alleen het volgende in beeld:

                          Zoek.exe v5.0.0.1 Updated 24-October-2017
                          Tool run by Fritsie on do 30-11-2017 at 15:24:47,58.
                          Microsoft Windows 10 Home 10.0.15063 x64
                          Running in: Normal Mode No Internet Access Detected
                          Launched: C:\Users\Fritsie\Desktop\zoek.exe [Scan all users] [Script inserted]

                          ===== Runcheck 15:27:16,60 =====

                          --- Create Environment Variables 15:27:17,71
                          --- Checking Input 15:27:29,29
                          --- Torpig Check 15:27:48,49
                          --- Empty Folders Check 15:28:18,94
                          --- Folders in C:\PROGRA~3 0-6 Months 15:28:19,14
                          --- Firefox Extensions 15:28:19,60

                          Comment


                          • #14
                            Heel soms heb je dat wel eens

                            Download de 32 of 64 bit versie van HitmanPro naar het bureaublad.
                            Klik hier voor een uitgebreide handleiding van HitmanPro.

                            HitmanPro uitvoeren
                            • Dubbelklik op "HitmanPro.exe" en klik op "volgende"
                            • Vink de optie "Ik accepteer de voorwaarden van de gebruikersovereenkomst aan" en klik op "Volgende"
                            • Klik in het setup scherm nu nogmaals op "Volgende", nu zal automatisch de scan starten, doe verder niets op de computer totdat de scan gereed is.
                            • Als de scan klaar is klik je op "volgende"
                            • Activeer nu de gratis licentie, hiermee kunt u 30 dagen gratis HitmanPro gebruiken en de gevonden infecties verwijderen.
                            • U dient de gratis licentie middels uw e-mailadres te activeren, klik vervolgens op "Activeren".
                            • Note: indien u reeds eerder gebruik hebt gemaakt van de 30 dagen trial-versie van HitmanPro is het niet meer mogelijk om gratis de gevonden infecties te verwijderen.
                            • Als het verwijderen gereed is klik je onderin het scherm op "Save log" of "Logbestand opslaan" en sla deze op bijvoorbeeld het bureaublad op.
                            • Voeg het logbestand als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in HitmanPro onder het tabblad geschiedenis > logbestanden)
                            • Klik nu op de knop "Herstarten".

                            Windows 10 opstarten in Veilige Modus

                            Comment


                            • #15
                              hitmanpro

                              Oei, ik heb hitmanpro helaas al een keer gebruikt.
                              Wel heb ik net nog even een scan gedaan met Spybot S&D. Hieronder het logje daarvan:Scan Results.171130-1849.txt

                              Comment

                              Sorry, you are not authorized to view this page
                              Working...
                              X