Mededeling

Collapse
No announcement yet.

browser probleem 1/2

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • browser probleem 1/2

    Bij het openen van eerder welke browser , openen er steeds andere web paginas waaronder 18+

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scandatum: 11/06/2017
    Scantijd: 9:54
    Logboekbestand: mwblog.txt
    Beheerder: Ja

    Versie: 2.2.0.1024
    Malware-database: v2017.06.11.01
    Rootkit-database: v2017.05.27.01
    Licentie: Gratis
    Malware-bescherming: Uitgeschakeld
    Bescherming tegen kwaadaardige websites: Uitgeschakeld
    Zelfbescherming: Uitgeschakeld

    Besturingssysteem: Windows 7 Service Pack 1
    Processor: x64
    Bestandssysteem: NTFS
    Gebruiker: Eigenaar

    Scantype: Aangepaste scan
    Resultaat: Voltooid
    Objecten gescand: 519687
    Verstreken tijd: 2 u., 38 min, 38 sec

    Geheugen: Ingeschakeld
    Opstarten: Ingeschakeld
    Bestandssysteem: Ingeschakeld
    Archieven: Ingeschakeld
    Rootkits: Ingeschakeld
    Heuristiek: Ingeschakeld
    POP: Ingeschakeld
    POA: Ingeschakeld

    Processen: 0
    (Geen kwaadaardige items gedetecteerd)

    Modules: 0
    (Geen kwaadaardige items gedetecteerd)

    Registersleutels: 0
    (Geen kwaadaardige items gedetecteerd)

    Registerwaarden: 0
    (Geen kwaadaardige items gedetecteerd)

    Registerdata: 0
    (Geen kwaadaardige items gedetecteerd)

    Mappen: 0
    (Geen kwaadaardige items gedetecteerd)

    Bestanden: 6
    Adware.ICLoader, D:\Users\Eigenaar\Downloads\Dallas_2012_Season_3_DVDRip.exe, In quarantaine, [6a83ab921d8cce6803167416c13ff20e],
    PUP.Optional.InstallCore, D:\Users\Eigenaar\Downloads\mkvcodec_setup.msi, In quarantaine, [638a3409a2071620605a8b55cf3102fe],
    PUP.Optional.FriedCookie, D:\Users\Eigenaar\Downloads\download.exe, In quarantaine, [965792ab941553e3da7c1615748fe21e],
    Adware.InstallMonster, D:\Users\Eigenaar\Downloads\sara shepard true lies.exe, In quarantaine, [88657fbefcada3934a8bc9ef748cdd23],
    PUP.Optional.Yontoo, D:\Users\Eigenaar\Downloads\YourDownload.exe, In quarantaine, [ea034fee1f8a73c357650f7e03fee917],
    PUP.Optional.Amonetize, D:\Users\Eigenaar\Downloads\adele+25+mp3.ace, In quarantaine, [7a7373caf9b066d09e1812a5817f1ee2],

    Fysieke Sectoren: 0
    (Geen kwaadaardige items gedetecteerd)


    (end)



    # AdwCleaner v6.047 - Logbestand aangemaakt 11/06/2017 op 13:00:26
    # Bijgewerkt op 19/05/2017 door Malwarebytes
    # Database : 2017-06-10.1 [Server]
    # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (X64)
    # Gebruikersnaam : Eigenaar - SYSARPC
    # Gestart vanuit : D:\Users\Eigenaar\Desktop\adwcleaner_6.047.exe
    # Mode: Verwijderen
    # Ondersteuning : https://www.malwarebytes.com/support



    ***** [ Services ] *****



    ***** [ Mappen ] *****

    [-] Map verwijderd: C:\ProgramData\{361aa5ed-1c84-e885-361a-aa5ed1c897b4}
    [-] Map verwijderd: C:\ProgramData\{a3644e60-a1d7-5ee8-a364-44e60a1d3982}
    [-] Map verwijderd: C:\ProgramData\Allmyapps
    [#] Map verwijderd tijdens herstart: C:\ProgramData\Application Data\Allmyapps
    [-] Map verwijderd: C:\Program Files (x86)\myfree codec
    [-] Map verwijderd: C:\Program Files (x86)\TerminusSubs
    [-] Map verwijderd: C:\Program Files (x86)\Zebar


    ***** [ Bestanden ] *****

    [-] Bestand verwijderd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url
    [-] Bestand verwijderd: C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bkbpfdkbpbckgkcelkfjjhepmdcdmahi_0.localstorage


    ***** [ DLL ] *****



    ***** [ WMI ] *****



    ***** [ Snelkoppelingen ] *****

    [-] Snelkoppeling gedesinfecteerd: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk
    [-] Snelkoppeling gedesinfecteerd: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Internet Explorer.lnk


    ***** [ Geplande Taken ] *****



    ***** [ Register ] *****

    [-] Sleutel verwijderd: HKLM\SOFTWARE\ede07bd5-8aad-b539-3f6a-0305f288e91b
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7}
    [#] Sleutel verwijderd tijdens herstart: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7}_is1
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
    [#] Sleutel verwijderd tijdens herstart: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}_is1
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A2C98B47-B5F4-94AA-281D-4135416774CF}
    [#] Sleutel verwijderd tijdens herstart: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A2C98B47-B5F4-94AA-281D-4135416774CF}_is1
    [-] Sleutel verwijderd: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Registry Helper Service
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Registry Helper Service
    [#] Sleutel verwijderd tijdens herstart: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\registry helper service
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\registry helper service
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\AniGIFCtrl.AniGIF
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\AniGIFPpg.AniGIFPpg
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\AniGIFPpg.AniGIFPpg.1
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\AniGIFPpg2.AniGIFPpg2
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\AniGIFPpg2.AniGIFPpg2.1
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Codejock.SkinFramework.12.1.1
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Codejock.SkinFrameworkGlobalSettings.12.1.1
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\speedupmypc
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\AniGIFCtrl.AniGIF
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\AniGIFPpg.AniGIFPpg
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\AniGIFPpg.AniGIFPpg.1
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\AniGIFPpg2.AniGIFPpg2
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\AniGIFPpg2.AniGIFPpg2.1
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\Codejock.SkinFramework.12.1.1
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\Codejock.SkinFrameworkGlobalSettings.12.1.1
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
    [#] Sleutel verwijderd tijdens herstart: [x64] HKLM\SOFTWARE\Classes\speedupmypc
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\CLSID\{61AB12E1-A5FF-11D1-B2E9-444553540000}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\CLSID\{6DC82D15-92F2-11D1-A255-00A0C932C7DF}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Interface\{E7BC34A1-BA86-11CF-84B1-CBC2DA68BF6C}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Interface\{128507E0-C56F-43C0-BCF1-8193B35FE4C4}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Interface\{40217CB8-4463-4030-B324-AC6A8075FEC8}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Interface\{63C40CBE-DE43-4B56-BCEB-E14B825CF245}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Interface\{AFA0E6A1-28D7-4F2C-87A7-7266367B4655}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\TypeLib\{82351433-9094-11D1-A24B-00A0C932C7DF}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\TypeLib\{E7BC34A0-BA86-11CF-84B1-CBC2DA68BF6C}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\TypeLib\{BD0C1912-66C3-49CC-8B12-7B347BF6C846}
    [-] Sleutel verwijderd: HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
    [-] Sleutel verwijderd: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\Software\Conduit
    [-] Sleutel verwijderd: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
    [-] Sleutel verwijderd: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
    [#] Sleutel verwijderd tijdens herstart: HKU\S-1-5-18\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
    [#] Sleutel verwijderd tijdens herstart: HKCU\Software\Conduit
    [#] Sleutel verwijderd tijdens herstart: HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
    [#] Sleutel verwijderd tijdens herstart: HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Conduit
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Uniblue
    [#] Sleutel verwijderd tijdens herstart: HKLM\SOFTWARE\Uniblue\DriverScanner
    [#] Sleutel verwijderd tijdens herstart: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A2C98B47-B5F4-94AA-281D-4135416774CF}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
    [#] Sleutel verwijderd tijdens herstart: [x64] HKCU\Software\Conduit
    [#] Sleutel verwijderd tijdens herstart: [x64] HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
    [#] Sleutel verwijderd tijdens herstart: [x64] HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
    [-] Sleutel verwijderd: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3609329212-1892986672-2351453482-1000\Products\7A4217FD08507B642834C8BF29F458A1
    [-] Sleutel verwijderd: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
    [-] Sleutel verwijderd: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\5E8031606EB60A64C882918F8FF38D D4
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Record\{425E7597-03A2-338D-B72A-0E51FFE77A7E}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Record\{915BB7D5-082E-3B91-B1E0-45B5FDE01F24}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Record\{2009AF2F-5786-3067-8799-B97F7832FDD6}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Record\{FB2E65F4-5687-33EF-9BBF-4E3C9C98D3B9}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Microsoft\Internet Explorer\SEARCHSCOPES\IELNKSRCH
    [-] Sleutel verwijderd: HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
    [#] Sleutel verwijderd tijdens herstart: HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\IELNKSRCH
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Record\{181480C8-90AC-3430-B39A-CD121E034A1A}
    [-] Sleutel verwijderd: HKLM\SOFTWARE\Classes\Record\{8F54FA54-1DF8-3B20-890C-CDD95364BC95}


    ***** [ Browsers ] *****

    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Verwijderd: askwebsearch
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Verwijderd: dts.search.ask.com
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Verwijderd: search.conduit.com
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Verwijderd: conduit.search
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Verwijderd: dts.search-results.com
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Verwijderd: eu.ask.com
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Verwijderd: ask.com
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Verwijderd: isearch.avg.com
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default] [extension] Verwijderd: bkbpfdkbpbckgkcelkfjjhepmdcdmahi
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default] [extension] Verwijderd: dmocchgkijnbjdjkmlglaemjhhdiobbp
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default] [extension] Verwijderd: lmnbobhffedhdhfpcjkjphcfpeeiocdn
    [-] [C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default] [homepage] Verwijderd: hxxp://search.conduit.com/?gd=&ctid=CT3324790&octid=EB_ORIGINAL_CTID&ISID=MEAEDF735-9382-462B-B3DF-27E714746DB3&SearchSource=55&CUI=&UM=5&UP=SP62F905E9-BC51-4BF4-8F87-56F6ED39F4BA&SSPV=


    *************************

    :: "Tracing" sleutels verwijderd
    :: Winsock instellingen gereset

    *************************

    C:\AdwCleaner\AdwCleaner[C0].txt - [12293 bytes] - [11/06/2017 13:00:26]
    C:\AdwCleaner\AdwCleaner[S0].txt - [13066 bytes] - [11/06/2017 13:00:05]

    ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [12441 bytes] ##########


    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 11.0.9600.18666 BrowserJavaVersion: 11.91.2
    Run by Eigenaar at 13:04:50 on 2017-06-11
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.8145.5350 [GMT 2:00]
    .
    AV: Avast Antivirus *Enabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Avast Antivirus *Enabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Windows\System32\svchost.exe -k utcsvc
    C:\Program Files\Intel\iCLS Client\HeciServer.exe
    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\System32\WUDFHost.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
    D:\games\maffia\Steam.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\CCleaner\CCleaner64.exe
    C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
    C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    D:\games\maffia\bin\cef\cef.win7\steamwebhelper.exe
    C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Program Files (x86)\Nero\Update\NASvc.exe
    C:\Windows\system32\sppsvc.exe
    C:\Windows\sysWOW64\wbem\wmiprvse.exe
    C:\Windows\servicing\TrustedInstaller.exe
    C:\Windows\system32\taskhost.exe
    C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://nieuws.vtm.be/stadion/poll-wie-heeft-de-beste-supporters
    uSearch Bar = hxxp://www.bing.com/search?q={searchTerms}
    uSearch Page = hxxp://www.bing.com/search?q={searchTerms}
    mStart Page = www.google.com
    uSearchAssistant = www.google.com
    mWinlogon: Userinit = userinit.exe,
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
    BHO: Aanmeldhulp voor Microsoft-account: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
    EB: F12 Developer Tools: {28BCCB9A-E66B-463C-82A4-09F320DE94D7} - C:\Program Files (x86)\Internet Explorer\F12Tools.dll
    uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
    uRun: [HP ENVY 5530 series (NET)] "C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN4BL460NZ067B:NW" -scfn "HP ENVY 5530 series (NET)" -AutoStart 1
    uRun: [Dropbox Update] "C:\Users\Eigenaar\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
    uRun: [GameShadow] C:\Program Files (x86)\GameShadow\GameShadow.exe /q
    uRun: [Steam] "D:\games\maffia\steam.exe" -silent
    mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
    mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    StartupFolder: C:\Users\Eigenaar\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
    mPolicies-Explorer: NoActiveDesktop = dword:1
    mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: E&xporteren naar Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
    IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
    TCP: NameServer = 195.130.130.4 195.130.131.4
    TCP: Interfaces\{47A844C4-0FB4-40B7-BFB5-283980FE8E4A} : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{BDF70A13-7FFF-4148-928A-37AF21225D35} : DHCPNameServer = 195.130.130.4 195.130.131.4
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    SSODL: WebCheck - <orphaned>
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
    mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
    x64-Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
    x64-IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    x64-SSODL: WebCheck - <orphaned>
    x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\w0c4r2qm.default\
    FF - prefs.js: browser.startup.homepage - hxxps://www.facebook.com/?ref=tn_tnmn
    FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dll
    FF - plugin: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
    FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
    FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2014-5-20 632168]
    R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2014-5-20 28008]
    R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;C:\Windows\System32\drivers\iusb3hcs.sys [2014-5-20 20464]
    R1 aswbidsdriver;aswbidsdriver;C:\Windows\System32\drivers\aswbidsdrivera.sys [2017-3-18 311808]
    R1 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2016-7-12 32600]
    R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2014-5-20 1007160]
    R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2014-5-20 569192]
    R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-5-20 128648]
    R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-5-20 158880]
    R2 avast! Antivirus;Avast Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-5-10 263304]
    R2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe -k utcsvc [2009-7-14 27136]
    R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-8-27 747520]
    R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-5-20 169432]
    R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-2 1513784]
    R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2014-7-15 786256]
    R3 aswbIDSAgent;aswbIDSAgent;C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-5-10 7346208]
    R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2016-3-1 104976]
    R3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;C:\Windows\System32\drivers\iusb3hub.sys [2014-5-20 370672]
    R3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;C:\Windows\System32\drivers\iusb3xhc.sys [2014-5-20 791024]
    R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-10-2 25816]
    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-5-7 901848]
    R3 XtuAcpiDriver;Intel(R) Extreme Tuning Utility Device Service;C:\Windows\System32\drivers\XtuAcpiDriver.sys [2016-11-22 54344]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-3-26 105096]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-3-26 125064]
    S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-2 1135416]
    S3 A38CCID;CCID USB Smart Card Reader;C:\Windows\System32\drivers\a38ccid.sys [2016-11-28 77832]
    S3 aswHwid;aswHwid;C:\Windows\System32\drivers\aswHwid.sys [2014-5-20 38296]
    S3 FsUsbExDisk;FsUsbExDisk;C:\Windows\SysWOW64\FsUsbExDisk.Sys [2014-12-27 37344]
    S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2017-5-12 116224]
    S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-8-27 828376]
    S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-10-2 63704]
    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-5-7 19456]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-5-7 56832]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2014-5-7 30208]
    S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-5-7 1255736]
    .
    =============== File Associations ===============
    .
    FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
    ShellExec: opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1"
    ShellExec: SZBrowser.exe: open="C:\Program Files\AVAST Software\SZBrowser\Launcher.exe" "%1"
    .
    =============== Created Last 30 ================
    .
    2017-06-11 11:04:24 -------- d-----w- C:\ProgramData\SWCUTemp
    2017-06-11 10:58:25 -------- d-----w- C:\AdwCleaner
    2017-05-12 19:12:39 -------- d-----w- C:\Users\Eigenaar\AppData\Local\Skype
    .
    ==================== Find3M ====================
    .
    2017-06-11 11:03:51 192216 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
    2017-05-12 18:37:54 158880 ----a-w- C:\Windows\System32\drivers\aswstm.sys
    2017-05-10 06:37:47 75704 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
    2017-05-10 06:37:47 38296 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
    2017-05-10 06:37:47 339696 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
    2017-05-10 06:37:47 128648 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
    2017-05-10 06:37:47 101152 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
    2017-05-10 06:37:43 32600 ----a-w- C:\Windows\System32\drivers\aswKbd.sys
    2017-05-10 06:37:43 1007160 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
    2017-05-10 06:37:42 49016 ----a-w- C:\Windows\System32\drivers\aswbuniva.sys
    2017-05-10 06:37:42 334576 ----a-w- C:\Windows\System32\drivers\aswbloga.sys
    2017-05-10 06:37:42 311808 ----a-w- C:\Windows\System32\drivers\aswbidsdrivera.sys
    2017-05-10 06:37:42 190256 ----a-w- C:\Windows\System32\drivers\aswbidsha.sys
    2017-05-09 09:14:02 803320 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2017-05-09 09:14:02 144888 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2017-04-28 01:14:59 631176 ----a-w- C:\Windows\System32\winresume.efi
    2017-04-28 01:14:09 706792 ----a-w- C:\Windows\System32\winload.efi
    2017-04-28 01:14:08 5547240 ----a-w- C:\Windows\System32\ntoskrnl.exe
    2017-04-28 01:14:05 95464 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
    2017-04-28 01:14:05 154856 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
    2017-04-28 01:11:49 1732864 ----a-w- C:\Windows\System32\ntdll.dll
    2017-04-28 01:09:59 44032 ----a-w- C:\Windows\System32\csrsrv.dll
    2017-04-28 00:36:36 4000488 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
    2017-04-28 00:36:36 3945192 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
    2017-04-28 00:34:21 1314112 ----a-w- C:\Windows\SysWow64\ntdll.dll
    2017-04-28 00:19:29 148480 ----a-w- C:\Windows\System32\appidpolicyconverter.exe
    2017-04-28 00:19:26 17920 ----a-w- C:\Windows\System32\appidcertstorecheck.exe
    2017-04-28 00:19:25 62464 ----a-w- C:\Windows\System32\drivers\appid.sys
    2017-04-28 00:18:44 64000 ----a-w- C:\Windows\System32\auditpol.exe
    2017-04-28 00:15:46 338432 ----a-w- C:\Windows\System32\conhost.exe
    2017-04-28 00:14:54 296960 ----a-w- C:\Windows\System32\rstrui.exe
    2017-04-28 00:12:14 159744 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
    2017-04-28 00:11:40 291328 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
    2017-04-28 00:11:38 129536 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
    2017-04-28 00:11:35 50176 ----a-w- C:\Windows\SysWow64\auditpol.exe
    2017-04-28 00:10:56 30720 ----a-w- C:\Windows\System32\lsass.exe
    2017-04-28 00:10:53 112640 ----a-w- C:\Windows\System32\smss.exe
    2017-04-28 00:08:07 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
    2017-04-28 00:08:06 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
    2017-04-28 00:08:06 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
    2017-04-28 00:08:05 2048 ----a-w- C:\Windows\SysWow64\user.exe
    2017-04-28 00:07:21 36352 ----a-w- C:\Windows\SysWow64\cryptbase.dll
    2017-04-28 00:07:13 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
    2017-04-28 00:07:13 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
    2017-04-28 00:07:13 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
    2017-04-28 00:07:13 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
    2017-04-26 14:59:15 3220992 ----a-w- C:\Windows\System32\win32k.sys
    2017-04-21 15:34:00 1133568 ----a-w- C:\Windows\System32\cdosys.dll
    2017-04-21 15:15:28 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll
    2017-04-17 15:37:31 512000 ----a-w- C:\Windows\System32\rpcss.dll
    2017-04-17 15:37:29 876544 ----a-w- C:\Windows\System32\oleaut32.dll
    2017-04-17 15:37:29 26112 ----a-w- C:\Windows\System32\oleres.dll
    2017-04-17 15:37:29 2065408 ----a-w- C:\Windows\System32\ole32.dll
    2017-04-17 15:37:20 8704 ----a-w- C:\Windows\System32\comcat.dll
    2017-04-17 15:12:24 581632 ----a-w- C:\Windows\SysWow64\oleaut32.dll
    2017-04-17 15:12:24 26112 ----a-w- C:\Windows\SysWow64\oleres.dll
    2017-04-17 15:12:24 1417728 ----a-w- C:\Windows\SysWow64\ole32.dll
    2017-04-17 14:54:48 7168 ----a-w- C:\Windows\SysWow64\comcat.dll
    2017-04-16 09:17:02 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
    2017-04-16 09:16:46 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
    2017-04-16 08:57:03 66560 ----a-w- C:\Windows\System32\iesetup.dll
    2017-04-16 08:55:41 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
    2017-04-16 08:55:24 417792 ----a-w- C:\Windows\System32\html.iec
    2017-04-16 08:54:52 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll
    2017-04-16 08:54:39 576512 ----a-w- C:\Windows\System32\vbscript.dll
    2017-04-16 08:37:33 116224 ----a-w- C:\Windows\System32\ieetwcollector.exe
    2017-04-16 08:37:32 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
    2017-04-16 08:36:53 814080 ----a-w- C:\Windows\System32\jscript9diag.dll
    2017-04-16 08:25:51 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
    2017-04-16 08:19:51 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2017-04-16 08:18:59 5977600 ----a-w- C:\Windows\System32\jscript9.dll
    2017-04-16 08:11:22 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
    2017-04-16 08:10:56 87552 ----a-w- C:\Windows\System32\tdc.ocx
    2017-04-16 08:02:36 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll
    2017-04-16 08:01:42 499200 ----a-w- C:\Windows\SysWow64\vbscript.dll
    2017-04-16 08:01:40 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
    2017-04-16 08:01:20 341504 ----a-w- C:\Windows\SysWow64\html.iec
    2017-04-16 08:00:02 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
    2017-04-16 07:47:30 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
    2017-04-16 07:46:56 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
    2017-04-16 07:37:51 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll
    2017-04-16 07:37:40 2132992 ----a-w- C:\Windows\System32\inetcpl.cpl
    2017-04-16 07:30:01 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
    2017-04-16 07:29:28 73216 ----a-w- C:\Windows\SysWow64\tdc.ocx
    2017-04-16 07:08:57 2057216 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2017-04-16 07:08:30 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
    2017-04-16 07:08:11 4548608 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2017-04-16 07:04:52 3241472 ----a-w- C:\Windows\System32\wininet.dll
    2017-04-16 06:37:47 2767872 ----a-w- C:\Windows\SysWow64\wininet.dll
    2017-04-12 15:32:24 229376 ----a-w- C:\Windows\System32\wintrust.dll
    2017-04-12 15:32:10 190976 ----a-w- C:\Windows\System32\cryptsvc.dll
    2017-04-12 15:32:10 1483776 ----a-w- C:\Windows\System32\crypt32.dll
    2017-04-12 15:32:10 141824 ----a-w- C:\Windows\System32\cryptnet.dll
    2017-04-12 15:26:12 179200 ----a-w- C:\Windows\SysWow64\wintrust.dll
    2017-04-12 15:25:04 145920 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
    2017-04-12 15:25:04 1176064 ----a-w- C:\Windows\SysWow64\crypt32.dll
    2017-04-12 15:25:04 106496 ----a-w- C:\Windows\SysWow64\cryptnet.dll
    2017-04-07 15:34:43 986856 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
    2017-04-07 15:34:43 265448 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
    2017-04-07 15:30:55 405504 ----a-w- C:\Windows\System32\gdi32.dll
    .
    ============= FINISH: 13:05:02,51 ===============
    Last edited by Erwin de H; 11-06-17, 13:27.

  • #2
    Download de Farbar Recovery Scan Tool 32 of 64 bit van één van de onderstaande links
    Hier staat een beschrijving hoe u kunt kijken of u een 32 of 64 bit versie van Windows heeft.

    Farbar Recovery Scan Tool uitvoeren
    • Dubbelklik op FRST.exe om de tool te starten.
    • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
    • Als het programma is geopend klik Yes (Ja) bij de disclaimer.
    • Druk vervolgens op de Scan knop, er zal nu eerst een back-up van het register worden gemaakt.
    • Wanneer de scan gereed is worden er twee logbestanden aangemaakt met de naam (FRST.txt) & (Addition.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
    • Voeg beide logbestanden als bijlage toe aan het volgende bericht.

    Windows 10 opstarten in Veilige Modus

    Comment


    • #3
      Alvast bedankt voor u reactie
      Het lijkt er wel op dat het probleem opgelost is aangezien ik niet meer word omgeleid als ik een browser open.
      Toch hieronder de scan voor alle zekerheid.


      Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 11-06-2017
      Gestart door Eigenaar (Beheerder) op SYSARPC (12-06-2017 09:14:08)
      Gestart vanaf D:\Users\Eigenaar\Desktop
      Geladen Profielen: Eigenaar (Beschikbare Profielen: Eigenaar)
      Platform: Windows 7 Home Premium Service Pack 1 (X64) Taal: Nederlands (Nederland)
      Internet Explorer Versie 11 (Standaardbrowser: Opera)
      Boot Modus: Normal
      Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/

      ==================== Processen (gefilterd) =================

      (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
      (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
      (Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
      (Valve Corporation) D:\games\maffia\Steam.exe
      (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
      (Dropbox, Inc.) C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
      (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
      (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
      (Dropbox, Inc.) C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
      (Dropbox, Inc.) C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
      (Valve Corporation) D:\games\maffia\bin\cef\cef.win7\steamwebhelper.exe
      (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
      (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
      (AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
      (Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
      (Bartels Media GmbH) C:\Program Files (x86)\MouseRecorder\MouseRecorder.exe
      (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

      ==================== Register (gefilterd) ====================

      (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

      HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2014-04-10] (Realtek Semiconductor)
      HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-10] (AVAST Software)
      HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
      HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-03-06] (Intel Corporation)
      HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
      HKLM-x32\...\Run: => [X]
      HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-05-20] (Oracle Corporation)
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-29] (Piriform Ltd)
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\Run: [HP ENVY 5530 series (NET)] => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\Run: [Dropbox Update] => C:\Users\Eigenaar\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\Run: [GameShadow] => C:\Program Files (x86)\GameShadow\GameShadow.exe /q
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\Run: [Steam] => D:\games\maffia\steam.exe [3042592 2017-06-08] (Valve Corporation)
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\MountPoints2: {06577bba-f6c7-11e6-83b9-94de8077383c} - H:\HiSuiteDownLoader.exe
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\MountPoints2: {5d2147c3-c429-11e6-8b42-94de8077383c} - H:\HiSuiteDownLoader.exe
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\MountPoints2: {ee195430-9d01-11e6-acae-94de8077383c} - G:\HTC_Sync_Manager_PC.exe
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\WLXPGSS.SCR [322248 2014-03-31] (Microsoft Corporation)
      HKU\S-1-5-18\...\Run: => [X]
      ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-10] (AVAST Software)
      ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-10] (AVAST Software)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
      Startup: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-05-31]
      ShortcutTarget: Dropbox.lnk -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
      CHR HKLM\SOFTWARE\Policies\Google: Restrictie <======= AANDACHT

      ==================== Internet (gefilterd) ====================

      (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

      Tcpip\Parameters: [DhcpNameServer] 195.130.130.4 195.130.131.4
      Tcpip\..\Interfaces\{47A844C4-0FB4-40B7-BFB5-283980FE8E4A}: [DhcpNameServer] 192.168.1.1
      Tcpip\..\Interfaces\{BDF70A13-7FFF-4148-928A-37AF21225D35}: [DhcpNameServer] 195.130.130.4 195.130.131.4

      Internet Explorer:
      ==================
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT
      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}
      HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://nieuws.vtm.be/stadion/poll-wie-heeft-de-beste-supporters
      SearchScopes: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000 -> DefaultScope {5E393B8C-ECBA-4BB4-8580-08F13BA51E13} URL = hxxp://www.google.be/search?hl=nl&q={searchTerms}&sourceid=ie8&rls=com.microsoft:{language}:{referrer:source}&ie={inputEn coding?}&oe={outputEncoding?}&rlz=1I7VRHB_nlBE603
      SearchScopes: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000 -> {5E393B8C-ECBA-4BB4-8580-08F13BA51E13} URL = hxxp://www.google.be/search?hl=nl&q={searchTerms}&sourceid=ie8&rls=com.microsoft:{language}:{referrer:source}&ie={inputEn coding?}&oe={outputEncoding?}&rlz=1I7VRHB_nlBE603
      SearchScopes: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
      BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
      BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-15] (Oracle Corporation)
      BHO-x32: Aanmeldhulp voor Microsoft-account -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
      BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-15] (Oracle Corporation)
      Toolbar: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Geen bestand

      FireFox:
      ========
      FF DefaultProfile: w0c4r2qm.default
      FF ProfilePath: C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\w0c4r2qm.default [2017-06-12]
      FF Homepage: Mozilla\Firefox\Profiles\w0c4r2qm.default -> hxxps://www.facebook.com/?ref=tn_tnmn
      FF Extension: (Follow-on Search Telemetry) - C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\w0c4r2qm.default\features\{6a2c3cb8-d46c-4add-9896-560cd114fa24}\[email protected] [2017-06-06]
      FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected] [2016-11-15] [ niet getekend]
      FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Mozilla Firefox\extensions\[email protected] => niet gevonden
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
      FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand]
      FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
      FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-05-20] (Intel Corporation)
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-05-20] (Intel Corporation)
      FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-15] (Oracle Corporation)
      FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-15] (Oracle Corporation)
      FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand]
      FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
      FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-04-10] (Nero AG)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
      FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)

      Chrome:
      =======
      CHR DefaultProfile: Default
      CHR HomePage: Default -> hxxp://search.conduit.com/?gd=&ctid=CT3324790&octid=EB_ORIGINAL_CTID&ISID=MEAEDF735-9382-462B-B3DF-27E714746DB3&SearchSource=55&CUI=&UM=5&UP=SP62F905E9-BC51-4BF4-8F87-56F6ED39F4BA&SSPV=
      CHR StartupUrls: Default -> "hxxps://www.facebook.com/"
      CHR NewTab: Default -> Not-active:"chrome-extension://lbapdklahcjljfincdglncfpdgfhckcf/stubby.html"
      CHR Profile: C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default [2017-06-12]
      CHR Extension: (Ask Web Search) - C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbpfdkbpbckgkcelkfjjhepmdcdmahi [2017-06-11]
      CHR Extension: (YouTube) - C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
      CHR Extension: (Google Search) - C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
      CHR Extension: (Offline Documenten) - C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
      CHR Extension: (Avast Online Security) - C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-07]
      CHR Extension: (Blogs Secure Connection) - C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpehkeicjeholkkghkgljfknjioaonbk [2017-06-05]
      CHR Extension: (Gmail) - C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
      CHR Extension: (Chrome Media Router) - C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
      CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (gefilterd) ====================

      (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

      R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-10] (AVAST Software s.r.o.)
      R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-10] (AVAST Software)
      R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Bestand niet getekend]
      S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
      R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-05-20] (Intel Corporation)
      S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
      S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

      ===================== Drivers (gefilterd) ======================

      (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

      S3 A38CCID; C:\Windows\System32\DRIVERS\a38ccid.sys [77832 2016-11-28] (Advanced Card Systems Ltd.)
      R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [311808 2017-05-10] (AVAST Software s.r.o.)
      R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [190256 2017-05-10] (AVAST Software s.r.o.)
      R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334576 2017-05-10] (AVAST Software s.r.o.)
      R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [49016 2017-05-10] (AVAST Software s.r.o.)
      S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-05-10] (AVAST Software)
      R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-05-10] (AVAST Software)
      R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-05-10] (AVAST Software)
      R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-05-10] (AVAST Software)
      R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-05-10] (AVAST Software)
      R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1007160 2017-05-10] (AVAST Software)
      R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [569192 2017-05-10] (AVAST Software)
      R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [158880 2017-05-12] (AVAST Software)
      R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-05-10] (AVAST Software)
      S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-12-30] () [Bestand niet getekend]
      R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-10-29] (Intel Corporation)
      R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2014-05-20] (Intel Corporation)
      R3 XtuAcpiDriver; C:\Windows\System32\DRIVERS\XtuAcpiDriver.sys [54344 2016-11-22] (Intel Corporation)
      S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
      U3 kwtdypow; \??\C:\Users\Eigenaar\AppData\Local\Temp\kwtdypow.sys [X] <==== AANDACHT

      ==================== NetSvcs (gefilterd) ===================

      (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


      ==================== Een Maand Aangemaakt bestanden en mappen ========

      (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

      2017-06-12 09:13 - 2017-06-12 09:14 - 00000000 ____D C:\FRST
      2017-06-11 18:52 - 2017-06-11 18:52 - 00188312 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
      2017-06-11 18:52 - 2017-06-11 18:52 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
      2017-06-11 18:52 - 2017-06-11 18:52 - 00001874 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
      2017-06-11 18:52 - 2017-06-11 18:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      2017-06-11 18:52 - 2017-06-11 18:52 - 00000000 ____D C:\Program Files\Malwarebytes
      2017-06-11 18:52 - 2017-05-25 11:58 - 00077376 _____ C:\Windows\system32\Drivers\mbae64.sys
      2017-06-11 13:04 - 2017-06-11 13:04 - 00000000 ____D C:\ProgramData\SWCUTemp
      2017-06-11 12:58 - 2017-06-11 13:00 - 00000000 ____D C:\AdwCleaner
      2017-06-11 09:41 - 2017-06-11 09:41 - 00000000 _____ C:\Users\Eigenaar\defogger_reenable
      2017-05-31 20:31 - 2017-05-31 20:31 - 00000000 ____D C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
      2017-05-22 08:03 - 2017-06-06 19:07 - 00000000 ____D C:\Users\Eigenaar\AppData\LocalLow\uTorrent
      2017-05-15 19:36 - 2017-05-15 19:36 - 00003544 _____ C:\Windows\System32\Tasks\HP AR Program Upload - fbb5ccc3849e4174b256d95cb0771d991272f2b789e14f9fadd31ed85cf4613b

      ==================== Een Maand Gewijzigd bestanden en mappen ========

      (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

      2017-06-12 09:04 - 2016-11-16 19:36 - 00000000 ____D C:\Users\Eigenaar\AppData\LocalLow\Mozilla
      2017-06-12 08:28 - 2015-06-17 11:03 - 00001036 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3609329212-1892986672-2351453482-1000UA.job
      2017-06-12 04:48 - 2009-07-14 06:45 - 00029120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      2017-06-12 04:48 - 2009-07-14 06:45 - 00029120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      2017-06-11 23:28 - 2015-06-17 11:03 - 00000984 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3609329212-1892986672-2351453482-1000Core.job
      2017-06-11 18:52 - 2014-10-02 19:40 - 00252832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
      2017-06-11 18:52 - 2014-10-02 19:40 - 00084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
      2017-06-11 18:52 - 2014-10-02 19:40 - 00044960 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
      2017-06-11 18:52 - 2014-10-02 19:40 - 00000000 ____D C:\ProgramData\Malwarebytes
      2017-06-11 13:07 - 2011-04-12 15:00 - 00745424 _____ C:\Windows\system32\perfh013.dat
      2017-06-11 13:07 - 2011-04-12 15:00 - 00153376 _____ C:\Windows\system32\perfc013.dat
      2017-06-11 13:07 - 2009-07-14 07:13 - 01669560 _____ C:\Windows\system32\PerfStringBackup.INI
      2017-06-11 13:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
      2017-06-11 13:01 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
      2017-06-11 13:00 - 2016-07-14 09:48 - 00001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
      2017-06-11 13:00 - 2016-06-19 14:58 - 00001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
      2017-06-11 13:00 - 2016-02-28 22:15 - 00001072 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      2017-06-11 13:00 - 2014-05-21 19:01 - 00001329 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-06-11 13:00 - 2014-05-07 18:05 - 00000988 _____ C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
      2017-06-11 09:41 - 2014-05-07 18:05 - 00000000 ____D C:\Users\Eigenaar
      2017-06-07 17:47 - 2014-06-11 22:45 - 00000000 ____D C:\Users\Eigenaar\AppData\Roaming\uTorrent
      2017-06-07 17:44 - 2016-11-15 23:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
      2017-06-04 09:26 - 2014-05-07 19:19 - 00000000 ____D C:\Windows\system32\MRT
      2017-06-04 09:24 - 2014-05-07 19:19 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
      2017-06-01 08:38 - 2016-07-14 09:48 - 00003890 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1468482486
      2017-05-31 23:43 - 2014-05-07 19:38 - 00000000 ____D C:\Users\Eigenaar\AppData\Local\Nero
      2017-05-31 23:41 - 2015-09-21 22:07 - 00000000 ____D C:\Users\Eigenaar\AppData\Roaming\vlc
      2017-05-31 20:31 - 2015-06-17 11:03 - 00000000 ____D C:\Users\Eigenaar\AppData\Local\Dropbox
      2017-05-31 20:31 - 2014-06-03 00:16 - 00000000 ____D C:\Users\Eigenaar\AppData\Roaming\Dropbox
      2017-05-31 17:23 - 2016-06-19 14:58 - 00003844 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1466341104
      2017-05-31 17:23 - 2015-09-21 21:49 - 00000000 ____D C:\Program Files (x86)\Opera
      2017-05-24 07:29 - 2016-02-28 22:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
      2017-05-22 08:13 - 2014-10-24 20:14 - 00000000 ____D C:\Users\Eigenaar\AppData\Local\ElevatedDiagnostics
      2017-05-21 09:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
      2017-05-14 15:18 - 2017-05-12 21:12 - 00000000 ____D C:\Users\Eigenaar\AppData\Roaming\Skype
      2017-05-14 15:18 - 2017-05-12 21:12 - 00000000 ____D C:\ProgramData\Skype

      ==================== Bestanden in de root van sommige mappen =======

      2014-06-11 23:53 - 2015-09-21 20:32 - 0001059 _____ () C:\Users\Eigenaar\AppData\Roaming\vso_ts_preview.xml
      2014-05-21 23:29 - 2014-05-21 23:29 - 0003584 _____ () C:\Users\Eigenaar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      2015-02-20 14:14 - 2015-02-20 14:14 - 0000057 _____ () C:\ProgramData\Ament.ini
      2014-05-20 19:44 - 2014-05-20 19:44 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

      Sommige bestanden in TEMP:
      ====================
      2016-12-02 21:42 - 2016-12-02 21:42 - 2458672 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Users\Eigenaar\AppData\Local\Temp\libeay32.dll
      2016-12-02 21:42 - 2016-12-02 21:42 - 0970912 _____ (Microsoft Corporation) C:\Users\Eigenaar\AppData\Local\Temp\msvcr120.dll
      2016-12-02 21:42 - 2016-12-02 21:42 - 0772672 _____ () C:\Users\Eigenaar\AppData\Local\Temp\sqlite3.dll

      ==================== Bamital & volsnap ======================

      (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

      C:\Windows\system32\winlogon.exe => Bestand is getekend
      C:\Windows\system32\wininit.exe => Bestand is getekend
      C:\Windows\SysWOW64\wininit.exe => Bestand is getekend
      C:\Windows\explorer.exe => Bestand is getekend
      C:\Windows\SysWOW64\explorer.exe => Bestand is getekend
      C:\Windows\system32\svchost.exe => Bestand is getekend
      C:\Windows\SysWOW64\svchost.exe => Bestand is getekend
      C:\Windows\system32\services.exe => Bestand is getekend
      C:\Windows\system32\User32.dll => Bestand is getekend
      C:\Windows\SysWOW64\User32.dll => Bestand is getekend
      C:\Windows\system32\userinit.exe => Bestand is getekend
      C:\Windows\SysWOW64\userinit.exe => Bestand is getekend
      C:\Windows\system32\rpcss.dll => Bestand is getekend
      C:\Windows\system32\dnsapi.dll => Bestand is getekend
      C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend
      C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend

      LastRegBack: 2017-06-11 13:26

      ==================== Eind van FRST.txt ============================
      Last edited by Juisterr; 12-06-17, 09:33.

      Comment


      • #4
        Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 11-06-2017
        Gestart door Eigenaar (12-06-2017 09:14:28)
        Gestart vanaf D:\Users\Eigenaar\Desktop
        Windows 7 Home Premium Service Pack 1 (X64) (2014-05-07 16:05:06)
        Boot Modus: Normal
        ==========================================================


        ==================== Accounts: =============================

        Administrator (S-1-5-21-3609329212-1892986672-2351453482-500 - Administrator - Disabled)
        Eigenaar (S-1-5-21-3609329212-1892986672-2351453482-1000 - Administrator - Enabled) => C:\Users\Eigenaar
        Gast (S-1-5-21-3609329212-1892986672-2351453482-501 - Limited - Disabled)

        ==================== Security Center ========================

        (Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

        AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
        AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
        AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
        AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
        AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

        ==================== Geïnstalleerde programma's ======================

        (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

        µTorrent (HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
        2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
        2007 Microsoft Office Suite Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
        Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
        Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated)
        Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
        Albelli.be Fotoboeken (HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\{C16DFB31-4A09-474E-AF61-02AFB3008763}_is1) (Version: - Albelli)
        Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
        Belgium e-ID middleware 4.0.7 (build 7453) (HKLM\...\{824563DE-75AD-4166-9DC0-B6482F207453}) (Version: 4.0.7453 - Belgian Government)
        BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
        CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
        Commandos Strike Force (HKLM-x32\...\{9944C0A9-C5F9-4DD7-8C44-865AAFE13CF0}) (Version: 1.00.0000 - Pyro Studios)
        ConvertXtoDVD 4.2.0.0 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.2.0.0 - )
        D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
        Dropbox (HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\Dropbox) (Version: 27.4.22 - Dropbox, Inc.)
        eMindMaps (HKLM-x32\...\eMindMaps) (Version: 2.0.7 - MindJET LLC)
        Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
        Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
        Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
        Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
        Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
        HP ENVY 5530 series Basissoftware van het apparaat (HKLM\...\{24F88BAE-96B6-4D18-BDCC-E1746EBD30C6}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
        HP ENVY 5530 series Help (HKLM-x32\...\{35A1FA23-AD44-4E6E-9CFD-AAC967677B13}) (Version: 30.0.0 - Hewlett Packard)
        HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
        HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
        HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
        HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
        Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
        Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.19 - Intel Corporation)
        IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
        Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
        Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
        Mafia III (HKLM\...\Steam App 360430) (Version: - Hangar 13)
        Malwarebytes versie 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
        Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
        Microsoft .NET Framework 4.6.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.6.01055 - Microsoft Corporation)
        Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
        Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
        Microsoft OneDrive (HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation)
        Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
        Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
        Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
        Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
        Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
        Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
        Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
        Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
        Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
        Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
        Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
        Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
        Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
        Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
        Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
        Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
        Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
        Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
        Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
        Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
        Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
        Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
        MouseRecorder v1.0.47 (HKLM-x32\...\MouseRecorder_is1) (Version: 1.0.47 - Bartels Media GmbH)
        Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
        Mozilla Firefox 53.0.3 (x86 nl) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 nl)) (Version: 53.0.3 - Mozilla)
        Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
        Mozilla Thunderbird 45.8.0 (x86 nl) (HKLM-x32\...\Mozilla Thunderbird 45.8.0 (x86 nl)) (Version: 45.8.0 - Mozilla)
        MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
        MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
        Nero 10 Kwik Themes 1 (HKLM-x32\...\{43FBAB46-5969-4200-9958-1FF81FEE506F}) (Version: 10.6.10000.1.0 - Nero AG)
        Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.4.10400.2.100 - Nero AG)
        Nero CoverDesigner 10 (HKLM-x32\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.6.10600.4.100 - Nero AG)
        Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.4.10500.1.100 - Nero AG)
        Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10800.6.100 - Nero AG)
        Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 15.1.0030 - Nero AG)
        Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.4.10300.1.100 - Nero AG)
        Nero MediaHome Free (HKLM-x32\...\{38FA7E96-55BF-4CC9-A9BD-9A4F6F99D377}) (Version: 15.0.02900 - Nero AG)
        Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{ADEF1F0B-635E-4041-B50F-A510C1B4D2C5}) (Version: 10.5.10400 - Nero AG)
        Nero Prerequisite Installer 1.0 (HKLM-x32\...\{E4B86819-E9B8-4089-963B-DF5E70E7A05E}) (Version: 11.0.13100 - Nero AG)
        Nero Prerequisite Installer 2.0 (HKLM-x32\...\{F4C242B4-2973-43F3-93F2-ED1B47AE8848}) (Version: 12.0.02000 - Nero AG)
        Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.6.10500.3.100 - Nero AG)
        Nero SoundTrax (HKLM-x32\...\{67C29A02-F991-46F0-9091-40BED8AD8F1A}) (Version: 12.0.03100 - Nero AG)
        Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.6.10500.3.100 - Nero AG)
        Nero WaveEditor (HKLM-x32\...\{59C6E86A-14A9-47FD-9EE8-8D9DA864E0AF}) (Version: 12.5.01300 - Nero AG)
        Opera Stable 45.0.2552.888 (HKLM-x32\...\Opera 45.0.2552.888) (Version: 45.0.2552.888 - Opera Software)
        Pixbook (HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\Pixbook) (Version: - )
        PixelHobby Designer (HKLM-x32\...\PixelHobby Designer) (Version: 2.0 - HobbyWare)
        Prerequisite installer (x32 Version: 12.0.0008 - Nero AG) Hidden
        Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden
        Productverbeteringsonderzoek voor HP ENVY 5530 series (HKLM\...\{F90EBFDE-7581-4062-AE57-29F2105C5FA2}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
        Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
        Return to Castle Wolfenstein (HKLM-x32\...\Return to Castle Wolfenstein_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
        Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
        SafeZone Stable 3.55.2393.607 (x32 Version: 3.55.2393.607 - Avast Software) Hidden
        Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.3.0 - Samsung Electronics)
        Snap.Do Engine (HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\...\{95accfb6-a6f5-43ea-b901-781c3e513c95}) (Version: 11.126.1.20709 - ReSoft Ltd.) <==== AANDACHT
        Software voor Intel® Chipset-apparaten (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
        Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
        Stuurprogrammapakket voor Windows - Fedict SmartCard (03/25/2014 4.0.7.4) (HKLM\...\B02255EDA75F867B4D85C5A5D23E13D9EF71E8AE) (Version: 03/25/2014 4.0.7.4 - Fedict)
        SubMagic V0.61 (HKLM-x32\...\SubMagic_is1) (Version: - Wicked & Wild Inc.)
        Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
        Update voor Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0413-0000-0000000FF1CE}_HOMESTUDENTR_{5CF7002F-6F49-4482-9564-5614FBE560FA}) (Version: - Microsoft)
        Update voor Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0413-0000-0000000FF1CE}_HOMESTUDENTR_{15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}) (Version: - Microsoft)
        Update voor Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0413-0000-0000000FF1CE}_HOMESTUDENTR_{A66AE6A1-8D8C-4102-BC18-38CBDE40F809}) (Version: - Microsoft)
        VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
        Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
        WinRAR 5.10 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

        ==================== Aangepaste CLSID (gefilterd): ==========================

        (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Eigenaar\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Eigenaar\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Eigenaar\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Eigenaar\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\FileSyncApi64.dll (Microsoft Corporation)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)
        CustomCLSID: HKU\S-1-5-21-3609329212-1892986672-2351453482-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\DropboxExt64.16.0.dll (Dropbox, Inc.)

        ==================== Geplande Taken (gefilterd) =============

        (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


        (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

        Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3609329212-1892986672-2351453482-1000Core.job => C:\Users\Eigenaar\AppData\Local\Dropbox\Update\DropboxUpdate.exe
        Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3609329212-1892986672-2351453482-1000UA.job => C:\Users\Eigenaar\AppData\Local\Dropbox\Update\DropboxUpdate.exe

        ==================== Snelkoppelingen =============================

        (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

        ==================== Geladen Modules (gefilterd) ==============

        2014-10-23 21:19 - 2014-10-23 21:19 - 00050688 _____ () C:\Program Files\CCleaner\lang\lang-1043.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00162024 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00825960 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00275776 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
        2017-06-11 05:22 - 2017-06-11 05:22 - 05996032 _____ () C:\Program Files\AVAST Software\Avast\defs\17061020\algo.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
        2017-06-12 01:01 - 2017-06-12 01:01 - 06101864 _____ () C:\Program Files\AVAST Software\Avast\defs\17061100\algo.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
        2017-05-10 08:37 - 2017-05-10 08:37 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
        2017-01-07 13:58 - 2017-05-17 03:54 - 00678176 _____ () D:\games\maffia\SDL2.dll
        2017-01-07 13:58 - 2016-09-01 03:02 - 04969248 _____ () D:\games\maffia\v8.dll
        2017-01-07 13:58 - 2016-09-01 03:02 - 01563936 _____ () D:\games\maffia\icui18n.dll
        2017-01-07 13:58 - 2016-09-01 03:02 - 01195296 _____ () D:\games\maffia\icuuc.dll
        2017-01-07 13:58 - 2017-06-08 07:42 - 02485536 _____ () D:\games\maffia\video.dll
        2017-01-07 13:58 - 2016-01-27 09:49 - 02549760 _____ () D:\games\maffia\libavcodec-56.dll
        2017-01-07 13:58 - 2016-01-27 09:49 - 00442880 _____ () D:\games\maffia\libavutil-54.dll
        2017-01-07 13:58 - 2016-01-27 09:49 - 00491008 _____ () D:\games\maffia\libavformat-56.dll
        2017-01-07 13:58 - 2016-01-27 09:49 - 00332800 _____ () D:\games\maffia\libavresample-2.dll
        2017-01-07 13:58 - 2016-01-27 09:49 - 00485888 _____ () D:\games\maffia\libswscale-3.dll
        2017-01-07 13:58 - 2017-06-08 07:42 - 00877856 _____ () D:\games\maffia\bin\chromehtml.DLL
        2017-01-07 13:58 - 2016-07-05 00:17 - 00266560 _____ () D:\games\maffia\openvr_api.dll
        2017-05-31 20:31 - 2017-05-30 12:19 - 00775488 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll
        2017-05-31 20:31 - 2017-05-30 12:19 - 01787200 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\dropbox_crashpad.dll
        2015-12-12 15:31 - 2017-05-12 04:25 - 00035792 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
        2015-12-12 15:31 - 2017-05-12 04:25 - 00100296 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\_ctypes.pyd
        2015-12-12 15:31 - 2017-05-12 04:25 - 00018888 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\select.pyd
        2015-12-12 15:31 - 2017-05-30 12:21 - 00019776 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00020824 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
        2015-12-12 15:31 - 2017-05-12 04:25 - 00123856 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
        2015-12-12 15:31 - 2017-05-12 04:25 - 00694224 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\unicodedata.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 01729360 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00020816 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
        2017-05-31 20:31 - 2017-05-12 04:25 - 00145864 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\pyexpat.pyd
        2017-05-31 20:31 - 2017-05-12 04:25 - 00019408 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\faulthandler.pyd
        2017-05-31 20:31 - 2017-05-12 04:25 - 00116688 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\pywintypes27.dll
        2015-12-12 15:31 - 2017-05-12 04:27 - 00105928 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32api.pyd
        2016-08-05 20:05 - 2017-05-30 12:22 - 00022864 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00060736 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00038712 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\fastpath.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00024528 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32event.pyd
        2017-05-31 20:31 - 2017-05-12 04:25 - 00392656 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\pythoncom27.dll
        2017-05-31 20:31 - 2017-05-12 04:27 - 00020936 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\mmapfile.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00116176 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32security.pyd
        2015-12-12 15:31 - 2017-05-30 12:21 - 00392512 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00124880 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32file.pyd
        2016-08-05 20:05 - 2017-05-30 12:22 - 00026456 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00024016 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00175560 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32gui.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00030160 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32pipe.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00043472 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32process.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00048592 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32service.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00057808 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00024016 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32profile.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00022336 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
        2017-05-17 23:28 - 2017-05-30 12:22 - 00082264 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winenumhandles.compiled._WinEnumHandles.pyd
        2015-12-12 15:31 - 2017-05-30 12:22 - 00025432 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00246608 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00027488 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 03928896 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
        2015-12-12 15:31 - 2017-05-12 04:25 - 00083912 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\sip.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 01826104 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 01972024 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00028616 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32ts.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00171336 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00042816 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00531264 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00133432 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00224064 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00207680 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00060880 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\win32print.pyd
        2017-02-28 01:29 - 2017-05-30 12:22 - 00054608 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.pyd
        2017-01-23 21:29 - 2017-05-30 12:22 - 00022864 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.pyd
        2017-01-23 21:29 - 2017-05-30 12:22 - 00022872 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
        2017-01-23 21:29 - 2017-05-30 12:22 - 00021848 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.pyd
        2017-01-23 21:29 - 2017-05-30 12:22 - 00022872 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.pyd
        2015-12-12 15:31 - 2017-05-12 04:27 - 00349128 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winxpgui.pyd
        2016-02-12 18:14 - 2017-05-30 12:22 - 00023896 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00025936 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
        2017-05-31 20:31 - 2017-05-12 04:20 - 00036296 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\librsync.dll
        2017-05-31 20:31 - 2017-05-30 12:21 - 00084288 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
        2016-07-11 23:36 - 2017-05-30 12:21 - 00030536 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\wind3d11.compiled._wind3d11.pyd
        2017-05-31 20:31 - 2017-05-12 04:30 - 00017864 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\libEGL.dll
        2017-05-31 20:31 - 2017-05-12 04:30 - 01631184 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\libGLESv2.dll
        2016-08-05 20:05 - 2017-05-30 12:22 - 00026456 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.pyd
        2017-04-07 21:10 - 2017-05-30 12:21 - 00023368 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\wincrashpad.compiled._Crashpad.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00546104 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
        2017-05-31 20:31 - 2017-05-30 12:21 - 00357688 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
        2017-03-24 20:37 - 2017-05-12 04:32 - 00697304 _____ () C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
        2017-01-07 13:59 - 2017-05-08 21:45 - 69516064 _____ () D:\games\maffia\bin\cef\cef.win7\libcef.dll
        2017-06-09 09:21 - 2017-05-17 03:54 - 00678176 _____ () D:\games\maffia\bin\cef\cef.win7\SDL2.dll
        2017-01-07 13:58 - 2017-06-08 07:42 - 00385312 _____ () D:\games\maffia\steam.dll
        2014-05-20 19:40 - 2014-05-20 19:40 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
        2016-06-06 18:58 - 2015-07-29 16:20 - 00137240 _____ () C:\Program Files (x86)\MouseRecorder\mrkey.dll
        2016-06-06 18:58 - 2015-07-29 16:20 - 00058392 _____ () C:\Program Files (x86)\MouseRecorder\mrlang.dll

        ==================== Alternate Data Streams (gefilterd) =========

        (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)


        ==================== Veilige Modus (gefilterd) ===================

        (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

        HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
        HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

        ==================== Bestandskoppeling (gefilterd) ===============

        (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


        ==================== Internet Explorer vertrouwde/beperkte toegang ===============

        (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)


        ==================== Hosts inhoud: ===============================

        (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

        2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts


        ==================== Andere gebieden ============================

        (Momenteel is er geen automatische fix voor dit onderdeel.)

        HKU\S-1-5-21-3609329212-1892986672-2351453482-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
        DNS Servers: 195.130.130.4 - 195.130.131.4
        HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
        Windows Firewall is ingeschakeld.

        ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

        MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
        MSCONFIG\startupreg: Steam => "D:\games\call of duty mw3\Steam.exe" -silent
        MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
        MSCONFIG\startupreg: uTorrent => "C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

        Comment


        • #5
          ==================== Firewall regels (gefilterd) ===============

          (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

          FirewallRules: [{91645F75-A8E6-4DF4-85B5-39915E634003}] => (Allow) C:\Users\Eigenaar\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
          FirewallRules: [{1B3080E5-7C97-4507-9D59-61B896670BC2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
          FirewallRules: [{93E4AA86-68E0-445B-AC1F-AF434FFF5E61}] => (Allow) LPort=2869
          FirewallRules: [{3A860D5E-8988-448C-ABBB-42BFE538CAEE}] => (Allow) LPort=1900
          FirewallRules: [{CF24FB3D-7752-486E-9F25-673999C732E8}] => (Allow) C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
          FirewallRules: [{185DED9B-5A7D-41AA-A926-D44DABFAA579}] => (Allow) C:\Users\Eigenaar\AppData\Roaming\Dropbox\bin\Dropbox.exe
          FirewallRules: [{0235580E-AA34-4AD1-892A-786A08D228B0}] => (Allow) D:\games\call of duty mw3\Steam.exe
          FirewallRules: [{177CB0CD-3F9F-46CC-8EF1-6E08DEEB66A0}] => (Allow) D:\games\call of duty mw3\Steam.exe
          FirewallRules: [{CDF98958-14EB-4AB3-B029-A4F1F951E95A}] => (Allow) D:\games\call of duty mw3\SteamApps\common\Call of Duty Modern Warfare 3\iw5sp.exe
          FirewallRules: [{28D3A5C3-1476-4616-8F85-C1B365A1FAE2}] => (Allow) D:\games\call of duty mw3\SteamApps\common\Call of Duty Modern Warfare 3\iw5sp.exe
          FirewallRules: [{4FC356B7-A1BF-444C-995C-BDB9A1CFD6C8}] => (Allow) D:\games\call of duty mw3\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exe
          FirewallRules: [{601E9578-1486-495E-AFDC-A4481B08C48C}] => (Allow) D:\games\call of duty mw3\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exe
          FirewallRules: [{198DFE46-C8BC-4643-8C60-FCED2130BA7E}] => (Allow) D:\games\call of duty mw3\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp_server.exe
          FirewallRules: [{DA8F44F7-5BE0-49C3-91F1-5240AA2C9C95}] => (Allow) D:\games\call of duty mw3\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp_server.exe
          FirewallRules: [{5EB18E9F-C6E9-46E8-AEAC-78D8593FFE52}] => (Allow) D:\games\call of duty mw3\bin\steamwebhelper.exe
          FirewallRules: [{A8D62DA8-E797-4696-AAFB-2DEA75D3F73C}] => (Allow) D:\games\call of duty mw3\bin\steamwebhelper.exe
          FirewallRules: [TCP Query User{6A70A5CE-B108-4871-9654-33245B44B63D}C:\users\eigenaar\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\eigenaar\appdata\roaming\dropbox\bin\dropbox.exe
          FirewallRules: [UDP Query User{FC376CFA-2F44-43FC-820A-2A389ED36249}C:\users\eigenaar\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\eigenaar\appdata\roaming\dropbox\bin\dropbox.exe
          FirewallRules: [{487C6BE4-38FD-4D34-82B4-B8101F9D96EC}] => (Allow) D:\games\FarCry 4\bin\FarCry4.exe
          FirewallRules: [{0B0F7923-622C-48D9-8639-104673255677}] => (Allow) D:\games\FarCry 4\bin\FarCry4.exe
          FirewallRules: [{11BC8FB9-3EF6-4EE0-A0EA-199192C48554}] => (Allow) D:\games\FarCry 4\bin\IGE_WPF64.exe
          FirewallRules: [{A1EDA2FF-9123-4041-A44B-5F3E9224764D}] => (Allow) D:\games\FarCry 4\bin\IGE_WPF64.exe
          FirewallRules: [{A70D28FD-01B2-45B0-B498-AE69B9753071}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
          FirewallRules: [{8A520CD5-0AC4-4EE6-81A1-F00B59F29AD9}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
          FirewallRules: [{B0EF4917-DD8A-485A-A22F-96FB35AE7905}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe
          FirewallRules: [{8907ABD7-B2C3-44CC-8D5E-0FC13E54F5B4}] => (Allow) LPort=5357
          FirewallRules: [{14407A16-AD4B-4E78-B2D3-B9F051C281DF}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
          FirewallRules: [TCP Query User{AA228640-0B69-4D4A-8E60-5D21FFACEEA5}D:\games\farcry 4\bin\farcry4.exe] => (Allow) D:\games\farcry 4\bin\farcry4.exe
          FirewallRules: [UDP Query User{82C53D31-752C-48A7-AD2A-FC79FC98663A}D:\games\farcry 4\bin\farcry4.exe] => (Allow) D:\games\farcry 4\bin\farcry4.exe
          FirewallRules: [{7053A82B-ABCA-4503-9017-DE27BF417E7E}] => (Allow) C:\Program Files (x86)\Nero\Nero 10\Nero Blu-ray Player\Blu-rayPlayer.exe
          FirewallRules: [{A8C43E20-42C7-49D6-A5A4-4776B3490BEA}] => (Allow) C:\Program Files (x86)\Nero\Nero 10\Nero Blu-ray Player\Blu-rayPlayer.exe
          FirewallRules: [{722CE299-150D-4D0B-9C50-94EDC1A92733}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
          FirewallRules: [{F895D902-8552-400D-8722-8ED54DE66336}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
          FirewallRules: [{CFBF84ED-2FC0-4521-A484-730978CD287C}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
          FirewallRules: [{2169FDC8-AD62-483C-8B5F-6BDA9A0CC67B}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
          FirewallRules: [{5F1B2DD3-455B-4CB9-977D-607F76FEABE1}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
          FirewallRules: [{FD1F9F0C-121E-4C94-B637-75E8F6556BAD}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
          FirewallRules: [{436413E7-577D-447F-8C46-27F52318BC99}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
          FirewallRules: [{D853CF5E-3CC0-477E-89D0-63C1AE633EB9}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
          FirewallRules: [{AAB7B69F-55B4-4CE8-AAFB-4763180C86FB}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
          FirewallRules: [{0ED3BC78-F4F1-4513-9FE5-978CC42BAF49}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
          FirewallRules: [{70E78C11-1EB4-40BA-8FA1-6B820788501F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
          FirewallRules: [{5ED61811-639D-4519-B7BA-872B3B5F0B39}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
          FirewallRules: [{B9093CBA-E91A-46D1-AF89-74A2897B9FB0}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
          FirewallRules: [{45FD363D-3EC8-4279-B641-C8A57CAA88DB}] => (Allow) C:\Program Files (x86)\MouseRecorder\MouseRecorder.exe
          FirewallRules: [{E21F496F-50C7-4F0D-8F4F-B3B1E2CF467C}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS6676\HPDiagnosticCoreUI.exe
          FirewallRules: [{346AE080-1446-4509-933B-8A255DE49355}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS6676\HPDiagnosticCoreUI.exe
          FirewallRules: [{A9909D36-FF67-4823-8141-2598A42D88E9}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS7ED8\HPDiagnosticCoreUI.exe
          FirewallRules: [{93842AF8-F74E-47BC-9ED3-4B6B7E9FA2D2}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS7ED8\HPDiagnosticCoreUI.exe
          FirewallRules: [{4BA90F2A-BC51-4F36-B170-D9759BA8EAAC}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS0BB4\HPDiagnosticCoreUI.exe
          FirewallRules: [{29DE7D1E-0285-4B46-BB94-C66BBB251A7F}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS0BB4\HPDiagnosticCoreUI.exe
          FirewallRules: [{4404A9B6-A6C1-4B11-91BE-8759B57C9C59}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS0DFC\HPDiagnosticCoreUI.exe
          FirewallRules: [{70027AAD-1A18-4BE7-949F-FB0D89DEE5CD}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS0DFC\HPDiagnosticCoreUI.exe
          FirewallRules: [{D6672880-6AA9-4EDE-B73F-DCBD8E4446E0}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS1011\HPDiagnosticCoreUI.exe
          FirewallRules: [{0DE7DE97-19D9-4B63-AF77-2CAD5DF6B37A}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS1011\HPDiagnosticCoreUI.exe
          FirewallRules: [{35E65905-3AD4-4092-88D3-2BD15A8BFE96}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
          FirewallRules: [{247697D9-DA49-4FB0-A749-5C259FB1A3EF}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
          FirewallRules: [{74BD7DE0-815A-4F48-A0CA-463544471922}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
          FirewallRules: [{2B613930-8714-4686-908C-D23EF044204D}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
          FirewallRules: [{E10D1E1D-8C83-4825-8884-9B4131CFA181}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS55A1\HPDiagnosticCoreUI.exe
          FirewallRules: [{14EDEA5D-204B-45D9-A7A4-4F9E6D70E925}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS55A1\HPDiagnosticCoreUI.exe
          FirewallRules: [{46A46335-5BD9-4909-BE16-36102907B885}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS00D4\HPDiagnosticCoreUI.exe
          FirewallRules: [{77C14711-E920-431D-8D14-CA2984F823D0}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS00D4\HPDiagnosticCoreUI.exe
          FirewallRules: [{F3D56043-A26B-4E3E-AF57-EB226D93931C}] => (Allow) D:\games\maffia\Steam.exe
          FirewallRules: [{CB349027-BE18-46C2-8CDB-DFF92D6E64AE}] => (Allow) D:\games\maffia\Steam.exe
          FirewallRules: [{30790B86-C37C-48EE-86EB-2F204A36BA18}] => (Allow) D:\games\maffia\bin\cef\cef.win7\steamwebhelper.exe
          FirewallRules: [{A920A5AD-32FF-4955-A83F-A3601F611A7E}] => (Allow) D:\games\maffia\bin\cef\cef.win7\steamwebhelper.exe
          FirewallRules: [{72D3C821-F6AE-44CE-B7D6-295C28803219}] => (Allow) D:\games\maffia\steamapps\common\Mafia III\launcher.exe
          FirewallRules: [{2C15DDC8-4269-4F6A-9EA8-D6B6B935E362}] => (Allow) D:\games\maffia\steamapps\common\Mafia III\launcher.exe
          FirewallRules: [{98459D45-43D2-4E9A-9FC6-2AEBF3B0C5AC}] => (Allow) C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe
          FirewallRules: [{0778D592-0094-4AC3-A149-D81397B7FBE3}] => (Allow) C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe
          FirewallRules: [{E8BD45A7-6A67-4781-9BD7-6FBA3CF40855}] => (Allow) C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe
          FirewallRules: [{A3A9BA21-6ECF-4F26-9126-8DBD935B8A7D}] => (Allow) C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe
          FirewallRules: [{C9F3B196-2E22-4506-A142-19E0C9FC28F5}] => (Allow) C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe
          FirewallRules: [{3C3A2161-A11D-4A33-ADAE-06B8BAE60CFB}] => (Allow) C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe
          FirewallRules: [{E9157B79-88C3-482C-AA9A-064F86B195A8}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS7182\HPDiagnosticCoreUI.exe
          FirewallRules: [{04430130-575C-4090-A0AB-DE008F6EE563}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS7182\HPDiagnosticCoreUI.exe
          FirewallRules: [{42AF9459-3ADF-4522-8820-2A49B4A2545C}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
          FirewallRules: [{2120C7D3-78F2-49AA-A659-215582354A18}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          FirewallRules: [{D4EFC3D0-4B7B-4856-AF28-E9309510729D}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.881\opera.exe
          FirewallRules: [{B7108D16-B22E-4507-9866-FCEA5488D9FF}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
          FirewallRules: [{5EB2CB34-7A7D-49B8-8A90-99354C0EED21}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.607\SZBrowser.exe
          FirewallRules: [{1E99666B-F438-48C3-8771-CC7248840B5B}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS5D0F\HPDiagnosticCoreUI.exe
          FirewallRules: [{1D8D8440-2751-4CE5-A71A-2E1CE0FE4910}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS5D0F\HPDiagnosticCoreUI.exe

          ==================== Herstelpunten =========================

          04-06-2017 09:24:47 Windows Update
          11-06-2017 13:33:21 Gepland controlepunt

          ==================== Defecte Apparaatbeheer Apparaten =============


          ==================== Eventlog fouten: =========================

          Applicatiefouten:
          ==================
          Error: (06/11/2017 01:01:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
          Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

          Error: (06/11/2017 12:49:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
          Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

          Error: (06/10/2017 11:53:09 PM) (Source: Application Hang) (EventID: 1002) (User: )
          Description: Het programma iexplore.exe, versie 11.0.9600.18666 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

          Proces-id: 870

          Starttijd: 01d2e233cb6e1669

          Eindtijd: 5

          Toepassingspad: C:\Program Files\Internet Explorer\iexplore.exe

          Rapport-id:

          Error: (06/09/2017 02:17:04 PM) (Source: Application Error) (EventID: 1000) (User: )
          Description: Naam van toepassing met fout: IEXPLORE.EXE, versie: 11.0.9600.18666, tijdstempel: 0x58f30f27
          Naam van module met fout: atidxx32.dll, versie: 8.17.10.644, tijdstempel: 0x564bf2ab
          Uitzonderingscode: 0xc0000005
          Foutoffset: 0x00549a9a
          Id van proces met fout: 0x11e8
          Starttijd van toepassing met fout: 0x01d2e11a43737213
          Pad naar toepassing met fout: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
          Pad naar module met fout: C:\Windows\system32\atidxx32.dll
          Rapport-id: 8ba33e44-4d0d-11e7-b82d-94de8077383c

          Error: (06/09/2017 09:20:44 AM) (Source: WinMgmt) (EventID: 10) (User: )
          Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

          Error: (06/07/2017 05:46:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
          Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

          Error: (06/07/2017 03:16:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
          Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

          Error: (06/07/2017 05:14:08 AM) (Source: WinMgmt) (EventID: 10) (User: )
          Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

          Error: (06/06/2017 07:04:36 PM) (Source: Application Error) (EventID: 1000) (User: )
          Description: Naam van toepassing met fout: utorrentie.exe, versie: 1.0.0.43804, tijdstempel: 0x5914b8a0
          Naam van module met fout: jscript9.dll, versie: 11.0.9600.18666, tijdstempel: 0x58f31842
          Uitzonderingscode: 0xc0000005
          Foutoffset: 0x000f3541
          Id van proces met fout: 0x1640
          Starttijd van toepassing met fout: 0x01d2ded41e3465ec
          Pad naar toepassing met fout: C:\Users\Eigenaar\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe
          Pad naar module met fout: C:\Windows\SysWOW64\jscript9.dll
          Rapport-id: 37c01a88-4ada-11e7-bb52-94de8077383c

          Error: (06/06/2017 03:52:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
          Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.


          Systeemfouten:
          =============
          Error: (06/11/2017 01:00:45 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
          Description: Servicebesturingsbeheer heeft na het onverwachte afsluiten van de Windows Search-service geprobeerd een herstelactie (Service opnieuw starten) uit te voeren, maar deze actie is met de volgende fout mislukt:
          De service is al gestart.

          Error: (06/11/2017 01:00:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
          Description: De Windows Modules Installer-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 120000 milliseconden worden uitgevoerd: Service opnieuw starten.

          Error: (06/11/2017 01:00:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
          Description: De Nero Update-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd.

          Error: (06/11/2017 01:00:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
          Description: De Intel(R) Dynamic Application Loader Host Interface Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd.

          Error: (06/11/2017 01:00:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
          Description: De Steam Client Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd.

          Error: (06/11/2017 01:00:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
          Description: De Windows Media Player Network Sharing Service-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 30000 milliseconden worden uitgevoerd: Service opnieuw starten.

          Error: (06/11/2017 01:00:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
          Description: De Windows Search-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 30000 milliseconden worden uitgevoerd: Service opnieuw starten.

          Error: (06/11/2017 01:00:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
          Description: De Windows Live ID Sign-in Assistant-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

          Error: (06/11/2017 01:00:15 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
          Description: De MBAMScheduler-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd.

          Error: (06/11/2017 01:00:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
          Description: De Intel(R) Capability Licensing Service Interface-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 0 milliseconden worden uitgevoerd: Service opnieuw starten.


          CodeIntegrity:
          ===================================
          Date: 2016-09-09 07:46:43.145
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-09-09 07:46:43.083
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-09-09 07:46:38.824
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-09-09 07:46:38.793
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-09-01 01:26:46.396
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-09-01 01:26:46.318
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-09-01 01:26:42.387
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\staport.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-09-01 01:26:42.309
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-09-01 01:26:42.278
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

          Date: 2016-08-29 07:20:00.677
          Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.


          ==================== Geheugen info ===========================

          Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
          Percentage geheugen in gebruik: 32%
          Totaal fysiek RAM-geheugen: 8145.14 MB
          Beschikbaar fysiek RAM-geheugen: 5471.11 MB
          Totaal Virtueel geheugen: 16288.46 MB
          Beschikbaar Virtual geheugen: 13575.91 MB

          ==================== Schijven ================================

          Drive c: (Systeem) (Fixed) (Total:232.79 GB) (Free:89.07 GB) NTFS
          Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:236.1 GB) NTFS
          Drive e: (Raptor) (Fixed) (Total:279.46 GB) (Free:65.78 GB) NTFS

          ==================== MBR & Partitietabel ==================

          ========================================================
          Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: E7368528)
          Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
          Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)

          ========================================================
          Disk: 1 (Size: 931.5 GB) (Disk ID: 000E7636)
          Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

          ========================================================
          Disk: 2 (MBR Code: Windows 7 or 8) (Size: 279.5 GB) (Disk ID: 53334003)
          Partition 1: (Not Active) - (Size=279.5 GB) - (Type=07 NTFS)

          ==================== Eind van Addition.txt ============================

          Comment


          • #6
            FRST.txt Addition.txt

            Comment


            • #7
              Start de Farbar Recovery Scan Tool nogmaals.
              • Download fixlist.txt uit de bijlage naar het bureaublad, waar ook FRST.exe aanwezig is.
              • Dubbelklik op FRST.exe om de tool te starten.
              • Als het programma is geopend klik Yes (Ja) bij de disclaimer.
              • Druk op de Fix knop
              • Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
              • Voeg dit logbestand als bijlage toe aan het volgende bericht..
              Bijgevoegde Bestanden

              Windows 10 opstarten in Veilige Modus

              Comment


              • #8
                Fixlog.txt

                Comment


                • #9
                  Vertel even hoe het nu gaat aub.

                  Windows 10 opstarten in Veilige Modus

                  Comment


                  • #10
                    Het lijkt er op dat het probleem is opgelost. ik wordt niet meer omgeleid naar andere web pagina's, waarvoor hartelijk dank.
                    Voor de rest nog onregelmatigheden op mijn pc die beter verwijderd kunnen worden ?

                    Comment


                    • #11
                      Java updaten:
                      Download de nieuwste versie hier
                      Klik op 'Gratis Java-download' en vervolgens op 'Ga akkoord met de licentiebepalingen en start de gratis download'.
                      Download het installatiebestand (jxpiinstall.exe) en start het vervolgens.
                      Klik op Install en daarna op Install>.
                      Let op: Het kan zijn dat je een aanbieding te zien krijgt. Haal dan de 3 vinkjes weg zodat de extra software (Amazon Assistant) niet geïnstalleerd wordt en je browser-instellingen behouden blijven!
                      Indien je de melding krijgt "Out-of-date Java versions detected.", klik dan op Uninstall>. Verouderde versies van Java worden dan verwijdert.


                      Als er verder geen problemen zijn gaan we afronden.

                      * De gebruikte tools en logbestanden opruimen.
                      Download "Delfix by Xplode" hier of hier.

                      Start de tool middels dubbelklik.
                      Zet nu vinkjes voor de volgende items:
                      • Remove disinfection tools
                      • Create registry backup

                      Klik op Run en wacht geduldig tot de tool gereed is.
                      De tool maakt een logbestand. Dit hoeft u niet te plaatsen.

                      * Pas op bij het downloaden en installeren van programma's.
                      Bestanden downloaden via de website 'softonic.com' en 'cnet.com' kan je beter vermijden aangezien deze vaak voorzien zijn van extra ongewenste software.
                      Tijdens het installeren van programma's goed opletten of er extra, onnodige software meegeïnstalleerd wordt, zoals toolbars, extensies, plug-ins of browsers.
                      Deze extra software staat standaard aangevinkt en kan je zonder problemen uitvinken.


                      Bescherming tegen ongewenste software.

                      Unchecky voorkomt installatie van ongewenste software

                      Dubbelklik op het installatiebestand unchecky_setup.exe om de installatie te starten.
                      In het scherm wat nu verschijnt kunt u voor meer opties kiezen, op deze manier kunt u zelf de locatie instellen waar Unchecky geïnstalleerd dien te worden.
                      Klik vervolgens op de knop Install om Unchecky te installeren.
                      Wanneer de installatie van Unchecky gereed is klikt u op Finish.
                      Start na de installatie wel even de computer opnieuw op, dit om de wijzigingen in het hostsbestand van Windows door te voeren.



                      Misschien ook beter om Hitmanproalert te installeren. Alert
                      Uitleg hieronder.
                      Uitleg

                      Windows 10 opstarten in Veilige Modus

                      Comment


                      • #12
                        Done.

                        Dank je voor de moeite

                        Comment

                        Sorry, you are not authorized to view this page
                        Working...
                        X